Debian GNU/Linux 9 syzkaller ttyS0

Warning: Permanently added '[localhost]:35499' (ECDSA) to the list of known hosts.
2021/07/18 18:55:34 fuzzer started
2021/07/18 18:55:35 dialing manager at localhost:34187
2021/07/18 18:55:35 syscalls: 3658
2021/07/18 18:55:35 code coverage: enabled
2021/07/18 18:55:35 comparison tracing: enabled
2021/07/18 18:55:35 extra coverage: enabled
2021/07/18 18:55:35 setuid sandbox: enabled
2021/07/18 18:55:35 namespace sandbox: enabled
2021/07/18 18:55:35 Android sandbox: enabled
2021/07/18 18:55:35 fault injection: enabled
2021/07/18 18:55:35 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2021/07/18 18:55:35 net packet injection: enabled
2021/07/18 18:55:35 net device setup: enabled
2021/07/18 18:55:35 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2021/07/18 18:55:35 devlink PCI setup: PCI device 0000:00:10.0 is not available
2021/07/18 18:55:35 USB emulation: enabled
2021/07/18 18:55:35 hci packet injection: enabled
2021/07/18 18:55:35 wifi device emulation: enabled
2021/07/18 18:55:35 802.15.4 emulation: enabled
2021/07/18 18:55:36 fetching corpus: 0, signal 0/2000 (executing program)
2021/07/18 18:55:36 fetching corpus: 50, signal 61626/65380 (executing program)
2021/07/18 18:55:36 fetching corpus: 100, signal 79498/85015 (executing program)
2021/07/18 18:55:36 fetching corpus: 150, signal 96657/103851 (executing program)
2021/07/18 18:55:37 fetching corpus: 200, signal 116172/124913 (executing program)
2021/07/18 18:55:37 fetching corpus: 250, signal 132601/142880 (executing program)
2021/07/18 18:55:37 fetching corpus: 300, signal 141052/152936 (executing program)
2021/07/18 18:55:38 fetching corpus: 350, signal 153018/166372 (executing program)
2021/07/18 18:55:38 fetching corpus: 400, signal 161484/176322 (executing program)
2021/07/18 18:55:38 fetching corpus: 450, signal 168021/184377 (executing program)
2021/07/18 18:55:38 fetching corpus: 500, signal 174154/191985 (executing program)
2021/07/18 18:55:39 fetching corpus: 550, signal 184133/203291 (executing program)
2021/07/18 18:55:39 fetching corpus: 600, signal 194659/215086 (executing program)
2021/07/18 18:55:39 fetching corpus: 650, signal 200741/222560 (executing program)
2021/07/18 18:55:39 fetching corpus: 700, signal 211318/234360 (executing program)
2021/07/18 18:55:40 fetching corpus: 750, signal 217261/241642 (executing program)
2021/07/18 18:55:40 fetching corpus: 800, signal 222975/248679 (executing program)
2021/07/18 18:55:40 fetching corpus: 850, signal 227578/254623 (executing program)
2021/07/18 18:55:40 fetching corpus: 900, signal 232443/260741 (executing program)
2021/07/18 18:55:40 fetching corpus: 950, signal 241523/270931 (executing program)
2021/07/18 18:55:41 fetching corpus: 1000, signal 247897/278495 (executing program)
2021/07/18 18:55:41 fetching corpus: 1050, signal 250612/282497 (executing program)
2021/07/18 18:55:41 fetching corpus: 1100, signal 260916/293676 (executing program)
2021/07/18 18:55:41 fetching corpus: 1150, signal 265759/299665 (executing program)
2021/07/18 18:55:41 fetching corpus: 1200, signal 270097/305166 (executing program)
2021/07/18 18:55:41 fetching corpus: 1250, signal 273382/309665 (executing program)
2021/07/18 18:55:42 fetching corpus: 1300, signal 278880/316248 (executing program)
2021/07/18 18:55:42 fetching corpus: 1350, signal 282006/320577 (executing program)
2021/07/18 18:55:42 fetching corpus: 1400, signal 286255/325942 (executing program)
2021/07/18 18:55:42 fetching corpus: 1450, signal 290976/331750 (executing program)
2021/07/18 18:55:42 fetching corpus: 1500, signal 298404/340029 (executing program)
2021/07/18 18:55:43 fetching corpus: 1550, signal 302355/345098 (executing program)
2021/07/18 18:55:43 fetching corpus: 1600, signal 306023/349827 (executing program)
2021/07/18 18:55:43 fetching corpus: 1650, signal 313021/357595 (executing program)
2021/07/18 18:55:43 fetching corpus: 1700, signal 317283/362851 (executing program)
2021/07/18 18:55:43 fetching corpus: 1750, signal 320539/367121 (executing program)
2021/07/18 18:55:44 fetching corpus: 1800, signal 323266/370933 (executing program)
2021/07/18 18:55:44 fetching corpus: 1850, signal 328298/376837 (executing program)
2021/07/18 18:55:44 fetching corpus: 1900, signal 333109/382513 (executing program)
2021/07/18 18:55:44 fetching corpus: 1950, signal 337325/387657 (executing program)
2021/07/18 18:55:44 fetching corpus: 2000, signal 340770/392020 (executing program)
2021/07/18 18:55:45 fetching corpus: 2050, signal 345375/397514 (executing program)
2021/07/18 18:55:45 fetching corpus: 2100, signal 348494/401590 (executing program)
2021/07/18 18:55:45 fetching corpus: 2150, signal 351989/405991 (executing program)
2021/07/18 18:55:45 fetching corpus: 2200, signal 355877/410772 (executing program)
2021/07/18 18:55:45 fetching corpus: 2250, signal 358386/414229 (executing program)
2021/07/18 18:55:46 fetching corpus: 2300, signal 362965/419589 (executing program)
2021/07/18 18:55:46 fetching corpus: 2350, signal 364857/422479 (executing program)
2021/07/18 18:55:46 fetching corpus: 2400, signal 367212/425781 (executing program)
2021/07/18 18:55:46 fetching corpus: 2450, signal 369857/429340 (executing program)
2021/07/18 18:55:46 fetching corpus: 2500, signal 372180/432564 (executing program)
2021/07/18 18:55:47 fetching corpus: 2550, signal 376245/437384 (executing program)
2021/07/18 18:55:47 fetching corpus: 2600, signal 378561/440592 (executing program)
2021/07/18 18:55:47 fetching corpus: 2650, signal 382317/445065 (executing program)
2021/07/18 18:55:47 fetching corpus: 2700, signal 385176/448728 (executing program)
2021/07/18 18:55:48 fetching corpus: 2750, signal 388500/452749 (executing program)
2021/07/18 18:55:48 fetching corpus: 2800, signal 390456/455612 (executing program)
2021/07/18 18:55:48 fetching corpus: 2850, signal 392250/458301 (executing program)
2021/07/18 18:55:48 fetching corpus: 2900, signal 394297/461229 (executing program)
2021/07/18 18:55:49 fetching corpus: 2950, signal 397324/465028 (executing program)
2021/07/18 18:55:49 fetching corpus: 3000, signal 399823/468336 (executing program)
2021/07/18 18:55:49 fetching corpus: 3050, signal 402055/471411 (executing program)
2021/07/18 18:55:49 fetching corpus: 3100, signal 404414/474509 (executing program)
2021/07/18 18:55:49 fetching corpus: 3150, signal 406532/477487 (executing program)
2021/07/18 18:55:50 fetching corpus: 3200, signal 409940/481522 (executing program)
2021/07/18 18:55:50 fetching corpus: 3250, signal 413203/485424 (executing program)
2021/07/18 18:55:50 fetching corpus: 3300, signal 417865/490563 (executing program)
2021/07/18 18:55:50 fetching corpus: 3350, signal 419437/492979 (executing program)
2021/07/18 18:55:51 fetching corpus: 3400, signal 422732/496864 (executing program)
2021/07/18 18:55:51 fetching corpus: 3450, signal 424961/499804 (executing program)
2021/07/18 18:55:51 fetching corpus: 3500, signal 426338/502027 (executing program)
2021/07/18 18:55:51 fetching corpus: 3550, signal 429083/505421 (executing program)
2021/07/18 18:55:52 fetching corpus: 3600, signal 430393/507600 (executing program)
2021/07/18 18:55:52 fetching corpus: 3650, signal 432093/510056 (executing program)
2021/07/18 18:55:52 fetching corpus: 3700, signal 434287/512909 (executing program)
2021/07/18 18:55:52 fetching corpus: 3750, signal 435439/514948 (executing program)
2021/07/18 18:55:53 fetching corpus: 3800, signal 437770/517915 (executing program)
2021/07/18 18:55:53 fetching corpus: 3850, signal 439378/520317 (executing program)
2021/07/18 18:55:53 fetching corpus: 3900, signal 442611/524069 (executing program)
2021/07/18 18:55:53 fetching corpus: 3950, signal 445899/527743 (executing program)
2021/07/18 18:55:53 fetching corpus: 4000, signal 447476/530046 (executing program)
2021/07/18 18:55:54 fetching corpus: 4050, signal 448573/531952 (executing program)
2021/07/18 18:55:54 fetching corpus: 4100, signal 451811/535605 (executing program)
2021/07/18 18:55:54 fetching corpus: 4150, signal 453593/538048 (executing program)
2021/07/18 18:55:54 fetching corpus: 4200, signal 454736/539980 (executing program)
2021/07/18 18:55:55 fetching corpus: 4250, signal 456251/542236 (executing program)
2021/07/18 18:55:55 fetching corpus: 4300, signal 458021/544703 (executing program)
2021/07/18 18:55:55 fetching corpus: 4350, signal 460254/547507 (executing program)
2021/07/18 18:55:55 fetching corpus: 4400, signal 462238/550113 (executing program)
2021/07/18 18:55:56 fetching corpus: 4450, signal 464447/552872 (executing program)
2021/07/18 18:55:56 fetching corpus: 4500, signal 467449/556285 (executing program)
2021/07/18 18:55:56 fetching corpus: 4550, signal 469160/558632 (executing program)
2021/07/18 18:55:56 fetching corpus: 4600, signal 471282/561287 (executing program)
2021/07/18 18:55:57 fetching corpus: 4650, signal 474149/564520 (executing program)
2021/07/18 18:55:57 fetching corpus: 4700, signal 475985/566960 (executing program)
2021/07/18 18:55:57 fetching corpus: 4750, signal 477748/569291 (executing program)
2021/07/18 18:55:57 fetching corpus: 4800, signal 479018/571229 (executing program)
2021/07/18 18:55:58 fetching corpus: 4850, signal 482503/574890 (executing program)
2021/07/18 18:55:58 fetching corpus: 4900, signal 484215/577219 (executing program)
2021/07/18 18:55:58 fetching corpus: 4950, signal 485576/579250 (executing program)
2021/07/18 18:55:58 fetching corpus: 5000, signal 487040/581314 (executing program)
2021/07/18 18:55:59 fetching corpus: 5050, signal 488521/583422 (executing program)
2021/07/18 18:55:59 fetching corpus: 5100, signal 489582/585173 (executing program)
2021/07/18 18:55:59 fetching corpus: 5150, signal 491349/587516 (executing program)
2021/07/18 18:55:59 fetching corpus: 5200, signal 492945/589641 (executing program)
2021/07/18 18:56:00 fetching corpus: 5250, signal 494609/591837 (executing program)
2021/07/18 18:56:00 fetching corpus: 5300, signal 496000/593792 (executing program)
2021/07/18 18:56:00 fetching corpus: 5350, signal 497495/595837 (executing program)
2021/07/18 18:56:00 fetching corpus: 5400, signal 498649/597654 (executing program)
2021/07/18 18:56:00 fetching corpus: 5450, signal 500089/599678 (executing program)
2021/07/18 18:56:01 fetching corpus: 5500, signal 501541/601685 (executing program)
2021/07/18 18:56:01 fetching corpus: 5550, signal 503202/603825 (executing program)
2021/07/18 18:56:01 fetching corpus: 5600, signal 504764/605880 (executing program)
2021/07/18 18:56:02 fetching corpus: 5650, signal 506044/607701 (executing program)
2021/07/18 18:56:02 fetching corpus: 5700, signal 507464/609660 (executing program)
2021/07/18 18:56:02 fetching corpus: 5750, signal 508335/611188 (executing program)
2021/07/18 18:56:02 fetching corpus: 5800, signal 509723/613080 (executing program)
2021/07/18 18:56:03 fetching corpus: 5850, signal 510888/614802 (executing program)
2021/07/18 18:56:03 fetching corpus: 5900, signal 512009/616512 (executing program)
2021/07/18 18:56:03 fetching corpus: 5950, signal 512959/618103 (executing program)
2021/07/18 18:56:03 fetching corpus: 6000, signal 514927/620395 (executing program)
2021/07/18 18:56:04 fetching corpus: 6050, signal 516456/622390 (executing program)
2021/07/18 18:56:04 fetching corpus: 6100, signal 517762/624246 (executing program)
2021/07/18 18:56:04 fetching corpus: 6150, signal 519475/626406 (executing program)
2021/07/18 18:56:04 fetching corpus: 6200, signal 520719/628174 (executing program)
2021/07/18 18:56:04 fetching corpus: 6250, signal 521762/629811 (executing program)
2021/07/18 18:56:05 fetching corpus: 6300, signal 523328/631809 (executing program)
2021/07/18 18:56:05 fetching corpus: 6350, signal 525328/634077 (executing program)
2021/07/18 18:56:05 fetching corpus: 6400, signal 526925/636066 (executing program)
2021/07/18 18:56:05 fetching corpus: 6450, signal 528613/638066 (executing program)
2021/07/18 18:56:05 fetching corpus: 6500, signal 529778/639695 (executing program)
2021/07/18 18:56:06 fetching corpus: 6550, signal 531378/641711 (executing program)
2021/07/18 18:56:06 fetching corpus: 6600, signal 532395/643265 (executing program)
2021/07/18 18:56:06 fetching corpus: 6650, signal 533753/645031 (executing program)
2021/07/18 18:56:06 fetching corpus: 6700, signal 534692/646534 (executing program)
2021/07/18 18:56:07 fetching corpus: 6750, signal 536334/648472 (executing program)
2021/07/18 18:56:07 fetching corpus: 6800, signal 537402/650022 (executing program)
2021/07/18 18:56:07 fetching corpus: 6850, signal 538217/651428 (executing program)
2021/07/18 18:56:07 fetching corpus: 6900, signal 540001/653455 (executing program)
2021/07/18 18:56:07 fetching corpus: 6950, signal 541239/655130 (executing program)
2021/07/18 18:56:08 fetching corpus: 7000, signal 542541/656837 (executing program)
2021/07/18 18:56:08 fetching corpus: 7050, signal 544226/658849 (executing program)
2021/07/18 18:56:08 fetching corpus: 7100, signal 546115/660967 (executing program)
2021/07/18 18:56:08 fetching corpus: 7150, signal 547377/662626 (executing program)
2021/07/18 18:56:09 fetching corpus: 7200, signal 548816/664391 (executing program)
2021/07/18 18:56:09 fetching corpus: 7250, signal 549913/665976 (executing program)
2021/07/18 18:56:09 fetching corpus: 7300, signal 551653/667927 (executing program)
2021/07/18 18:56:09 fetching corpus: 7350, signal 553316/669835 (executing program)
2021/07/18 18:56:10 fetching corpus: 7400, signal 554118/671173 (executing program)
2021/07/18 18:56:10 fetching corpus: 7450, signal 555147/672690 (executing program)
2021/07/18 18:56:10 fetching corpus: 7500, signal 556208/674183 (executing program)
2021/07/18 18:56:10 fetching corpus: 7550, signal 557075/675548 (executing program)
2021/07/18 18:56:10 fetching corpus: 7600, signal 559265/677795 (executing program)
2021/07/18 18:56:11 fetching corpus: 7650, signal 560390/679293 (executing program)
2021/07/18 18:56:11 fetching corpus: 7700, signal 561259/680650 (executing program)
2021/07/18 18:56:11 fetching corpus: 7750, signal 562354/682113 (executing program)
2021/07/18 18:56:11 fetching corpus: 7800, signal 563150/683404 (executing program)
2021/07/18 18:56:12 fetching corpus: 7850, signal 564459/685076 (executing program)
2021/07/18 18:56:12 fetching corpus: 7900, signal 565006/686193 (executing program)
2021/07/18 18:56:12 fetching corpus: 7950, signal 566230/687748 (executing program)
2021/07/18 18:56:12 fetching corpus: 8000, signal 567166/689127 (executing program)
2021/07/18 18:56:13 fetching corpus: 8050, signal 568069/690514 (executing program)
2021/07/18 18:56:13 fetching corpus: 8100, signal 568703/691670 (executing program)
2021/07/18 18:56:13 fetching corpus: 8150, signal 570026/693323 (executing program)
2021/07/18 18:56:13 fetching corpus: 8200, signal 571289/694871 (executing program)
2021/07/18 18:56:14 fetching corpus: 8250, signal 572651/696518 (executing program)
2021/07/18 18:56:14 fetching corpus: 8300, signal 574151/698208 (executing program)
2021/07/18 18:56:14 fetching corpus: 8350, signal 575093/699528 (executing program)
2021/07/18 18:56:14 fetching corpus: 8400, signal 576000/700855 (executing program)
2021/07/18 18:56:15 fetching corpus: 8450, signal 577115/702313 (executing program)
2021/07/18 18:56:15 fetching corpus: 8500, signal 578097/703635 (executing program)
2021/07/18 18:56:15 fetching corpus: 8550, signal 579146/705055 (executing program)
2021/07/18 18:56:15 fetching corpus: 8600, signal 580250/706491 (executing program)
2021/07/18 18:56:15 fetching corpus: 8650, signal 581156/707762 (executing program)
2021/07/18 18:56:16 fetching corpus: 8700, signal 581847/708840 (executing program)
2021/07/18 18:56:16 fetching corpus: 8750, signal 583094/710326 (executing program)
2021/07/18 18:56:16 fetching corpus: 8800, signal 583956/711558 (executing program)
2021/07/18 18:56:16 fetching corpus: 8850, signal 584841/712815 (executing program)
2021/07/18 18:56:17 fetching corpus: 8900, signal 585650/713994 (executing program)
2021/07/18 18:56:17 fetching corpus: 8950, signal 586590/715274 (executing program)
2021/07/18 18:56:17 fetching corpus: 9000, signal 587480/716483 (executing program)
2021/07/18 18:56:17 fetching corpus: 9050, signal 588497/717801 (executing program)
2021/07/18 18:56:18 fetching corpus: 9100, signal 589411/719049 (executing program)
2021/07/18 18:56:18 fetching corpus: 9150, signal 591168/720855 (executing program)
2021/07/18 18:56:18 fetching corpus: 9200, signal 592614/722412 (executing program)
2021/07/18 18:56:19 fetching corpus: 9250, signal 594144/723973 (executing program)
2021/07/18 18:56:19 fetching corpus: 9300, signal 594953/725150 (executing program)
2021/07/18 18:56:19 fetching corpus: 9350, signal 596018/726445 (executing program)
2021/07/18 18:56:19 fetching corpus: 9400, signal 597487/728003 (executing program)
2021/07/18 18:56:19 fetching corpus: 9450, signal 598311/729165 (executing program)
2021/07/18 18:56:20 fetching corpus: 9500, signal 599385/730444 (executing program)
2021/07/18 18:56:20 fetching corpus: 9550, signal 600466/731727 (executing program)
2021/07/18 18:56:20 fetching corpus: 9600, signal 601562/732985 (executing program)
2021/07/18 18:56:21 fetching corpus: 9650, signal 602881/734437 (executing program)
2021/07/18 18:56:21 fetching corpus: 9700, signal 603687/735630 (executing program)
2021/07/18 18:56:21 fetching corpus: 9750, signal 604944/737002 (executing program)
2021/07/18 18:56:21 fetching corpus: 9800, signal 605851/738167 (executing program)
2021/07/18 18:56:21 fetching corpus: 9850, signal 606380/739091 (executing program)
2021/07/18 18:56:22 fetching corpus: 9900, signal 607593/740428 (executing program)
2021/07/18 18:56:22 fetching corpus: 9950, signal 608449/741555 (executing program)
2021/07/18 18:56:22 fetching corpus: 10000, signal 609621/742882 (executing program)
2021/07/18 18:56:22 fetching corpus: 10050, signal 610485/743995 (executing program)
2021/07/18 18:56:23 fetching corpus: 10100, signal 611786/745360 (executing program)
2021/07/18 18:56:23 fetching corpus: 10150, signal 612813/746589 (executing program)
2021/07/18 18:56:23 fetching corpus: 10200, signal 613745/747747 (executing program)
2021/07/18 18:56:24 fetching corpus: 10250, signal 615106/749178 (executing program)
2021/07/18 18:56:24 fetching corpus: 10300, signal 615601/750088 (executing program)
2021/07/18 18:56:24 fetching corpus: 10350, signal 616361/751152 (executing program)
2021/07/18 18:56:24 fetching corpus: 10400, signal 617372/752352 (executing program)
2021/07/18 18:56:24 fetching corpus: 10450, signal 619128/753923 (executing program)
2021/07/18 18:56:25 fetching corpus: 10500, signal 620030/755087 (executing program)
2021/07/18 18:56:25 fetching corpus: 10550, signal 621415/756471 (executing program)
2021/07/18 18:56:25 fetching corpus: 10600, signal 622718/757824 (executing program)
2021/07/18 18:56:25 fetching corpus: 10650, signal 623990/759155 (executing program)
2021/07/18 18:56:26 fetching corpus: 10700, signal 624769/760204 (executing program)
2021/07/18 18:56:26 fetching corpus: 10750, signal 626347/761678 (executing program)
2021/07/18 18:56:26 fetching corpus: 10800, signal 628158/763265 (executing program)
2021/07/18 18:56:26 fetching corpus: 10850, signal 629180/764411 (executing program)
2021/07/18 18:56:26 fetching corpus: 10900, signal 629972/765467 (executing program)
2021/07/18 18:56:27 fetching corpus: 10950, signal 631374/766813 (executing program)
2021/07/18 18:56:27 fetching corpus: 11000, signal 632474/767996 (executing program)
2021/07/18 18:56:27 fetching corpus: 11050, signal 634263/769550 (executing program)
2021/07/18 18:56:27 fetching corpus: 11100, signal 634919/770461 (executing program)
2021/07/18 18:56:28 fetching corpus: 11150, signal 635505/771389 (executing program)
2021/07/18 18:56:28 fetching corpus: 11200, signal 637140/772832 (executing program)
2021/07/18 18:56:28 fetching corpus: 11250, signal 637836/773815 (executing program)
2021/07/18 18:56:29 fetching corpus: 11300, signal 638851/774960 (executing program)
2021/07/18 18:56:29 fetching corpus: 11350, signal 639854/776085 (executing program)
2021/07/18 18:56:29 fetching corpus: 11400, signal 640813/777213 (executing program)
2021/07/18 18:56:29 fetching corpus: 11450, signal 641432/778137 (executing program)
2021/07/18 18:56:30 fetching corpus: 11500, signal 642451/779301 (executing program)
2021/07/18 18:56:30 fetching corpus: 11550, signal 643059/780161 (executing program)
2021/07/18 18:56:30 fetching corpus: 11600, signal 644004/781231 (executing program)
2021/07/18 18:56:30 fetching corpus: 11650, signal 644792/782175 (executing program)
2021/07/18 18:56:31 fetching corpus: 11700, signal 645489/783091 (executing program)
2021/07/18 18:56:31 fetching corpus: 11750, signal 646571/784193 (executing program)
2021/07/18 18:56:31 fetching corpus: 11800, signal 647401/785176 (executing program)
2021/07/18 18:56:31 fetching corpus: 11850, signal 648426/786245 (executing program)
2021/07/18 18:56:32 fetching corpus: 11900, signal 649716/787415 (executing program)
2021/07/18 18:56:32 fetching corpus: 11950, signal 650586/788402 (executing program)
2021/07/18 18:56:32 fetching corpus: 11999, signal 651194/789300 (executing program)
2021/07/18 18:56:32 fetching corpus: 12049, signal 652118/790271 (executing program)
2021/07/18 18:56:33 fetching corpus: 12099, signal 652589/791079 (executing program)
2021/07/18 18:56:33 fetching corpus: 12149, signal 654001/792260 (executing program)
2021/07/18 18:56:33 fetching corpus: 12199, signal 654659/793171 (executing program)
2021/07/18 18:56:33 fetching corpus: 12249, signal 655625/794195 (executing program)
2021/07/18 18:56:34 fetching corpus: 12299, signal 656449/795103 (executing program)
2021/07/18 18:56:34 fetching corpus: 12349, signal 657070/795944 (executing program)
2021/07/18 18:56:34 fetching corpus: 12399, signal 657684/796784 (executing program)
2021/07/18 18:56:34 fetching corpus: 12448, signal 658389/797665 (executing program)
2021/07/18 18:56:34 fetching corpus: 12498, signal 658994/798469 (executing program)
2021/07/18 18:56:35 fetching corpus: 12548, signal 660015/799488 (executing program)
2021/07/18 18:56:35 fetching corpus: 12598, signal 660630/800328 (executing program)
syzkaller login: [  164.544308][ T3401] ieee802154 phy0 wpan0: encryption failed: -22
[  164.572855][ T3401] ieee802154 phy1 wpan1: encryption failed: -22
2021/07/18 18:56:35 fetching corpus: 12648, signal 661282/801158 (executing program)
2021/07/18 18:56:36 fetching corpus: 12698, signal 662310/802168 (executing program)
2021/07/18 18:56:36 fetching corpus: 12748, signal 662898/803001 (executing program)
2021/07/18 18:56:36 fetching corpus: 12798, signal 663529/803817 (executing program)
2021/07/18 18:56:36 fetching corpus: 12848, signal 664088/804607 (executing program)
2021/07/18 18:56:37 fetching corpus: 12898, signal 665243/805654 (executing program)
2021/07/18 18:56:37 fetching corpus: 12948, signal 665969/806503 (executing program)
2021/07/18 18:56:37 fetching corpus: 12998, signal 666799/807390 (executing program)
2021/07/18 18:56:37 fetching corpus: 13048, signal 667561/808245 (executing program)
2021/07/18 18:56:38 fetching corpus: 13098, signal 668158/809020 (executing program)
2021/07/18 18:56:38 fetching corpus: 13148, signal 668616/809726 (executing program)
2021/07/18 18:56:38 fetching corpus: 13198, signal 669312/810548 (executing program)
2021/07/18 18:56:38 fetching corpus: 13248, signal 669883/811327 (executing program)
2021/07/18 18:56:38 fetching corpus: 13298, signal 670426/812107 (executing program)
2021/07/18 18:56:39 fetching corpus: 13348, signal 671548/813100 (executing program)
2021/07/18 18:56:39 fetching corpus: 13398, signal 672101/813858 (executing program)
2021/07/18 18:56:39 fetching corpus: 13448, signal 673563/814974 (executing program)
2021/07/18 18:56:40 fetching corpus: 13498, signal 674435/815841 (executing program)
2021/07/18 18:56:40 fetching corpus: 13548, signal 675048/816620 (executing program)
2021/07/18 18:56:40 fetching corpus: 13598, signal 676683/817808 (executing program)
2021/07/18 18:56:40 fetching corpus: 13648, signal 677335/818614 (executing program)
2021/07/18 18:56:40 fetching corpus: 13698, signal 678269/819509 (executing program)
2021/07/18 18:56:41 fetching corpus: 13748, signal 678999/820336 (executing program)
2021/07/18 18:56:41 fetching corpus: 13798, signal 680275/821353 (executing program)
2021/07/18 18:56:41 fetching corpus: 13848, signal 681628/822388 (executing program)
2021/07/18 18:56:42 fetching corpus: 13898, signal 682391/823197 (executing program)
2021/07/18 18:56:42 fetching corpus: 13948, signal 683221/824029 (executing program)
2021/07/18 18:56:42 fetching corpus: 13998, signal 684099/824900 (executing program)
2021/07/18 18:56:42 fetching corpus: 14048, signal 684568/825559 (executing program)
2021/07/18 18:56:43 fetching corpus: 14098, signal 685263/826293 (executing program)
2021/07/18 18:56:43 fetching corpus: 14148, signal 685834/827022 (executing program)
2021/07/18 18:56:43 fetching corpus: 14198, signal 686507/827777 (executing program)
2021/07/18 18:56:43 fetching corpus: 14248, signal 687081/828481 (executing program)
2021/07/18 18:56:44 fetching corpus: 14298, signal 687974/829295 (executing program)
2021/07/18 18:56:44 fetching corpus: 14348, signal 689582/830415 (executing program)
2021/07/18 18:56:44 fetching corpus: 14398, signal 690168/831118 (executing program)
2021/07/18 18:56:45 fetching corpus: 14448, signal 690874/831846 (executing program)
2021/07/18 18:56:45 fetching corpus: 14498, signal 692253/832809 (executing program)
2021/07/18 18:56:45 fetching corpus: 14548, signal 693182/833633 (executing program)
2021/07/18 18:56:45 fetching corpus: 14598, signal 693937/834380 (executing program)
2021/07/18 18:56:45 fetching corpus: 14647, signal 694421/835061 (executing program)
2021/07/18 18:56:46 fetching corpus: 14697, signal 695135/835796 (executing program)
2021/07/18 18:56:46 fetching corpus: 14747, signal 695668/836424 (executing program)
2021/07/18 18:56:46 fetching corpus: 14797, signal 696434/837188 (executing program)
2021/07/18 18:56:46 fetching corpus: 14847, signal 697038/837881 (executing program)
2021/07/18 18:56:46 fetching corpus: 14897, signal 697826/838669 (executing program)
2021/07/18 18:56:47 fetching corpus: 14947, signal 698606/839425 (executing program)
2021/07/18 18:56:47 fetching corpus: 14997, signal 699258/840111 (executing program)
2021/07/18 18:56:47 fetching corpus: 15047, signal 700024/840804 (executing program)
2021/07/18 18:56:48 fetching corpus: 15097, signal 700636/841506 (executing program)
2021/07/18 18:56:48 fetching corpus: 15147, signal 701707/842326 (executing program)
2021/07/18 18:56:48 fetching corpus: 15197, signal 702212/842926 (executing program)
2021/07/18 18:56:48 fetching corpus: 15247, signal 702891/843594 (executing program)
2021/07/18 18:56:49 fetching corpus: 15297, signal 703474/844226 (executing program)
2021/07/18 18:56:49 fetching corpus: 15347, signal 704983/845150 (executing program)
2021/07/18 18:56:49 fetching corpus: 15397, signal 705787/845876 (executing program)
2021/07/18 18:56:49 fetching corpus: 15447, signal 706325/846495 (executing program)
2021/07/18 18:56:50 fetching corpus: 15497, signal 707186/847283 (executing program)
2021/07/18 18:56:50 fetching corpus: 15547, signal 707691/847923 (executing program)
2021/07/18 18:56:50 fetching corpus: 15597, signal 708066/848532 (executing program)
2021/07/18 18:56:50 fetching corpus: 15647, signal 708740/849204 (executing program)
2021/07/18 18:56:51 fetching corpus: 15697, signal 709524/849872 (executing program)
2021/07/18 18:56:51 fetching corpus: 15747, signal 710340/850567 (executing program)
2021/07/18 18:56:51 fetching corpus: 15797, signal 710841/851173 (executing program)
2021/07/18 18:56:51 fetching corpus: 15847, signal 711446/851826 (executing program)
2021/07/18 18:56:52 fetching corpus: 15897, signal 711855/852391 (executing program)
2021/07/18 18:56:52 fetching corpus: 15947, signal 712362/852971 (executing program)
2021/07/18 18:56:52 fetching corpus: 15997, signal 712889/853545 (executing program)
2021/07/18 18:56:53 fetching corpus: 16047, signal 713930/854274 (executing program)
2021/07/18 18:56:53 fetching corpus: 16097, signal 714610/854904 (executing program)
2021/07/18 18:56:54 fetching corpus: 16147, signal 715260/855543 (executing program)
2021/07/18 18:56:54 fetching corpus: 16197, signal 715814/856135 (executing program)
2021/07/18 18:56:54 fetching corpus: 16247, signal 716620/856775 (executing program)
2021/07/18 18:56:54 fetching corpus: 16297, signal 717121/857356 (executing program)
2021/07/18 18:56:55 fetching corpus: 16347, signal 717503/857869 (executing program)
2021/07/18 18:56:55 fetching corpus: 16397, signal 718023/858438 (executing program)
2021/07/18 18:56:55 fetching corpus: 16447, signal 718794/859081 (executing program)
2021/07/18 18:56:55 fetching corpus: 16497, signal 719440/859694 (executing program)
2021/07/18 18:56:56 fetching corpus: 16547, signal 720008/860258 (executing program)
2021/07/18 18:56:56 fetching corpus: 16597, signal 720547/860855 (executing program)
2021/07/18 18:56:56 fetching corpus: 16647, signal 721203/861451 (executing program)
2021/07/18 18:56:56 fetching corpus: 16697, signal 721700/862024 (executing program)
2021/07/18 18:56:57 fetching corpus: 16747, signal 722353/862654 (executing program)
2021/07/18 18:56:57 fetching corpus: 16797, signal 723319/863363 (executing program)
2021/07/18 18:56:58 fetching corpus: 16847, signal 723814/863941 (executing program)
2021/07/18 18:56:58 fetching corpus: 16897, signal 724618/864564 (executing program)
2021/07/18 18:56:58 fetching corpus: 16947, signal 725379/865213 (executing program)
2021/07/18 18:56:58 fetching corpus: 16997, signal 726154/865806 (executing program)
2021/07/18 18:56:58 fetching corpus: 17047, signal 726612/866300 (executing program)
2021/07/18 18:56:59 fetching corpus: 17097, signal 727989/867054 (executing program)
2021/07/18 18:56:59 fetching corpus: 17147, signal 728840/867661 (executing program)
2021/07/18 18:56:59 fetching corpus: 17197, signal 730515/868531 (executing program)
2021/07/18 18:56:59 fetching corpus: 17247, signal 731336/869129 (executing program)
2021/07/18 18:56:59 fetching corpus: 17297, signal 731949/869711 (executing program)
2021/07/18 18:57:00 fetching corpus: 17347, signal 732624/870277 (executing program)
2021/07/18 18:57:00 fetching corpus: 17397, signal 733365/870872 (executing program)
2021/07/18 18:57:00 fetching corpus: 17447, signal 733892/871360 (executing program)
2021/07/18 18:57:01 fetching corpus: 17497, signal 734392/871901 (executing program)
2021/07/18 18:57:01 fetching corpus: 17547, signal 735017/872421 (executing program)
2021/07/18 18:57:01 fetching corpus: 17597, signal 735389/872904 (executing program)
2021/07/18 18:57:02 fetching corpus: 17647, signal 736096/873487 (executing program)
2021/07/18 18:57:02 fetching corpus: 17697, signal 736525/873974 (executing program)
2021/07/18 18:57:02 fetching corpus: 17747, signal 737084/874464 (executing program)
2021/07/18 18:57:03 fetching corpus: 17797, signal 737753/874969 (executing program)
2021/07/18 18:57:03 fetching corpus: 17847, signal 738613/875554 (executing program)
2021/07/18 18:57:03 fetching corpus: 17897, signal 739608/876127 (executing program)
2021/07/18 18:57:04 fetching corpus: 17947, signal 740213/876648 (executing program)
2021/07/18 18:57:04 fetching corpus: 17997, signal 740516/877091 (executing program)
2021/07/18 18:57:04 fetching corpus: 18047, signal 741677/877731 (executing program)
2021/07/18 18:57:04 fetching corpus: 18097, signal 742310/878251 (executing program)
2021/07/18 18:57:05 fetching corpus: 18147, signal 742870/878761 (executing program)
2021/07/18 18:57:05 fetching corpus: 18197, signal 743944/879363 (executing program)
2021/07/18 18:57:05 fetching corpus: 18247, signal 744647/879868 (executing program)
2021/07/18 18:57:05 fetching corpus: 18297, signal 745179/880335 (executing program)
2021/07/18 18:57:06 fetching corpus: 18347, signal 746635/880968 (executing program)
2021/07/18 18:57:06 fetching corpus: 18397, signal 747427/881476 (executing program)
2021/07/18 18:57:06 fetching corpus: 18447, signal 747811/881875 (executing program)
2021/07/18 18:57:07 fetching corpus: 18497, signal 748527/882391 (executing program)
2021/07/18 18:57:07 fetching corpus: 18547, signal 749091/882834 (executing program)
2021/07/18 18:57:07 fetching corpus: 18597, signal 749442/883270 (executing program)
2021/07/18 18:57:07 fetching corpus: 18647, signal 749845/883726 (executing program)
2021/07/18 18:57:08 fetching corpus: 18697, signal 750501/884214 (executing program)
2021/07/18 18:57:08 fetching corpus: 18747, signal 751011/884637 (executing program)
2021/07/18 18:57:08 fetching corpus: 18797, signal 751508/885074 (executing program)
2021/07/18 18:57:08 fetching corpus: 18847, signal 752302/885599 (executing program)
2021/07/18 18:57:09 fetching corpus: 18897, signal 752941/886043 (executing program)
2021/07/18 18:57:09 fetching corpus: 18947, signal 753723/886514 (executing program)
2021/07/18 18:57:09 fetching corpus: 18997, signal 754394/886955 (executing program)
2021/07/18 18:57:09 fetching corpus: 19047, signal 754967/887369 (executing program)
2021/07/18 18:57:09 fetching corpus: 19097, signal 755476/887824 (executing program)
2021/07/18 18:57:10 fetching corpus: 19147, signal 756133/888279 (executing program)
2021/07/18 18:57:10 fetching corpus: 19197, signal 756841/888722 (executing program)
2021/07/18 18:57:10 fetching corpus: 19247, signal 757432/889148 (executing program)
2021/07/18 18:57:10 fetching corpus: 19297, signal 757899/889575 (executing program)
2021/07/18 18:57:11 fetching corpus: 19347, signal 758328/889987 (executing program)
2021/07/18 18:57:11 fetching corpus: 19397, signal 758937/890421 (executing program)
2021/07/18 18:57:11 fetching corpus: 19447, signal 759415/890815 (executing program)
2021/07/18 18:57:11 fetching corpus: 19497, signal 760558/891292 (executing program)
2021/07/18 18:57:12 fetching corpus: 19547, signal 761234/891671 (executing program)
2021/07/18 18:57:12 fetching corpus: 19597, signal 761676/892034 (executing program)
2021/07/18 18:57:12 fetching corpus: 19647, signal 762187/892482 (executing program)
2021/07/18 18:57:13 fetching corpus: 19697, signal 762824/892883 (executing program)
2021/07/18 18:57:13 fetching corpus: 19747, signal 763449/893284 (executing program)
2021/07/18 18:57:13 fetching corpus: 19797, signal 764301/893692 (executing program)
2021/07/18 18:57:13 fetching corpus: 19847, signal 764728/894098 (executing program)
2021/07/18 18:57:14 fetching corpus: 19897, signal 765228/894477 (executing program)
2021/07/18 18:57:14 fetching corpus: 19947, signal 765719/894872 (executing program)
2021/07/18 18:57:14 fetching corpus: 19997, signal 766361/895299 (executing program)
2021/07/18 18:57:14 fetching corpus: 20047, signal 766809/895662 (executing program)
2021/07/18 18:57:15 fetching corpus: 20097, signal 767491/896092 (executing program)
2021/07/18 18:57:15 fetching corpus: 20147, signal 768368/896524 (executing program)
2021/07/18 18:57:15 fetching corpus: 20197, signal 768632/896863 (executing program)
2021/07/18 18:57:15 fetching corpus: 20247, signal 769009/897209 (executing program)
2021/07/18 18:57:16 fetching corpus: 20297, signal 769641/897601 (executing program)
2021/07/18 18:57:16 fetching corpus: 20347, signal 770253/897990 (executing program)
2021/07/18 18:57:16 fetching corpus: 20397, signal 770730/898358 (executing program)
2021/07/18 18:57:17 fetching corpus: 20447, signal 771156/898706 (executing program)
2021/07/18 18:57:17 fetching corpus: 20497, signal 771520/899065 (executing program)
2021/07/18 18:57:17 fetching corpus: 20547, signal 772055/899443 (executing program)
2021/07/18 18:57:18 fetching corpus: 20597, signal 772638/899807 (executing program)
2021/07/18 18:57:18 fetching corpus: 20647, signal 773404/900184 (executing program)
2021/07/18 18:57:19 fetching corpus: 20697, signal 773800/900555 (executing program)
2021/07/18 18:57:19 fetching corpus: 20747, signal 774088/900892 (executing program)
2021/07/18 18:57:19 fetching corpus: 20797, signal 774564/901261 (executing program)
2021/07/18 18:57:19 fetching corpus: 20847, signal 775362/901632 (executing program)
2021/07/18 18:57:20 fetching corpus: 20897, signal 776187/902041 (executing program)
2021/07/18 18:57:20 fetching corpus: 20947, signal 776858/902353 (executing program)
2021/07/18 18:57:20 fetching corpus: 20997, signal 777386/902697 (executing program)
2021/07/18 18:57:20 fetching corpus: 21047, signal 777885/903041 (executing program)
2021/07/18 18:57:20 fetching corpus: 21097, signal 778392/903373 (executing program)
2021/07/18 18:57:21 fetching corpus: 21147, signal 779015/903697 (executing program)
2021/07/18 18:57:21 fetching corpus: 21197, signal 779524/904033 (executing program)
2021/07/18 18:57:21 fetching corpus: 21247, signal 780212/904389 (executing program)
2021/07/18 18:57:21 fetching corpus: 21297, signal 780717/904715 (executing program)
2021/07/18 18:57:22 fetching corpus: 21347, signal 781224/905054 (executing program)
2021/07/18 18:57:22 fetching corpus: 21397, signal 781847/905369 (executing program)
2021/07/18 18:57:22 fetching corpus: 21447, signal 782452/905705 (executing program)
2021/07/18 18:57:22 fetching corpus: 21497, signal 783100/906038 (executing program)
2021/07/18 18:57:22 fetching corpus: 21547, signal 783575/906372 (executing program)
2021/07/18 18:57:23 fetching corpus: 21597, signal 784177/906675 (executing program)
2021/07/18 18:57:23 fetching corpus: 21647, signal 784569/906986 (executing program)
2021/07/18 18:57:23 fetching corpus: 21697, signal 784941/907261 (executing program)
2021/07/18 18:57:24 fetching corpus: 21747, signal 786009/907606 (executing program)
2021/07/18 18:57:24 fetching corpus: 21797, signal 786421/907893 (executing program)
2021/07/18 18:57:24 fetching corpus: 21847, signal 786894/908177 (executing program)
2021/07/18 18:57:24 fetching corpus: 21897, signal 787376/908478 (executing program)
2021/07/18 18:57:25 fetching corpus: 21947, signal 788543/908769 (executing program)
2021/07/18 18:57:25 fetching corpus: 21997, signal 788916/909053 (executing program)
2021/07/18 18:57:25 fetching corpus: 22047, signal 789627/909371 (executing program)
2021/07/18 18:57:25 fetching corpus: 22097, signal 790195/909648 (executing program)
2021/07/18 18:57:26 fetching corpus: 22147, signal 790699/909901 (executing program)
2021/07/18 18:57:26 fetching corpus: 22197, signal 791024/910188 (executing program)
2021/07/18 18:57:26 fetching corpus: 22247, signal 791715/910466 (executing program)
2021/07/18 18:57:26 fetching corpus: 22297, signal 792432/910769 (executing program)
2021/07/18 18:57:27 fetching corpus: 22347, signal 792755/911062 (executing program)
2021/07/18 18:57:27 fetching corpus: 22397, signal 793258/911372 (executing program)
2021/07/18 18:57:27 fetching corpus: 22447, signal 793669/911634 (executing program)
2021/07/18 18:57:27 fetching corpus: 22497, signal 793978/911921 (executing program)
2021/07/18 18:57:28 fetching corpus: 22547, signal 794350/912207 (executing program)
2021/07/18 18:57:28 fetching corpus: 22597, signal 794766/912457 (executing program)
2021/07/18 18:57:28 fetching corpus: 22647, signal 795200/912733 (executing program)
2021/07/18 18:57:28 fetching corpus: 22697, signal 795876/912982 (executing program)
2021/07/18 18:57:29 fetching corpus: 22747, signal 796453/913231 (executing program)
2021/07/18 18:57:29 fetching corpus: 22797, signal 796769/913390 (executing program)
2021/07/18 18:57:29 fetching corpus: 22847, signal 797495/913390 (executing program)
2021/07/18 18:57:29 fetching corpus: 22897, signal 798018/913390 (executing program)
2021/07/18 18:57:30 fetching corpus: 22947, signal 798399/913398 (executing program)
2021/07/18 18:57:30 fetching corpus: 22997, signal 798837/913398 (executing program)
2021/07/18 18:57:30 fetching corpus: 23047, signal 799233/913413 (executing program)
2021/07/18 18:57:30 fetching corpus: 23097, signal 799933/913413 (executing program)
2021/07/18 18:57:31 fetching corpus: 23147, signal 800447/913418 (executing program)
2021/07/18 18:57:31 fetching corpus: 23197, signal 800999/913418 (executing program)
2021/07/18 18:57:31 fetching corpus: 23247, signal 801316/913435 (executing program)
2021/07/18 18:57:32 fetching corpus: 23297, signal 802074/913435 (executing program)
2021/07/18 18:57:32 fetching corpus: 23347, signal 802590/913435 (executing program)
2021/07/18 18:57:32 fetching corpus: 23397, signal 803018/913435 (executing program)
2021/07/18 18:57:32 fetching corpus: 23447, signal 803442/913435 (executing program)
2021/07/18 18:57:32 fetching corpus: 23497, signal 803728/913435 (executing program)
2021/07/18 18:57:33 fetching corpus: 23547, signal 804331/913435 (executing program)
2021/07/18 18:57:33 fetching corpus: 23597, signal 804797/913435 (executing program)
2021/07/18 18:57:33 fetching corpus: 23647, signal 805362/913435 (executing program)
2021/07/18 18:57:33 fetching corpus: 23697, signal 805724/913452 (executing program)
2021/07/18 18:57:33 fetching corpus: 23747, signal 806159/913452 (executing program)
2021/07/18 18:57:34 fetching corpus: 23797, signal 806811/913452 (executing program)
2021/07/18 18:57:34 fetching corpus: 23847, signal 807416/913452 (executing program)
2021/07/18 18:57:34 fetching corpus: 23897, signal 807956/913452 (executing program)
2021/07/18 18:57:34 fetching corpus: 23947, signal 808397/913453 (executing program)
2021/07/18 18:57:34 fetching corpus: 23997, signal 808795/913453 (executing program)
2021/07/18 18:57:35 fetching corpus: 24047, signal 809950/913453 (executing program)
2021/07/18 18:57:35 fetching corpus: 24097, signal 810590/913453 (executing program)
2021/07/18 18:57:35 fetching corpus: 24147, signal 811119/913453 (executing program)
2021/07/18 18:57:35 fetching corpus: 24197, signal 811480/913453 (executing program)
2021/07/18 18:57:36 fetching corpus: 24247, signal 811999/913453 (executing program)
2021/07/18 18:57:36 fetching corpus: 24297, signal 812526/913453 (executing program)
2021/07/18 18:57:36 fetching corpus: 24347, signal 813048/913453 (executing program)
2021/07/18 18:57:36 fetching corpus: 24397, signal 813416/913453 (executing program)
2021/07/18 18:57:36 fetching corpus: 24447, signal 813932/913453 (executing program)
[  225.997647][ T3401] ieee802154 phy0 wpan0: encryption failed: -22
[  226.007097][ T3401] ieee802154 phy1 wpan1: encryption failed: -22
2021/07/18 18:57:37 fetching corpus: 24497, signal 814433/913453 (executing program)
2021/07/18 18:57:37 fetching corpus: 24547, signal 814736/913456 (executing program)
2021/07/18 18:57:38 fetching corpus: 24597, signal 815004/913456 (executing program)
2021/07/18 18:57:38 fetching corpus: 24647, signal 815425/913456 (executing program)
2021/07/18 18:57:38 fetching corpus: 24697, signal 815891/913456 (executing program)
2021/07/18 18:57:38 fetching corpus: 24747, signal 816207/913456 (executing program)
2021/07/18 18:57:38 fetching corpus: 24797, signal 816689/913456 (executing program)
2021/07/18 18:57:39 fetching corpus: 24847, signal 817506/913456 (executing program)
2021/07/18 18:57:39 fetching corpus: 24897, signal 817826/913456 (executing program)
2021/07/18 18:57:39 fetching corpus: 24947, signal 818167/913484 (executing program)
2021/07/18 18:57:40 fetching corpus: 24997, signal 818483/913484 (executing program)
2021/07/18 18:57:40 fetching corpus: 25047, signal 818903/913484 (executing program)
2021/07/18 18:57:40 fetching corpus: 25097, signal 819170/913484 (executing program)
2021/07/18 18:57:40 fetching corpus: 25147, signal 819505/913487 (executing program)
2021/07/18 18:57:40 fetching corpus: 25197, signal 819811/913487 (executing program)
2021/07/18 18:57:41 fetching corpus: 25247, signal 820287/913487 (executing program)
2021/07/18 18:57:41 fetching corpus: 25297, signal 820943/913487 (executing program)
2021/07/18 18:57:41 fetching corpus: 25347, signal 821419/913487 (executing program)
2021/07/18 18:57:41 fetching corpus: 25397, signal 821741/913487 (executing program)
2021/07/18 18:57:41 fetching corpus: 25447, signal 822041/913487 (executing program)
2021/07/18 18:57:42 fetching corpus: 25497, signal 822890/913487 (executing program)
2021/07/18 18:57:42 fetching corpus: 25547, signal 823328/913487 (executing program)
2021/07/18 18:57:42 fetching corpus: 25597, signal 823914/913492 (executing program)
2021/07/18 18:57:42 fetching corpus: 25647, signal 824363/913492 (executing program)
2021/07/18 18:57:42 fetching corpus: 25697, signal 824711/913492 (executing program)
2021/07/18 18:57:43 fetching corpus: 25747, signal 825579/913492 (executing program)
2021/07/18 18:57:43 fetching corpus: 25797, signal 825982/913492 (executing program)
2021/07/18 18:57:43 fetching corpus: 25847, signal 826282/913492 (executing program)
2021/07/18 18:57:43 fetching corpus: 25897, signal 826625/913492 (executing program)
2021/07/18 18:57:44 fetching corpus: 25947, signal 827076/913492 (executing program)
2021/07/18 18:57:44 fetching corpus: 25997, signal 827353/913492 (executing program)
2021/07/18 18:57:44 fetching corpus: 26047, signal 828265/913492 (executing program)
2021/07/18 18:57:44 fetching corpus: 26097, signal 828777/913497 (executing program)
2021/07/18 18:57:45 fetching corpus: 26147, signal 829271/913497 (executing program)
2021/07/18 18:57:45 fetching corpus: 26197, signal 829672/913498 (executing program)
2021/07/18 18:57:45 fetching corpus: 26247, signal 830105/913500 (executing program)
2021/07/18 18:57:45 fetching corpus: 26297, signal 830712/913500 (executing program)
2021/07/18 18:57:46 fetching corpus: 26347, signal 830982/913500 (executing program)
2021/07/18 18:57:46 fetching corpus: 26397, signal 831403/913586 (executing program)
2021/07/18 18:57:46 fetching corpus: 26447, signal 831841/913588 (executing program)
2021/07/18 18:57:47 fetching corpus: 26497, signal 832176/913588 (executing program)
2021/07/18 18:57:47 fetching corpus: 26547, signal 832605/913588 (executing program)
2021/07/18 18:57:47 fetching corpus: 26597, signal 833459/913588 (executing program)
2021/07/18 18:57:48 fetching corpus: 26647, signal 833793/913588 (executing program)
2021/07/18 18:57:48 fetching corpus: 26697, signal 834129/913588 (executing program)
2021/07/18 18:57:48 fetching corpus: 26747, signal 834500/913588 (executing program)
2021/07/18 18:57:49 fetching corpus: 26797, signal 835121/913590 (executing program)
2021/07/18 18:57:50 fetching corpus: 26847, signal 835711/913635 (executing program)
2021/07/18 18:57:50 fetching corpus: 26897, signal 836182/913637 (executing program)
2021/07/18 18:57:50 fetching corpus: 26947, signal 836861/913637 (executing program)
2021/07/18 18:57:50 fetching corpus: 26997, signal 837120/913637 (executing program)
2021/07/18 18:57:51 fetching corpus: 27047, signal 837399/913637 (executing program)
2021/07/18 18:57:51 fetching corpus: 27097, signal 837644/913637 (executing program)
2021/07/18 18:57:51 fetching corpus: 27147, signal 838057/913637 (executing program)
2021/07/18 18:57:52 fetching corpus: 27197, signal 838601/913638 (executing program)
2021/07/18 18:57:52 fetching corpus: 27247, signal 839032/913638 (executing program)
2021/07/18 18:57:52 fetching corpus: 27297, signal 839517/913638 (executing program)
2021/07/18 18:57:52 fetching corpus: 27347, signal 839933/913638 (executing program)
2021/07/18 18:57:53 fetching corpus: 27397, signal 840380/913638 (executing program)
2021/07/18 18:57:53 fetching corpus: 27447, signal 840976/913638 (executing program)
2021/07/18 18:57:54 fetching corpus: 27497, signal 841275/913638 (executing program)
2021/07/18 18:57:54 fetching corpus: 27547, signal 841620/913638 (executing program)
2021/07/18 18:57:54 fetching corpus: 27597, signal 841969/913638 (executing program)
2021/07/18 18:57:54 fetching corpus: 27647, signal 842630/913638 (executing program)
2021/07/18 18:57:55 fetching corpus: 27697, signal 843523/913638 (executing program)
2021/07/18 18:57:55 fetching corpus: 27747, signal 843828/913638 (executing program)
2021/07/18 18:57:55 fetching corpus: 27797, signal 844218/913638 (executing program)
2021/07/18 18:57:55 fetching corpus: 27847, signal 844644/913639 (executing program)
2021/07/18 18:57:56 fetching corpus: 27897, signal 845136/913641 (executing program)
2021/07/18 18:57:56 fetching corpus: 27947, signal 845353/913641 (executing program)
2021/07/18 18:57:56 fetching corpus: 27997, signal 845733/913641 (executing program)
2021/07/18 18:57:56 fetching corpus: 28047, signal 846034/913642 (executing program)
2021/07/18 18:57:57 fetching corpus: 28097, signal 846399/913642 (executing program)
2021/07/18 18:57:57 fetching corpus: 28147, signal 846789/913642 (executing program)
2021/07/18 18:57:57 fetching corpus: 28197, signal 847364/913649 (executing program)
2021/07/18 18:57:57 fetching corpus: 28247, signal 847569/913650 (executing program)
2021/07/18 18:57:58 fetching corpus: 28297, signal 848054/913650 (executing program)
2021/07/18 18:57:58 fetching corpus: 28347, signal 848371/913650 (executing program)
2021/07/18 18:57:58 fetching corpus: 28397, signal 848700/913650 (executing program)
2021/07/18 18:57:58 fetching corpus: 28447, signal 849044/913650 (executing program)
2021/07/18 18:57:58 fetching corpus: 28497, signal 849417/913650 (executing program)
2021/07/18 18:57:59 fetching corpus: 28547, signal 849619/913651 (executing program)
2021/07/18 18:57:59 fetching corpus: 28597, signal 849948/913651 (executing program)
2021/07/18 18:57:59 fetching corpus: 28647, signal 850320/913651 (executing program)
2021/07/18 18:57:59 fetching corpus: 28697, signal 850766/913651 (executing program)
2021/07/18 18:57:59 fetching corpus: 28747, signal 851191/913651 (executing program)
2021/07/18 18:58:00 fetching corpus: 28797, signal 852004/913651 (executing program)
2021/07/18 18:58:00 fetching corpus: 28847, signal 852272/913653 (executing program)
2021/07/18 18:58:01 fetching corpus: 28897, signal 852771/913653 (executing program)
2021/07/18 18:58:01 fetching corpus: 28947, signal 853090/913655 (executing program)
2021/07/18 18:58:01 fetching corpus: 28997, signal 853557/913660 (executing program)
2021/07/18 18:58:01 fetching corpus: 29047, signal 854043/913660 (executing program)
2021/07/18 18:58:01 fetching corpus: 29097, signal 854396/913660 (executing program)
2021/07/18 18:58:02 fetching corpus: 29147, signal 854951/913660 (executing program)
2021/07/18 18:58:02 fetching corpus: 29197, signal 855495/913660 (executing program)
2021/07/18 18:58:02 fetching corpus: 29247, signal 856154/913662 (executing program)
2021/07/18 18:58:02 fetching corpus: 29297, signal 856543/913662 (executing program)
2021/07/18 18:58:03 fetching corpus: 29347, signal 856758/913662 (executing program)
2021/07/18 18:58:03 fetching corpus: 29397, signal 857099/913662 (executing program)
2021/07/18 18:58:03 fetching corpus: 29447, signal 857464/913662 (executing program)
2021/07/18 18:58:03 fetching corpus: 29497, signal 857895/913663 (executing program)
2021/07/18 18:58:04 fetching corpus: 29547, signal 858347/913664 (executing program)
2021/07/18 18:58:04 fetching corpus: 29597, signal 858661/913664 (executing program)
2021/07/18 18:58:04 fetching corpus: 29647, signal 859115/913666 (executing program)
2021/07/18 18:58:05 fetching corpus: 29697, signal 859536/913667 (executing program)
2021/07/18 18:58:05 fetching corpus: 29747, signal 859975/913667 (executing program)
2021/07/18 18:58:05 fetching corpus: 29797, signal 860513/913668 (executing program)
2021/07/18 18:58:05 fetching corpus: 29847, signal 860856/913668 (executing program)
2021/07/18 18:58:06 fetching corpus: 29897, signal 861195/913668 (executing program)
2021/07/18 18:58:06 fetching corpus: 29947, signal 861632/913668 (executing program)
2021/07/18 18:58:06 fetching corpus: 29997, signal 861996/913668 (executing program)
2021/07/18 18:58:06 fetching corpus: 30047, signal 862391/913668 (executing program)
2021/07/18 18:58:07 fetching corpus: 30097, signal 862910/913668 (executing program)
2021/07/18 18:58:07 fetching corpus: 30147, signal 863326/913668 (executing program)
2021/07/18 18:58:07 fetching corpus: 30197, signal 863756/913668 (executing program)
2021/07/18 18:58:07 fetching corpus: 30247, signal 864009/913670 (executing program)
2021/07/18 18:58:08 fetching corpus: 30297, signal 864265/913670 (executing program)
2021/07/18 18:58:08 fetching corpus: 30347, signal 864557/913670 (executing program)
2021/07/18 18:58:08 fetching corpus: 30397, signal 864882/913670 (executing program)
2021/07/18 18:58:09 fetching corpus: 30447, signal 865601/913670 (executing program)
2021/07/18 18:58:09 fetching corpus: 30497, signal 866097/913675 (executing program)
2021/07/18 18:58:09 fetching corpus: 30547, signal 866464/913675 (executing program)
2021/07/18 18:58:09 fetching corpus: 30597, signal 866831/913675 (executing program)
2021/07/18 18:58:10 fetching corpus: 30647, signal 867270/913675 (executing program)
2021/07/18 18:58:10 fetching corpus: 30697, signal 867620/913675 (executing program)
2021/07/18 18:58:10 fetching corpus: 30747, signal 868030/913675 (executing program)
2021/07/18 18:58:10 fetching corpus: 30797, signal 868419/913675 (executing program)
2021/07/18 18:58:11 fetching corpus: 30847, signal 869275/913678 (executing program)
2021/07/18 18:58:11 fetching corpus: 30897, signal 869649/913678 (executing program)
2021/07/18 18:58:12 fetching corpus: 30947, signal 870123/913678 (executing program)
2021/07/18 18:58:12 fetching corpus: 30997, signal 870509/913680 (executing program)
2021/07/18 18:58:12 fetching corpus: 31047, signal 870811/913680 (executing program)
2021/07/18 18:58:13 fetching corpus: 31097, signal 871507/913680 (executing program)
2021/07/18 18:58:13 fetching corpus: 31147, signal 871956/913680 (executing program)
2021/07/18 18:58:13 fetching corpus: 31197, signal 872411/913680 (executing program)
2021/07/18 18:58:13 fetching corpus: 31247, signal 872650/913680 (executing program)
2021/07/18 18:58:14 fetching corpus: 31297, signal 873044/913680 (executing program)
2021/07/18 18:58:14 fetching corpus: 31347, signal 873656/913680 (executing program)
2021/07/18 18:58:14 fetching corpus: 31397, signal 874307/913682 (executing program)
2021/07/18 18:58:15 fetching corpus: 31447, signal 874575/913683 (executing program)
2021/07/18 18:58:15 fetching corpus: 31497, signal 875041/913683 (executing program)
2021/07/18 18:58:15 fetching corpus: 31547, signal 875516/913683 (executing program)
2021/07/18 18:58:16 fetching corpus: 31597, signal 876206/913689 (executing program)
2021/07/18 18:58:16 fetching corpus: 31647, signal 876557/913690 (executing program)
2021/07/18 18:58:16 fetching corpus: 31697, signal 876902/913691 (executing program)
2021/07/18 18:58:17 fetching corpus: 31747, signal 877258/913694 (executing program)
2021/07/18 18:58:17 fetching corpus: 31797, signal 878137/913698 (executing program)
2021/07/18 18:58:17 fetching corpus: 31847, signal 878377/913699 (executing program)
2021/07/18 18:58:18 fetching corpus: 31897, signal 878757/913700 (executing program)
2021/07/18 18:58:18 fetching corpus: 31947, signal 879129/913700 (executing program)
2021/07/18 18:58:18 fetching corpus: 31997, signal 879374/913700 (executing program)
2021/07/18 18:58:19 fetching corpus: 32047, signal 879552/913700 (executing program)
2021/07/18 18:58:19 fetching corpus: 32097, signal 879893/913701 (executing program)
2021/07/18 18:58:19 fetching corpus: 32147, signal 880254/913702 (executing program)
2021/07/18 18:58:19 fetching corpus: 32197, signal 880759/913702 (executing program)
2021/07/18 18:58:20 fetching corpus: 32247, signal 881125/913702 (executing program)
2021/07/18 18:58:20 fetching corpus: 32297, signal 881419/913705 (executing program)
2021/07/18 18:58:20 fetching corpus: 32347, signal 881881/913705 (executing program)
2021/07/18 18:58:20 fetching corpus: 32397, signal 882228/913705 (executing program)
2021/07/18 18:58:21 fetching corpus: 32447, signal 882703/913705 (executing program)
2021/07/18 18:58:21 fetching corpus: 32497, signal 883086/913709 (executing program)
2021/07/18 18:58:21 fetching corpus: 32547, signal 883515/913709 (executing program)
2021/07/18 18:58:21 fetching corpus: 32597, signal 884064/913709 (executing program)
2021/07/18 18:58:22 fetching corpus: 32647, signal 884534/913709 (executing program)
2021/07/18 18:58:22 fetching corpus: 32697, signal 884798/913713 (executing program)
2021/07/18 18:58:22 fetching corpus: 32747, signal 885346/913713 (executing program)
2021/07/18 18:58:23 fetching corpus: 32797, signal 886114/913713 (executing program)
2021/07/18 18:58:23 fetching corpus: 32847, signal 886452/913715 (executing program)
2021/07/18 18:58:23 fetching corpus: 32897, signal 886668/913715 (executing program)
2021/07/18 18:58:23 fetching corpus: 32947, signal 886937/913715 (executing program)
2021/07/18 18:58:24 fetching corpus: 32997, signal 887227/913715 (executing program)
2021/07/18 18:58:24 fetching corpus: 33047, signal 887975/913715 (executing program)
2021/07/18 18:58:24 fetching corpus: 33097, signal 888262/913729 (executing program)
2021/07/18 18:58:25 fetching corpus: 33147, signal 888564/913731 (executing program)
2021/07/18 18:58:25 fetching corpus: 33197, signal 888841/913733 (executing program)
2021/07/18 18:58:25 fetching corpus: 33247, signal 889304/913733 (executing program)
2021/07/18 18:58:26 fetching corpus: 33297, signal 889661/913736 (executing program)
2021/07/18 18:58:26 fetching corpus: 33347, signal 890437/913738 (executing program)
2021/07/18 18:58:26 fetching corpus: 33397, signal 890815/913739 (executing program)
2021/07/18 18:58:27 fetching corpus: 33447, signal 891477/913739 (executing program)
2021/07/18 18:58:27 fetching corpus: 33497, signal 891713/913739 (executing program)
2021/07/18 18:58:28 fetching corpus: 33547, signal 892048/913741 (executing program)
2021/07/18 18:58:28 fetching corpus: 33597, signal 892439/913743 (executing program)
2021/07/18 18:58:28 fetching corpus: 33647, signal 892798/913744 (executing program)
2021/07/18 18:58:29 fetching corpus: 33697, signal 893004/913744 (executing program)
2021/07/18 18:58:29 fetching corpus: 33747, signal 893294/913747 (executing program)
2021/07/18 18:58:29 fetching corpus: 33797, signal 893609/913755 (executing program)
2021/07/18 18:58:30 fetching corpus: 33847, signal 894019/913755 (executing program)
2021/07/18 18:58:30 fetching corpus: 33897, signal 894287/913755 (executing program)
2021/07/18 18:58:30 fetching corpus: 33947, signal 894587/913755 (executing program)
2021/07/18 18:58:31 fetching corpus: 33997, signal 894910/913756 (executing program)
2021/07/18 18:58:31 fetching corpus: 33998, signal 894914/913757 (executing program)
2021/07/18 18:58:31 fetching corpus: 33998, signal 894914/913757 (executing program)
2021/07/18 18:58:35 starting 4 fuzzer processes
18:58:35 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={&(0x7f00000001c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x10, 0x10, 0x2, [@int={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5}]}}, &(0x7f0000000240)=""/198, 0x2a, 0xc6, 0x1}, 0x20)

[  285.147544][   T50] audit: type=1400 audit(1626634716.108:8): avc:  denied  { execmem } for  pid=8716 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
18:58:36 executing program 1:
r0 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000200)="1c0000001200050f0c1000000049b23e9b200a00080001c000000001", 0x1c, 0x0, 0x0, 0x0)
recvfrom$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmsg(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f00000029c0)=""/4108, 0x100c}, {&(0x7f0000003a00)=""/4106, 0x100a}, {&(0x7f00000019c0)=""/4085, 0xff5}], 0x3}, 0x0)
recvfrom$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
recvfrom$inet6(r0, &(0x7f0000000000)=""/114, 0xfffffffffffffd1b, 0x0, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0xfffffffc, @empty}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="900000002000", 0x6, 0x0, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="58ad000010", 0x5, 0x0, 0x0, 0x0)
r1 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r1, &(0x7f0000000000)='%', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

18:58:36 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_SET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)={0x64, r1, 0x1, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x4}}, {0x8}, {0x6}, {0x5}, {0x6}, {0x8}}]}, 0x64}}, 0x0)

18:58:37 executing program 3:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000ec0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r0}, 0x78)

[  287.019122][ T8717] chnl_net:caif_netlink_parms(): no params data found
[  287.289279][ T8717] bridge0: port 1(bridge_slave_0) entered blocking state
[  287.306591][ T8717] bridge0: port 1(bridge_slave_0) entered disabled state
[  287.323629][ T8717] device bridge_slave_0 entered promiscuous mode
[  287.337565][ T8717] bridge0: port 2(bridge_slave_1) entered blocking state
[  287.349598][ T8717] bridge0: port 2(bridge_slave_1) entered disabled state
[  287.365082][ T8717] device bridge_slave_1 entered promiscuous mode
[  287.391380][ T8719] chnl_net:caif_netlink_parms(): no params data found
[  287.417810][ T3401] ieee802154 phy0 wpan0: encryption failed: -22
[  287.427221][ T3401] ieee802154 phy1 wpan1: encryption failed: -22
[  287.435789][ T8717] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  287.520407][ T8717] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  287.626340][ T8717] team0: Port device team_slave_0 added
[  287.643307][ T8717] team0: Port device team_slave_1 added
[  287.712070][ T8719] bridge0: port 1(bridge_slave_0) entered blocking state
[  287.726065][ T8719] bridge0: port 1(bridge_slave_0) entered disabled state
[  287.739733][ T8719] device bridge_slave_0 entered promiscuous mode
[  287.775796][ T8717] batman_adv: batadv0: Adding interface: batadv_slave_0
[  287.785586][ T8717] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  287.827259][ T8717] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  287.864646][ T8719] bridge0: port 2(bridge_slave_1) entered blocking state
[  287.880804][ T8719] bridge0: port 2(bridge_slave_1) entered disabled state
[  287.890997][ T8719] device bridge_slave_1 entered promiscuous mode
[  287.922314][ T8717] batman_adv: batadv0: Adding interface: batadv_slave_1
[  287.933303][ T8717] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  287.970377][ T8717] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  288.048500][ T8717] device hsr_slave_0 entered promiscuous mode
[  288.058104][ T8717] device hsr_slave_1 entered promiscuous mode
[  288.078530][ T8719] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  288.097916][ T8719] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  288.194752][ T8719] team0: Port device team_slave_0 added
[  288.241913][ T8719] team0: Port device team_slave_1 added
[  288.305082][ T8719] batman_adv: batadv0: Adding interface: batadv_slave_0
[  288.316030][ T8719] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  288.367073][ T8719] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  288.387535][ T8719] batman_adv: batadv0: Adding interface: batadv_slave_1
[  288.398119][ T8719] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  288.436986][ T8719] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  288.552560][ T8719] device hsr_slave_0 entered promiscuous mode
[  288.569079][ T8719] device hsr_slave_1 entered promiscuous mode
[  288.581974][ T8719] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  288.595571][ T8719] Cannot create hsr debugfs directory
[  288.608936][   T45] Bluetooth: hci0: command 0x0409 tx timeout
[  288.684210][ T8722] chnl_net:caif_netlink_parms(): no params data found
[  288.943121][ T3989] Bluetooth: hci1: command 0x0409 tx timeout
[  289.079373][ T8744] chnl_net:caif_netlink_parms(): no params data found
[  289.104294][ T8722] bridge0: port 1(bridge_slave_0) entered blocking state
[  289.125808][ T8722] bridge0: port 1(bridge_slave_0) entered disabled state
[  289.138377][ T8722] device bridge_slave_0 entered promiscuous mode
[  289.208758][ T8722] bridge0: port 2(bridge_slave_1) entered blocking state
[  289.221415][ T8722] bridge0: port 2(bridge_slave_1) entered disabled state
[  289.233389][ T8722] device bridge_slave_1 entered promiscuous mode
[  289.366738][ T8722] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  289.391206][ T8722] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  289.474884][ T8717] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  289.538018][ T8717] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  289.560903][ T8722] team0: Port device team_slave_0 added
[  289.564896][    T7] Bluetooth: hci2: command 0x0409 tx timeout
[  289.583867][ T8744] bridge0: port 1(bridge_slave_0) entered blocking state
[  289.599010][ T8744] bridge0: port 1(bridge_slave_0) entered disabled state
[  289.610850][ T8744] device bridge_slave_0 entered promiscuous mode
[  289.627613][ T8717] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  289.650424][ T8722] team0: Port device team_slave_1 added
[  289.661094][ T8744] bridge0: port 2(bridge_slave_1) entered blocking state
[  289.696375][ T8744] bridge0: port 2(bridge_slave_1) entered disabled state
[  289.708464][ T8744] device bridge_slave_1 entered promiscuous mode
[  289.742375][ T8717] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  289.762286][ T8719] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  289.810224][ T8722] batman_adv: batadv0: Adding interface: batadv_slave_0
[  289.824920][ T8722] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  289.884768][   T58] Bluetooth: hci3: command 0x0409 tx timeout
[  289.896433][ T8722] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  289.920435][ T8719] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  289.952686][ T8744] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  290.009104][ T8722] batman_adv: batadv0: Adding interface: batadv_slave_1
[  290.045438][ T8722] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  290.109955][ T8722] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  290.140841][ T8744] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  290.166375][ T8719] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  290.231176][ T8719] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  290.269801][ T8744] team0: Port device team_slave_0 added
[  290.317399][ T8722] device hsr_slave_0 entered promiscuous mode
[  290.331902][ T8722] device hsr_slave_1 entered promiscuous mode
[  290.347552][ T8722] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  290.367862][ T8722] Cannot create hsr debugfs directory
[  290.405610][ T8744] team0: Port device team_slave_1 added
[  290.517961][ T8744] batman_adv: batadv0: Adding interface: batadv_slave_0
[  290.532000][ T8744] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  290.581956][ T8744] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  290.636648][ T8744] batman_adv: batadv0: Adding interface: batadv_slave_1
[  290.650700][ T8744] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  290.689956][ T8744] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  290.704735][   T58] Bluetooth: hci0: command 0x041b tx timeout
[  290.783535][ T8744] device hsr_slave_0 entered promiscuous mode
[  290.797030][ T8744] device hsr_slave_1 entered promiscuous mode
[  290.817750][ T8744] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  290.829862][ T8744] Cannot create hsr debugfs directory
[  291.021171][   T58] Bluetooth: hci1: command 0x041b tx timeout
[  291.082939][ T8722] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  291.117111][ T8722] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  291.142081][ T8722] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  291.191408][ T8722] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  291.306773][ T8719] 8021q: adding VLAN 0 to HW filter on device bond0
[  291.332718][ T8717] 8021q: adding VLAN 0 to HW filter on device bond0
[  291.379268][ T9574] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  291.396137][ T9574] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  291.436120][ T9568] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  291.461128][ T9568] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  291.518417][ T8744] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  291.550335][ T8719] 8021q: adding VLAN 0 to HW filter on device team0
[  291.587913][ T8717] 8021q: adding VLAN 0 to HW filter on device team0
[  291.602131][ T8744] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  291.634266][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  291.653828][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  291.672017][ T3025] bridge0: port 1(bridge_slave_0) entered blocking state
[  291.684562][ T3025] bridge0: port 1(bridge_slave_0) entered forwarding state
[  291.700754][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  291.715189][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  291.728970][ T3025] bridge0: port 1(bridge_slave_0) entered blocking state
[  291.747471][ T3025] bridge0: port 1(bridge_slave_0) entered forwarding state
[  291.762301][   T58] Bluetooth: hci2: command 0x041b tx timeout
[  291.762306][ T8744] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  291.822240][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  291.839060][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  291.878376][ T8744] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  291.919109][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  291.931267][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  291.958833][   T43] bridge0: port 2(bridge_slave_1) entered blocking state
[  291.964696][   T58] Bluetooth: hci3: command 0x041b tx timeout
[  291.970920][   T43] bridge0: port 2(bridge_slave_1) entered forwarding state
[  291.999110][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  292.015939][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  292.030993][   T43] bridge0: port 2(bridge_slave_1) entered blocking state
[  292.040831][   T43] bridge0: port 2(bridge_slave_1) entered forwarding state
[  292.114069][   T58] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  292.130375][   T58] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  292.148205][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  292.186690][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  292.205580][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  292.227536][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  292.280096][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  292.305492][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  292.319167][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  292.360053][   T58] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  292.375089][   T58] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  292.399883][   T58] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  292.414038][ T9596] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  292.442290][ T9596] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  292.490037][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  292.505731][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  292.520558][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  292.547103][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  292.563129][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  292.584118][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  292.626542][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  292.640000][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  292.686717][ T8719] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  292.711656][ T8717] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  292.776294][   T73] Bluetooth: hci0: command 0x040f tx timeout
[  292.782860][   T58] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  292.811810][   T58] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  292.835891][ T8722] 8021q: adding VLAN 0 to HW filter on device bond0
[  292.908101][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  292.931491][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  292.959067][ T8722] 8021q: adding VLAN 0 to HW filter on device team0
[  292.979996][ T8719] 8021q: adding VLAN 0 to HW filter on device batadv0
[  293.023734][ T8744] 8021q: adding VLAN 0 to HW filter on device bond0
[  293.050068][ T9576] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  293.067338][ T9576] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  293.090824][ T9479] Bluetooth: hci1: command 0x040f tx timeout
[  293.159152][ T8717] 8021q: adding VLAN 0 to HW filter on device batadv0
[  293.190674][ T9576] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  293.222904][ T9576] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  293.255578][ T9576] bridge0: port 1(bridge_slave_0) entered blocking state
[  293.275377][ T9576] bridge0: port 1(bridge_slave_0) entered forwarding state
[  293.287681][ T9576] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  293.303577][ T9576] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  293.316857][ T9576] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  293.338903][ T9576] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  293.356792][ T9576] bridge0: port 2(bridge_slave_1) entered blocking state
[  293.371148][ T9576] bridge0: port 2(bridge_slave_1) entered forwarding state
[  293.418048][ T9576] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  293.454100][ T8744] 8021q: adding VLAN 0 to HW filter on device team0
[  293.518473][ T5030] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  293.606763][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  293.622549][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  293.638122][ T5009] bridge0: port 1(bridge_slave_0) entered blocking state
[  293.648478][ T5009] bridge0: port 1(bridge_slave_0) entered forwarding state
[  293.659569][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  293.672545][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  293.685414][ T5009] bridge0: port 2(bridge_slave_1) entered blocking state
[  293.695661][ T5009] bridge0: port 2(bridge_slave_1) entered forwarding state
[  293.707235][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  293.726153][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  293.739488][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  293.753590][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  293.791905][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  293.810982][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  293.811077][ T9574] Bluetooth: hci2: command 0x040f tx timeout
[  293.858979][ T5030] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  293.878377][ T5030] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  293.910160][ T3989] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  293.974682][ T9443] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  294.057063][ T9443] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  294.101295][   T73] Bluetooth: hci3: command 0x040f tx timeout
[  294.129413][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  294.206090][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  294.222453][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  294.239729][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  294.270189][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  294.304837][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  294.367595][ T3989] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  294.389806][ T3989] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  294.408435][ T3989] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  294.423405][ T3989] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  294.447075][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  294.487341][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  294.523589][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  294.550844][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  294.569364][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  294.585583][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  294.601363][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  294.646410][ T8717] device veth0_vlan entered promiscuous mode
[  294.674783][ T8719] device veth0_vlan entered promiscuous mode
[  294.691707][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  294.702838][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  294.712790][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  294.722782][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  294.744627][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  294.761404][ T5009] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  294.783168][ T9479] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  294.802613][ T9479] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  294.835192][ T8717] device veth1_vlan entered promiscuous mode
[  294.855132][   T73] Bluetooth: hci0: command 0x0419 tx timeout
[  294.887435][ T8719] device veth1_vlan entered promiscuous mode
[  294.905036][ T8722] 8021q: adding VLAN 0 to HW filter on device batadv0
[  294.925695][ T8744] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  294.991030][   T73] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  295.001667][   T73] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  295.019529][   T73] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  295.029985][   T73] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  295.091294][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  295.109790][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  295.152306][ T8744] 8021q: adding VLAN 0 to HW filter on device batadv0
[  295.165185][ T9479] Bluetooth: hci1: command 0x0419 tx timeout
[  295.172414][ T8719] device veth0_macvtap entered promiscuous mode
[  295.187313][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  295.219177][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  295.253013][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  295.278544][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  295.295657][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  295.340032][ T8717] device veth0_macvtap entered promiscuous mode
[  295.374555][ T8719] device veth1_macvtap entered promiscuous mode
[  295.401776][ T8717] device veth1_macvtap entered promiscuous mode
[  295.417077][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  295.428854][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  295.498184][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  295.514268][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  295.526986][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  295.556213][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  295.571196][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  295.585105][ T8722] device veth0_vlan entered promiscuous mode
[  295.636316][ T8722] device veth1_vlan entered promiscuous mode
[  295.663901][ T8717] batman_adv: batadv0: Interface activated: batadv_slave_0
[  295.682849][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  295.704003][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  295.738919][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  295.758729][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  295.782276][ T8719] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  295.807934][ T8719] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  295.826803][ T8719] batman_adv: batadv0: Interface activated: batadv_slave_0
[  295.842203][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  295.857438][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  295.886266][ T8717] batman_adv: batadv0: Interface activated: batadv_slave_1
[  295.886394][   T73] Bluetooth: hci2: command 0x0419 tx timeout
[  295.901178][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  295.937659][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  295.956409][ T8719] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  295.992537][ T8719] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  296.020305][ T8719] batman_adv: batadv0: Interface activated: batadv_slave_1
[  296.064945][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  296.095177][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  296.113653][ T8717] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  296.125310][   T43] Bluetooth: hci3: command 0x0419 tx timeout
[  296.132712][ T8717] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  296.156807][ T8717] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  296.169862][ T8717] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  296.221665][ T8719] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  296.235900][ T8719] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  296.253280][ T8719] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  296.270650][ T8719] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  296.301302][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  296.327750][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  296.389955][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  296.414919][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  296.454107][ T8744] device veth0_vlan entered promiscuous mode
[  296.509147][ T9479] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  296.527217][ T9479] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  296.642512][ T8722] device veth0_macvtap entered promiscuous mode
[  296.658953][ T8744] device veth1_vlan entered promiscuous mode
[  296.729035][ T8722] device veth1_macvtap entered promiscuous mode
[  296.812155][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  296.836860][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  297.043572][ T8744] device veth0_macvtap entered promiscuous mode
[  297.130145][ T8722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  297.152345][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  297.173511][ T8989] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  297.191753][ T8989] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  297.218489][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  297.230163][ T8722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.270137][ T8722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  297.298859][ T8722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.323554][ T8722] batman_adv: batadv0: Interface activated: batadv_slave_0
[  297.401445][ T8744] device veth1_macvtap entered promiscuous mode
[  297.437033][ T8722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  297.462866][ T8722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.490525][ T8722] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  297.518954][ T8722] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.550909][ T8722] batman_adv: batadv0: Interface activated: batadv_slave_1
[  297.603587][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  297.622338][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  297.648765][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  297.677305][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  297.694206][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  297.708352][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  297.721029][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  297.735476][ T3025] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  297.809050][ T9482] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  297.834669][ T9482] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  297.869832][ T5030] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  297.909966][ T8722] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  297.925949][ T8722] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  297.943658][ T8722] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  297.963508][ T8722] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  297.996083][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  298.017369][ T8744] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  298.035660][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  298.040178][ T8744] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  298.065096][ T8744] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  298.091399][ T8744] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  298.113365][ T8744] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  298.133325][ T8744] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  298.152126][ T8744] batman_adv: batadv0: Interface activated: batadv_slave_0
[  298.185276][ T9568] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  298.202780][ T9568] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  298.224034][ T9568] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  298.343126][ T8744] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  298.366167][ T8744] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  298.387513][ T8744] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  298.412309][ T8744] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  298.439208][ T8744] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  298.459285][ T8744] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  298.488601][ T8744] batman_adv: batadv0: Interface activated: batadv_slave_1
[  298.520944][ T9568] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  298.546150][ T9568] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  298.576218][ T8744] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  298.612425][ T8744] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  298.637684][ T8744] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  298.666671][ T8744] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
18:58:49 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_TUNNEL_DELETE(r0, 0x0, 0x0)

[  298.741186][ T9643] netlink: 32261 bytes leftover after parsing attributes in process `syz-executor.1'.
[  299.087052][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  299.128425][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  299.178447][ T8989] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  299.211167][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  299.242267][ T8989] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
18:58:50 executing program 0:
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x105042, 0x0)
sendfile(r1, r0, 0x0, 0x80005)

18:58:50 executing program 1:
r0 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000200)="1c0000001200050f0c1000000049b23e9b200a00080001c000000001", 0x1c, 0x0, 0x0, 0x0)
recvfrom$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmsg(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f00000029c0)=""/4108, 0x100c}, {&(0x7f0000003a00)=""/4106, 0x100a}, {&(0x7f00000019c0)=""/4085, 0xff5}], 0x3}, 0x0)
recvfrom$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
recvfrom$inet6(r0, &(0x7f0000000000)=""/114, 0xfffffffffffffd1b, 0x0, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0xfffffffc, @empty}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="900000002000", 0x6, 0x0, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="58ad000010", 0x5, 0x0, 0x0, 0x0)
r1 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r1, &(0x7f0000000000)='%', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

[  299.378296][ T9443] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  299.416298][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  299.447624][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  299.467146][ T8989] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  299.487640][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  299.491294][ T8989] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  299.561314][   T73] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  299.598655][ T9687] netlink: 32261 bytes leftover after parsing attributes in process `syz-executor.1'.
[  299.920774][ T9695] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
[  299.973131][ T9698] netlink: 'syz-executor.2': attribute type 4 has an invalid length.
18:58:50 executing program 1:
r0 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000200)="1c0000001200050f0c1000000049b23e9b200a00080001c000000001", 0x1c, 0x0, 0x0, 0x0)
recvfrom$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmsg(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f00000029c0)=""/4108, 0x100c}, {&(0x7f0000003a00)=""/4106, 0x100a}, {&(0x7f00000019c0)=""/4085, 0xff5}], 0x3}, 0x0)
recvfrom$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
recvfrom$inet6(r0, &(0x7f0000000000)=""/114, 0xfffffffffffffd1b, 0x0, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0xfffffffc, @empty}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="900000002000", 0x6, 0x0, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="58ad000010", 0x5, 0x0, 0x0, 0x0)
r1 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r1, &(0x7f0000000000)='%', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

18:58:50 executing program 0:
syz_io_uring_complete(0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000001400), 0xffffffffffffffff)

18:58:51 executing program 3:
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
ioctl$KVM_CHECK_EXTENSION_VM(r0, 0xae03, 0x0)

[  300.187573][ T9701] netlink: 32261 bytes leftover after parsing attributes in process `syz-executor.1'.
18:58:51 executing program 0:
r0 = socket$tipc(0x1e, 0x2, 0x0)
sendmsg$tipc(r0, &(0x7f0000003440)={&(0x7f0000001180)=@id, 0x10, &(0x7f0000002400)=[{0x0}, {0x0}, {&(0x7f0000002380)='L', 0x1}], 0x3}, 0x0)

18:58:51 executing program 2:
sendmsg$GTP_CMD_GETPDP(0xffffffffffffffff, 0x0, 0x20000000)
syz_genetlink_get_family_id$team(&(0x7f0000000100), 0xffffffffffffffff)

18:58:51 executing program 1:
r0 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000200)="1c0000001200050f0c1000000049b23e9b200a00080001c000000001", 0x1c, 0x0, 0x0, 0x0)
recvfrom$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmsg(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f00000029c0)=""/4108, 0x100c}, {&(0x7f0000003a00)=""/4106, 0x100a}, {&(0x7f00000019c0)=""/4085, 0xff5}], 0x3}, 0x0)
recvfrom$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
recvfrom$inet6(r0, &(0x7f0000000000)=""/114, 0xfffffffffffffd1b, 0x0, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0xfffffffc, @empty}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="900000002000", 0x6, 0x0, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)="58ad000010", 0x5, 0x0, 0x0, 0x0)
r1 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r1, &(0x7f0000000000)='%', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

[  300.461875][ T9710] netlink: 32261 bytes leftover after parsing attributes in process `syz-executor.1'.
18:58:51 executing program 0:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
accept$unix(r0, 0x0, 0x0)

18:58:51 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000004d80))

18:58:51 executing program 3:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
recvmsg$can_j1939(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[{0x0}, {0x0}, {0x0}], 0x3}, 0x0)

18:58:52 executing program 0:
syz_open_dev$audion(&(0x7f00000000c0), 0x0, 0x452000)

18:58:52 executing program 2:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$tipc(r0, &(0x7f0000000000)=@name, 0x10)

18:58:52 executing program 1:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="a0000000000000000a01000008000000bc1ef986e850168e7b250911024f0795fcfc458b295b63ef1303348de94c0dcd3046bc12ad354622e735dff631106e0b632f23b086e6f241d5819089f973b2081e9fa59ab78a59300891e1808fb345232034542d8b975b2363923d5efe73f23818c383454ff3a09f2725515ec70c6efdbc4d472451acc0a533e6e2e48f642f1c75c71081179a2f2c99f0a555e600b80016"], 0x1d0}, 0x0)

18:58:52 executing program 1:
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x1031, 0xffffffffffffffff, 0x0)
io_uring_setup(0x0, 0x0)

18:58:52 executing program 2:
fsopen(&(0x7f0000000000)='hostfs\x00', 0x0)

18:58:52 executing program 2:
openat$hwrng(0xffffffffffffff9c, 0x0, 0x503000, 0x0)

18:58:52 executing program 0:
syz_open_dev$binderN(&(0x7f0000000000), 0x0, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000080), 0xffffffffffffffff)

18:58:52 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$netlink_NETLINK_CAP_ACK(r0, 0x10e, 0xa, &(0x7f0000000000), 0x4)

18:58:52 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_TUNNEL_MODIFY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_TUNNEL_MODIFY(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x0, 0x4}, 0x14}}, 0x0)

18:58:52 executing program 2:
openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x80081)

18:58:52 executing program 1:
clone3(&(0x7f0000000a00)={0x1000000, 0x0, 0x0, 0x0, {}, &(0x7f0000000880)=""/16, 0x10, 0x0, 0x0}, 0x58)

18:58:52 executing program 0:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
accept4(r0, 0x0, 0x0, 0x0)

18:58:52 executing program 3:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
recvmsg$can_bcm(r0, &(0x7f0000000d00)={0x0, 0x0, 0x0}, 0x0)

18:58:53 executing program 1:
mprotect(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1000001)

18:58:53 executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{}, {0x3}]})

18:58:53 executing program 2:
mknodat$loop(0xffffffffffffffff, 0x0, 0xb69391d02343d6dc, 0x0)

18:58:53 executing program 1:
futimesat(0xffffffffffffff9c, 0x0, &(0x7f0000000040))

18:58:53 executing program 2:
r0 = socket$tipc(0x1e, 0x2, 0x0)
accept4$tipc(r0, 0x0, 0x0, 0x0)

18:58:53 executing program 1:
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x182, 0x0)

18:58:53 executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000000)=[{}, {0x3}]})

18:58:54 executing program 3:
r0 = socket$tipc(0x1e, 0x2, 0x0)
sendmsg$tipc(r0, &(0x7f0000003440)={&(0x7f0000001180)=@id, 0x10, &(0x7f0000002400)=[{0x0}, {&(0x7f0000002380)='L', 0x1}], 0x2}, 0x0)

18:58:54 executing program 2:
openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x1f1342, 0x0)

18:58:54 executing program 1:
syz_io_uring_setup(0x2ba3, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x2000)=nil, 0x0, 0x0)

18:58:54 executing program 0:
r0 = open$dir(&(0x7f0000000080)='./file0\x00', 0x40, 0x0)
getdents64(r0, 0x0, 0x0)

18:58:54 executing program 3:
syz_open_dev$video4linux(&(0x7f0000000000), 0x7ff, 0x200)

18:58:54 executing program 1:
pselect6(0x0, 0x0, &(0x7f0000000040), 0x0, &(0x7f00000000c0), &(0x7f0000000140)={&(0x7f0000000100)={[0x6]}, 0x8})

18:58:54 executing program 2:
openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x80081)

18:58:54 executing program 0:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r0, 0x10f, 0x88)

18:58:54 executing program 2:
openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x80081)

18:58:54 executing program 0:
openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x80081)

18:58:55 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x5c, r1, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x1}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @empty}]}, 0x5c}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff)
r4 = creat(&(0x7f0000000000)='./file0\x00', 0x10)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r4, &(0x7f0000000300)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x1c, r1, 0x300, 0x70bd27, 0x25dfdbfb, {}, [@L2TP_ATTR_LNS_MODE={0x5, 0x14, 0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008040}, 0x4000000)
perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000b40)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x4000, 0x3082512a, 0x100, 0x8, 0x1, 0x1000, 0x6c}, 0x0, 0x2, 0xffffffffffffffff, 0x1)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000040)=ANY=[], 0x208e24b)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r6 = clone3(&(0x7f0000000700)={0x10000, &(0x7f0000000180), &(0x7f0000000540), &(0x7f0000000580), {0x13}, &(0x7f00000005c0)=""/114, 0x72, &(0x7f0000000640)=""/100, &(0x7f00000006c0)=[0x0, 0x0, 0x0], 0x3, {r4}}, 0x58)
perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0xf0, 0x1f, 0xff, 0x0, 0x0, 0x1000, 0xf102, 0xa, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x100, 0x0, @perf_config_ext={0x9, 0x8}, 0x0, 0x6, 0x3, 0x4, 0x101, 0xff, 0x8, 0x0, 0x4, 0x0, 0x75ae800}, r6, 0xf, r4, 0x2)
sendmsg$NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x50, r5, 0x8, 0x70bd2c, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000020}, 0x8000)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x5c, r3, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8}, @L2TP_ATTR_IP6_DADDR={0x14, 0x20, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6, 0x2, 0x1}, @L2TP_ATTR_IP6_SADDR={0x14, 0x1f, @empty}]}, 0x5c}}, 0x0)
ftruncate(r0, 0x7)
r7 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r7, &(0x7f0000000080)={0xa, 0x0, 0x0, @remote, 0x5}, 0x1c)
sendmmsg$inet6(r7, &(0x7f0000002300), 0x40002e8, 0x0)

18:58:55 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:58:55 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r2 = syz_mount_image$ntfs(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x7c1, 0x1, &(0x7f0000000200)=[{&(0x7f0000000180)="03204156f5ad4eaf4ed4a91eefeb25da729a94b873167e17e73d058f2e609623a300591dd55debfb6b7d83b91cce44c8bcd72f1f31febd4313c07ab6e5f43009999f0d600dfdfa3bc558704047879f14370c2611504c04", 0x57, 0xfffffffffffffffe}], 0x2080000, &(0x7f0000000300)=ANY=[@ANYBLOB="6572726f72733d636f6e74696e75652c666d61736b3d30303030303030303030303030303030303030303030352c6572726f72733d636f6e74696e75652c6d66745f7a6f6e655f6d756c7469706c6965723d307830303030303030303030303030303030892f1c269a19b6dafa342c64697361626c655f7370617273653d7965732c7375626a5f747970653d292f2a3a252c407b232c686173682c736d61636b6673666c6f6f724dac1a644f137c692c646f6e745f61707072616973652c00"])
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x50, r2, 0x5997e000)
preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1, 0x80010, r1, 0xedec2000)
sendmsg$nl_route_sched(r0, &(0x7f0000000500)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)=@delchain={0x54, 0x65, 0x10, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x0, 0x9}, {0xd, 0xe}, {0xa, 0xfff2}}, [@filter_kind_options=@f_basic={{0xa}, {0x24, 0x2, [@TCA_BASIC_CLASSID={0x8, 0x1, {0xfff3, 0x3}}, @TCA_BASIC_CLASSID={0x8, 0x1, {0x6, 0xf}}, @TCA_BASIC_CLASSID={0x8, 0x1, {0xffff, 0x10}}, @TCA_BASIC_CLASSID={0x8, 0x1, {0x3, 0xd}}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x8010}, 0x0)
syz_mount_image$vxfs(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x100000000, 0x0, &(0x7f00000002c0), 0x2000000, &(0x7f00000003c0)={[{'}}&-^'}, {'xfrm0\x00'}, {'ntfs\x00'}, {'xfrm0\x00'}, {'@,:-'}, {'fdinfo/3\x00'}], [{@dont_hash}, {@subj_user={'subj_user', 0x3d, 'xfrm0\x00'}}]})
ioctl$sock_inet_SIOCGIFDSTADDR(r0, 0x8917, &(0x7f0000000080)={'xfrm0\x00', {0x2, 0x0, @dev}})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x17, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b400000000000000791000000000000007000000000000009504000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffe51}, 0x48)

18:58:55 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0xc0505350, &(0x7f0000000100)={{0x0, 0x1}})

[  304.176354][ T9801] loop1: detected capacity change from 0 to 16383
18:58:55 executing program 0:
recvmsg$can_raw(0xffffffffffffffff, 0x0, 0x1436c9a6ffda4d12)

18:58:55 executing program 0:
socket$inet(0x2, 0xa, 0x4255)

[  304.488484][ T9808] loop1: detected capacity change from 0 to 264192
[  304.547464][ T9808] vxfs: WRONG superblock magic 00000000 at 1
[  304.584744][ T9822] syz-executor.0 uses obsolete (PF_INET,SOCK_PACKET)
[  304.586274][ T9808] vxfs: WRONG superblock magic 00000000 at 8
[  304.666639][ T9808] vxfs: can't find superblock.
18:58:55 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getpeername$netlink(r0, &(0x7f0000000000), &(0x7f0000000040)=0xc)

18:58:55 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

[  304.839065][ T9801] loop1: detected capacity change from 0 to 16383
18:58:55 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)
ioctl$FS_IOC_MEASURE_VERITY(r0, 0xc0046686, &(0x7f0000000180)={0x2, 0xc5, "6c678b6d53ce1b8d284015b7640d22533caedd803d2dcfd963935d3f456a2ef83e57d79ac33f73cb5831e95163817ef8895e332e66e6f9c00249e106c923a1b47c8ef8a79e535d8d838cdd0316d00fb300e4d265dd7dde47c015d25549946b1533c5210123dc0548b5120f96916d084f6b6697d75d617b0d12a72f04c711d4f736a95ac638db4a7a7147bc8b670012a51446c5f70ecb51c6da21295891fb0e0f70972f447812ce71f8cf08b964d1cb299f7d6feb5b929e80ef86afc7c9ad53826154912ea6"})
r1 = syz_mount_image$v7(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x0, 0x1, &(0x7f0000000540)=[{&(0x7f0000000100)="b82953d2f785ce8d3d10941313c3afae88bbf763f72b62abd0a1cedc8f8c3cff20efb579887a1b8b17396dbf5d02bcfe7a544c29bbe6fb8461e9b4935ce2547b4100000273eea3e0", 0x48, 0x401}], 0x0, &(0x7f0000000080)=ANY=[])
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/bus/input/devices\x00', 0x0, 0x0)
read$FUSE(r2, &(0x7f0000000880)={0x2020, 0x0, 0x0, <r3=>0x0}, 0x2020)
setresuid(0x0, r3, 0x0)
mknodat$null(r1, &(0x7f0000000080)='./bus\x00', 0x0, 0x103)

[  304.936476][ T9830] loop0: detected capacity change from 0 to 4
18:58:55 executing program 3:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_GET_FEATURE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0xfffffffffffffffc}}, 0x0)

18:58:56 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:58:56 executing program 1:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SOUND_OLD_MIXER_INFO(r0, 0x80304d65, 0x0)

[  305.065345][ T9830] VFS: Found a V7 FS (block size = 512) on device loop0
[  305.444077][ T8717] sysv_free_inode: inode 0,1,2 or nonexistent inode
18:58:56 executing program 0:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$UI_END_FF_UPLOAD(r0, 0x406855c9, &(0x7f0000000040)={0x10f, 0x0, {0x0, 0x0, 0x0, {}, {}, @rumble}})

18:58:56 executing program 3:
r0 = fsopen(&(0x7f0000000200)='hugetlbfs\x00', 0x0)
r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH(r0, 0x3, &(0x7f0000000180)='\x18,#}\x00', &(0x7f00000001c0)='./file0\x00', r1)

18:58:56 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:58:56 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
listen(r1, 0x3)

18:58:56 executing program 0:
r0 = syz_open_dev$audion(&(0x7f0000000180), 0x0, 0x0)
setsockopt$netlink_NETLINK_RX_RING(r0, 0x10e, 0x6, 0x0, 0x0)

18:58:56 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f0000001880)={0x0, 0x0, &(0x7f0000001840)={0x0}}, 0x0)

18:58:56 executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f0000000140)='fdinfo/3\x00')
preadv(r0, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)
ioctl$FS_IOC_MEASURE_VERITY(r0, 0xc0046686, &(0x7f0000000180)={0x2, 0xc5, "6c678b6d53ce1b8d284015b7640d22533caedd803d2dcfd963935d3f456a2ef83e57d79ac33f73cb5831e95163817ef8895e332e66e6f9c00249e106c923a1b47c8ef8a79e535d8d838cdd0316d00fb300e4d265dd7dde47c015d25549946b1533c5210123dc0548b5120f96916d084f6b6697d75d617b0d12a72f04c711d4f736a95ac638db4a7a7147bc8b670012a51446c5f70ecb51c6da21295891fb0e0f70972f447812ce71f8cf08b964d1cb299f7d6feb5b929e80ef86afc7c9ad53826154912ea6"})
r1 = syz_mount_image$v7(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x0, 0x1, &(0x7f0000000540)=[{&(0x7f0000000100)="b82953d2f785ce8d3d10941313c3afae88bbf763f72b62abd0a1cedc8f8c3cff20efb579887a1b8b17396dbf5d02bcfe7a544c29bbe6fb8461e9b4935ce2547b4100000273eea3e0", 0x48, 0x401}], 0x0, &(0x7f0000000080)=ANY=[])
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/bus/input/devices\x00', 0x0, 0x0)
read$FUSE(r2, &(0x7f0000000880)={0x2020, 0x0, 0x0, <r3=>0x0}, 0x2020)
setresuid(0x0, r3, 0x0)
mknodat$null(r1, &(0x7f0000000080)='./bus\x00', 0x0, 0x103)

18:58:57 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
listen(r1, 0x3)

18:58:57 executing program 1:
openat$dlm_control(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
pipe2$9p(&(0x7f0000000000), 0x0)

18:58:57 executing program 0:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
connect$tipc(r0, 0x0, 0x0)

[  306.133804][ T9858] loop3: detected capacity change from 0 to 4
18:58:57 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
listen(r1, 0x3)

18:58:57 executing program 0:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
accept4(r0, 0x0, 0x0, 0x0)

[  306.227430][ T9858] VFS: Found a V7 FS (block size = 512) on device loop3
18:58:57 executing program 1:
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, &(0x7f0000000000), 0x10)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000040))

18:58:57 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(0xffffffffffffffff, 0x3)

[  306.508626][ T8744] sysv_free_inode: inode 0,1,2 or nonexistent inode
18:58:57 executing program 3:
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x800000000009031, 0xffffffffffffffff, 0x0)
msync(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x6)
mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x100000003)
msync(&(0x7f000063a000/0x3000)=nil, 0x3000, 0x0)
mbind(&(0x7f00002b0000/0x3000)=nil, 0x3000, 0x3, &(0x7f0000000000)=0xffffffff, 0x9, 0x5)
madvise(&(0x7f000080b000/0x1000)=nil, 0x1000, 0x0)

18:58:57 executing program 0:
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00')
mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
creat(&(0x7f0000000280)='./file0/file0\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x20000008)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
open(&(0x7f0000000000)='./file1\x00', 0x220702, 0x21)
renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000100)='./file0\x00', 0x2)

18:58:57 executing program 1:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
fcntl$setpipe(r1, 0x407, 0x6)
ioctl$sock_TIOCINQ(r0, 0x541b, &(0x7f0000000080))

18:58:57 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(0xffffffffffffffff, 0x3)

18:58:57 executing program 0:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x10, r0, 0x0)

18:58:57 executing program 1:
r0 = socket$tipc(0x1e, 0x2, 0x0)
sendmsg$tipc(r0, &(0x7f0000003440)={&(0x7f0000001180)=@id, 0x10, &(0x7f0000002400)=[{&(0x7f00000011c0)="10", 0x1}, {0x0}, {&(0x7f0000002380)='L', 0x1}], 0x3, &(0x7f0000002440)="e130d727b3192fee2cac207cfceedac7a56daf013d7e22bfc9f0225568b213173077c2e566", 0x25}, 0x0)

18:58:57 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(0xffffffffffffffff, 0x3)

18:58:58 executing program 1:
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000002400)='./cgroup/syz1\x00', 0x200002, 0x0)

18:58:59 executing program 1:
pselect6(0x40, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080)={0x6}, &(0x7f00000000c0), &(0x7f0000000140)={&(0x7f0000000100)={[0x6]}, 0x8})

18:58:59 executing program 0:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, 0x0, &(0x7f0000001580))

18:58:59 executing program 3:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x3, &(0x7f0000000000)=[{}, {0x3}, {}]})

18:58:59 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:58:59 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:58:59 executing program 1:
syz_open_dev$audion(&(0x7f0000000000), 0x1, 0x3)

18:58:59 executing program 3:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
getsockopt$IP6T_SO_GET_REVISION_MATCH(r0, 0x29, 0x44, &(0x7f0000000100)={'icmp\x00'}, &(0x7f0000000140)=0x1e)

18:58:59 executing program 0:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
connect$tipc(r0, &(0x7f0000000040)=@name, 0x10)

18:58:59 executing program 1:
mq_open(&(0x7f0000000000)='/dev/dri/renderD128\x00', 0x0, 0x0, 0x0)

18:58:59 executing program 3:
unlinkat(0xffffffffffffffff, 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000000040))

18:58:59 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:58:59 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_TUNNEL_MODIFY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)

18:58:59 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:58:59 executing program 1:
openat$random(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)

18:58:59 executing program 0:
syz_open_dev$audion(&(0x7f00000000c0), 0x8, 0x0)

18:58:59 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:00 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:00 executing program 1:
getsockopt$TIPC_SOCK_RECVQ_DEPTH(0xffffffffffffffff, 0x10f, 0x84, 0x0, 0x0)

18:59:00 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[], 0x84}}, 0x0)

18:59:00 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:00 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:00 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x84}}, 0x0)

18:59:00 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:00 executing program 0:
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, 0x0)

18:59:00 executing program 2:
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(0xffffffffffffffff, 0x3)
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r0, 0x3)

18:59:00 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:00 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:00 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:00 executing program 0:
openat$drirender128(0xffffffffffffff9c, &(0x7f0000000040), 0x6002, 0x0)

18:59:00 executing program 2:
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(0xffffffffffffffff, 0x3)
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r0, 0x3)

18:59:00 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:00 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
listen(r1, 0x3)

18:59:00 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:00 executing program 2:
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(0xffffffffffffffff, 0x3)
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r0, 0x3)

18:59:01 executing program 0:
openat$tun(0xffffffffffffff9c, &(0x7f0000001640), 0x0, 0x0)

18:59:01 executing program 0:
r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SOUND_OLD_MIXER_INFO(r0, 0x80304d65, &(0x7f0000000040))

18:59:01 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
listen(r1, 0x3)

18:59:01 executing program 2:
r0 = socket$inet(0x2, 0x0, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:01 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:01 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
listen(r1, 0x3)

18:59:01 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:01 executing program 0:
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
recvmmsg(r0, &(0x7f0000000a00)=[{{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/83, 0x53}], 0x1}}], 0x1, 0x0, 0x0)

18:59:01 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:01 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:01 executing program 2:
r0 = socket$inet(0x2, 0x0, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:01 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:01 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:01 executing program 0:
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
recvmmsg(r0, &(0x7f0000000a00)=[{{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/83, 0x53}], 0x1}}], 0x1, 0x0, 0x0)

18:59:02 executing program 0:
syz_open_dev$dri(&(0x7f0000000000), 0xe94, 0x10503)

18:59:02 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:02 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:02 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:02 executing program 0:
msgsnd(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='\x00'], 0x76, 0x0)
msgctl$MSG_STAT_ANY(0x0, 0xd, &(0x7f0000000000)=""/10)

18:59:02 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(0xffffffffffffffff, 0x3)

18:59:02 executing program 2:
r0 = socket$inet(0x2, 0x0, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:02 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(0xffffffffffffffff, 0x3)

18:59:02 executing program 0:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r0, 0x114, 0xa, 0x0, 0x2)

18:59:02 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:02 executing program 0:
syz_genetlink_get_family_id$team(&(0x7f0000000100), 0xffffffffffffffff)

18:59:02 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(0xffffffffffffffff, 0x3)

18:59:02 executing program 1:
socket$inet(0x2, 0x80001, 0x84)
r0 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:02 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:02 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:02 executing program 0:
fanotify_mark(0xffffffffffffffff, 0x3f8e433718f0e319, 0x0, 0xffffffffffffffff, 0x0)

18:59:02 executing program 1:
socket$inet(0x2, 0x80001, 0x84)
r0 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:02 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:02 executing program 0:
open$dir(&(0x7f0000000240)='./file0\x00', 0x140, 0x61)

18:59:02 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:02 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:03 executing program 1:
socket$inet(0x2, 0x80001, 0x84)
r0 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:03 executing program 0:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=ANY=[], 0x1d0}, 0x0)

18:59:03 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:03 executing program 0:
socket$inet(0x2, 0x0, 0xfffffffd)

18:59:03 executing program 1:
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r0 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:03 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:03 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:03 executing program 1:
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r0 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:03 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:03 executing program 1:
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r0 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:03 executing program 0:
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
recvmmsg(r0, &(0x7f0000000a00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)

18:59:03 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:03 executing program 1:
r0 = socket$inet(0x2, 0x0, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:03 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:03 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:03 executing program 3:
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(0xffffffffffffffff, 0x3)
r0 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r0, 0x3)

18:59:03 executing program 0:
msgctl$MSG_INFO(0x0, 0xc, &(0x7f0000000000)=""/55)

18:59:03 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, 0x0, 0x0)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:03 executing program 3:
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(0xffffffffffffffff, 0x3)
r0 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r0, 0x3)

18:59:03 executing program 0:
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000000)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}, {{0x9, 0x5, 0x81, 0x3, 0x20}}}}}}]}}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0})

18:59:03 executing program 3:
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(0xffffffffffffffff, 0x3)
r0 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r0, 0x3)

18:59:04 executing program 3:
r0 = socket$inet(0x2, 0x0, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:04 executing program 1:
r0 = socket$inet(0x2, 0x0, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:04 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, 0x0, 0x0)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

[  313.334967][ T9600] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  313.614603][ T9600] usb 5-1: Using ep0 maxpacket: 16
18:59:04 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, 0x0, 0x0)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:04 executing program 3:
r0 = socket$inet(0x2, 0x0, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:04 executing program 1:
r0 = socket$inet(0x2, 0x0, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

[  313.795364][ T9600] usb 5-1: unable to get BOS descriptor or descriptor too short
[  313.905221][ T9600] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  313.969926][ T9600] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  314.034358][ T9600] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  314.079070][ T9600] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  314.105232][ T9600] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  314.374759][ T9600] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  314.389720][ T9600] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  314.403696][ T9600] usb 5-1: Product: syz
[  314.410915][ T9600] usb 5-1: Manufacturer: syz
[  314.423430][ T9600] usb 5-1: SerialNumber: syz
[  314.766184][ T9600] cdc_ncm 5-1:1.0: bind() failure
[  314.788631][ T9600] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  314.807007][ T9600] cdc_ncm 5-1:1.1: bind() failure
[  314.826853][ T9600] usb 5-1: USB disconnect, device number 2
[  315.541384][ T5030] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  315.814646][ T5030] usb 5-1: Using ep0 maxpacket: 16
[  316.016367][ T5030] usb 5-1: unable to get BOS descriptor or descriptor too short
[  316.114651][ T5030] usb 5-1: unable to read config index 0 descriptor/start: -71
18:59:07 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:07 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:07 executing program 3:
r0 = socket$inet(0x2, 0x0, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:07 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff})
recvmmsg(r0, &(0x7f0000005300)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40000201, 0x0)

[  316.164083][ T5030] usb 5-1: can't read configurations, error -71
18:59:07 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:07 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:07 executing program 0:
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)

18:59:07 executing program 0:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
recvfrom$unix(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

18:59:07 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:07 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:07 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:07 executing program 0:
syz_open_dev$audion(&(0x7f0000000080), 0x0, 0x210941)

18:59:07 executing program 1:
socket$inet(0x2, 0x80001, 0x84)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r0 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:07 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(0xffffffffffffffff, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:07 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:07 executing program 0:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
connect$l2tp6(r0, 0x0, 0x0)

18:59:07 executing program 1:
socket$inet(0x2, 0x80001, 0x84)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r0 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:07 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(0xffffffffffffffff, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:07 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:07 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x402c5342, &(0x7f0000000380))

18:59:08 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:08 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(0xffffffffffffffff, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:08 executing program 0:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
getsockname$tipc(r0, 0x0, 0x0)

18:59:08 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:08 executing program 1:
socket$inet(0x2, 0x80001, 0x84)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r0 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:08 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x0)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:08 executing program 0:
r0 = socket$can_raw(0x1d, 0x3, 0x1)
recvmsg$can_raw(r0, &(0x7f0000001e80)={0x0, 0x0, 0x0}, 0x0)

18:59:08 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, 0x0, 0x0)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:08 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:08 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x0)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:08 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, 0x0, 0x0)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:08 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x0)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:08 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, 0x0, 0x0)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:08 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, 0x0, 0x0)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:09 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, 0x0, 0x0)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:09 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, 0x0, 0x0)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:09 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x0, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:09 executing program 0:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
getsockopt$IP6T_SO_GET_REVISION_MATCH(r0, 0x29, 0x44, 0x0, &(0x7f0000000140))

18:59:09 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:09 executing program 0:
syz_open_dev$dri(&(0x7f00000001c0), 0x2, 0x701400)

18:59:09 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:09 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:09 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:09 executing program 0:
pselect6(0x40, &(0x7f0000000000), 0x0, 0x0, 0x0, &(0x7f0000000140)={0x0})

18:59:09 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x0, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:09 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:09 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:10 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x0, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:10 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x0, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:10 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(0xffffffffffffffff, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:10 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(0xffffffffffffffff, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:11 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:11 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(0xffffffffffffffff, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:11 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x0, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:11 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendmsg$sock(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000800)="e7", 0x1}], 0x1}, 0x4000)

18:59:11 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:11 executing program 0:
bind$can_raw(0xffffffffffffffff, 0x0, 0x0)

18:59:11 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x0)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:11 executing program 0:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
connect$l2tp6(r0, 0x0, 0x1f)

18:59:11 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:11 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x0)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:11 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x0, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:11 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:11 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x0)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:11 executing program 0:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_ext={0x1c, 0x0, 0x0, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

18:59:12 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:12 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x0, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:12 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:12 executing program 0:
socket(0x40, 0x0, 0x0)

18:59:12 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x0, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:12 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:12 executing program 0:
mremap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000, 0x3, &(0x7f0000ffa000/0x2000)=nil)

18:59:12 executing program 0:
openat$ppp(0xffffffffffffff9c, &(0x7f0000000340), 0x143000, 0x0)

18:59:12 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:12 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, 0x0, 0x0)
listen(r1, 0x3)

18:59:12 executing program 0:
faccessat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xcf)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x10000042)
socket$packet(0x11, 0x3, 0x300)
perf_event_open(&(0x7f00000030c0)={0x1, 0x80, 0x0, 0x2, 0x24, 0x3f, 0x0, 0x1, 0x1, 0xf, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x3, 0x4, @perf_bp={&(0x7f0000003080), 0x5}, 0x8, 0x200, 0x2, 0x3, 0x0, 0x1f, 0x20, 0x0, 0x7fff, 0x0, 0x6}, 0xffffffffffffffff, 0x3, 0xffffffffffffffff, 0xa)
openat2(0xffffffffffffff9c, &(0x7f0000003140)='./file0\x00', &(0x7f0000003180)={0x2000, 0x184}, 0x18)
openat$full(0xffffffffffffff9c, &(0x7f00000031c0), 0x2000, 0x0)
openat2(0xffffffffffffff9c, &(0x7f00000073c0)='./file0\x00', &(0x7f0000007400)={0x10a01, 0x80, 0x9}, 0x18)
socket$nl_audit(0x10, 0x3, 0x9)
socket$can_bcm(0x1d, 0x2, 0x2)
read$FUSE(0xffffffffffffffff, &(0x7f0000007f00)={0x2020}, 0x2020)
fork()

18:59:12 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, 0x0, 0x0)
listen(r1, 0x3)

18:59:12 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:12 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, 0x0, 0x0)
listen(r1, 0x3)

18:59:12 executing program 0:
faccessat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xcf)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x10000042)
socket$packet(0x11, 0x3, 0x300)
perf_event_open(&(0x7f00000030c0)={0x1, 0x80, 0x0, 0x2, 0x24, 0x3f, 0x0, 0x1, 0x1, 0xf, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x3, 0x4, @perf_bp={&(0x7f0000003080), 0x5}, 0x8, 0x200, 0x2, 0x3, 0x0, 0x1f, 0x20, 0x0, 0x7fff, 0x0, 0x6}, 0xffffffffffffffff, 0x3, 0xffffffffffffffff, 0xa)
openat2(0xffffffffffffff9c, &(0x7f0000003140)='./file0\x00', &(0x7f0000003180)={0x2000, 0x184}, 0x18)
openat$full(0xffffffffffffff9c, &(0x7f00000031c0), 0x2000, 0x0)
openat2(0xffffffffffffff9c, &(0x7f00000073c0)='./file0\x00', &(0x7f0000007400)={0x10a01, 0x80, 0x9}, 0x18)
socket$nl_audit(0x10, 0x3, 0x9)
socket$can_bcm(0x1d, 0x2, 0x2)
read$FUSE(0xffffffffffffffff, &(0x7f0000007f00)={0x2020}, 0x2020)
fork()

18:59:12 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x0, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:12 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:12 executing program 0:
syz_usb_connect$cdc_ncm(0x5, 0x75, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x63, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}, [@dmm={0x7}]}, {{0x9, 0x5, 0x81, 0x3, 0x20}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x0, 0x0, 0x4}}}}}}}]}}, 0x0)

18:59:12 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
listen(r1, 0x3)

18:59:13 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
listen(r1, 0x3)

18:59:13 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:13 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

[  322.453766][ T9599] usb 5-1: new high-speed USB device number 5 using dummy_hcd
18:59:13 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:13 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
listen(r1, 0x3)

18:59:13 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:13 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

[  322.718324][ T9599] usb 5-1: Using ep0 maxpacket: 16
[  322.845722][ T9599] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  322.878256][ T9599] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  322.901313][ T9599] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  322.928540][ T9599] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  322.949332][ T9599] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  323.191226][ T9599] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  323.204116][ T9599] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  323.228481][ T9599] usb 5-1: Product: syz
[  323.236185][ T9599] usb 5-1: Manufacturer: syz
[  323.252372][ T9599] usb 5-1: SerialNumber: syz
[  323.574908][ T9599] cdc_ncm 5-1:1.0: bind() failure
[  323.609209][ T9599] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  323.629578][ T9599] cdc_ncm 5-1:1.1: bind() failure
[  323.658903][ T9599] usb 5-1: USB disconnect, device number 5
[  324.394632][ T9600] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  324.674677][ T9600] usb 5-1: Using ep0 maxpacket: 16
[  324.806691][ T9600] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  324.827979][ T9600] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  324.843532][ T9600] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  324.860922][ T9600] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  324.879072][ T9600] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  325.085712][ T9600] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  325.117172][ T9600] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
18:59:16 executing program 0:
open$dir(&(0x7f0000000000)='./file1\x00', 0x4040, 0x0)

18:59:16 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:16 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0x0, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:16 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(0xffffffffffffffff, 0x3)

[  325.142171][ T9600] usb 5-1: Product: syz
[  325.214914][ T9600] usb 5-1: can't set config #1, error -71
[  325.229504][ T9600] usb 5-1: USB disconnect, device number 6
[  325.246362][   T50] audit: type=1800 audit(1626634756.198:9): pid=10419 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="sda1" ino=14005 res=0 errno=0
18:59:16 executing program 0:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
recvmmsg(r0, &(0x7f0000001b00)=[{{0x0, 0x0, &(0x7f0000001640)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}}], 0x1, 0x41, 0x0)

18:59:16 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

[  325.339692][   T50] audit: type=1800 audit(1626634756.288:10): pid=10419 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="sda1" ino=14005 res=0 errno=0
18:59:16 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(0xffffffffffffffff, 0x3)

18:59:16 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0x0, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:16 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0x0, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:16 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:16 executing program 0:
r0 = socket$tipc(0x1e, 0x2, 0x0)
sendmsg$tipc(r0, &(0x7f0000003440)={&(0x7f0000001180)=@id, 0x10, 0x0, 0x0, &(0x7f0000002440)="e1", 0x1}, 0x0)

18:59:16 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(0xffffffffffffffff, 0x3)

18:59:16 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, 0x0, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:16 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x0)

18:59:16 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0x0, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:16 executing program 0:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$SIOCGETNODEID(r0, 0x89e1, 0x0)

18:59:16 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, 0x0, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:16 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0x0, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:16 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x0)

18:59:16 executing program 0:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff})
recvmmsg(r0, 0x0, 0x0, 0x0, 0x0)

18:59:17 executing program 0:
pipe2$9p(0x0, 0x1000)

18:59:17 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0x0, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:17 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x0)

18:59:17 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, 0x0, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:17 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, 0x0, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:17 executing program 0:
syz_open_dev$audion(&(0x7f0000000180), 0x0, 0x52140)

18:59:17 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r0, &(0x7f0000001880)={0x0, 0x0, 0x0}, 0x0)

18:59:17 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, 0x0, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:17 executing program 2:
r0 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000600))

18:59:17 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280), 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:17 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
sendmsg$sock(r0, &(0x7f0000001100)={0x0, 0x0, &(0x7f00000010c0)=[{&(0x7f00000000c0)='m', 0x1}], 0x1}, 0x0)

18:59:17 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote}, 0x1c)

18:59:17 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280), 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:17 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, 0x0, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:17 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280), 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:17 executing program 0:
read$alg(0xffffffffffffffff, 0x0, 0x0)

18:59:17 executing program 2:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, 0x0, 0x0)

18:59:17 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280), 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:17 executing program 0:
syz_open_dev$audion(&(0x7f0000000000), 0x1, 0xe900)

18:59:17 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280), 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:17 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:17 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280), 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:17 executing program 2:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, 0x0, 0x0)

18:59:17 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:17 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="84000000", @ANYRES16=0x0, @ANYBLOB="01"], 0x84}}, 0x0)

18:59:17 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:17 executing program 2:
socket$packet(0x11, 0x3, 0x300)
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0xa)
openat2(0xffffffffffffff9c, &(0x7f0000003140)='./file0\x00', &(0x7f0000003180)={0x0, 0x184}, 0x18)
openat2(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
getgid()
socket$inet(0x2, 0x5, 0xc02)
fork()
read$FUSE(0xffffffffffffffff, &(0x7f000000a600)={0x2020}, 0x2020)
read$FUSE(0xffffffffffffffff, &(0x7f000000c680)={0x2020}, 0x2020)
accept4$unix(0xffffffffffffffff, &(0x7f000000e6c0), 0x0, 0x800)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x1)

18:59:18 executing program 0:
syz_io_uring_setup(0x0, &(0x7f0000000000), &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0))

18:59:18 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:18 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:18 executing program 0:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0xc0505350, 0xfffffffffffffffc)

18:59:18 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, 0x0, 0x0)

18:59:18 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:18 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:18 executing program 0:
socket$packet(0x11, 0x0, 0x300)
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000007f00)={0x2020}, 0x2020)
fork()
accept4$inet(0xffffffffffffffff, &(0x7f000000e800)={0x2, 0x0, @empty}, 0x0, 0x0)

18:59:18 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, 0x0, 0x0)

18:59:18 executing program 2:
fanotify_mark(0xffffffffffffffff, 0x2, 0x21, 0xffffffffffffffff, 0x0)

18:59:18 executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x1, &(0x7f0000000000)=@raw=[@jmp], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

18:59:18 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, 0x0, 0x0)
listen(r1, 0x3)

18:59:18 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, 0x0, 0x0)

18:59:18 executing program 0:
openat$khugepaged_scan(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0)

18:59:18 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, 0x0, 0x0)
listen(r1, 0x3)

18:59:18 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)

18:59:18 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f0000001540)={&(0x7f0000ffd000/0x2000)=nil, 0x2000}, &(0x7f0000001580)=0x10)

18:59:18 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, 0x0, 0x0)
listen(r1, 0x3)

18:59:18 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)

18:59:18 executing program 0:
r0 = socket$tipc(0x1e, 0x2, 0x0)
sendmsg$tipc(r0, &(0x7f0000003440)={&(0x7f0000001180)=@id, 0x10, &(0x7f0000002400)=[{&(0x7f00000011c0)="10", 0x1}], 0x1}, 0x0)

18:59:18 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, 0x0, 0x0)

18:59:18 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
listen(r1, 0x3)

18:59:18 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)

18:59:18 executing program 0:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
recvmmsg(r0, 0x0, 0x0, 0x0, &(0x7f0000001b80))

18:59:18 executing program 2:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TLS_RX(r0, 0x6, 0x2, 0x0, 0x0)

18:59:18 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
listen(r1, 0x3)

18:59:19 executing program 1:
openat2(0xffffffffffffff9c, &(0x7f00000073c0)='./file0\x00', &(0x7f0000007400)={0x0, 0x0, 0x9}, 0x18)

18:59:19 executing program 1:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000000)={'wg2\x00'})

18:59:19 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
listen(r1, 0x3)

18:59:19 executing program 0:
perf_event_open(&(0x7f00000030c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

18:59:19 executing program 2:
clone(0x40000000007fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOCTL_STOP_ACCEL_DEV(r0, 0x40046103, 0x0)

18:59:19 executing program 1:
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x1031, 0xffffffffffffffff, 0x0)
clock_gettime(0x0, &(0x7f0000000100))

[  328.271129][T10591] QAT: failed to copy from user.
[  328.294947][T10596] QAT: failed to copy from user.
18:59:19 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(0xffffffffffffffff, 0x3)

18:59:19 executing program 0:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = fsopen(&(0x7f0000000040)='nilfs2\x00', 0x0)
fsconfig$FSCONFIG_SET_FD(r1, 0x5, &(0x7f0000000080)='\x9b\x00', 0x0, r0)

18:59:19 executing program 2:
read$FUSE(0xffffffffffffffff, &(0x7f0000007f00)={0x2020}, 0x2020)
fork()

18:59:19 executing program 1:
syz_open_dev$audion(&(0x7f0000000180), 0x0, 0x140)

18:59:19 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(0xffffffffffffffff, 0x3)

18:59:19 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(0xffffffffffffffff, 0x3)

18:59:19 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x32, &(0x7f0000000140)={@empty}, 0x14)

18:59:19 executing program 2:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
connect$l2tp6(r0, 0x0, 0x0)

18:59:19 executing program 0:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
recvmmsg(r0, &(0x7f0000001b00)=[{{&(0x7f0000000000)=@qipcrtr, 0x80, &(0x7f0000001640)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}}], 0x1, 0x41, &(0x7f0000001b80))

18:59:19 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x0)

18:59:19 executing program 2:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
bind$tipc(r0, &(0x7f0000000040)=@name={0x1e, 0x2, 0x3, {{0x43}}}, 0x10)

18:59:19 executing program 0:
fsopen(&(0x7f0000000200)='hugetlbfs\x00', 0x0)

18:59:19 executing program 1:
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_GET(r0, &(0x7f0000001b80)={&(0x7f0000001ac0), 0xc, &(0x7f0000001b40)={0x0}}, 0x0)

18:59:19 executing program 2:
socket$nl_audit(0x10, 0x3, 0x9)
accept4$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)

18:59:19 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x0)

18:59:19 executing program 1:
mq_getsetattr(0xffffffffffffffff, &(0x7f0000000100)={0x2}, 0x0)

18:59:19 executing program 0:
socketpair(0x1e, 0x0, 0x5, &(0x7f00000005c0))

18:59:19 executing program 1:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
getdents(r0, 0x0, 0xbdf4ac0198399ebc)

18:59:19 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x6}, 0x1c)

18:59:19 executing program 2:
syz_usb_connect$cdc_ncm(0x5, 0x82, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x70, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}, [@network_terminal={0x7}, @dmm={0x7}, @country_functional={0x6}]}, {{0x9, 0x5, 0x81, 0x3, 0x20}}}}}}]}}, 0x0)

18:59:19 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x0)

18:59:20 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0x6}, 0x1c)

18:59:19 executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000180)=[{}, {}]})

18:59:20 executing program 1:
r0 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_JOIN_FILTERS(r0, 0x65, 0x6, 0x0, &(0x7f0000002500))

18:59:20 executing program 0:
openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)

18:59:20 executing program 3:
mq_open(&(0x7f0000000000)='&!\\-,-@,:\x17-&\x00', 0x0, 0x0, 0x0)

18:59:20 executing program 1:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
recvmmsg(r0, &(0x7f0000001b00)=[{{&(0x7f0000000000)=@qipcrtr, 0x80, 0x0}}], 0x1, 0x0, 0x0)

[  329.454612][   T73] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  329.737176][   T73] usb 7-1: Using ep0 maxpacket: 16
[  329.885243][   T73] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  329.927851][   T73] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  329.943208][   T73] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  329.964088][   T73] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  329.996928][   T73] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  330.184825][   T73] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  330.207017][   T73] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  330.252855][   T73] usb 7-1: Product: syz
[  330.270506][   T73] usb 7-1: Manufacturer: syz
[  330.305555][   T73] usb 7-1: SerialNumber: syz
[  330.644768][   T73] cdc_ncm 7-1:1.0: bind() failure
[  330.672249][   T73] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[  330.693969][   T73] cdc_ncm 7-1:1.1: bind() failure
[  330.726429][   T73] usb 7-1: USB disconnect, device number 2
[  331.464719][ T5030] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  331.714753][ T5030] usb 7-1: Using ep0 maxpacket: 16
[  331.850052][ T5030] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  331.874199][ T5030] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  331.896935][ T5030] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  331.912540][ T5030] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  331.929071][ T5030] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  332.105679][ T5030] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  332.122105][ T5030] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  332.135349][ T5030] usb 7-1: Product: syz
[  332.140755][ T5030] usb 7-1: Manufacturer: syz
[  332.148636][ T5030] usb 7-1: SerialNumber: syz
18:59:23 executing program 3:
syz_io_uring_setup(0x5a9b, &(0x7f0000000000), &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0))
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)

18:59:23 executing program 1:
socket$inet(0x2, 0x0, 0xc02)

18:59:23 executing program 0:
openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000340), 0x0)

18:59:23 executing program 2:
syz_usb_connect$cdc_ncm(0x5, 0x82, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x70, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}, [@network_terminal={0x7}, @dmm={0x7}, @country_functional={0x6}]}, {{0x9, 0x5, 0x81, 0x3, 0x20}}}}}}]}}, 0x0)

[  332.223768][ T5030] usb 7-1: can't set config #1, error -71
[  332.271729][ T5030] usb 7-1: USB disconnect, device number 3
18:59:23 executing program 1:
mq_notify(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x41, 0x0, @thr={0x0, 0x0}})

18:59:23 executing program 0:
clone3(&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, {}, &(0x7f00000001c0), 0x0, 0x0, 0x0}, 0x58)

18:59:23 executing program 3:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
accept4(r0, 0x0, 0x0, 0xc00)

18:59:23 executing program 1:
perf_event_open(&(0x7f00000030c0)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

18:59:23 executing program 0:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_ext={0x1c, 0x3, &(0x7f0000000140)=@framed, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

18:59:23 executing program 1:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
recvmmsg(r0, 0x0, 0x0, 0x0, 0x0)

18:59:23 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10)
listen(r1, 0x3)

[  332.695122][ T5030] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  332.957013][ T5030] usb 7-1: Using ep0 maxpacket: 16
[  333.095430][ T5030] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  333.121519][ T5030] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  333.137195][ T5030] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  333.152502][ T5030] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  333.167926][ T5030] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  333.335117][ T5030] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  333.357673][ T5030] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  333.376521][ T5030] usb 7-1: Product: syz
[  333.386021][ T5030] usb 7-1: Manufacturer: syz
[  333.396841][ T5030] usb 7-1: SerialNumber: syz
[  333.745081][ T5030] cdc_ncm 7-1:1.0: bind() failure
[  333.807669][ T5030] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[  333.825996][ T5030] cdc_ncm 7-1:1.1: bind() failure
[  333.868292][ T5030] usb 7-1: USB disconnect, device number 4
18:59:25 executing program 1:
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
ioctl$vim2m_VIDIOC_QBUF(r0, 0xc058560f, &(0x7f0000000200)={0x0, 0x1, 0x4, 0x0, 0x0, {0x0, 0x2710}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "a9fb97ab"}})

18:59:25 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), r0)
sendmsg$L2TP_CMD_SESSION_GET(r0, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000001c0)={0x0}}, 0x0)

18:59:25 executing program 3:
mq_notify(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, 0x0, @thr={0x0, 0x0}})

18:59:25 executing program 2:
socketpair(0x1e, 0x0, 0x0, &(0x7f00000005c0))

18:59:25 executing program 2:
getitimer(0x0, &(0x7f0000000240))

18:59:25 executing program 3:
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x3a400, 0x0)

18:59:25 executing program 1:
getresuid(&(0x7f00000001c0), 0x0, 0x0)
getresuid(&(0x7f0000000540), &(0x7f0000000580), &(0x7f00000005c0))

18:59:25 executing program 0:
r0 = socket$can_raw(0x1d, 0x3, 0x1)
recvmsg$can_raw(r0, &(0x7f0000001e80)={&(0x7f0000000b00)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @local}}}, 0x80, 0x0}, 0x2)

18:59:26 executing program 3:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
recvmmsg(r0, &(0x7f0000001b00)=[{{&(0x7f0000000000)=@qipcrtr, 0x80, 0x0}}], 0x1, 0x41, &(0x7f0000001b80))

18:59:26 executing program 2:
r0 = socket(0xa, 0x5, 0x0)
bind$can_raw(r0, 0x0, 0x0)

18:59:26 executing program 1:
openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080), 0x698581, 0x0)

18:59:26 executing program 3:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
read$hidraw(r0, &(0x7f00000000c0)=""/144, 0x90)

18:59:26 executing program 1:
sendto$l2tp6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)

18:59:26 executing program 2:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000180)=[{}, {0x8}]})

18:59:26 executing program 3:
clone3(&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000240)=[0x0], 0x1}, 0x58)

18:59:27 executing program 1:
io_getevents(0x0, 0x0, 0x0, 0x0, &(0x7f0000000140))

18:59:27 executing program 2:
openat$vim2m(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)

18:59:27 executing program 3:
r0 = open$dir(&(0x7f0000000200)='./file0\x00', 0x8041, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r0, 0xc080661a, 0x0)

18:59:27 executing program 0:
getsockname$tipc(0xffffffffffffffff, 0x0, 0x0)

18:59:27 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_TUNNEL_MODIFY(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x14}, 0x14}}, 0x0)

18:59:27 executing program 0:
syz_open_dev$audion(&(0x7f0000000180), 0x1, 0x0)

18:59:27 executing program 1:
openat$dlm_control(0xffffffffffffff9c, &(0x7f00000002c0), 0x46402, 0x0)

18:59:27 executing program 2:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, 0x0)

18:59:27 executing program 3:
clone(0x40000000007fc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOCTL_STOP_ACCEL_DEV(r0, 0x5421, 0x0)

18:59:27 executing program 1:
r0 = syz_open_dev$audion(&(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_IOEVENTFD(r0, 0x4040ae79, 0x0)

18:59:27 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x0)

18:59:27 executing program 0:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, 0x0, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:27 executing program 3:
r0 = syz_open_dev$audion(&(0x7f0000000000), 0x5f1, 0x4200)
r1 = syz_open_dev$audion(&(0x7f0000000080), 0xffffffff00000000, 0x40b80)
ioctl$KVM_IOEVENTFD(r0, 0x4040ae79, &(0x7f00000000c0)={0xf000, &(0x7f0000000040), 0x4, r1, 0x5})
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000200)={r0, &(0x7f0000000140)="0f3096fbbb979f3cef1e0b33a4d4de71387501664127a9934b7aecd8ad87047cd45a1cb13c4a3ff2fdf3e862a04ffecdac255e38aa99215ddff6e6ca642d8d5ce4a6728fcbf9e06da8c48c841a539b4b8965d2f0210bbfcc85ba8bb935f0e003", &(0x7f00000001c0)=@tcp=r1, 0x1}, 0x20)
socket$vsock_stream(0x28, 0x1, 0x0)

18:59:27 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getpeername$netlink(r0, 0x0, &(0x7f0000000040))

18:59:27 executing program 2:
syz_usb_connect$cdc_ncm(0x5, 0x6e, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}, {{0x9, 0x5, 0x81, 0x3, 0x20}}}}}}]}}, 0x0)

18:59:28 executing program 1:
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)

18:59:28 executing program 0:
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0xb22c2, 0x0)

[  337.414950][ T3989] usb 7-1: new high-speed USB device number 5 using dummy_hcd
18:59:28 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x0)

18:59:28 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x0)

18:59:28 executing program 0:
openat$vmci(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)

[  337.676097][ T3989] usb 7-1: Using ep0 maxpacket: 16
18:59:28 executing program 3:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x5411, &(0x7f0000001340))

18:59:28 executing program 1:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
getsockopt$SO_J1939_PROMISC(r0, 0x6b, 0x2, 0x0, 0x0)

[  337.830859][ T3989] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  337.900755][ T3989] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  337.966642][ T3989] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  337.987203][ T3989] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  338.009960][ T3989] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  338.275753][ T3989] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  338.318404][ T3989] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  338.344163][ T3989] usb 7-1: Product: syz
[  338.351677][ T3989] usb 7-1: Manufacturer: syz
[  338.359258][ T3989] usb 7-1: SerialNumber: syz
[  338.664959][ T3989] cdc_ncm 7-1:1.0: bind() failure
[  338.708985][ T3989] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[  338.723752][ T3989] cdc_ncm 7-1:1.1: bind() failure
[  338.738633][ T3989] usb 7-1: USB disconnect, device number 5
[  339.514677][   T43] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  339.794602][   T43] usb 7-1: Using ep0 maxpacket: 16
[  339.945955][   T43] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  339.988544][   T43] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  340.023453][   T43] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  340.054701][   T43] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  340.085163][   T43] usb 7-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  340.165640][   T43] usb 7-1: string descriptor 0 read error: -71
[  340.205456][   T43] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  340.226644][   T43] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  340.315209][   T43] usb 7-1: can't set config #1, error -71
[  340.355582][   T43] usb 7-1: USB disconnect, device number 6
18:59:31 executing program 0:
renameat2(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0xa)

18:59:31 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x0)

18:59:31 executing program 3:
r0 = socket$tipc(0x1e, 0x2, 0x0)
getsockopt$TIPC_SOCK_RECVQ_DEPTH(r0, 0x10f, 0x84, 0x0, 0x0)

18:59:31 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

18:59:31 executing program 0:
faccessat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xcf)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x10000042)
socket$packet(0x11, 0x3, 0x300)
perf_event_open(&(0x7f00000030c0)={0x1, 0x80, 0x0, 0x2, 0x24, 0x3f, 0x0, 0x1, 0x1, 0xf, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x3, 0x4, @perf_bp={&(0x7f0000003080), 0x5}, 0x8, 0x200, 0x2, 0x3, 0x0, 0x1f, 0x20, 0x0, 0x7fff, 0x0, 0x6}, 0xffffffffffffffff, 0x3, 0xffffffffffffffff, 0xa)
openat2(0xffffffffffffff9c, &(0x7f0000003140)='./file0\x00', &(0x7f0000003180)={0x2000, 0x184}, 0x18)
openat$full(0xffffffffffffff9c, &(0x7f00000031c0), 0x2000, 0x0)
fork()
accept4$inet(0xffffffffffffffff, &(0x7f000000e800)={0x2, 0x0, @empty}, &(0x7f000000e840)=0x10, 0x800)

18:59:31 executing program 3:
write$ppp(0xffffffffffffffff, 0x0, 0x0)

18:59:31 executing program 1:
syz_io_uring_setup(0x5a9b, &(0x7f0000000000), &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, &(0x7f00000000c0))

18:59:31 executing program 2:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, 0x0, 0x0)

18:59:31 executing program 3:
open$dir(&(0x7f00000003c0)='./file0\x00', 0x8040, 0x0)
utimensat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', &(0x7f0000000300)={{0x77359400}, {0x0, 0x2710}}, 0x0)

18:59:31 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x0)

18:59:31 executing program 1:
pselect6(0x40, &(0x7f0000000000), &(0x7f0000000040)={0x401}, 0x0, 0x0, 0x0)

18:59:31 executing program 0:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
sendto$l2tp6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

18:59:31 executing program 3:
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}}}}}]}}, &(0x7f0000000280)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x0, 0x6}, 0x0, 0x0})

18:59:31 executing program 2:
syz_open_dev$sndpcmc(&(0x7f00000000c0), 0x4, 0x0)

18:59:32 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
r1 = socket$inet(0x2, 0x80001, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:32 executing program 0:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

[  341.354638][ T5009] usb 8-1: new high-speed USB device number 2 using dummy_hcd
18:59:32 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x0)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:32 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, 0x0, 0x0)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

18:59:32 executing program 0:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

[  341.667192][ T5009] usb 8-1: Using ep0 maxpacket: 16
18:59:32 executing program 0:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(r1, 0x3)

[  341.815704][ T5009] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  341.865674][ T5009] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  341.896019][ T5009] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  341.944717][ T5009] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  341.983451][ T5009] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  342.014346][ T5009] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  342.234879][ T5009] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  342.247780][ T5009] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  342.261272][ T5009] usb 8-1: Product: syz
[  342.292186][ T5009] usb 8-1: Manufacturer: syz
[  342.307850][ T5009] usb 8-1: SerialNumber: syz
[  342.675042][ T5009] cdc_ncm 8-1:1.0: bind() failure
[  342.694225][ T5009] cdc_ncm 8-1:1.1: CDC Union missing and no IAD found
[  342.716443][ T5009] cdc_ncm 8-1:1.1: bind() failure
[  342.728734][ T5009] usb 8-1: USB disconnect, device number 2
[  343.497678][ T5030] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  343.787142][ T5030] usb 8-1: Using ep0 maxpacket: 16
[  343.965645][ T5030] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  344.000745][ T5030] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  344.036341][ T5030] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  344.104064][ T5030] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  344.183838][ T5030] usb 8-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  344.201930][ T5030] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  344.296779][ T5030] usb 8-1: string descriptor 0 read error: -71
[  344.306983][ T5030] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  344.324732][ T5030] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  344.425847][ T5030] usb 8-1: can't set config #1, error -71
[  344.460210][ T5030] usb 8-1: USB disconnect, device number 3
18:59:35 executing program 2:
r0 = socket$tipc(0x1e, 0x2, 0x0)
getsockname$tipc(r0, 0x0, 0x0)

18:59:35 executing program 1:
execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x0)

18:59:35 executing program 0:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x3, &(0x7f0000000000)=[{0x5}, {}, {0x401}]})

18:59:35 executing program 3:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="a0"], 0x1d0}, 0x0)

18:59:35 executing program 2:
clone3(&(0x7f0000000280)={0x8000, 0x0, 0x0, 0x0, {0x5}, 0x0, 0x0, 0x0, &(0x7f0000000240)=[0x0], 0x1}, 0x58)

18:59:35 executing program 3:
r0 = socket$tipc(0x1e, 0x2, 0x0)
getsockopt$TIPC_SOCK_RECVQ_DEPTH(r0, 0x10f, 0x84, &(0x7f00000007c0), &(0x7f0000000800)=0x4)

18:59:35 executing program 0:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ff7000/0x9000)=nil, 0x9000, 0x0, 0x40010, r0, 0x10000000)

18:59:35 executing program 1:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r0, 0x4, 0x0, 0x0, 0xffffffffffffffff)

18:59:35 executing program 0:
mq_open(&(0x7f0000000080)='\'\x00', 0x0, 0x0, 0x0)

18:59:35 executing program 1:
openat$fb1(0xffffffffffffff9c, &(0x7f0000000000), 0xae8ebc6172fd678a, 0x0)

18:59:35 executing program 2:
bind$rds(0xffffffffffffffff, 0x0, 0x0)

18:59:35 executing program 3:
r0 = socket$tipc(0x1e, 0x2, 0x0)
getsockopt$TIPC_SOCK_RECVQ_DEPTH(r0, 0x10f, 0x84, &(0x7f00000007c0), &(0x7f0000000800)=0x4)

18:59:36 executing program 2:
openat$drirender128(0xffffffffffffff9c, &(0x7f0000002bc0), 0x24103, 0x0)

18:59:36 executing program 0:
syz_open_dev$sndpcmc(&(0x7f00000000c0), 0x4, 0x240)

18:59:36 executing program 1:
accept4$tipc(0xffffffffffffffff, 0x0, 0x0, 0x80800)
socket(0xa, 0x2, 0x1)

18:59:36 executing program 3:
r0 = socket$xdp(0x2c, 0x3, 0x0)
ioctl$sock_SIOCGIFCONF(r0, 0x8912, 0x0)

18:59:36 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$GTP_CMD_GETPDP(r0, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000400)={0x0, 0x40}}, 0x0)
syz_genetlink_get_family_id$team(&(0x7f0000000100), r0)

18:59:36 executing program 3:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, 0x0)

18:59:36 executing program 2:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
accept4(r0, 0x0, 0x0, 0x0)
r1 = ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)
ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, r1)
r2 = msgget$private(0x0, 0x24)
r3 = msgget(0x0, 0x7c4)
msgsnd(r3, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x76, 0x0)
msgget(0x2, 0xee)
msgctl$MSG_STAT_ANY(r2, 0xd, &(0x7f0000000000)=""/10)

18:59:36 executing program 3:
socket(0x28, 0x0, 0x3ff)

18:59:36 executing program 0:
open_tree(0xffffffffffffff9c, 0x0, 0x80)

18:59:36 executing program 2:
socket(0x15, 0x0, 0x0)

18:59:36 executing program 1:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000001000), 0x0, 0x0)
ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, &(0x7f0000001040)={0x0, 0x0, {}, {0x0, 0x0, 0x0, {}, {}, @ramp}})

18:59:36 executing program 3:
r0 = syz_open_dev$audion(&(0x7f0000000680), 0x0, 0x0)
getsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, 0x0, 0x0)

18:59:36 executing program 2:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$sock_inet_tcp_SIOCINQ(r0, 0x541b, &(0x7f00000000c0))

18:59:36 executing program 0:
faccessat(0xffffffffffffff9c, 0x0, 0xcf)

18:59:36 executing program 0:
r0 = openat$drirender128(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f0000000400))

18:59:36 executing program 2:
r0 = shmget(0x3, 0x3000, 0x40, &(0x7f0000ffb000/0x3000)=nil)
shmctl$IPC_RMID(r0, 0x0)

18:59:36 executing program 3:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
bind$tipc(r0, 0x0, 0x0)

18:59:36 executing program 1:
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_GET(r0, &(0x7f0000001b80)={0x0, 0x0, 0x0}, 0x0)

18:59:36 executing program 2:
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000200), 0x32d842, 0x0)

18:59:36 executing program 0:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f00000000c0), 0x8)

18:59:36 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x4}, 0x40)

18:59:36 executing program 3:
open$dir(&(0x7f00000003c0)='./file0\x00', 0x8040, 0x0)
utimensat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0)

18:59:36 executing program 2:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
mmap$snddsp(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x5, 0x10, r0, 0x0)

18:59:36 executing program 1:
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000))

18:59:36 executing program 0:
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
recvmsg$can_j1939(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[{0x0}, {0x0}, {0x0}], 0x3}, 0x40000003)

18:59:36 executing program 2:
socketpair(0x1e, 0x0, 0x3ff, &(0x7f0000000000))

18:59:36 executing program 3:
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_IMPORTANCE(r0, 0x10f, 0x7f, &(0x7f00000000c0)=0x435, 0x4)

18:59:37 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$MPTCP_PM_CMD_SET_LIMITS(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0x14}, 0x14}}, 0x0)

18:59:37 executing program 2:
r0 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, &(0x7f0000000040)=[{}, {}], &(0x7f0000000080)=0x10)

18:59:37 executing program 1:
socket(0x1, 0x0, 0x65)

18:59:37 executing program 3:
mremap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000, 0x0, &(0x7f0000ffa000/0x2000)=nil)

18:59:37 executing program 2:
openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080), 0x8c200, 0x0)

18:59:37 executing program 0:
r0 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$DRM_IOCTL_GET_CAP(r0, 0xc010640c, &(0x7f00000001c0)={0x6})

18:59:37 executing program 1:
socketpair(0x1f, 0x0, 0x0, &(0x7f0000000380))

18:59:37 executing program 3:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000001000), 0x0, 0x0)
ioctl$UI_BEGIN_FF_UPLOAD(r0, 0xc06855c8, 0x0)

18:59:37 executing program 0:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000200), 0x32d842, 0x0)
accept4$tipc(r0, 0x0, 0x0, 0x0)

18:59:37 executing program 2:
bpf$OBJ_GET_PROG(0x7, &(0x7f00000004c0)={&(0x7f0000000480)='./file0\x00'}, 0x10)

18:59:37 executing program 1:
open$dir(&(0x7f0000000080)='./file0\x00', 0x1010c1, 0x0)

18:59:37 executing program 0:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="a0000000000000000a01000008000000bc1ef986e850168e7b250911024f0795fcfc458b295b63ef1303348de94c0dcd3046bc12ad354622e735dff631106e0b632f23b086e6f241d5819089f973b2081e9fa59ab78a59300891e1808fb345232034542d8b975b2363923d5efe73f23818c383454ff3a09f2725515ec70c6efdbc4d472451acc0a533e6e2e48f642f1c75c71081179a2f2c99f0a555e600b80016000000000005"], 0x1d0}, 0x0)

18:59:37 executing program 3:
r0 = socket$rds(0x15, 0x5, 0x0)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(r0, 0x114, 0xa, &(0x7f0000000040)={0x3, "0600b2"}, 0x4)

18:59:37 executing program 2:
socketpair$tipc(0x1e, 0x0, 0x0, &(0x7f0000000000))

18:59:37 executing program 3:
openat$capi20(0xffffffffffffff9c, &(0x7f00000010c0), 0x0, 0x0)

18:59:37 executing program 0:
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6, 0x24, 0x1a, 0x0, 0x9}}, {{0x9, 0x5, 0x81, 0x3, 0x20}}}}}}]}}, 0x0)

18:59:37 executing program 3:
r0 = socket$tipc(0x1e, 0x2, 0x0)
sendmsg$tipc(r0, &(0x7f0000003440)={&(0x7f0000001180)=@id, 0x10, &(0x7f0000002400)=[{&(0x7f00000011c0)="10", 0x1}, {0x0}], 0x2, &(0x7f0000002440)="e130d727b3192fee2cac207cfceedac7a56daf013d7e22bfc9f0225568b213173077c2e566", 0x25}, 0x0)

18:59:37 executing program 1:
socket$inet(0x2, 0x80001, 0x84)
r0 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)

18:59:37 executing program 2:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(0xffffffffffffffff, 0x3)

18:59:37 executing program 3:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
bind$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x4e20, @local}, 0x10)
listen(0xffffffffffffffff, 0x3)

18:59:37 executing program 1:
r0 = socket$inet(0x2, 0x80001, 0x84)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
listen(r0, 0x3)
r1 = socket$inet(0x2, 0x80001, 0x84)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4)
listen(r1, 0x3)

[  346.899343][   T22] usb 5-1: new high-speed USB device number 7 using dummy_hcd
18:59:38 executing program 1:
openat$tun(0xffffffffffffff9c, &(0x7f0000001640), 0x84040, 0x0)

18:59:38 executing program 3:
socket$inet6(0xa, 0x0, 0x8001)

[  347.216050][   T22] usb 5-1: Using ep0 maxpacket: 16
[  347.384921][   T22] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  347.419969][   T22] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  347.450892][   T22] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  347.477180][   T22] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  347.500094][   T22] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  347.744886][   T22] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  347.773241][   T22] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  347.797962][   T22] usb 5-1: Product: syz
[  347.804041][   T22] usb 5-1: Manufacturer: syz
[  347.811381][   T22] usb 5-1: SerialNumber: syz
[  348.134926][   T22] cdc_ncm 5-1:1.0: bind() failure
[  348.150476][   T22] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  348.175235][   T22] cdc_ncm 5-1:1.1: bind() failure
[  348.188495][   T22] usb 5-1: USB disconnect, device number 7
[  348.863716][ T3401] ieee802154 phy0 wpan0: encryption failed: -22
[  348.876165][ T3401] ieee802154 phy1 wpan1: encryption failed: -22
[  349.059791][   T43] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  349.374671][   T43] usb 5-1: Using ep0 maxpacket: 16
[  349.515107][   T43] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  349.568129][   T43] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  349.592614][   T43] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  349.614870][   T43] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  349.630653][   T43] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  349.704717][   T43] usb 5-1: string descriptor 0 read error: -71
[  349.714098][   T43] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  349.768896][   T43] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  349.834733][   T43] usb 5-1: can't set config #1, error -71
[  349.858263][   T43] usb 5-1: USB disconnect, device number 8
18:59:40 executing program 2:
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x800000000009031, 0xffffffffffffffff, 0x0)
msync(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x6)
mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x100000003)
msync(&(0x7f000063a000/0x3000)=nil, 0x3000, 0x0)
mbind(&(0x7f00002b0000/0x3000)=nil, 0x3000, 0x3, &(0x7f0000000000)=0xffffffff, 0x9, 0x5)
madvise(&(0x7f000080b000/0x1000)=nil, 0x1000, 0x0)

18:59:40 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getpeername$netlink(r0, 0x0, 0x0)

18:59:40 executing program 1:
syz_io_uring_setup(0x735f, &(0x7f0000000100), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, 0x0, &(0x7f00000001c0))

18:59:41 executing program 0:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
read$hidraw(r0, 0x0, 0x0)

18:59:41 executing program 3:
clock_gettime(0x0, &(0x7f0000003d80))

18:59:41 executing program 1:
r0 = socket$can_raw(0x1d, 0x3, 0x1)
bind$can_raw(r0, &(0x7f0000002340), 0x10)

18:59:41 executing program 3:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$UI_GET_SYSNAME(r0, 0x8040552c, 0x0)

18:59:41 executing program 0:
clone3(&(0x7f0000000280)={0x8000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

18:59:42 executing program 3:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendmsg$sock(r0, &(0x7f00000008c0)={&(0x7f0000000780)=@ieee802154={0x24, @long}, 0x80, &(0x7f0000000880)=[{&(0x7f0000000800)="e7", 0x1}], 0x1}, 0x0)

18:59:42 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), r0)
sendmsg$L2TP_CMD_SESSION_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)

18:59:42 executing program 1:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x0, 0x9, 0x0, 0xfff}]})

18:59:42 executing program 2:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1d0}, 0x0)

18:59:43 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$GTP_CMD_GETPDP(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x40}}, 0x0)

18:59:43 executing program 0:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000300)=@ccm_128={{}, "d7501bafb8cc6e11", "429daa2ab5a966811532b07e3dcaf0d8", "a489c166", "8d63f95d31ae2442"}, 0x28)

18:59:43 executing program 1:
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000005480)="8c", 0x1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180))

18:59:43 executing program 2:
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET(r0, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000002c0)={0x0}}, 0x0)

18:59:43 executing program 0:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000300)=@ccm_128={{}, "d7501bafb8cc6e11", "429daa2ab5a966811532b07e3dcaf0d8", "a489c166", "8d63f95d31ae2442"}, 0x28)

18:59:43 executing program 3:
pselect6(0x40, &(0x7f0000000000), &(0x7f0000000040)={0x401}, 0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={[0x6]}, 0x8})

18:59:43 executing program 1:
clone3(&(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000240)=[0x0, 0x0], 0x2}, 0x58)

18:59:43 executing program 2:
openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)

18:59:43 executing program 0:
r0 = socket$l2tp6(0xa, 0x2, 0x73)
recvmmsg(r0, &(0x7f00000015c0)=[{{0x0, 0x0, &(0x7f0000000000)=[{0x0}, {0x0}, {0x0}, {0x0, 0xffffffffffffff50}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9}}, {{&(0x7f00000000c0)=@ethernet={0x0, @remote}, 0x0, &(0x7f0000001540)=[{&(0x7f0000000140)=""/201}, {&(0x7f0000000240)=""/164}, {&(0x7f0000000300)=""/144}, {&(0x7f00000003c0)=""/4096}, {&(0x7f00000013c0)=""/217}, {&(0x7f00000014c0)=""/124}]}}], 0x1, 0x0, 0x0)

18:59:43 executing program 3:
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00')
mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
creat(&(0x7f0000000280)='./file0/file0\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x20000008)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
open(&(0x7f0000000000)='./file1\x00', 0x220702, 0x21)
renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000100)='./file0\x00', 0x2)

18:59:43 executing program 2:
r0 = socket$tipc(0x1e, 0x2, 0x0)
getsockname$tipc(r0, &(0x7f0000000000), &(0x7f0000000040)=0x10)

18:59:43 executing program 0:
syz_io_uring_setup(0x735f, &(0x7f0000000100)={0x0, 0x29a1, 0x2}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000180), &(0x7f00000001c0))

18:59:43 executing program 2:
r0 = socket$rds(0x15, 0x5, 0x0)
connect$rds(r0, &(0x7f0000000000)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)

18:59:43 executing program 2:
mprotect(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0)

18:59:43 executing program 0:
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x18800, 0x0)

18:59:43 executing program 1:
syz_io_uring_setup(0x5a9b, &(0x7f0000000000), &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000080), &(0x7f00000000c0))

18:59:43 executing program 3:
syz_open_dev$audion(&(0x7f0000000080), 0x0, 0x40b80)

18:59:43 executing program 1:
r0 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$DRM_IOCTL_LOCK(r0, 0x4008642a, &(0x7f0000000380))

18:59:43 executing program 3:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r0, 0x4, &(0x7f0000000000)='@\xec}\xda/\xf2%\x00', &(0x7f0000000040)='./file0\x00', 0xffffffffffffffff)

18:59:43 executing program 0:
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f00000000c0)='./file0\x00')
mkdirat(r0, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
creat(&(0x7f0000000280)='./file0/file0\x00', 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x20000008)
r1 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
open(&(0x7f0000000000)='./file1\x00', 0x220702, 0x21)
renameat2(r1, &(0x7f0000000400)='./file0/file0\x00', r1, &(0x7f0000000100)='./file0\x00', 0x2)

18:59:44 executing program 1:
fsopen(&(0x7f0000000040)='nilfs2\x00', 0x0)

18:59:44 executing program 3:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
ioctl$SIOCGETNODEID(r0, 0x89e1, &(0x7f0000000040))

18:59:44 executing program 2:
syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x2220, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="cefaad1bc0210000ff0f0000ffffffffffffffffffffffffffffffff73797a6b616c73797a6b616c00"/64, 0x40}, {&(0x7f0000010100)="0200000011000000140000001f22000002000000ed41000000000000010000000200000093c1645f93c1645f93c1645f00"/64, 0x40, 0x200}, {&(0x7f0000010200)="02002e0000000000000000000000000002002e2e00"/32, 0x20, 0x2200}], 0x0, &(0x7f0000010300))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
r1 = syz_mount_image$v7(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x81, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="46db5cedd2a5f91b69b69b0c47f4ac8dacee2ca3ee90cd9792cdaf9f7cb8b9ee", 0x20, 0x7}, {&(0x7f0000000280)="d07f126ed640508afc5998372b02e61dacf40117eaa9f32c7f5844ac4913f19498902cbeff03fe7d4690bb0f7e4a3ae1d16318b68a4fda7ce0518850e37646c4f571271f0030ec413493746aaac24ad6b13c254569032e721929008348cd7065d3eef4053e082866916f009886a2b3de35d708260e58dc619e2d8238debccf255a56f4e8527e356be2d6dbe82964384348768aa77a901b55709ae168b1e4fbbe0b80bc936c939d8b8151c0cca6389a3e0e4e4790afcf5f4ec66c425c4f9899", 0xbf, 0x3}], 0x46, &(0x7f0000000380)=ANY=[@ANYBLOB="096c73002c2325232c626673002c736d61636b66737472616e736d7574653d626673002c66756e633d5041540100000045434b2c006edce7c3520bae40c1b0d540f14f9ff5bda18b0952173528d1c65ce22279f8a4b7557002ac45"])
move_mount(r0, &(0x7f0000000040)='./file0\x00', r1, &(0x7f0000000340)='./file0\x00', 0x20)

[  353.110658][T11152] loop2: detected capacity change from 0 to 34
18:59:44 executing program 0:
getsockopt$CAN_RAW_FILTER(0xffffffffffffffff, 0x65, 0x1, 0x0, 0x0)

[  353.190117][T11152] BFS-fs: bfs_fill_super(): Superblock is corrupted on loop2
18:59:44 executing program 1:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
accept(r0, 0x0, 0x0)

18:59:44 executing program 3:
pselect6(0x40, &(0x7f0000000000), &(0x7f0000000040)={0x401}, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140)={&(0x7f0000000100)={[0x6]}, 0x8})

18:59:44 executing program 0:
sendmsg$MPTCP_PM_CMD_SET_LIMITS(0xffffffffffffffff, 0x0, 0x0)

18:59:44 executing program 0:
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000000)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}}}}}]}}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0})

18:59:44 executing program 1:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
accept(r0, 0x0, 0x0)

[  353.413876][T11152] loop2: detected capacity change from 0 to 34
[  353.450279][T11152] BFS-fs: bfs_fill_super(): Superblock is corrupted on loop2
18:59:44 executing program 3:
utimensat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={{}, {0x0, 0xea60}}, 0x0)

18:59:44 executing program 2:
statx(0xffffffffffffffff, 0x0, 0x200, 0x0, 0x0)

18:59:44 executing program 1:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
accept(r0, 0x0, 0x0)

18:59:44 executing program 3:
openat$userio(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

18:59:44 executing program 1:
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
accept(r0, 0x0, 0x0)

18:59:44 executing program 3:
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0xc0505350, &(0x7f0000000100)={{0xff}})

[  353.757451][ T9596] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  354.034555][ T9596] usb 5-1: Using ep0 maxpacket: 16
[  354.227857][ T9596] usb 5-1: unable to get BOS descriptor or descriptor too short
[  354.325579][ T9596] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  354.341965][ T9596] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  354.362072][ T9596] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  354.377409][ T9596] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  354.391313][ T9596] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  354.405819][ T9596] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  354.634746][ T9596] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  354.652008][ T9596] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  354.669401][ T9596] usb 5-1: Product: syz
[  354.676126][ T9596] usb 5-1: Manufacturer: syz
[  354.692219][ T9596] usb 5-1: SerialNumber: syz
[  354.994820][ T9596] cdc_ncm 5-1:1.0: bind() failure
[  355.005554][ T9596] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  355.026597][ T9596] cdc_ncm 5-1:1.1: bind() failure
[  355.056338][ T9596] usb 5-1: USB disconnect, device number 9
[  355.824552][ T9596] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  356.124905][ T9596] usb 5-1: Using ep0 maxpacket: 16
[  356.330738][ T9596] usb 5-1: unable to get BOS descriptor or descriptor too short
[  356.519886][ T9596] usb 5-1: unable to read config index 0 descriptor/all
[  356.591397][ T9596] usb 5-1: can't read configurations, error -71
18:59:47 executing program 2:
syz_io_uring_setup(0x5a9b, &(0x7f0000000000), &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000080), 0x0)

18:59:47 executing program 3:
openat$vim2m(0xffffffffffffff9c, &(0x7f00000023c0), 0x2, 0x0)

18:59:47 executing program 1:
accept(0xffffffffffffffff, 0x0, 0x0)

18:59:47 executing program 0:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
write$P9_RRENAME(r0, 0x0, 0x0)

18:59:47 executing program 1:
accept(0xffffffffffffffff, 0x0, 0x0)

18:59:47 executing program 2:
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000400), 0x10)

18:59:48 executing program 1:
accept(0xffffffffffffffff, 0x0, 0x0)

18:59:48 executing program 0:
accept4$inet(0xffffffffffffffff, 0x0, &(0x7f0000000040), 0x0)
clock_gettime(0x0, &(0x7f0000000980))

18:59:48 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), r0)
sendmsg$L2TP_CMD_SESSION_GET(r0, &(0x7f0000000200)={&(0x7f0000000100), 0xc, &(0x7f00000001c0)={0x0}}, 0x0)

18:59:48 executing program 2:
mq_open(&(0x7f0000000000)='/dev/hwrng\x00', 0x0, 0x0, &(0x7f0000000040))

18:59:48 executing program 0:
utimensat(0xffffffffffffffff, 0x0, &(0x7f0000000040)={{0x0, 0x2710}, {0x77359400}}, 0x0)

18:59:48 executing program 2:
getresuid(&(0x7f00000001c0), 0x0, 0x0)
getresuid(&(0x7f0000000540), &(0x7f0000000580), 0x0)

18:59:48 executing program 1:
socket$inet_smc(0x2b, 0x1, 0x0)
accept(0xffffffffffffffff, 0x0, 0x0)

18:59:48 executing program 3:
r0 = socket(0xa, 0x5, 0x0)
bind$can_raw(r0, &(0x7f00000002c0), 0x10)

18:59:48 executing program 2:
socket$can_j1939(0x1d, 0x2, 0x7)
socket$tipc(0x1e, 0x0, 0x0)
socket(0xa, 0x2, 0x1)

18:59:48 executing program 0:
openat$drirender128(0xffffffffffffff9c, &(0x7f0000002bc0), 0x24100, 0x0)

18:59:48 executing program 1:
socket$inet_smc(0x2b, 0x1, 0x0)
accept(0xffffffffffffffff, 0x0, 0x0)

18:59:48 executing program 3:
socket(0x31, 0x0, 0x0)

18:59:48 executing program 1:
socket$inet_smc(0x2b, 0x1, 0x0)
accept(0xffffffffffffffff, 0x0, 0x0)

18:59:48 executing program 0:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$PPPIOCSDEBUG(0xffffffffffffffff, 0x40047440, &(0x7f0000000000))
ioctl$sock_inet_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000100))

18:59:48 executing program 3:
msgsnd(0x0, &(0x7f0000000380)=ANY=[], 0x76, 0x0)
msgctl$MSG_STAT_ANY(0x0, 0xd, &(0x7f0000000000)=""/10)

18:59:48 executing program 3:
r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH(r0, 0x3, 0x0, 0x0, 0xffffffffffffffff)

18:59:49 executing program 0:
msgsnd(0x0, 0x0, 0x76, 0x0)
msgctl$MSG_STAT_ANY(0x0, 0xd, &(0x7f0000000000)=""/10)

18:59:49 executing program 3:
syz_mount_image$nfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, &(0x7f00000011c0), 0x0, &(0x7f0000001280)={[{'\x00'}]})

18:59:49 executing program 1:
r0 = openat(0xffffffffffffffff, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000040)='totmaps\x00')
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
syz_open_procfs(0x0, &(0x7f0000000040)='totmaps\x00')

18:59:49 executing program 0:
socket$packet(0x11, 0x2, 0x300)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000280)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000200)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x4000000000001a8, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
dup2(r0, r1)
sendmmsg(r1, &(0x7f0000007fc0), 0x4000000000001a8, 0x0)
r2 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x12, r2, 0x0)

18:59:49 executing program 2:
r0 = socket$tipc(0x1e, 0x2, 0x0)
sendmsg$tipc(r0, &(0x7f0000003440)={&(0x7f0000001180)=@id, 0x10, &(0x7f0000002400)=[{0x0}, {&(0x7f00000021c0)="89", 0x1}, {0x0}, {&(0x7f0000002380)='L', 0x1}], 0x4, &(0x7f0000002440)="e130d727b3192fee2cac207cfceedac7a56daf013d7e22bfc9f0225568b213173077c2e566", 0x25}, 0x0)

18:59:49 executing program 1:
faccessat(0xffffffffffffff9c, 0x0, 0x0)
socket$nl_audit(0x10, 0x3, 0x9)

18:59:49 executing program 2:
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000640), 0x802, 0x0)
write$input_event(r0, 0x0, 0x0)

18:59:49 executing program 3:
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x6, &(0x7f00000011c0)=[{&(0x7f0000000d40)="c90069f41ccc8148c1fe8c6e9fce2b61599e0673512db963", 0x18, 0x2}, {&(0x7f0000000dc0)="a1ae4a01c42059bc95a97556d0463b12389a674597d132497ec74080332b63982de9ba4f0344b31418f855c720600b7d34423bdcd6522ba61f", 0x39, 0x80000000}, {0x0}, {&(0x7f0000000fc0)="1a8ce67041de7730e766de55ff365a47e55a6a9627b2867e71aa53024aa58b89820aa6fd566c33c309680eebf900c9fe40e9a3986fdeba5fee876259d7b7afe637", 0x41}, {&(0x7f00000010c0)="19d28ebd409c61e3e6d75b58b0672dcedb534f7e02d654d220af45017e27", 0x1e, 0x6}, {&(0x7f0000001140)="a28d5e8c0e46292f1d8571e12da1147f0818cafa4ae00ac9e64a8350d8bf36745adea94350c8ae8421af6f63de97f01237d80cd471dab8df401ae62197db88ae6006c0a77a31d8c87e5f73666d9335db2ed16d8cb94c9d27569908bb86def05678574ddeb7c09a5f721f1736b8a6a3ca9de7a01043", 0x75, 0xfffffffffffffffa}], 0x881040, &(0x7f0000001280)={[], [{@obj_type={'obj_type', 0x3d, '*\'\xa3'}}]})

18:59:49 executing program 2:
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000840), 0x391103, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000001c80), 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$gtp(&(0x7f0000001dc0), 0xffffffffffffffff)
sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000001e80)={0x0, 0x0, &(0x7f0000001e40)={0x0}}, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000001ec0), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

18:59:49 executing program 1:
creat(&(0x7f0000000380)='./file0\x00', 0x0)
syz_mount_image$nfs(0x0, &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

[  358.968697][T11290] loop3: detected capacity change from 0 to 264192
18:59:50 executing program 2:
r0 = creat(&(0x7f0000000380)='./file0\x00', 0x0)
ioctl$sock_inet_tcp_SIOCOUTQ(r0, 0x5411, 0x0)

18:59:50 executing program 1:
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)

[  359.153465][T11290] loop3: detected capacity change from 0 to 264192
18:59:50 executing program 0:
inotify_add_watch(0xffffffffffffffff, 0x0, 0x10000042)

18:59:50 executing program 2:
syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
openat$hwrng(0xffffffffffffff9c, 0x0, 0x525240, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)

18:59:50 executing program 3:
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000840), 0x0, 0x0)
syz_genetlink_get_family_id$gtp(&(0x7f0000001dc0), 0xffffffffffffffff)
socketpair(0x0, 0x0, 0x0, 0x0)

18:59:50 executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f00000000c0)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000034c0)=[{&(0x7f0000000000)={0x14, 0x69, 0x1, 0x0, 0x0, "", [@nested={0x4}]}, 0x14}], 0x1}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendfile(r2, r1, 0x0, 0x80000000003)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = syz_open_procfs(0x0, &(0x7f0000000140)='fdinfo/3\x00')
preadv(r4, &(0x7f0000001400)=[{&(0x7f0000001440)=""/226, 0xe2}], 0x1, 0x0, 0x0)
recvmmsg(r4, &(0x7f00000011c0)=[{{&(0x7f0000000100)=@can, 0x80, &(0x7f0000000340)=[{&(0x7f0000000200)=""/120, 0x78}, {&(0x7f0000000180)=""/38, 0x26}, {&(0x7f0000000280)=""/162, 0xa2}], 0x3, &(0x7f0000000380)=""/150, 0x96}, 0x9}, {{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000440)=""/102, 0x66}, {&(0x7f00000004c0)=""/9, 0x9}, {&(0x7f0000000500)=""/12, 0xc}, {&(0x7f0000000540)=""/134, 0x86}, {&(0x7f0000000600)}, {&(0x7f0000000640)=""/135, 0x87}, {&(0x7f0000000700)=""/227, 0xe3}], 0x7, &(0x7f0000000880)=""/127, 0x7f}}, {{&(0x7f0000000900)=@pppoe={0x18, 0x0, {0x0, @remote}}, 0x80, &(0x7f0000000e40)=[{&(0x7f0000000980)=""/152, 0x98}, {&(0x7f0000000a40)=""/100, 0x64}, {&(0x7f0000000ac0)=""/81, 0x51}, {&(0x7f0000000b40)=""/208, 0xd0}, {&(0x7f0000000c40)=""/241, 0xf1}, {&(0x7f0000000d40)=""/183, 0xb7}, {&(0x7f0000000e00)=""/64, 0x40}], 0x7, &(0x7f0000000ec0)=""/163, 0xa3}, 0x1}, {{&(0x7f0000000f80)=@tipc, 0x80, &(0x7f00000010c0)=[{&(0x7f0000001000)=""/138, 0x8a}], 0x1, &(0x7f0000001100)=""/179, 0xb3}, 0x4}], 0x4, 0x10060, &(0x7f00000012c0)={0x77359400})
ioctl$TUNSETLINK(r3, 0x8912, 0x400308)

18:59:50 executing program 3:
syz_mount_image$nfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001280))

18:59:50 executing program 2:
syz_emit_ethernet(0x3e, &(0x7f0000000180)=ANY=[@ANYBLOB="1196b7f07d12aaaaaaaaaaaa86dd60e6a4df00080000fc000000000000000000000000000000000000000000000000000000000000000000000500000000"], 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000140)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @random="05b827949c76", @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0xa, @random="c152e4773d11", @private=0xa010102, @multicast, @loopback}}}}, &(0x7f00000001c0)={0x1, 0x1, [0xc03, 0x35f, 0x87c, 0x6c4]})
syz_emit_ethernet(0x60, &(0x7f0000000280)={@empty, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x26}, @val={@void, {0x8100, 0x0, 0x1, 0x4}}, {@x25={0x805, {0x1, 0x0, 0x5, "7db31b8a73fac3df744af367eee7b0c0e857ff0ab5bd8d74fe49d453fc998603194b4267410f8466bace4faeed8f51275940f3a5b04572d03ef930939ad749d43320272450fcc7fd9187b6"}}}}, &(0x7f0000000300)={0x0, 0x3, [0xf3c, 0x5cd, 0x5d7, 0xe5d]})
syz_emit_ethernet(0x37, &(0x7f0000000200)={@remote, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x43}, @val={@void, {0x8100, 0x7, 0x1, 0x4}}, {@arp={0x806, @generic={0x334, 0x4305, 0x6, 0x4, 0x8, @link_local, "97a8c638", @remote, "d4b69a46b6b9ec692370b01fd5"}}}}, &(0x7f0000000240)={0x0, 0x1, [0x937, 0x2eb, 0x604, 0x10a]})
syz_emit_ethernet(0xdb, &(0x7f0000000000)={@empty, @broadcast, @void, {@llc={0x4, {@snap={0x54, 0x1, "31b4", '&/|', 0x5, "3171e6ab0801d9fe070dc600ec3ecdc4e99f1f9d7c0e1d3520e4e676bd033d14411877d9f0d1b443e91c7f902323afc043a2ab487be8a0fda65056d7945382addfeff37d91d4ca91bcf0ab5d2683327b0002f029faf93d1f5f86edd3ab5f874e85e2c1cf6c53eaf08d505e96fccb923bce03c0c7613b597c950d7665abde389873e67385fc728a2bd21c834d88075802edc6973703886e73a7404fd88b56cf678508d99a3e7f144243a7a560ade90f03f8620bb4482a45ada68c30b3ba2499d0bfba2525"}}}}}, &(0x7f0000000100)={0x0, 0x4, [0x1f5, 0x87d, 0xce8, 0x300]})

18:59:50 executing program 1:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = fork()
ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f0000000040)=r1)
r2 = socket(0x11, 0x800000003, 0x0)
bind(r2, &(0x7f0000000180)=@generic={0x11, "0000150000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b00000000000000001a4ce875f2e340b7679500800010000000000101013c581103b34c0d6327ecce66fd792bbf0e5bf5ff1b0816e3f6db1c00010000000040000049740000000000000002ad8e5ecc326d3a09ffc2c65400"}, 0x80)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000000)=0xb6)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$int_in(r3, 0x5452, &(0x7f0000000080)=0x8)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x1, 0x803, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newlink={0x4c, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_XFRM_IF_ID={0x8, 0x2, 0x2}]}}}, @IFLA_LINK={0x8, 0x5, r6}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x4c}}, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x26e1, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r8, 0x0)
splice(r0, &(0x7f00000000c0)=0x2, r8, &(0x7f0000000200)=0x3, 0x5f, 0x8)
bpf$ITER_CREATE(0x21, &(0x7f0000000400)={r7}, 0x8)

[  359.800866][   T50] audit: type=1804 audit(1626634790.758:11): pid=11320 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:kernel_t:s0 op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/syzkaller-testdir347211888/syzkaller.MPPA2g/146/cgroup.controllers" dev="sda1" ino=13949 res=1 errno=0
18:59:50 executing program 2:
syz_mount_image$nfs(&(0x7f0000000cc0), 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001280))

18:59:50 executing program 3:
syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x8)

18:59:50 executing program 2:
creat(&(0x7f0000000380)='./file0\x00', 0x0)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x0, &(0x7f00000011c0), 0x0, 0x0)

18:59:50 executing program 3:
r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x525240, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff})
socketpair(0x15, 0x800, 0xda000000, 0x0)
r3 = creat(0x0, 0x1)
sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x94, r0, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@NBD_ATTR_SOCKETS={0x54, 0x7, 0x0, 0x1, [{0x8}, {0x8, 0x1, r1}, {0x8, 0x1, r2}, {0x8}, {0x8}, {0x8}, {0x8}, {0x8}, {0x8}, {0x8}]}, @NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8, 0x1, r3}, {0x8}, {0x8}, {0x8}, {0x8}]}]}, 0x94}}, 0x20000011)
r4 = creat(&(0x7f0000000380)='./file0\x00', 0x52)
ioctl$sock_inet_tcp_SIOCOUTQ(r4, 0x5411, &(0x7f00000003c0))
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x8)
r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000700), 0x100, 0x0)
ioctl$PTP_SYS_OFFSET_EXTENDED(r5, 0xc4c03d09, &(0x7f0000000740)={0xf})
syz_genetlink_get_family_id$nbd(&(0x7f0000000c40), 0xffffffffffffffff)
syz_mount_image$nfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x5, 0x6, &(0x7f00000011c0)=[{&(0x7f0000000d40), 0x0, 0x2}, {&(0x7f0000000dc0)="a1ae4a01c42059bc95a97556d0463b12389a674597d132497ec74080332b63982de9ba4f0344b31418f855c720600b7d34423bdcd6522ba61fd319544b55", 0x3e, 0x80000000}, {&(0x7f0000000e00)="2c441148c80fc99ddca16c145f4aba2a573d3dc00064d4e70e952e457f9cc16eeaa1e1677c8df838b920adab8285a6a66b453a0d73490d274f9ed040f10594648b730713bb50f613dca80fedbf37bea42dae0a074935fe76b865ae62e7f21839e3b8ef71f14ee0bfe57b03496d9edd1c32952c688a726974b163391de08b5614f7e2aafb5528a4f92d6cd753275facc980555343d1091e80d2af57a2cdc4aeb932476acd8d4a77834eeea642080141668954", 0xb2, 0x7f}, {&(0x7f0000000fc0)="1a8ce67041de7730e766de55ff365a47e55a6a9627b2867e71aa53024aa58b89820aa6fd566c33c309680eebf900c9fe40e9a3986fdeba5fee876259d7b7afe63746f2bda146ac5b3ac7c0e5091cc784dfee210d1619aeb9b42a136dc9639091a7e537418211dbc68417b2b76980587e7cb7326f5b233f081d5970a4dcbc9102e3681d7d8fc2e73d9aabafc882e3a1405f0d59c5e3b927f59c8ff7936f83db46a2d43b", 0xa3, 0x4}, {&(0x7f00000010c0)="19d28ebd409c61e3e6d75b58b0672dcedb534f7e02d654d220af45017e270385ee44519ff236648e0477f594d629a676920afdd7bf219e5daceab04cf4dd538ddd11c3f508902738e2aac7338ea0b9836c2c06fb26fa666130e1bb364b", 0x5d}, {&(0x7f0000001140)="a28d5e8c0e46292f1d8571e12da1147f0818cafa4ae00ac9e64a8350d8bf36745adea94350c8ae8421af6f63de97f01237d80cd471dab8df401ae62197db88ae6006c0a77a31d8c87e5f73666d9335db2ed16d8cb94c9d27569908bb86def05678574ddeb7c09a5f721f1736b8a6a3ca9de7a01043", 0x75, 0xfffffffffffffffa}], 0x881040, &(0x7f0000001280)={[{'\x00'}], [{@subj_role={'subj_role', 0x3d, ']'}}, {@obj_type={'obj_type', 0x3d, '*\'\xa3'}}, {@fowner_lt}, {@fowner_lt}, {@smackfstransmute={'smackfstransmute', 0x3d, 'fsi_master_acf_copro_response\x00'}}]})

[  360.189381][T11345] loop3: detected capacity change from 0 to 264192
18:59:51 executing program 2:
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x2, &(0x7f00000011c0)=[{0x0}, {&(0x7f0000001140)="a28d5e8c0e4629", 0x7, 0xfffffffffffffffa}], 0x0, 0x0)

18:59:51 executing program 0:
syz_mount_image$nfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x0, 0x2, &(0x7f00000011c0)=[{0x0}, {0x0}], 0x881040, &(0x7f0000001280)={[], [{@obj_type={'obj_type', 0x3d, '*\'\xa3'}}, {@fowner_lt}]})

18:59:51 executing program 1:
r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x525240, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff})
socketpair(0x15, 0x800, 0xda000000, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = accept4(0xffffffffffffffff, &(0x7f0000000140)=@un=@abs, &(0x7f00000001c0)=0x80, 0x0)
r6 = creat(&(0x7f0000000200)='./file0\x00', 0x1)
sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x94, r0, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@NBD_ATTR_SOCKETS={0x54, 0x7, 0x0, 0x1, [{0x8}, {0x8, 0x1, r1}, {0x8, 0x1, r2}, {0x8}, {0x8, 0x1, r4}, {0x8}, {0x8}, {0x8, 0x1, r5}, {0x8}, {0x8}]}, @NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8, 0x1, r6}, {0x8}, {0x8}, {0x8}, {0x8}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x10}, 0x20000011)
socket$inet(0x2, 0x3, 0x0)
r7 = creat(&(0x7f0000000380)='./file0\x00', 0x52)
ioctl$sock_inet_tcp_SIOCOUTQ(r7, 0x5411, &(0x7f00000003c0))
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x5c, r0, 0x0, 0x70bd29, 0x25dfdbfb, {}, [@NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x51}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xc}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4000050}, 0x240008d0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fsi_master_acf_copro_response\x00', r3}, 0x10)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x4c, r0, 0x10, 0x70bd2b, 0x25dfdbfc, {}, [@NBD_ATTR_TIMEOUT={0xc, 0x4, 0x7f}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0xffffffff}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x200008d0}, 0x8)
r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000700), 0x100, 0x0)
ioctl$PTP_SYS_OFFSET_EXTENDED(r8, 0xc4c03d09, &(0x7f0000000740)={0xf})
syz_genetlink_get_family_id$nbd(&(0x7f0000000c40), 0xffffffffffffffff)
syz_mount_image$nfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x5, 0x7, &(0x7f00000011c0)=[{&(0x7f0000000d40)="c90069f41ccc8148c1fe8c6e9fce2b61599e0673512db96318f0afbd2e59067ed115b5df5f39b7e114bbeec634d7a376375a0c4b923e6d0e6f649558d43f4dda208a399e63c8b4511eef45585fd5637f71870dd389fa1a8e22453317a4386dbad4db8e331cfa451f72504abefbb1e113", 0x70, 0x2}, {&(0x7f0000000dc0)="a1ae4a01c42059bc95a97556d0463b12389a674597d132497ec74080332b63982de9ba4f0344b31418f855c720600b7d34423bdcd6522ba61fd319544b55", 0x3e, 0x80000000}, {&(0x7f0000000e00)="2c441148c80fc99ddca16c145f4aba2a573d3dc00064d4e70e952e457f9cc16eeaa1e1677c8df838b920adab8285a6a66b453a0d73490d274f9ed040f10594648b730713bb50f613dca80fedbf37bea42dae0a074935fe76b865ae62e7f21839e3b8ef71f14ee0bfe57b03496d9edd1c32952c688a726974b163391de08b5614f7e2aafb5528a4f92d6cd753275facc980555343d1091e80d2af57a2cdc4aeb932476acd8d4a77834eeea642080141668954e048534dc78f9597148370b4e60bd24cf00bdaf555fbf9aa56a12c89b165c8195fd07bf1ab9c6872147e58d982b7d46aafcdbdb141aba57bb2f177", 0xed, 0x7f}, {&(0x7f0000000f00)="7394b7c2230a67deb0935b7104ce8e6988e36868b5a460fec2e60ebd188bdd03f5e4bf095f45ea5fb964a0dcfd5b9783a56dc2f5787e9fed2c471404fdc3581b77684dbcb69931afa0830121df1268c63f71ba2f6c12712d252b25699c63b03205ce9033bbd93348d63af582e55fc2246364b75783bc225f7aea4d07049d4ed8be725bc94f302181f2d3978049f78e3a9347061a67abd3c843674c3cc3b1df40f6779f584246695e5840394956bd37edd59fc9", 0xb3, 0x2}, {&(0x7f0000000fc0)="1a8ce67041de7730e766de55ff365a47e55a6a9627b2867e71aa53024aa58b89820aa6fd566c33c309680eebf900c9fe40e9a3986fdeba5fee876259d7b7afe63746f2bda146ac5b3ac7c0e5091cc784dfee210d1619aeb9b42a136dc9639091a7e537418211dbc68417b2b76980587e7cb7326f5b233f081d5970a4dcbc9102e3681d7d8fc2e73d9aabafc882e3a1405f0d59c5e3b927f59c8ff7936f83db46a2d43b345ebda7db8bdca07051341a527037b265737ad0e26ffc481a23ed732e783342e5c3960c71fae69d0359e4cd648b2f6f802b47107892", 0xd9, 0x4}, {&(0x7f00000010c0)="19d28ebd409c61e3e6d75b58b0672dcedb534f7e02d654d220af45017e270385ee44519ff236648e0477f594d629a676920afdd7bf219e5daceab04cf4dd538ddd11c3f508902738e2aac7338ea0b9836c2c06fb26fa666130e1bb364b", 0x5d, 0x6}, {&(0x7f0000001140)="a28d5e8c0e46292f1d8571e12da1147f0818cafa4ae00ac9e64a8350d8bf36745adea94350c8ae8421af6f63de97f01237d80cd471dab8df401ae62197db88ae6006c0a77a31d8c87e5f73666d9335db2ed16d8cb94c9d27569908bb86def05678574ddeb7c09a5f721f1736b8a6a3ca9de7a01043", 0x75, 0xfffffffffffffffa}], 0x881040, &(0x7f0000001280)={[{'\x00'}], [{@subj_role={'subj_role', 0x3d, ']'}}, {@obj_type={'obj_type', 0x3d, '*\'\xa3'}}, {@fowner_lt}, {@fowner_lt}, {@smackfstransmute={'smackfstransmute', 0x3d, 'fsi_master_acf_copro_response\x00'}}]})
ioctl$PTP_SYS_OFFSET_EXTENDED(r7, 0xc4c03d09, &(0x7f0000001340))

[  360.524379][T11351] loop3: detected capacity change from 0 to 264192
[  360.529487][T11352] loop2: detected capacity change from 0 to 16383
[  360.713160][T11352] loop2: detected capacity change from 0 to 16383
18:59:51 executing program 0:
creat(&(0x7f0000005b40)='./file0\x00', 0x0)

[  360.848891][T11367] loop1: detected capacity change from 0 to 264192
18:59:51 executing program 3:
openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))

18:59:51 executing program 2:
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000840), 0x391103, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$gtp(&(0x7f0000001dc0), 0xffffffffffffffff)
sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000001e80)={0x0, 0x0, &(0x7f0000001e40)={0x0}}, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000001ec0), 0x0, 0x0)
socketpair(0x0, 0x0, 0x0, &(0x7f0000001f40))
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TEAM_CMD_NOOP(r1, &(0x7f0000004140)={&(0x7f0000001f80)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000004100)={&(0x7f00000038c0)={0x14}, 0x14}}, 0x0)

18:59:51 executing program 3:
syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))

18:59:51 executing program 0:
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41ba, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000010c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0xb3, 0xe, 0xfeffffff, &(0x7f0000000280)="5f39868de2639b12c1a2ff010002", 0x0, 0x1df, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000006840), 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r1, 0x5452, &(0x7f0000000280))
read$FUSE(r1, &(0x7f0000002300)={0x2020}, 0x2020)
sendto(r1, &(0x7f00000002c0)="2fce89ec84b361a522247850114bf80ced654872c31639c251b238be5f46f91f9054b6fe572d86a69739b94ff66769f0a2779abc2eefd54cdaec138061fff4fe9d3e539524300315d9f36c0ecca89c709355f79f3b57a38a9de1d2d61104de739e85a8e7e3958e2485751eac033fe6379b50cc72cff6f3c371b751db84bf8b77ac3804491e7878853ce2ee9e8252d8fbbbbd705fa5", 0x95, 0x20008845, &(0x7f0000000380)=@tipc=@nameseq={0x1e, 0x1, 0x3, {0x41, 0x4}}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000480)={r1, 0x0, 0x0, 0x14, &(0x7f00000002c0), &(0x7f0000000140)=""/20, 0x3, 0x0, 0x0, 0x56, &(0x7f0000000380), &(0x7f0000000200)="c7227166d61956c20d707a54e4c679c33d743463c48e31c3aa11f082c866d65c419f773f334ef01d0d6ec3c21e90f8b94d788e66324adfb451834f5e44bef0e13727e1d2d04e9837ecd961d93511d31e2544be777ddb", 0x1, 0x4}, 0x48)
clock_gettime(0x0, &(0x7f00000006c0))
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/tcp\x00')
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840), 0x802, 0x0)
sendfile(r3, r2, 0x0, 0x7ffff000)

[  361.382102][T11367] loop1: detected capacity change from 0 to 264192
18:59:52 executing program 3:
openat$hwrng(0xffffffffffffff9c, &(0x7f0000005a80), 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000005ac0))
creat(&(0x7f0000005b40)='./file0\x00', 0x0)
syz_genetlink_get_family_id$team(&(0x7f0000005bc0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000005c00))
bpf$OBJ_PIN_MAP(0x6, &(0x7f00000092c0)={&(0x7f0000009240)='./file0\x00'}, 0x10)

18:59:52 executing program 2:
syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, 0x0, 0x0)
socket$inet(0x2, 0x0, 0x0)

18:59:52 executing program 3:
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41ba, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000010c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0xb3, 0xe, 0xfeffffff, &(0x7f0000000280)="5f39868de2639b12c1a2ff010002", 0x0, 0x1df, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000006840), 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r1, 0x5452, &(0x7f0000000280))
read$FUSE(r1, &(0x7f0000002300)={0x2020}, 0x2020)
sendto(r1, &(0x7f00000002c0)="2fce89ec84b361a522247850114bf80ced654872c31639c251b238be5f46f91f9054b6fe572d86a69739b94ff66769f0a2779abc2eefd54cdaec138061fff4fe9d3e539524300315d9f36c0ecca89c709355f79f3b57a38a9de1d2d61104de739e85a8e7e3958e2485751eac033fe6379b50cc72cff6f3c371b751db84bf8b77ac3804491e7878853ce2ee9e8252d8fbbbbd705fa5", 0x95, 0x20008845, &(0x7f0000000380)=@tipc=@nameseq={0x1e, 0x1, 0x3, {0x41, 0x4}}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000480)={r1, 0x0, 0x0, 0x14, &(0x7f00000002c0), &(0x7f0000000140)=""/20, 0x3, 0x0, 0x0, 0x56, &(0x7f0000000380), &(0x7f0000000200)="c7227166d61956c20d707a54e4c679c33d743463c48e31c3aa11f082c866d65c419f773f334ef01d0d6ec3c21e90f8b94d788e66324adfb451834f5e44bef0e13727e1d2d04e9837ecd961d93511d31e2544be777ddb", 0x1, 0x4}, 0x48)
clock_gettime(0x0, &(0x7f00000006c0))
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/tcp\x00')
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840), 0x802, 0x0)
sendfile(r3, r2, 0x0, 0x7ffff000)

18:59:52 executing program 1:
creat(&(0x7f0000000200)='./file0\x00', 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)

18:59:52 executing program 0:
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41ba, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000010c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0xb3, 0xe, 0xfeffffff, &(0x7f0000000280)="5f39868de2639b12c1a2ff010002", 0x0, 0x1df, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000006840), 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r1, 0x5452, &(0x7f0000000280))
read$FUSE(r1, &(0x7f0000002300)={0x2020}, 0x2020)
sendto(r1, &(0x7f00000002c0)="2fce89ec84b361a522247850114bf80ced654872c31639c251b238be5f46f91f9054b6fe572d86a69739b94ff66769f0a2779abc2eefd54cdaec138061fff4fe9d3e539524300315d9f36c0ecca89c709355f79f3b57a38a9de1d2d61104de739e85a8e7e3958e2485751eac033fe6379b50cc72cff6f3c371b751db84bf8b77ac3804491e7878853ce2ee9e8252d8fbbbbd705fa5", 0x95, 0x20008845, &(0x7f0000000380)=@tipc=@nameseq={0x1e, 0x1, 0x3, {0x41, 0x4}}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000480)={r1, 0x0, 0x0, 0x14, &(0x7f00000002c0), &(0x7f0000000140)=""/20, 0x3, 0x0, 0x0, 0x56, &(0x7f0000000380), &(0x7f0000000200)="c7227166d61956c20d707a54e4c679c33d743463c48e31c3aa11f082c866d65c419f773f334ef01d0d6ec3c21e90f8b94d788e66324adfb451834f5e44bef0e13727e1d2d04e9837ecd961d93511d31e2544be777ddb", 0x1, 0x4}, 0x48)
clock_gettime(0x0, &(0x7f00000006c0))
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/tcp\x00')
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840), 0x802, 0x0)
sendfile(r3, r2, 0x0, 0x7ffff000)

18:59:52 executing program 1:
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x2, &(0x7f00000011c0)=[{0x0, 0x0, 0x2}, {&(0x7f0000001140)="a28d5e8c0e46", 0x6}], 0x0, &(0x7f0000001280)={[], [{@obj_type={'obj_type', 0x3d, '*\'\xa3'}}]})

18:59:53 executing program 0:
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41ba, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000010c0)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446ca2b5f1cc1a100a9af698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f130c5077da80fb982c1e9400c693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a280000c93e64c227c95aa0b784625704f07a72c2918451ebdcf4cef809606056fe5c34664c0af9360a1f7a5e6b607130c89f18c0c1089d8b85880000c29c48b45ef4adf634be763289d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0000000000000006f803c6468972089b302d7bff8f06fa1918d65eae391cb41336023cdcedb5e0125ebbcebddcf10cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f40cfd7c3a1d37a6ab87b1586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d60532af9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae616b5054d1e7c13b1355d6f4a8245eaa4997da9c77af4c0eb97fca585ec6bf58351d599e9b61e8caab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a41326eea31ae4e0f75057df3c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57010000009700cf0b4b8bc22941330000000000000000000300000000000000000000000010008bc0d955f2a83366b99711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b6c4a000000002b435ac15fc0288d9b2a169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f00000000df73be83bb7d5ad883ef3b7cda42013d53046da21b40216e14ba2d6af8656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b2633398631c7771429d120000003341bf4a00fcff5e1c7c3d1d6e3a52872baef9753fffffffffffffe09fec2271fe01589646efd1cf870cd7bb2366fde4a59429738fcc917a57f94f6c453cea793cc5ee0c2a5ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d10a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d5bc8955778567bc79e13b78249788f11f708008b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe7d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ecbbc55bf404571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0c6dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef44cd1fe582786105c7df8be5877084d4173731efe895efc71f665c4d75cf2458e35d2c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457ac0eaaa99bf0bdc14ae358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df9b3ff372b5f2ee10cebb2c5ea1393fdf24285bf16b99c9cc0ad18570b6f1a985f369191ae954febb3df464bfe0f773ee9afe72f32a2befb89d3777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd452277c3887d6116c6cc9d8046c216c1f8a9778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1d14216bdf57d2a40d40b51ab63e9600040000b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde6e4a4304e50c349f4f9ecee27defd83871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38aebd1517a8250df98674152f94e32409e2a3bce109b6000000000000000000d6d5210d7560eb92d6a97a27602b81f7636df1535bef1497f92186086e29c61137abf9010000007750890200d627e87306703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7ef8c08acaf30235b920500d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e600263d9756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854356cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d4b3bc19faa5401020000793ac48c1b539c75ab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c781d0d1280fb00818654a53b6df4b2c97cc1c98d85fda8f80fe908b65550b441233151122b41a8d73062197655b7f0469250a5989cef0e10773920ed3ccee4472c3eb80159daed092511e6eb93842054cfce2ac306cb6e472db3fd67a49b6855a694a8d35badd43907003223a47a7fae4f3748d5a432825bc40a03aaef1c8488d86dc201dd2a3ba71e0f45492ef1f8b65ccb3dcd0e1a61b152d02c29ca0a3328fa7753a5cddea1acaae55ae8263fb284b7a6498cf4824ab1ea3225a53072423b907c6602f8999e0311da5b8378bc841e1787e3a8128dda381a26cb2b365702ff8a27831375b2ddaa2f56e21169f7ca4fd9655ccd4a584acd244e966d0afedaff7c415ff682a4044b3381cc2df28278c9a6824c52048a7cfabda294925cc0956bb5a8e950ff6149f41ae6edd830207bf728cd9807933c3e16d80bbea611a18becc2dc38ca0a6f5740f340b76edcd1f539bd43007231dcef58c7b88b5aeedaab37d4f98a934b0f900e0eb639878a45e4629f5503cf679154d27681d7a3744cbcd42af59407c9c8e39c5271868917954e600352ba26171d004f1c5524f061378f94fb453786c3a6f78b10d383b49e31d1568bd43ee34ce6e6be235aa6207285665c2fba773671da41959f51610963b48930658e2d6125a26085b11345b0473240b7e5e91811312c43663e76f711d7219ecdec75c7ea1cf0f8f8fff40247d59bbde2ebb8659197e0f37a71be1b12a182ed7de3acba28561a04b807f7a4647e2ea6d8fb92541d07c3d5e4ba077d3cad9f8ba1919592014c00c8eccb2ca5d48ba7b1c3fb185a4bb79700cf51f818b0c701c8de47d12281a67bdaf4b0c50bee9e8f5936250df2e15c117ae7ea6619f7db330447d1e9e42a035e6fd532f61fbfed9c4a7124a1e38eee50c6bbcd1d4e3f68c3f27dd9a70f1a7c6046237ddfb0b26e1973222263603498010458cd4df10af249ce717f6f45e5176e0ddae3054d7289d4e13ab0912703ee39ce264572b89194fdf7acecc35cf8309d4b680a08eed367dad855fce210f1a7c7222dd360eafb4bef7d58bf83362930af6e3f3f851abdc0003bdf9401b533019e90feb06b189100007a82df8d9b5f44ebf9355e7b1b01c9470608d4f306d21004730396a4d6c6d46e1ffac97aa93c36123532a36186575266be4981c847160079421d0137801e553069f8d025c40f287378810defc7f2ed4e15f68f17b21153394f8bcfa6a23a77c8d61c9bbc127a57b8d631f36558d9093dee08bc53d97a8003363421738650a26c8fd87b13026799caf58e59951b125e7f1629a34e2c0dd65a23d01a3cb191e743de07247c7f993cf01166fa2ac1ba02f60550e63a7f50422e478c6b5d87f9bd05cda70c08367e5c1b0867a279a9d85a380db25c43bd0529ad783b9d64aaac5cdac24b0c23c3d2671b793afb44b7126e17c2b7c0d6be650de7eeef3f3605af344015d03c3e7819145cb9fe1978c98bf9ef10773db59505ae334d4113db55708c728844c872df4e7748c1f9d2cb0b29754f928c59306ce105ca18cb72f0944d0e4fea0a0abd0285bdaf1b41520a1089d640c2facb0d1e6243873ac4b1e1068c45c715b68effb7d58d1f9e726dbf6bd910ca4ce0e075658ede42192cf393a50dcc197b033a2fed75083628e5dd38213d353b9049e71f037064b05e73ec00c710f14ec5737d397d555d1cf8859cc05fea8dc3c6a5b3b6fa1c81707479db1833d593a271253aa11efdb37c74784f2fc286814848e92d8ee541bc179813297a0a4cc3c8f80c28701185bea091f32475e859479b574727afc110e1abcff460172fd1b42e3c0e2a4bf94a060069007735232c87c7572a1e7596f89e5c3d5e70640c90815f77b7b13dd43d9be585a1e1e84900000000000000000000000000b422fc160a458ee5a91a2471e6e56fdabec6c73ce8983fc68f0b7cdc2b7306ea"], &(0x7f0000000100)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0xb3, 0xe, 0xfeffffff, &(0x7f0000000280)="5f39868de2639b12c1a2ff010002", 0x0, 0x1df, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000006840), 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r1, 0x5452, &(0x7f0000000280))
read$FUSE(r1, &(0x7f0000002300)={0x2020}, 0x2020)
sendto(r1, &(0x7f00000002c0)="2fce89ec84b361a522247850114bf80ced654872c31639c251b238be5f46f91f9054b6fe572d86a69739b94ff66769f0a2779abc2eefd54cdaec138061fff4fe9d3e539524300315d9f36c0ecca89c709355f79f3b57a38a9de1d2d61104de739e85a8e7e3958e2485751eac033fe6379b50cc72cff6f3c371b751db84bf8b77ac3804491e7878853ce2ee9e8252d8fbbbbd705fa5", 0x95, 0x20008845, &(0x7f0000000380)=@tipc=@nameseq={0x1e, 0x1, 0x3, {0x41, 0x4}}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000480)={r1, 0x0, 0x0, 0x14, &(0x7f00000002c0), &(0x7f0000000140)=""/20, 0x3, 0x0, 0x0, 0x56, &(0x7f0000000380), &(0x7f0000000200)="c7227166d61956c20d707a54e4c679c33d743463c48e31c3aa11f082c866d65c419f773f334ef01d0d6ec3c21e90f8b94d788e66324adfb451834f5e44bef0e13727e1d2d04e9837ecd961d93511d31e2544be777ddb", 0x1, 0x4}, 0x48)
clock_gettime(0x0, &(0x7f00000006c0))
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/tcp\x00')
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840), 0x802, 0x0)
sendfile(r3, r2, 0x0, 0x7ffff000)

18:59:53 executing program 3:
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41ba, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000010c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0xb3, 0xe, 0xfeffffff, &(0x7f0000000280)="5f39868de2639b12c1a2ff010002", 0x0, 0x1df, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000006840), 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r1, 0x5452, &(0x7f0000000280))
read$FUSE(r1, &(0x7f0000002300)={0x2020}, 0x2020)
sendto(r1, &(0x7f00000002c0)="2fce89ec84b361a522247850114bf80ced654872c31639c251b238be5f46f91f9054b6fe572d86a69739b94ff66769f0a2779abc2eefd54cdaec138061fff4fe9d3e539524300315d9f36c0ecca89c709355f79f3b57a38a9de1d2d61104de739e85a8e7e3958e2485751eac033fe6379b50cc72cff6f3c371b751db84bf8b77ac3804491e7878853ce2ee9e8252d8fbbbbd705fa5", 0x95, 0x20008845, &(0x7f0000000380)=@tipc=@nameseq={0x1e, 0x1, 0x3, {0x41, 0x4}}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000480)={r1, 0x0, 0x0, 0x14, &(0x7f00000002c0), &(0x7f0000000140)=""/20, 0x3, 0x0, 0x0, 0x56, &(0x7f0000000380), &(0x7f0000000200)="c7227166d61956c20d707a54e4c679c33d743463c48e31c3aa11f082c866d65c419f773f334ef01d0d6ec3c21e90f8b94d788e66324adfb451834f5e44bef0e13727e1d2d04e9837ecd961d93511d31e2544be777ddb", 0x1, 0x4}, 0x48)
clock_gettime(0x0, &(0x7f00000006c0))
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/tcp\x00')
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840), 0x802, 0x0)
sendfile(r3, r2, 0x0, 0x7ffff000)

[  362.255992][    C0] hrtimer: interrupt took 49490 ns
18:59:53 executing program 1:
getpeername$netlink(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$char_raw(&(0x7f0000000140), 0x1, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={0x0, 0x989680}, 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x0)

18:59:53 executing program 2:
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x4, &(0x7f00000011c0)=[{&(0x7f0000000d40)="c9", 0x1}, {&(0x7f0000000dc0)="a1", 0x1, 0x80000000}, {&(0x7f0000000e00)=',', 0x1}, {&(0x7f0000000fc0)="1a8ce67041de7730e766de55ff365a47e55a6a9627b2867e71aa53024aa58b89820aa6fd566c33c309680eebf900c9fe40e9a3986fdeba5fee876259d7b7afe637", 0x41}], 0x0, 0x0)

[  362.619999][T11426] loop2: detected capacity change from 0 to 264192
18:59:53 executing program 0:
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41ba, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000010c0)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446ca2b5f1cc1a100a9af698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0f130c5077da80fb982c1e9400c693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a280000c93e64c227c95aa0b784625704f07a72c2918451ebdcf4cef809606056fe5c34664c0af9360a1f7a5e6b607130c89f18c0c1089d8b85880000c29c48b45ef4adf634be763289d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0000000000000006f803c6468972089b302d7bff8f06fa1918d65eae391cb41336023cdcedb5e0125ebbcebddcf10cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f40cfd7c3a1d37a6ab87b1586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d60532af9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae616b5054d1e7c13b1355d6f4a8245eaa4997da9c77af4c0eb97fca585ec6bf58351d599e9b61e8caab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a41326eea31ae4e0f75057df3c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57010000009700cf0b4b8bc22941330000000000000000000300000000000000000000000010008bc0d955f2a83366b99711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b6c4a000000002b435ac15fc0288d9b2a169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f00000000df73be83bb7d5ad883ef3b7cda42013d53046da21b40216e14ba2d6af8656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b2633398631c7771429d120000003341bf4a00fcff5e1c7c3d1d6e3a52872baef9753fffffffffffffe09fec2271fe01589646efd1cf870cd7bb2366fde4a59429738fcc917a57f94f6c453cea793cc5ee0c2a5ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d10a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d5bc8955778567bc79e13b78249788f11f708008b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe7d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ecbbc55bf404571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0c6dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef44cd1fe582786105c7df8be5877084d4173731efe895efc71f665c4d75cf2458e35d2c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457ac0eaaa99bf0bdc14ae358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df9b3ff372b5f2ee10cebb2c5ea1393fdf24285bf16b99c9cc0ad18570b6f1a985f369191ae954febb3df464bfe0f773ee9afe72f32a2befb89d3777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd452277c3887d6116c6cc9d8046c216c1f8a9778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1d14216bdf57d2a40d40b51ab63e9600040000b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde6e4a4304e50c349f4f9ecee27defd83871c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38aebd1517a8250df98674152f94e32409e2a3bce109b6000000000000000000d6d5210d7560eb92d6a97a27602b81f7636df1535bef1497f92186086e29c61137abf9010000007750890200d627e87306703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7ef8c08acaf30235b920500d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e600263d9756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854356cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d4b3bc19faa5401020000793ac48c1b539c75ab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c781d0d1280fb00818654a53b6df4b2c97cc1c98d85fda8f80fe908b65550b441233151122b41a8d73062197655b7f0469250a5989cef0e10773920ed3ccee4472c3eb80159daed092511e6eb93842054cfce2ac306cb6e472db3fd67a49b6855a694a8d35badd43907003223a47a7fae4f3748d5a432825bc40a03aaef1c8488d86dc201dd2a3ba71e0f45492ef1f8b65ccb3dcd0e1a61b152d02c29ca0a3328fa7753a5cddea1acaae55ae8263fb284b7a6498cf4824ab1ea3225a53072423b907c6602f8999e0311da5b8378bc841e1787e3a8128dda381a26cb2b365702ff8a27831375b2ddaa2f56e21169f7ca4fd9655ccd4a584acd244e966d0afedaff7c415ff682a4044b3381cc2df28278c9a6824c52048a7cfabda294925cc0956bb5a8e950ff6149f41ae6edd830207bf728cd9807933c3e16d80bbea611a18becc2dc38ca0a6f5740f340b76edcd1f539bd43007231dcef58c7b88b5aeedaab37d4f98a934b0f900e0eb639878a45e4629f5503cf679154d27681d7a3744cbcd42af59407c9c8e39c5271868917954e600352ba26171d004f1c5524f061378f94fb453786c3a6f78b10d383b49e31d1568bd43ee34ce6e6be235aa6207285665c2fba773671da41959f51610963b48930658e2d6125a26085b11345b0473240b7e5e91811312c43663e76f711d7219ecdec75c7ea1cf0f8f8fff40247d59bbde2ebb8659197e0f37a71be1b12a182ed7de3acba28561a04b807f7a4647e2ea6d8fb92541d07c3d5e4ba077d3cad9f8ba1919592014c00c8eccb2ca5d48ba7b1c3fb185a4bb79700cf51f818b0c701c8de47d12281a67bdaf4b0c50bee9e8f5936250df2e15c117ae7ea6619f7db330447d1e9e42a035e6fd532f61fbfed9c4a7124a1e38eee50c6bbcd1d4e3f68c3f27dd9a70f1a7c6046237ddfb0b26e1973222263603498010458cd4df10af249ce717f6f45e5176e0ddae3054d7289d4e13ab0912703ee39ce264572b89194fdf7acecc35cf8309d4b680a08eed367dad855fce210f1a7c7222dd360eafb4bef7d58bf83362930af6e3f3f851abdc0003bdf9401b533019e90feb06b189100007a82df8d9b5f44ebf9355e7b1b01c9470608d4f306d21004730396a4d6c6d46e1ffac97aa93c36123532a36186575266be4981c847160079421d0137801e553069f8d025c40f287378810defc7f2ed4e15f68f17b21153394f8bcfa6a23a77c8d61c9bbc127a57b8d631f36558d9093dee08bc53d97a8003363421738650a26c8fd87b13026799caf58e59951b125e7f1629a34e2c0dd65a23d01a3cb191e743de07247c7f993cf01166fa2ac1ba02f60550e63a7f50422e478c6b5d87f9bd05cda70c08367e5c1b0867a279a9d85a380db25c43bd0529ad783b9d64aaac5cdac24b0c23c3d2671b793afb44b7126e17c2b7c0d6be650de7eeef3f3605af344015d03c3e7819145cb9fe1978c98bf9ef10773db59505ae334d4113db55708c728844c872df4e7748c1f9d2cb0b29754f928c59306ce105ca18cb72f0944d0e4fea0a0abd0285bdaf1b41520a1089d640c2facb0d1e6243873ac4b1e1068c45c715b68effb7d58d1f9e726dbf6bd910ca4ce0e075658ede42192cf393a50dcc197b033a2fed75083628e5dd38213d353b9049e71f037064b05e73ec00c710f14ec5737d397d555d1cf8859cc05fea8dc3c6a5b3b6fa1c81707479db1833d593a271253aa11efdb37c74784f2fc286814848e92d8ee541bc179813297a0a4cc3c8f80c28701185bea091f32475e859479b574727afc110e1abcff460172fd1b42e3c0e2a4bf94a060069007735232c87c7572a1e7596f89e5c3d5e70640c90815f77b7b13dd43d9be585a1e1e84900000000000000000000000000b422fc160a458ee5a91a2471e6e56fdabec6c73ce8983fc68f0b7cdc2b7306ea"], &(0x7f0000000100)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0xb3, 0xe, 0xfeffffff, &(0x7f0000000280)="5f39868de2639b12c1a2ff010002", 0x0, 0x1df, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000006840), 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r1, 0x5452, &(0x7f0000000280))
read$FUSE(r1, &(0x7f0000002300)={0x2020}, 0x2020)
sendto(r1, &(0x7f00000002c0)="2fce89ec84b361a522247850114bf80ced654872c31639c251b238be5f46f91f9054b6fe572d86a69739b94ff66769f0a2779abc2eefd54cdaec138061fff4fe9d3e539524300315d9f36c0ecca89c709355f79f3b57a38a9de1d2d61104de739e85a8e7e3958e2485751eac033fe6379b50cc72cff6f3c371b751db84bf8b77ac3804491e7878853ce2ee9e8252d8fbbbbd705fa5", 0x95, 0x20008845, &(0x7f0000000380)=@tipc=@nameseq={0x1e, 0x1, 0x3, {0x41, 0x4}}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000480)={r1, 0x0, 0x0, 0x14, &(0x7f00000002c0), &(0x7f0000000140)=""/20, 0x3, 0x0, 0x0, 0x56, &(0x7f0000000380), &(0x7f0000000200)="c7227166d61956c20d707a54e4c679c33d743463c48e31c3aa11f082c866d65c419f773f334ef01d0d6ec3c21e90f8b94d788e66324adfb451834f5e44bef0e13727e1d2d04e9837ecd961d93511d31e2544be777ddb", 0x1, 0x4}, 0x48)
clock_gettime(0x0, &(0x7f00000006c0))
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/tcp\x00')
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840), 0x802, 0x0)
sendfile(r3, r2, 0x0, 0x7ffff000)

18:59:53 executing program 2:
syz_mount_image$nfs(&(0x7f0000000cc0), 0x0, 0x0, 0x1, &(0x7f00000011c0)=[{&(0x7f0000000d40)="c9", 0x1}], 0x0, &(0x7f0000001280))

18:59:53 executing program 3:
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41ba, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mkdir(0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000010c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0xb3, 0xe, 0xfeffffff, &(0x7f0000000280)="5f39868de2639b12c1a2ff010002", 0x0, 0x1df, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000006840), 0x0, 0x0)
ioctl$FUSE_DEV_IOC_CLONE(r1, 0x5452, &(0x7f0000000280))
read$FUSE(r1, &(0x7f0000002300)={0x2020}, 0x2020)
sendto(r1, &(0x7f00000002c0)="2fce89ec84b361a522247850114bf80ced654872c31639c251b238be5f46f91f9054b6fe572d86a69739b94ff66769f0a2779abc2eefd54cdaec138061fff4fe9d3e539524300315d9f36c0ecca89c709355f79f3b57a38a9de1d2d61104de739e85a8e7e3958e2485751eac033fe6379b50cc72cff6f3c371b751db84bf8b77ac3804491e7878853ce2ee9e8252d8fbbbbd705fa5", 0x95, 0x20008845, &(0x7f0000000380)=@tipc=@nameseq={0x1e, 0x1, 0x3, {0x41, 0x4}}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000480)={r1, 0x0, 0x0, 0x14, &(0x7f00000002c0), &(0x7f0000000140)=""/20, 0x3, 0x0, 0x0, 0x56, &(0x7f0000000380), &(0x7f0000000200)="c7227166d61956c20d707a54e4c679c33d743463c48e31c3aa11f082c866d65c419f773f334ef01d0d6ec3c21e90f8b94d788e66324adfb451834f5e44bef0e13727e1d2d04e9837ecd961d93511d31e2544be777ddb", 0x1, 0x4}, 0x48)
clock_gettime(0x0, &(0x7f00000006c0))
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/tcp\x00')
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840), 0x802, 0x0)
sendfile(r3, r2, 0x0, 0x7ffff000)

18:59:53 executing program 1:
syz_mount_image$nfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, &(0x7f00000011c0), 0x881040, &(0x7f0000001280))

18:59:53 executing program 0:
syz_mount_image$nfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x881040, &(0x7f0000001280))

18:59:53 executing program 2:
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x4, &(0x7f00000011c0)=[{&(0x7f0000000d40)="c9", 0x1}, {&(0x7f0000000dc0)="a1", 0x1, 0x80000000}, {&(0x7f0000000e00)=',', 0x1}, {&(0x7f0000000f00)='s', 0x1}], 0x0, 0x0)

18:59:54 executing program 2:
accept4(0xffffffffffffffff, 0x0, &(0x7f00000001c0), 0x0)
creat(0x0, 0x1)
sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10}, 0x20000011)
ioctl$sock_inet_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0)
openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$nbd(&(0x7f0000000c40), 0xffffffffffffffff)
syz_mount_image$nfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x5, 0x4, &(0x7f00000011c0)=[{&(0x7f0000000d40)="c90069f41ccc8148c1fe8c6e9fce2b61599e0673512db96318f0afbd2e59067ed115b5df5f39b7e114bbeec634d7a3", 0x2f}, {0x0}, {0x0, 0x0, 0x2}, {0x0, 0x0, 0x4}], 0x0, &(0x7f0000001280))

18:59:54 executing program 1:
creat(&(0x7f0000000200)='./file0\x00', 0x0)

18:59:54 executing program 0:
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x2, &(0x7f00000011c0)=[{&(0x7f0000000d40)="c9", 0x1}, {&(0x7f0000000fc0)="1a8ce67041de7730e766de55ff365a47e55a6a9627b2867e71aa53024aa58b89820aa6fd566c33c309680eebf900c9fe40e9a3986fdeba5fee876259d7b7afe637", 0x41}], 0x0, 0x0)

18:59:54 executing program 2:
syz_mount_image$nfs(0x0, &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, &(0x7f00000011c0), 0x0, 0x0)

18:59:54 executing program 1:
syz_mount_image$nfs(&(0x7f0000000cc0), 0x0, 0x0, 0x2, &(0x7f00000011c0)=[{&(0x7f0000000d40)="c9", 0x1}, {&(0x7f0000001140)="a28d5e8c0e4629", 0x7, 0xfffffffffffffffa}], 0x0, &(0x7f0000001280))

18:59:54 executing program 3:
syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
creat(&(0x7f0000000200)='./file0\x00', 0x0)

18:59:54 executing program 0:
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$gtp(0x0, 0xffffffffffffffff)

[  363.583513][T11465] loop1: detected capacity change from 0 to 16383
18:59:54 executing program 3:
syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x525240, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
accept4(0xffffffffffffffff, &(0x7f0000000140)=@un=@abs, 0x0, 0x0)
creat(&(0x7f0000000200)='./file0\x00', 0x0)
ioctl$sock_inet_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f00000003c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fsi_master_acf_copro_response\x00'}, 0x10)
syz_genetlink_get_family_id$nbd(&(0x7f0000000c40), 0xffffffffffffffff)
syz_mount_image$nfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x5, 0x5, &(0x7f00000011c0)=[{0x0}, {&(0x7f0000000dc0)="a1ae4a01c42059bc95a97556d0463b12389a674597d132497ec74080332b63982de9ba4f0344b31418f855c720600b7d34423b", 0x33, 0x80000000}, {&(0x7f0000000e00)="2c441148c80fc99ddca16c145f4aba2a573d3dc00064d4e70e952e457f9cc16eeaa1e1677c8df838b920adab8285a6a66b453a0d73490d274f9ed040f10594648b730713bb50f613dca80fedbf37bea42dae0a074935fe76b865ae62e7f21839e3b8ef71f14ee0bfe57b03496d9edd1c32952c688a726974b163391de08b5614f7e2aafb5528a4f92d6cd753275facc980555343d1091e80d2af57a2cdc4aeb932476acd8d4a77834eeea642080141668954e048534dc78f9597148370b4e60bd24cf00bdaf555fbf9aa56a12c89b165c8195fd07bf1ab9c6872147e58d982", 0xdf, 0x7f}, {&(0x7f0000000f00)="7394b7c2230a67deb0935b7104ce8e6988e36868b5a460fec2e60ebd188bdd03f5e4bf095f45ea5fb964a0dcfd5b9783a56dc2f5787e9fed2c471404fdc3581b77684dbcb69931afa0830121df1268c63f71ba2f6c12712d252b25699c63b03205ce9033bbd93348d63af582e55fc2246364b75783bc225f7aea4d07049d4ed8be725bc94f302181f2d3978049f78e3a9347061a67abd3c843674c3cc3b1df40f6779f584246695e5840394956bd37edd5", 0xb1}, {&(0x7f0000001140)="a28d5e8c0e46292f1d8571e12da1147f0818cafa4ae00ac9e64a8350d8bf36745adea94350c8ae8421af6f63de97f01237d80cd471dab8df401ae62197db88ae6006c0a77a31d8c87e5f73666d", 0x4d, 0xfffffffffffffffa}], 0x881040, &(0x7f0000001280)={[{'\x00'}], [{@subj_role={'subj_role', 0x3d, ']'}}, {@obj_type={'obj_type', 0x3d, '*\'\xa3'}}, {@fowner_lt}, {@fowner_lt}, {@smackfstransmute={'smackfstransmute', 0x3d, 'fsi_master_acf_copro_response\x00'}}]})
ioctl$PTP_SYS_OFFSET_EXTENDED(0xffffffffffffffff, 0xc4c03d09, 0x0)

[  363.668725][T11471] loop3: detected capacity change from 0 to 264192
[  363.702706][T11465] loop1: detected capacity change from 0 to 16383
[  363.807006][T11471] loop3: detected capacity change from 0 to 264192
18:59:54 executing program 2:
syz_mount_image$nfs(&(0x7f0000000cc0), 0x0, 0x0, 0x1, &(0x7f00000011c0)=[{&(0x7f0000001140)="a2", 0x1, 0xfffffffffffffffa}], 0x881040, &(0x7f0000001280)={[], [{@fowner_lt}]})

18:59:54 executing program 1:
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
r1 = epoll_create(0xa9a5)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, 0xffffffffffffffff, &(0x7f0000000000))
dup3(0xffffffffffffffff, r0, 0x0)
ioctl$VIDIOC_G_FMT(r0, 0xc0285628, &(0x7f0000000100)={0x7, @pix={0x0, 0x0, 0x0, 0x2}})

18:59:54 executing program 0:
r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x525240, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff})
socketpair(0x15, 0x800, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = accept4(0xffffffffffffffff, &(0x7f0000000140)=@un=@abs, 0x0, 0x0)
r6 = creat(&(0x7f0000000200)='./file0\x00', 0x1)
sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x94, r0, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@NBD_ATTR_SOCKETS={0x54, 0x7, 0x0, 0x1, [{0x8}, {0x8, 0x1, r1}, {0x8, 0x1, r2}, {0x8}, {0x8, 0x1, r4}, {0x8}, {0x8}, {0x8, 0x1, r5}, {0x8}, {0x8}]}, @NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8, 0x1, r6}, {0x8}, {0x8}, {0x8}, {0x8}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x10}, 0x20000011)
r7 = creat(&(0x7f0000000380)='./file0\x00', 0x52)
ioctl$sock_inet_tcp_SIOCOUTQ(r7, 0x5411, &(0x7f00000003c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fsi_master_acf_copro_response\x00', r3}, 0x10)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x4c, r0, 0x10, 0x70bd2b, 0x25dfdbfc, {}, [@NBD_ATTR_TIMEOUT={0xc, 0x4, 0x7f}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0xffffffff}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x200008d0}, 0x8)
r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000700), 0x100, 0x0)
ioctl$PTP_SYS_OFFSET_EXTENDED(r8, 0xc4c03d09, &(0x7f0000000740)={0xf})
syz_genetlink_get_family_id$nbd(&(0x7f0000000c40), 0xffffffffffffffff)
syz_mount_image$nfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x5, 0x7, &(0x7f00000011c0)=[{&(0x7f0000000d40)="c90069f41ccc8148c1fe8c6e9fce2b61599e0673512db96318f0afbd2e59067ed115b5df5f39b7e114bbeec634d7a376375a0c4b923e6d0e6f649558d43f4dda208a399e63c8b4511eef45585fd5637f71870dd389fa1a8e22453317a4386dbad4db8e331cfa451f72504abefbb1e113", 0x70, 0x2}, {&(0x7f0000000dc0)="a1ae4a01c42059bc95a97556d0463b12389a674597d132497ec74080332b63982de9ba4f0344b31418f855c720600b7d34423bdcd6522ba61fd319544b55", 0x3e, 0x80000000}, {&(0x7f0000000e00)="2c441148c80fc99ddca16c145f4aba2a573d3dc00064d4e70e952e457f9cc16eeaa1e1677c8df838b920adab8285a6a66b453a0d73490d274f9ed040f10594648b730713bb50f613dca80fedbf37bea42dae0a074935fe76b865ae62e7f21839e3b8ef71f14ee0bfe57b03496d9edd1c32952c688a726974b163391de08b5614f7e2aafb5528a4f92d6cd753275facc980555343d1091e80d2af57a2cdc4aeb932476acd8d4a77834eeea642080141668954e048534dc78f9597148370b4e60bd24cf00bdaf555fbf9aa56a12c89b165c8195fd07bf1ab9c6872147e58d982b7d46aafcdbdb141aba57bb2f177", 0xed, 0x7f}, {&(0x7f0000000f00)="7394b7c2230a67deb0935b7104ce8e6988e36868b5a460fec2e60ebd188bdd03f5e4bf095f45ea5fb964a0dcfd5b9783a56dc2f5787e9fed2c471404fdc3581b77684dbcb69931afa0830121df1268c63f71ba2f6c12712d252b25699c63b03205ce9033bbd93348d63af582e55fc2246364b75783bc225f7aea4d07049d4ed8be725bc94f302181f2d3978049f78e3a9347061a67abd3c843674c3cc3", 0x9d, 0x2}, {&(0x7f0000000fc0)="1a8ce67041de7730e766de55ff365a47e55a6a9627b2867e71aa53024aa58b89820aa6fd566c33c309680eebf900c9fe40e9a3986fdeba5fee876259d7b7afe63746f2bda146ac5b3ac7c0e5091cc784dfee210d1619aeb9b42a136dc9639091a7e537418211dbc68417b2b76980587e7cb7326f5b233f081d5970a4dcbc9102e3681d7d8fc2e73d9aabafc882e3a1405f0d59c5e3b927f59c8ff7936f83db46a2d43b345ebda7db8bdca07051341a527037b265737ad0e26ffc481a23ed732e783342e5c3960c71fae69d0359e4cd648b2f6f802b47", 0xd6, 0x4}, {&(0x7f00000010c0)="19d28ebd409c61e3e6d75b58b0672dcedb534f7e02d654d220af45017e270385ee44519ff236648e0477f594d629a676920afdd7bf219e5daceab04cf4dd538ddd11c3f508902738e2aac7338ea0b9836c2c06fb26fa666130e1bb364b", 0x5d, 0x6}, {&(0x7f0000001140)="a28d5e8c0e46292f1d8571e12da1147f0818cafa4ae00ac9e64a8350d8bf36745adea94350c8ae8421af6f63de97f01237d80cd471dab8df401ae62197db88ae6006c0a77a31d8c87e5f73666d9335db2ed16d8cb94c9d27569908bb86def05678574ddeb7c09a5f721f1736b8a6a3ca9de7a01043", 0x75, 0xfffffffffffffffa}], 0x881040, &(0x7f0000001280)={[{'\x00'}], [{@subj_role={'subj_role', 0x3d, ']'}}, {@obj_type={'obj_type', 0x3d, '*\'\xa3'}}, {@fowner_lt}, {@fowner_lt}, {@smackfstransmute={'smackfstransmute', 0x3d, 'fsi_master_acf_copro_response\x00'}}]})
ioctl$PTP_SYS_OFFSET_EXTENDED(r7, 0xc4c03d09, &(0x7f0000001340))

[  364.102564][T11490] loop2: detected capacity change from 0 to 16383
[  364.189561][T11490] loop2: detected capacity change from 0 to 16383
18:59:55 executing program 1:
openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
creat(&(0x7f0000000200)='./file0\x00', 0x0)

[  364.248687][T11494] loop0: detected capacity change from 0 to 264192
[  364.411400][T11504] loop0: detected capacity change from 0 to 264192
18:59:55 executing program 2:
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$PTP_SYS_OFFSET_EXTENDED(r0, 0xc4c03d09, 0x0)

18:59:55 executing program 1:
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
creat(&(0x7f0000000200)='./file0\x00', 0x0)

18:59:55 executing program 3:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000000)={'wpan1\x00', <r4=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_KEY(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, r2, 0x421, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x1c}}, 0x0)
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000080)={&(0x7f00000003c0)={0x8c, r0, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_SEC_LEVEL={0x1c, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x4}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x20}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5, 0x4, 0x1}]}, @NL802154_ATTR_SEC_LEVEL={0x24, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_FRAME={0x8}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x40}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5, 0x4, 0x1}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_SEC_LEVEL={0x24, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5, 0x4, 0x1}, @NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x3}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x1}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4008814}, 0x0)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

18:59:55 executing program 0:
syz_mount_image$nfs4(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200))
ioctl$RTC_WKALM_RD(0xffffffffffffffff, 0x80287010, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440), 0x0, 0x0, 0x0)
ioctl$RTC_WKALM_RD(0xffffffffffffffff, 0x80287010, 0x0)
write$char_raw(0xffffffffffffffff, 0x0, 0x0)
openat$rtc(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$RTC_AIE_ON(0xffffffffffffffff, 0x7001)
socketpair(0x2a, 0x0, 0x0, &(0x7f00000009c0))

[  364.681773][   T50] audit: type=1400 audit(1626634795.638:12): avc:  denied  { create } for  pid=11510 comm="syz-executor.3" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1
[  364.751908][T11513] loop3: detected capacity change from 0 to 5
[  364.772940][T11513] qnx6: invalid mount options.
18:59:55 executing program 2:
creat(&(0x7f0000000200)='./file0\x00', 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x0)

18:59:55 executing program 1:
syz_mount_image$nfs(0x0, &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

18:59:55 executing program 0:
getpeername$netlink(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$char_raw(&(0x7f0000000140), 0x1, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)={0x0, 0x989680}, 0x0)
r1 = creat(&(0x7f0000000380)='./file0\x00', 0x0)
clock_gettime(0x0, 0x0)
syz_genetlink_get_family_id$fou(&(0x7f0000002700), r1)
getpeername$netlink(r0, &(0x7f0000002880), &(0x7f00000028c0)=0xc)
creat(&(0x7f0000002900)='./file0\x00', 0x0)

18:59:55 executing program 2:
syz_genetlink_get_family_id$nbd(0x0, 0xffffffffffffffff)
socketpair(0x0, 0x0, 0x0, &(0x7f0000000100))
creat(&(0x7f0000000200)='./file0\x00', 0x0)

18:59:55 executing program 3:
syz_mount_image$nfs(&(0x7f0000000cc0), 0x0, 0x0, 0x0, &(0x7f00000011c0), 0x0, &(0x7f0000001280))

18:59:55 executing program 1:
syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
socketpair(0x0, 0x0, 0x0, &(0x7f0000000100))
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
creat(&(0x7f0000000200)='./file0\x00', 0x0)

18:59:56 executing program 0:
syz_mount_image$nfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x0, 0x0, &(0x7f00000011c0), 0x0, &(0x7f0000001280)={[], [{@subj_role={'subj_role', 0x3d, ']'}}]})

18:59:56 executing program 3:
openat$hwrng(0xffffffffffffff9c, 0x0, 0x525240, 0x0)

[  365.279608][T11547] nfs: Unknown parameter 'subj_role'
18:59:56 executing program 3:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fsi_master_acf_copro_response\x00'}, 0x10)

[  365.398457][T11547] nfs: Unknown parameter 'subj_role'
18:59:56 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000040), 0x0, 0x0)
pread64(r0, 0x0, 0x7ffffffffffff, 0x0)

18:59:56 executing program 2:
r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x525240, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff})
socketpair(0x15, 0x800, 0xda000000, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = accept4(0xffffffffffffffff, &(0x7f0000000140)=@un=@abs, &(0x7f00000001c0)=0x80, 0x0)
r6 = creat(0x0, 0x1)
sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x94, r0, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@NBD_ATTR_SOCKETS={0x54, 0x7, 0x0, 0x1, [{0x8}, {0x8, 0x1, r1}, {0x8, 0x1, r2}, {0x8}, {0x8, 0x1, r4}, {0x8}, {0x8}, {0x8, 0x1, r5}, {0x8}, {0x8}]}, @NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8, 0x1, r6}, {0x8}, {0x8}, {0x8}, {0x8}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x10}, 0x20000011)
socket$inet(0x2, 0x3, 0x0)
r7 = creat(&(0x7f0000000380)='./file0\x00', 0x52)
ioctl$sock_inet_tcp_SIOCOUTQ(r7, 0x5411, &(0x7f00000003c0))
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x50, r0, 0x0, 0x70bd29, 0x25dfdbfb, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xc}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000050}, 0x240008d0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fsi_master_acf_copro_response\x00', r3}, 0x10)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x4c, r0, 0x10, 0x70bd2b, 0x25dfdbfc, {}, [@NBD_ATTR_TIMEOUT={0xc}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0xffffffff}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x200008d0}, 0x8)
r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000700), 0x100, 0x0)
ioctl$PTP_SYS_OFFSET_EXTENDED(r8, 0xc4c03d09, &(0x7f0000000740)={0xf})
syz_genetlink_get_family_id$nbd(&(0x7f0000000c40), 0xffffffffffffffff)
syz_mount_image$nfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x5, 0x7, &(0x7f00000011c0)=[{&(0x7f0000000d40)="c90069f41ccc8148c1fe8c6e9fce2b61599e0673512db96318f0afbd2e59067ed115b5df5f39b7e114bbeec634d7a376375a0c4b923e6d0e6f649558d43f4dda208a399e63c8b4511eef45585fd5637f71870dd389fa1a8e22453317a4386dbad4db8e331cfa451f72504abefbb1e113", 0x70, 0x2}, {&(0x7f0000000dc0)="a1ae4a01c42059bc95a97556d0463b12389a674597d132497ec74080332b63982de9ba4f0344b31418f855c720600b7d34423bdcd6522ba61fd319544b55", 0x3e, 0x80000000}, {&(0x7f0000000e00)="2c441148c80fc99ddca16c145f4aba2a573d3dc00064d4e70e952e457f9cc16eeaa1e1677c8df838b920adab8285a6a66b453a0d73490d274f9ed040f10594648b730713bb50f613dca80fedbf37bea42dae0a074935fe76b865ae62e7f21839e3b8ef71f14ee0bfe57b03496d9edd1c32952c688a726974b163391de08b5614f7e2aafb5528a4f92d6cd753275facc980555343d1091e80d2af57a2cdc4aeb932476acd8d4a77834eeea642080141668954e048534dc78f9597148370b4e60bd24cf00bdaf555fbf9aa56a12c89b165c8195fd07bf1ab9c6872147e58d982b7d46aafcdbdb141aba57bb2f177", 0xed, 0x7f}, {&(0x7f0000000f00)="7394b7c2230a67deb0935b7104ce8e6988e36868b5a460fec2e60ebd188bdd03f5e4bf095f45ea5fb964a0dcfd5b9783a56dc2f5787e9fed2c471404fdc3581b77684dbcb69931afa0830121df1268c63f71ba2f6c12712d252b25699c63b03205ce9033bbd93348d63af582e55fc2246364b75783bc225f7aea4d07049d4ed8be725bc94f302181f2d3978049f78e3a9347061a67abd3c843674c3cc3b1df40f6779f584246695e5840394956bd37edd59fc9", 0xb3, 0x2}, {&(0x7f0000000fc0)="1a8ce67041de7730e766de55ff365a47e55a6a9627b2867e71aa53024aa58b89820aa6fd566c33c309680eebf900c9fe40e9a3986fdeba5fee876259d7b7afe63746f2bda146ac5b3ac7c0e5091cc784dfee210d1619aeb9b42a136dc9639091a7e537418211dbc68417b2b76980587e7cb7326f5b233f081d5970a4dcbc9102e3681d7d8fc2e73d9aabafc882e3a1405f0d59c5e3b927f59c8ff7936f83db46a2d43b345ebda7db8bdca07051341a527037b265737ad0e26ffc481a23ed732e783342e5c3960c71fae69d0359e4cd648b2f6f802b47107892", 0xd9, 0x4}, {&(0x7f00000010c0)="19d28ebd409c61e3e6d75b58b0672dcedb534f7e02d654d220af45017e270385ee44519ff236648e0477f594d629a676920afdd7bf219e5daceab04cf4dd538ddd11c3f508902738e2aac7338ea0b9836c2c06fb26fa666130e1bb364b", 0x5d, 0x6}, {&(0x7f0000001140)="a28d5e8c0e46292f1d8571e12da1147f0818cafa4ae00ac9e64a8350d8bf36745adea94350c8ae8421af6f63de97f01237d80cd471dab8df401ae62197db88ae6006c0a77a31d8c87e5f73666d9335db2ed16d8cb94c9d27569908bb86def05678574ddeb7c09a5f721f1736b8a6a3ca9de7a01043", 0x75, 0xfffffffffffffffa}], 0x881040, &(0x7f0000001280)={[{'\x00'}], [{@subj_role={'subj_role', 0x3d, ']'}}, {@obj_type={'obj_type', 0x3d, '*\'\xa3'}}, {@fowner_lt}, {@fowner_lt}, {@smackfstransmute={'smackfstransmute', 0x3d, 'fsi_master_acf_copro_response\x00'}}]})
ioctl$PTP_SYS_OFFSET_EXTENDED(r7, 0xc4c03d09, &(0x7f0000001340))

18:59:56 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x14}, 0x803}}, 0x0)

18:59:56 executing program 0:
syz_genetlink_get_family_id$gtp(&(0x7f0000001dc0), 0xffffffffffffffff)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000001ec0), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

[  365.666772][T11560] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2051 sclass=netlink_route_socket pid=11560 comm=syz-executor.3
[  365.772686][T11560] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2051 sclass=netlink_route_socket pid=11560 comm=syz-executor.3
[  365.805313][T11566] loop2: detected capacity change from 0 to 264192
18:59:56 executing program 1:
creat(0x0, 0x0)
sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, 0x0, 0x0)
socket$inet(0x2, 0x0, 0x0)
creat(&(0x7f0000000380)='./file0\x00', 0x0)
syz_mount_image$nfs(&(0x7f0000000cc0), 0x0, 0x0, 0x0, &(0x7f00000011c0), 0x0, &(0x7f0000001280)={[], [{@fowner_lt}]})

18:59:56 executing program 3:
syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
creat(&(0x7f0000000200)='./file0\x00', 0x0)
ioctl$sock_inet_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)
syz_mount_image$nfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x0, 0x4, &(0x7f00000011c0)=[{&(0x7f0000000d40)="c9", 0x1, 0x2}, {&(0x7f0000000dc0)="a1ae4a01c42059bc95a97556d0463b12389a674597d132497ec74080332b63982de9ba4f0344b31418f855c720600b7d", 0x30, 0x80000000}, {&(0x7f0000000e00)=',', 0x1}, {&(0x7f0000001140)="a2", 0x1, 0xfffffffffffffffa}], 0x881040, &(0x7f0000001280)={[], [{@fowner_lt}]})
ioctl$PTP_SYS_OFFSET_EXTENDED(0xffffffffffffffff, 0xc4c03d09, 0x0)

18:59:56 executing program 0:
creat(0x0, 0x0)
sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_inet_tcp_SIOCOUTQ(0xffffffffffffffff, 0x5411, 0x0)
syz_mount_image$nfs(&(0x7f0000000cc0), 0x0, 0x5, 0x1, &(0x7f00000011c0)=[{0x0}], 0x0, &(0x7f0000001280)={[], [{@subj_role={'subj_role', 0x3d, ']'}}, {@fowner_lt}]})

[  366.043744][T11575] loop3: detected capacity change from 0 to 264192
[  366.095775][T11582] loop2: detected capacity change from 0 to 264192
[  366.182184][T11575] loop3: detected capacity change from 0 to 264192
[  366.196630][T11566] syz-executor.2 (11566) used greatest stack depth: 21344 bytes left
18:59:57 executing program 3:
r0 = syz_open_dev$rtc(&(0x7f0000000140), 0x5, 0x102)
ioctl$RTC_WIE_ON(r0, 0x700f)
pwrite64(r0, &(0x7f0000000300)="ff", 0x7ffff000, 0x0)

18:59:57 executing program 0:
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/107, 0x1115000, 0x1000, 0x0, 0x2}, 0x20)

18:59:57 executing program 1:
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, &(0x7f0000000100), 0x4)

18:59:57 executing program 2:
r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x525240, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff})
socketpair(0x15, 0x800, 0xda000000, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = accept4(0xffffffffffffffff, &(0x7f0000000140)=@un=@abs, &(0x7f00000001c0)=0x80, 0x0)
r6 = creat(0x0, 0x1)
sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x94, r0, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@NBD_ATTR_SOCKETS={0x54, 0x7, 0x0, 0x1, [{0x8}, {0x8, 0x1, r1}, {0x8, 0x1, r2}, {0x8}, {0x8, 0x1, r4}, {0x8}, {0x8}, {0x8, 0x1, r5}, {0x8}, {0x8}]}, @NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8, 0x1, r6}, {0x8}, {0x8}, {0x8}, {0x8}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x10}, 0x20000011)
socket$inet(0x2, 0x3, 0x0)
r7 = creat(&(0x7f0000000380)='./file0\x00', 0x52)
ioctl$sock_inet_tcp_SIOCOUTQ(r7, 0x5411, &(0x7f00000003c0))
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x50, r0, 0x0, 0x70bd29, 0x25dfdbfb, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xc}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000050}, 0x240008d0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fsi_master_acf_copro_response\x00', r3}, 0x10)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x4c, r0, 0x10, 0x70bd2b, 0x25dfdbfc, {}, [@NBD_ATTR_TIMEOUT={0xc}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0xffffffff}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x200008d0}, 0x8)
r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000700), 0x100, 0x0)
ioctl$PTP_SYS_OFFSET_EXTENDED(r8, 0xc4c03d09, &(0x7f0000000740)={0xf})
syz_genetlink_get_family_id$nbd(&(0x7f0000000c40), 0xffffffffffffffff)
syz_mount_image$nfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x5, 0x7, &(0x7f00000011c0)=[{&(0x7f0000000d40)="c90069f41ccc8148c1fe8c6e9fce2b61599e0673512db96318f0afbd2e59067ed115b5df5f39b7e114bbeec634d7a376375a0c4b923e6d0e6f649558d43f4dda208a399e63c8b4511eef45585fd5637f71870dd389fa1a8e22453317a4386dbad4db8e331cfa451f72504abefbb1e113", 0x70, 0x2}, {&(0x7f0000000dc0)="a1ae4a01c42059bc95a97556d0463b12389a674597d132497ec74080332b63982de9ba4f0344b31418f855c720600b7d34423bdcd6522ba61fd319544b55", 0x3e, 0x80000000}, {&(0x7f0000000e00)="2c441148c80fc99ddca16c145f4aba2a573d3dc00064d4e70e952e457f9cc16eeaa1e1677c8df838b920adab8285a6a66b453a0d73490d274f9ed040f10594648b730713bb50f613dca80fedbf37bea42dae0a074935fe76b865ae62e7f21839e3b8ef71f14ee0bfe57b03496d9edd1c32952c688a726974b163391de08b5614f7e2aafb5528a4f92d6cd753275facc980555343d1091e80d2af57a2cdc4aeb932476acd8d4a77834eeea642080141668954e048534dc78f9597148370b4e60bd24cf00bdaf555fbf9aa56a12c89b165c8195fd07bf1ab9c6872147e58d982b7d46aafcdbdb141aba57bb2f177", 0xed, 0x7f}, {&(0x7f0000000f00)="7394b7c2230a67deb0935b7104ce8e6988e36868b5a460fec2e60ebd188bdd03f5e4bf095f45ea5fb964a0dcfd5b9783a56dc2f5787e9fed2c471404fdc3581b77684dbcb69931afa0830121df1268c63f71ba2f6c12712d252b25699c63b03205ce9033bbd93348d63af582e55fc2246364b75783bc225f7aea4d07049d4ed8be725bc94f302181f2d3978049f78e3a9347061a67abd3c843674c3cc3b1df40f6779f584246695e5840394956bd37edd59fc9", 0xb3, 0x2}, {&(0x7f0000000fc0)="1a8ce67041de7730e766de55ff365a47e55a6a9627b2867e71aa53024aa58b89820aa6fd566c33c309680eebf900c9fe40e9a3986fdeba5fee876259d7b7afe63746f2bda146ac5b3ac7c0e5091cc784dfee210d1619aeb9b42a136dc9639091a7e537418211dbc68417b2b76980587e7cb7326f5b233f081d5970a4dcbc9102e3681d7d8fc2e73d9aabafc882e3a1405f0d59c5e3b927f59c8ff7936f83db46a2d43b345ebda7db8bdca07051341a527037b265737ad0e26ffc481a23ed732e783342e5c3960c71fae69d0359e4cd648b2f6f802b47107892", 0xd9, 0x4}, {&(0x7f00000010c0)="19d28ebd409c61e3e6d75b58b0672dcedb534f7e02d654d220af45017e270385ee44519ff236648e0477f594d629a676920afdd7bf219e5daceab04cf4dd538ddd11c3f508902738e2aac7338ea0b9836c2c06fb26fa666130e1bb364b", 0x5d, 0x6}, {&(0x7f0000001140)="a28d5e8c0e46292f1d8571e12da1147f0818cafa4ae00ac9e64a8350d8bf36745adea94350c8ae8421af6f63de97f01237d80cd471dab8df401ae62197db88ae6006c0a77a31d8c87e5f73666d9335db2ed16d8cb94c9d27569908bb86def05678574ddeb7c09a5f721f1736b8a6a3ca9de7a01043", 0x75, 0xfffffffffffffffa}], 0x881040, &(0x7f0000001280)={[{'\x00'}], [{@subj_role={'subj_role', 0x3d, ']'}}, {@obj_type={'obj_type', 0x3d, '*\'\xa3'}}, {@fowner_lt}, {@fowner_lt}, {@smackfstransmute={'smackfstransmute', 0x3d, 'fsi_master_acf_copro_response\x00'}}]})
ioctl$PTP_SYS_OFFSET_EXTENDED(r7, 0xc4c03d09, &(0x7f0000001340))

18:59:57 executing program 3:
r0 = socket$unix(0x1, 0x1, 0x0)
sendmmsg$unix(r0, &(0x7f00000015c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000001500)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}], 0x1, 0x0)

18:59:57 executing program 1:
r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x525240, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff})
socketpair(0x15, 0x800, 0xda000000, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = accept4(0xffffffffffffffff, &(0x7f0000000140)=@un=@abs, &(0x7f00000001c0)=0x80, 0x0)
r6 = creat(0x0, 0x1)
sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x94, r0, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@NBD_ATTR_SOCKETS={0x54, 0x7, 0x0, 0x1, [{0x8}, {0x8, 0x1, r1}, {0x8, 0x1, r2}, {0x8}, {0x8, 0x1, r4}, {0x8}, {0x8}, {0x8, 0x1, r5}, {0x8}, {0x8}]}, @NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8, 0x1, r6}, {0x8}, {0x8}, {0x8}, {0x8}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x10}, 0x20000011)
socket$inet(0x2, 0x3, 0x0)
r7 = creat(&(0x7f0000000380)='./file0\x00', 0x52)
ioctl$sock_inet_tcp_SIOCOUTQ(r7, 0x5411, &(0x7f00000003c0))
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x50, r0, 0x0, 0x70bd29, 0x25dfdbfb, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xc}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000050}, 0x240008d0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fsi_master_acf_copro_response\x00', r3}, 0x10)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x4c, r0, 0x10, 0x70bd2b, 0x25dfdbfc, {}, [@NBD_ATTR_TIMEOUT={0xc}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0xffffffff}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x200008d0}, 0x8)
r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000700), 0x100, 0x0)
ioctl$PTP_SYS_OFFSET_EXTENDED(r8, 0xc4c03d09, &(0x7f0000000740)={0xf})
syz_genetlink_get_family_id$nbd(&(0x7f0000000c40), 0xffffffffffffffff)
syz_mount_image$nfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x5, 0x7, &(0x7f00000011c0)=[{&(0x7f0000000d40)="c90069f41ccc8148c1fe8c6e9fce2b61599e0673512db96318f0afbd2e59067ed115b5df5f39b7e114bbeec634d7a376375a0c4b923e6d0e6f649558d43f4dda208a399e63c8b4511eef45585fd5637f71870dd389fa1a8e22453317a4386dbad4db8e331cfa451f72504abefbb1e113", 0x70, 0x2}, {&(0x7f0000000dc0)="a1ae4a01c42059bc95a97556d0463b12389a674597d132497ec74080332b63982de9ba4f0344b31418f855c720600b7d34423bdcd6522ba61fd319544b55", 0x3e, 0x80000000}, {&(0x7f0000000e00)="2c441148c80fc99ddca16c145f4aba2a573d3dc00064d4e70e952e457f9cc16eeaa1e1677c8df838b920adab8285a6a66b453a0d73490d274f9ed040f10594648b730713bb50f613dca80fedbf37bea42dae0a074935fe76b865ae62e7f21839e3b8ef71f14ee0bfe57b03496d9edd1c32952c688a726974b163391de08b5614f7e2aafb5528a4f92d6cd753275facc980555343d1091e80d2af57a2cdc4aeb932476acd8d4a77834eeea642080141668954e048534dc78f9597148370b4e60bd24cf00bdaf555fbf9aa56a12c89b165c8195fd07bf1ab9c6872147e58d982b7d46aafcdbdb141aba57bb2f177", 0xed, 0x7f}, {&(0x7f0000000f00)="7394b7c2230a67deb0935b7104ce8e6988e36868b5a460fec2e60ebd188bdd03f5e4bf095f45ea5fb964a0dcfd5b9783a56dc2f5787e9fed2c471404fdc3581b77684dbcb69931afa0830121df1268c63f71ba2f6c12712d252b25699c63b03205ce9033bbd93348d63af582e55fc2246364b75783bc225f7aea4d07049d4ed8be725bc94f302181f2d3978049f78e3a9347061a67abd3c843674c3cc3b1df40f6779f584246695e5840394956bd37edd59fc9", 0xb3, 0x2}, {&(0x7f0000000fc0)="1a8ce67041de7730e766de55ff365a47e55a6a9627b2867e71aa53024aa58b89820aa6fd566c33c309680eebf900c9fe40e9a3986fdeba5fee876259d7b7afe63746f2bda146ac5b3ac7c0e5091cc784dfee210d1619aeb9b42a136dc9639091a7e537418211dbc68417b2b76980587e7cb7326f5b233f081d5970a4dcbc9102e3681d7d8fc2e73d9aabafc882e3a1405f0d59c5e3b927f59c8ff7936f83db46a2d43b345ebda7db8bdca07051341a527037b265737ad0e26ffc481a23ed732e783342e5c3960c71fae69d0359e4cd648b2f6f802b47107892", 0xd9, 0x4}, {&(0x7f00000010c0)="19d28ebd409c61e3e6d75b58b0672dcedb534f7e02d654d220af45017e270385ee44519ff236648e0477f594d629a676920afdd7bf219e5daceab04cf4dd538ddd11c3f508902738e2aac7338ea0b9836c2c06fb26fa666130e1bb364b", 0x5d, 0x6}, {&(0x7f0000001140)="a28d5e8c0e46292f1d8571e12da1147f0818cafa4ae00ac9e64a8350d8bf36745adea94350c8ae8421af6f63de97f01237d80cd471dab8df401ae62197db88ae6006c0a77a31d8c87e5f73666d9335db2ed16d8cb94c9d27569908bb86def05678574ddeb7c09a5f721f1736b8a6a3ca9de7a01043", 0x75, 0xfffffffffffffffa}], 0x881040, &(0x7f0000001280)={[{'\x00'}], [{@subj_role={'subj_role', 0x3d, ']'}}, {@obj_type={'obj_type', 0x3d, '*\'\xa3'}}, {@fowner_lt}, {@fowner_lt}, {@smackfstransmute={'smackfstransmute', 0x3d, 'fsi_master_acf_copro_response\x00'}}]})
ioctl$PTP_SYS_OFFSET_EXTENDED(r7, 0xc4c03d09, &(0x7f0000001340))

[  367.021059][T11613] loop1: detected capacity change from 0 to 264192
[  367.046426][T11616] loop2: detected capacity change from 0 to 264192
18:59:58 executing program 3:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x18)

18:59:59 executing program 0:
mlock2(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0)
r0 = syz_open_dev$mouse(&(0x7f0000000280), 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0)

19:00:01 executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_ifreq(0xffffffffffffffff, 0x0, 0x0)
openat$cgroup_type(0xffffffffffffffff, &(0x7f00000028c0), 0x2, 0x0)
read$FUSE(r0, &(0x7f0000000100)={0x2020}, 0x2020)

19:00:01 executing program 1:
r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x525240, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff})
socketpair(0x15, 0x800, 0xda000000, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = accept4(0xffffffffffffffff, &(0x7f0000000140)=@un=@abs, &(0x7f00000001c0)=0x80, 0x0)
r6 = creat(0x0, 0x1)
sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x94, r0, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@NBD_ATTR_SOCKETS={0x54, 0x7, 0x0, 0x1, [{0x8}, {0x8, 0x1, r1}, {0x8, 0x1, r2}, {0x8}, {0x8, 0x1, r4}, {0x8}, {0x8}, {0x8, 0x1, r5}, {0x8}, {0x8}]}, @NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8, 0x1, r6}, {0x8}, {0x8}, {0x8}, {0x8}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x10}, 0x20000011)
socket$inet(0x2, 0x3, 0x0)
r7 = creat(&(0x7f0000000380)='./file0\x00', 0x52)
ioctl$sock_inet_tcp_SIOCOUTQ(r7, 0x5411, &(0x7f00000003c0))
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x50, r0, 0x0, 0x70bd29, 0x25dfdbfb, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xc}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000050}, 0x240008d0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fsi_master_acf_copro_response\x00', r3}, 0x10)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x4c, r0, 0x10, 0x70bd2b, 0x25dfdbfc, {}, [@NBD_ATTR_TIMEOUT={0xc}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0xffffffff}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x200008d0}, 0x8)
r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000700), 0x100, 0x0)
ioctl$PTP_SYS_OFFSET_EXTENDED(r8, 0xc4c03d09, &(0x7f0000000740)={0xf})
syz_genetlink_get_family_id$nbd(&(0x7f0000000c40), 0xffffffffffffffff)
syz_mount_image$nfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x5, 0x7, &(0x7f00000011c0)=[{&(0x7f0000000d40)="c90069f41ccc8148c1fe8c6e9fce2b61599e0673512db96318f0afbd2e59067ed115b5df5f39b7e114bbeec634d7a376375a0c4b923e6d0e6f649558d43f4dda208a399e63c8b4511eef45585fd5637f71870dd389fa1a8e22453317a4386dbad4db8e331cfa451f72504abefbb1e113", 0x70, 0x2}, {&(0x7f0000000dc0)="a1ae4a01c42059bc95a97556d0463b12389a674597d132497ec74080332b63982de9ba4f0344b31418f855c720600b7d34423bdcd6522ba61fd319544b55", 0x3e, 0x80000000}, {&(0x7f0000000e00)="2c441148c80fc99ddca16c145f4aba2a573d3dc00064d4e70e952e457f9cc16eeaa1e1677c8df838b920adab8285a6a66b453a0d73490d274f9ed040f10594648b730713bb50f613dca80fedbf37bea42dae0a074935fe76b865ae62e7f21839e3b8ef71f14ee0bfe57b03496d9edd1c32952c688a726974b163391de08b5614f7e2aafb5528a4f92d6cd753275facc980555343d1091e80d2af57a2cdc4aeb932476acd8d4a77834eeea642080141668954e048534dc78f9597148370b4e60bd24cf00bdaf555fbf9aa56a12c89b165c8195fd07bf1ab9c6872147e58d982b7d46aafcdbdb141aba57bb2f177", 0xed, 0x7f}, {&(0x7f0000000f00)="7394b7c2230a67deb0935b7104ce8e6988e36868b5a460fec2e60ebd188bdd03f5e4bf095f45ea5fb964a0dcfd5b9783a56dc2f5787e9fed2c471404fdc3581b77684dbcb69931afa0830121df1268c63f71ba2f6c12712d252b25699c63b03205ce9033bbd93348d63af582e55fc2246364b75783bc225f7aea4d07049d4ed8be725bc94f302181f2d3978049f78e3a9347061a67abd3c843674c3cc3b1df40f6779f584246695e5840394956bd37edd59fc9", 0xb3, 0x2}, {&(0x7f0000000fc0)="1a8ce67041de7730e766de55ff365a47e55a6a9627b2867e71aa53024aa58b89820aa6fd566c33c309680eebf900c9fe40e9a3986fdeba5fee876259d7b7afe63746f2bda146ac5b3ac7c0e5091cc784dfee210d1619aeb9b42a136dc9639091a7e537418211dbc68417b2b76980587e7cb7326f5b233f081d5970a4dcbc9102e3681d7d8fc2e73d9aabafc882e3a1405f0d59c5e3b927f59c8ff7936f83db46a2d43b345ebda7db8bdca07051341a527037b265737ad0e26ffc481a23ed732e783342e5c3960c71fae69d0359e4cd648b2f6f802b47107892", 0xd9, 0x4}, {&(0x7f00000010c0)="19d28ebd409c61e3e6d75b58b0672dcedb534f7e02d654d220af45017e270385ee44519ff236648e0477f594d629a676920afdd7bf219e5daceab04cf4dd538ddd11c3f508902738e2aac7338ea0b9836c2c06fb26fa666130e1bb364b", 0x5d, 0x6}, {&(0x7f0000001140)="a28d5e8c0e46292f1d8571e12da1147f0818cafa4ae00ac9e64a8350d8bf36745adea94350c8ae8421af6f63de97f01237d80cd471dab8df401ae62197db88ae6006c0a77a31d8c87e5f73666d9335db2ed16d8cb94c9d27569908bb86def05678574ddeb7c09a5f721f1736b8a6a3ca9de7a01043", 0x75, 0xfffffffffffffffa}], 0x881040, &(0x7f0000001280)={[{'\x00'}], [{@subj_role={'subj_role', 0x3d, ']'}}, {@obj_type={'obj_type', 0x3d, '*\'\xa3'}}, {@fowner_lt}, {@fowner_lt}, {@smackfstransmute={'smackfstransmute', 0x3d, 'fsi_master_acf_copro_response\x00'}}]})
ioctl$PTP_SYS_OFFSET_EXTENDED(r7, 0xc4c03d09, &(0x7f0000001340))

19:00:01 executing program 0:
mlock2(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0)
r0 = syz_open_dev$mouse(&(0x7f0000000280), 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0)

19:00:01 executing program 2:
r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x525240, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff})
socketpair(0x15, 0x800, 0xda000000, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = accept4(0xffffffffffffffff, &(0x7f0000000140)=@un=@abs, &(0x7f00000001c0)=0x80, 0x0)
r6 = creat(0x0, 0x1)
sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x94, r0, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@NBD_ATTR_SOCKETS={0x54, 0x7, 0x0, 0x1, [{0x8}, {0x8, 0x1, r1}, {0x8, 0x1, r2}, {0x8}, {0x8, 0x1, r4}, {0x8}, {0x8}, {0x8, 0x1, r5}, {0x8}, {0x8}]}, @NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8, 0x1, r6}, {0x8}, {0x8}, {0x8}, {0x8}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x10}, 0x20000011)
socket$inet(0x2, 0x3, 0x0)
r7 = creat(&(0x7f0000000380)='./file0\x00', 0x52)
ioctl$sock_inet_tcp_SIOCOUTQ(r7, 0x5411, &(0x7f00000003c0))
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x50, r0, 0x0, 0x70bd29, 0x25dfdbfb, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xc}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000050}, 0x240008d0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fsi_master_acf_copro_response\x00', r3}, 0x10)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x4c, r0, 0x10, 0x70bd2b, 0x25dfdbfc, {}, [@NBD_ATTR_TIMEOUT={0xc}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0xffffffff}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x200008d0}, 0x8)
r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000700), 0x100, 0x0)
ioctl$PTP_SYS_OFFSET_EXTENDED(r8, 0xc4c03d09, &(0x7f0000000740)={0xf})
syz_genetlink_get_family_id$nbd(&(0x7f0000000c40), 0xffffffffffffffff)
syz_mount_image$nfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x5, 0x7, &(0x7f00000011c0)=[{&(0x7f0000000d40)="c90069f41ccc8148c1fe8c6e9fce2b61599e0673512db96318f0afbd2e59067ed115b5df5f39b7e114bbeec634d7a376375a0c4b923e6d0e6f649558d43f4dda208a399e63c8b4511eef45585fd5637f71870dd389fa1a8e22453317a4386dbad4db8e331cfa451f72504abefbb1e113", 0x70, 0x2}, {&(0x7f0000000dc0)="a1ae4a01c42059bc95a97556d0463b12389a674597d132497ec74080332b63982de9ba4f0344b31418f855c720600b7d34423bdcd6522ba61fd319544b55", 0x3e, 0x80000000}, {&(0x7f0000000e00)="2c441148c80fc99ddca16c145f4aba2a573d3dc00064d4e70e952e457f9cc16eeaa1e1677c8df838b920adab8285a6a66b453a0d73490d274f9ed040f10594648b730713bb50f613dca80fedbf37bea42dae0a074935fe76b865ae62e7f21839e3b8ef71f14ee0bfe57b03496d9edd1c32952c688a726974b163391de08b5614f7e2aafb5528a4f92d6cd753275facc980555343d1091e80d2af57a2cdc4aeb932476acd8d4a77834eeea642080141668954e048534dc78f9597148370b4e60bd24cf00bdaf555fbf9aa56a12c89b165c8195fd07bf1ab9c6872147e58d982b7d46aafcdbdb141aba57bb2f177", 0xed, 0x7f}, {&(0x7f0000000f00)="7394b7c2230a67deb0935b7104ce8e6988e36868b5a460fec2e60ebd188bdd03f5e4bf095f45ea5fb964a0dcfd5b9783a56dc2f5787e9fed2c471404fdc3581b77684dbcb69931afa0830121df1268c63f71ba2f6c12712d252b25699c63b03205ce9033bbd93348d63af582e55fc2246364b75783bc225f7aea4d07049d4ed8be725bc94f302181f2d3978049f78e3a9347061a67abd3c843674c3cc3b1df40f6779f584246695e5840394956bd37edd59fc9", 0xb3, 0x2}, {&(0x7f0000000fc0)="1a8ce67041de7730e766de55ff365a47e55a6a9627b2867e71aa53024aa58b89820aa6fd566c33c309680eebf900c9fe40e9a3986fdeba5fee876259d7b7afe63746f2bda146ac5b3ac7c0e5091cc784dfee210d1619aeb9b42a136dc9639091a7e537418211dbc68417b2b76980587e7cb7326f5b233f081d5970a4dcbc9102e3681d7d8fc2e73d9aabafc882e3a1405f0d59c5e3b927f59c8ff7936f83db46a2d43b345ebda7db8bdca07051341a527037b265737ad0e26ffc481a23ed732e783342e5c3960c71fae69d0359e4cd648b2f6f802b47107892", 0xd9, 0x4}, {&(0x7f00000010c0)="19d28ebd409c61e3e6d75b58b0672dcedb534f7e02d654d220af45017e270385ee44519ff236648e0477f594d629a676920afdd7bf219e5daceab04cf4dd538ddd11c3f508902738e2aac7338ea0b9836c2c06fb26fa666130e1bb364b", 0x5d, 0x6}, {&(0x7f0000001140)="a28d5e8c0e46292f1d8571e12da1147f0818cafa4ae00ac9e64a8350d8bf36745adea94350c8ae8421af6f63de97f01237d80cd471dab8df401ae62197db88ae6006c0a77a31d8c87e5f73666d9335db2ed16d8cb94c9d27569908bb86def05678574ddeb7c09a5f721f1736b8a6a3ca9de7a01043", 0x75, 0xfffffffffffffffa}], 0x881040, &(0x7f0000001280)={[{'\x00'}], [{@subj_role={'subj_role', 0x3d, ']'}}, {@obj_type={'obj_type', 0x3d, '*\'\xa3'}}, {@fowner_lt}, {@fowner_lt}, {@smackfstransmute={'smackfstransmute', 0x3d, 'fsi_master_acf_copro_response\x00'}}]})
ioctl$PTP_SYS_OFFSET_EXTENDED(r7, 0xc4c03d09, &(0x7f0000001340))

[  370.873691][T11644] loop1: detected capacity change from 0 to 264192
[  370.885552][T11642] loop2: detected capacity change from 0 to 264192
19:00:01 executing program 0:
mlock2(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0)
r0 = syz_open_dev$mouse(&(0x7f0000000280), 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0)

19:00:02 executing program 3:
r0 = syz_open_dev$rtc(&(0x7f0000000040), 0x2, 0x0)
pread64(r0, 0x0, 0x0, 0x0)

19:00:02 executing program 0:
mlock2(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0)
r0 = syz_open_dev$mouse(&(0x7f0000000280), 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0)

19:00:02 executing program 2:
r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x525240, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff})
socketpair(0x15, 0x800, 0xda000000, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = accept4(0xffffffffffffffff, &(0x7f0000000140)=@un=@abs, &(0x7f00000001c0)=0x80, 0x0)
r6 = creat(0x0, 0x1)
sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x94, r0, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@NBD_ATTR_SOCKETS={0x54, 0x7, 0x0, 0x1, [{0x8}, {0x8, 0x1, r1}, {0x8, 0x1, r2}, {0x8}, {0x8, 0x1, r4}, {0x8}, {0x8}, {0x8, 0x1, r5}, {0x8}, {0x8}]}, @NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8, 0x1, r6}, {0x8}, {0x8}, {0x8}, {0x8}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x10}, 0x20000011)
socket$inet(0x2, 0x3, 0x0)
r7 = creat(&(0x7f0000000380)='./file0\x00', 0x52)
ioctl$sock_inet_tcp_SIOCOUTQ(r7, 0x5411, &(0x7f00000003c0))
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x50, r0, 0x0, 0x70bd29, 0x25dfdbfb, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xc}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000050}, 0x240008d0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fsi_master_acf_copro_response\x00', r3}, 0x10)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x4c, r0, 0x10, 0x70bd2b, 0x25dfdbfc, {}, [@NBD_ATTR_TIMEOUT={0xc}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0xffffffff}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x200008d0}, 0x8)
r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000700), 0x100, 0x0)
ioctl$PTP_SYS_OFFSET_EXTENDED(r8, 0xc4c03d09, &(0x7f0000000740)={0xf})
syz_genetlink_get_family_id$nbd(&(0x7f0000000c40), 0xffffffffffffffff)
syz_mount_image$nfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x5, 0x7, &(0x7f00000011c0)=[{&(0x7f0000000d40)="c90069f41ccc8148c1fe8c6e9fce2b61599e0673512db96318f0afbd2e59067ed115b5df5f39b7e114bbeec634d7a376375a0c4b923e6d0e6f649558d43f4dda208a399e63c8b4511eef45585fd5637f71870dd389fa1a8e22453317a4386dbad4db8e331cfa451f72504abefbb1e113", 0x70, 0x2}, {&(0x7f0000000dc0)="a1ae4a01c42059bc95a97556d0463b12389a674597d132497ec74080332b63982de9ba4f0344b31418f855c720600b7d34423bdcd6522ba61fd319544b55", 0x3e, 0x80000000}, {&(0x7f0000000e00)="2c441148c80fc99ddca16c145f4aba2a573d3dc00064d4e70e952e457f9cc16eeaa1e1677c8df838b920adab8285a6a66b453a0d73490d274f9ed040f10594648b730713bb50f613dca80fedbf37bea42dae0a074935fe76b865ae62e7f21839e3b8ef71f14ee0bfe57b03496d9edd1c32952c688a726974b163391de08b5614f7e2aafb5528a4f92d6cd753275facc980555343d1091e80d2af57a2cdc4aeb932476acd8d4a77834eeea642080141668954e048534dc78f9597148370b4e60bd24cf00bdaf555fbf9aa56a12c89b165c8195fd07bf1ab9c6872147e58d982b7d46aafcdbdb141aba57bb2f177", 0xed, 0x7f}, {&(0x7f0000000f00)="7394b7c2230a67deb0935b7104ce8e6988e36868b5a460fec2e60ebd188bdd03f5e4bf095f45ea5fb964a0dcfd5b9783a56dc2f5787e9fed2c471404fdc3581b77684dbcb69931afa0830121df1268c63f71ba2f6c12712d252b25699c63b03205ce9033bbd93348d63af582e55fc2246364b75783bc225f7aea4d07049d4ed8be725bc94f302181f2d3978049f78e3a9347061a67abd3c843674c3cc3b1df40f6779f584246695e5840394956bd37edd59fc9", 0xb3, 0x2}, {&(0x7f0000000fc0)="1a8ce67041de7730e766de55ff365a47e55a6a9627b2867e71aa53024aa58b89820aa6fd566c33c309680eebf900c9fe40e9a3986fdeba5fee876259d7b7afe63746f2bda146ac5b3ac7c0e5091cc784dfee210d1619aeb9b42a136dc9639091a7e537418211dbc68417b2b76980587e7cb7326f5b233f081d5970a4dcbc9102e3681d7d8fc2e73d9aabafc882e3a1405f0d59c5e3b927f59c8ff7936f83db46a2d43b345ebda7db8bdca07051341a527037b265737ad0e26ffc481a23ed732e783342e5c3960c71fae69d0359e4cd648b2f6f802b47107892", 0xd9, 0x4}, {&(0x7f00000010c0)="19d28ebd409c61e3e6d75b58b0672dcedb534f7e02d654d220af45017e270385ee44519ff236648e0477f594d629a676920afdd7bf219e5daceab04cf4dd538ddd11c3f508902738e2aac7338ea0b9836c2c06fb26fa666130e1bb364b", 0x5d, 0x6}, {&(0x7f0000001140)="a28d5e8c0e46292f1d8571e12da1147f0818cafa4ae00ac9e64a8350d8bf36745adea94350c8ae8421af6f63de97f01237d80cd471dab8df401ae62197db88ae6006c0a77a31d8c87e5f73666d9335db2ed16d8cb94c9d27569908bb86def05678574ddeb7c09a5f721f1736b8a6a3ca9de7a01043", 0x75, 0xfffffffffffffffa}], 0x881040, &(0x7f0000001280)={[{'\x00'}], [{@subj_role={'subj_role', 0x3d, ']'}}, {@obj_type={'obj_type', 0x3d, '*\'\xa3'}}, {@fowner_lt}, {@fowner_lt}, {@smackfstransmute={'smackfstransmute', 0x3d, 'fsi_master_acf_copro_response\x00'}}]})
ioctl$PTP_SYS_OFFSET_EXTENDED(r7, 0xc4c03d09, &(0x7f0000001340))

19:00:02 executing program 1:
r0 = syz_genetlink_get_family_id$nbd(&(0x7f0000000040), 0xffffffffffffffff)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x525240, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff})
socketpair(0x15, 0x800, 0xda000000, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = accept4(0xffffffffffffffff, &(0x7f0000000140)=@un=@abs, &(0x7f00000001c0)=0x80, 0x0)
r6 = creat(0x0, 0x1)
sendmsg$NBD_CMD_STATUS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000300)={&(0x7f0000000240)={0x94, r0, 0x100, 0x70bd2d, 0x25dfdbff, {}, [@NBD_ATTR_SOCKETS={0x54, 0x7, 0x0, 0x1, [{0x8}, {0x8, 0x1, r1}, {0x8, 0x1, r2}, {0x8}, {0x8, 0x1, r4}, {0x8}, {0x8}, {0x8, 0x1, r5}, {0x8}, {0x8}]}, @NBD_ATTR_SOCKETS={0x2c, 0x7, 0x0, 0x1, [{0x8, 0x1, r6}, {0x8}, {0x8}, {0x8}, {0x8}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x10}, 0x20000011)
socket$inet(0x2, 0x3, 0x0)
r7 = creat(&(0x7f0000000380)='./file0\x00', 0x52)
ioctl$sock_inet_tcp_SIOCOUTQ(r7, 0x5411, &(0x7f00000003c0))
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x50, r0, 0x0, 0x70bd29, 0x25dfdbfb, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0xc}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}]}, 0x50}, 0x1, 0x0, 0x0, 0x4000050}, 0x240008d0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fsi_master_acf_copro_response\x00', r3}, 0x10)
sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f00000005c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x4c, r0, 0x10, 0x70bd2b, 0x25dfdbfc, {}, [@NBD_ATTR_TIMEOUT={0xc}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x1}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0xffffffff}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x5}]}, 0x4c}, 0x1, 0x0, 0x0, 0x200008d0}, 0x8)
r8 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000700), 0x100, 0x0)
ioctl$PTP_SYS_OFFSET_EXTENDED(r8, 0xc4c03d09, &(0x7f0000000740)={0xf})
syz_genetlink_get_family_id$nbd(&(0x7f0000000c40), 0xffffffffffffffff)
syz_mount_image$nfs(&(0x7f0000000cc0), &(0x7f0000000d00)='./file0\x00', 0x5, 0x7, &(0x7f00000011c0)=[{&(0x7f0000000d40)="c90069f41ccc8148c1fe8c6e9fce2b61599e0673512db96318f0afbd2e59067ed115b5df5f39b7e114bbeec634d7a376375a0c4b923e6d0e6f649558d43f4dda208a399e63c8b4511eef45585fd5637f71870dd389fa1a8e22453317a4386dbad4db8e331cfa451f72504abefbb1e113", 0x70, 0x2}, {&(0x7f0000000dc0)="a1ae4a01c42059bc95a97556d0463b12389a674597d132497ec74080332b63982de9ba4f0344b31418f855c720600b7d34423bdcd6522ba61fd319544b55", 0x3e, 0x80000000}, {&(0x7f0000000e00)="2c441148c80fc99ddca16c145f4aba2a573d3dc00064d4e70e952e457f9cc16eeaa1e1677c8df838b920adab8285a6a66b453a0d73490d274f9ed040f10594648b730713bb50f613dca80fedbf37bea42dae0a074935fe76b865ae62e7f21839e3b8ef71f14ee0bfe57b03496d9edd1c32952c688a726974b163391de08b5614f7e2aafb5528a4f92d6cd753275facc980555343d1091e80d2af57a2cdc4aeb932476acd8d4a77834eeea642080141668954e048534dc78f9597148370b4e60bd24cf00bdaf555fbf9aa56a12c89b165c8195fd07bf1ab9c6872147e58d982b7d46aafcdbdb141aba57bb2f177", 0xed, 0x7f}, {&(0x7f0000000f00)="7394b7c2230a67deb0935b7104ce8e6988e36868b5a460fec2e60ebd188bdd03f5e4bf095f45ea5fb964a0dcfd5b9783a56dc2f5787e9fed2c471404fdc3581b77684dbcb69931afa0830121df1268c63f71ba2f6c12712d252b25699c63b03205ce9033bbd93348d63af582e55fc2246364b75783bc225f7aea4d07049d4ed8be725bc94f302181f2d3978049f78e3a9347061a67abd3c843674c3cc3b1df40f6779f584246695e5840394956bd37edd59fc9", 0xb3, 0x2}, {&(0x7f0000000fc0)="1a8ce67041de7730e766de55ff365a47e55a6a9627b2867e71aa53024aa58b89820aa6fd566c33c309680eebf900c9fe40e9a3986fdeba5fee876259d7b7afe63746f2bda146ac5b3ac7c0e5091cc784dfee210d1619aeb9b42a136dc9639091a7e537418211dbc68417b2b76980587e7cb7326f5b233f081d5970a4dcbc9102e3681d7d8fc2e73d9aabafc882e3a1405f0d59c5e3b927f59c8ff7936f83db46a2d43b345ebda7db8bdca07051341a527037b265737ad0e26ffc481a23ed732e783342e5c3960c71fae69d0359e4cd648b2f6f802b47107892", 0xd9, 0x4}, {&(0x7f00000010c0)="19d28ebd409c61e3e6d75b58b0672dcedb534f7e02d654d220af45017e270385ee44519ff236648e0477f594d629a676920afdd7bf219e5daceab04cf4dd538ddd11c3f508902738e2aac7338ea0b9836c2c06fb26fa666130e1bb364b", 0x5d, 0x6}, {&(0x7f0000001140)="a28d5e8c0e46292f1d8571e12da1147f0818cafa4ae00ac9e64a8350d8bf36745adea94350c8ae8421af6f63de97f01237d80cd471dab8df401ae62197db88ae6006c0a77a31d8c87e5f73666d9335db2ed16d8cb94c9d27569908bb86def05678574ddeb7c09a5f721f1736b8a6a3ca9de7a01043", 0x75, 0xfffffffffffffffa}], 0x881040, &(0x7f0000001280)={[{'\x00'}], [{@subj_role={'subj_role', 0x3d, ']'}}, {@obj_type={'obj_type', 0x3d, '*\'\xa3'}}, {@fowner_lt}, {@fowner_lt}, {@smackfstransmute={'smackfstransmute', 0x3d, 'fsi_master_acf_copro_response\x00'}}]})
ioctl$PTP_SYS_OFFSET_EXTENDED(r7, 0xc4c03d09, &(0x7f0000001340))

19:00:02 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="8d040000", @ANYRES16=r1, @ANYBLOB="010028bd7000fcdbdf25880000000400ff"], 0x4b0}}, 0x0)

[  371.424149][T11667] netlink: 1141 bytes leftover after parsing attributes in process `syz-executor.3'.
[  371.442188][T11668] netlink: 1141 bytes leftover after parsing attributes in process `syz-executor.3'.
[  371.491391][T11664] loop2: detected capacity change from 0 to 264192
[  371.534148][T11669] loop1: detected capacity change from 0 to 264192
19:00:02 executing program 3:
pkey_mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000a, 0xffffffffffffffff)

19:00:02 executing program 3:
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000680)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$nfc_llcp(r0, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0x0)

19:00:02 executing program 0:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x60801, 0x0)
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x10000000)

19:00:02 executing program 1:
syz_open_dev$vcsn(&(0x7f0000000000), 0x2, 0x0)

19:00:03 executing program 2:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write$nbd(r0, 0x0, 0x1010)

19:00:03 executing program 0:
r0 = syz_open_dev$rtc(&(0x7f0000000140), 0x2, 0xa742)
ioctl$RTC_AIE_OFF(0xffffffffffffffff, 0x7002)
pwrite64(r0, &(0x7f0000000300)='i', 0x7ffff000, 0x0)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, 0x0)

19:00:03 executing program 3:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000000)={'wpan1\x00', <r4=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_KEY(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, r2, 0x421, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x1c}}, 0x0)
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000080)={&(0x7f00000003c0)={0x8c, r0, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_SEC_LEVEL={0x1c, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x4}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x20}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5, 0x4, 0x1}]}, @NL802154_ATTR_SEC_LEVEL={0x24, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_FRAME={0x8}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x40}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5, 0x4, 0x1}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_SEC_LEVEL={0x24, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5, 0x4, 0x1}, @NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x3}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x1}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4008814}, 0x0)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:03 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
unshare(0x40000000)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000000100)=@filter={'filter\x00', 0xe, 0x2, 0x384, [0x0, 0x20000700, 0x20000846, 0x20000876], 0x0, &(0x7f00000000c0), &(0x7f0000000700)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{0x5, 0x0, 0x88f8, 'netdevsim0\x00', 'lo\x00', 'bridge_slave_0\x00', 'syz_tun\x00', @broadcast, [0x0, 0x0, 0x0, 0x0, 0xff], @random="25aef3d85720", [0x0, 0xff, 0xff, 0xff, 0xff], 0x6e, 0xe6, 0x116, [], [@common=@nflog={'nflog\x00', 0x50, {{0x5e, 0x8, 0x1, 0x0, 0x0, "acd6ecf78d082f86e6581569ef702b797dc41a8aad0707e79d597e03bfa439cb053aee37051c54ce9dfb3a628fc630da0179659f06199554460017cb1aa7ae5d"}}}], @common=@NFQUEUE0={'NFQUEUE\x00', 0x8, {{0x1000}}}}]}, {0x0, '\x00', 0x1, 0xfffffffffffffffc}, {0x0, '\x00', 0x1, 0xfffffffffffffff8}, {0x0, '\x00', 0x1, 0xffffffffffffffff, 0x1, [{0x11, 0x4, 0x2, 'tunl0\x00', 'team0\x00', 'tunl0\x00', 'macvtap0\x00', @empty, [0x0, 0xff, 0xff, 0xff], @broadcast, [0x0, 0x0, 0x0, 0x0, 0x0, 0x75f08bff84240e16], 0x6e, 0x15e, 0x1ae, [], [@common=@nflog={'nflog\x00', 0x50, {{0x7, 0xfaae, 0x8001, 0x0, 0x0, "9cce583696612ea78b1ff10544d9bbe8cccfa5a9d8c6f520ac6335f87c931e8d1f17c83239f8b857d36e57f082bae29ebc1bb2aab4339acb0f76b38658c68c59"}}}, @common=@nflog={'nflog\x00', 0x50, {{0xffff, 0x8001, 0xfff, 0x0, 0x0, "7212756d5e9d0975b32214b86549a9f279e0eea52ec1ae521cf9c52806d2b529a07362f678b543d21b6be6486b675835c3a04556c000f4440346060c2e63ad23"}}}], @common=@LED={'LED\x00', 0x28, {{'syz0\x00', 0x1, 0x1, {0x17}}}}}]}]}, 0x3fc)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000240)={@in6={{0xa, 0x4e24, 0x0, @loopback, 0xffff}}, 0x0, 0x0, 0x32, 0x0, "6862dbe7b8f405f966d92a54d43824f3b9d41c5f85a985f7ce15f7bc39b2afda9a5ec8ef13d74407bf842ebd96ada450a4836e2834302e8c14c619d64ecc362a70513f180f9914d3d2d36728c49789be"}, 0xd8)
setsockopt$inet_tcp_int(r1, 0x6, 0xa, &(0x7f00000003c0)=0x871, 0x4)
bind$inet(r1, &(0x7f0000000440)={0x2, 0x4e23, @local}, 0x10)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_FLAG_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000080)={0x7, 'macvtap0\x00'})
sendto$inet(r1, 0x0, 0x0, 0x20024ffc, &(0x7f0000000200)={0x2, 0x4e23, @local}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
bind(r2, 0x0, 0x0)
unshare(0x50000100)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, &(0x7f0000000080))
ioctl$sock_inet_udp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000380))
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000180), 0x4)
sendto$inet(r1, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba7860005cf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0xfe6a, 0x11, 0x0, 0x6d)
setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x4)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f00000001c0)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="1b00000001000000000000000002004b6c4fb127db181c03898e47abfb000005000100070000000e0003006269060061703a697000000000000067a6dc1549fbb81c2e880201ea51de829b5bcd58830477e4aa3c510b6a2e9a8e02c30e2a982eed8c38812accc3339de9a2662fe6bddbd43bc8c93ba0d8efca98ff6e9a19c2873d92dff15d5f1b5c44120300f45d6d3b17b54171b8a872150243ad0000000000000000a9b69bc3865986dffa9c063400bd545ab5845049292c7e3002a83ee6fc59fd56b459f6a531e644c7371dc629876401695f20a014f2ef37ee872447f2adf30062b9fd905e7d978e287c90c97feea8ff4657e91647b9a915631daed07f5c285c69134fa2272f9b856da784e6aeec4839361fc8c64bb3d5e9f887719a3ce9abc0"], 0x2c}}, 0x80)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000006c0), 0x4)
recvmsg(r1, &(0x7f0000001500)={0x0, 0x0, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0x1, 0x0, 0xb2c86da597010000}, 0x100)

[  372.398138][T11692] loop3: detected capacity change from 0 to 5
[  372.428918][T11692] qnx6: invalid mount options.
[  372.935000][T11694] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=1 sclass=netlink_route_socket pid=11694 comm=syz-executor.2
19:00:05 executing program 0:
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/block', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000002, 0x11, r0, 0x0)

19:00:05 executing program 1:
timer_create(0x0, &(0x7f0000000300)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x77359400}}, 0x0)
timer_create(0x0, &(0x7f0000000100)={0x0, 0x14, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
timer_settime(r0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
socket$unix(0x1, 0x5, 0x0)
r1 = creat(&(0x7f0000000100)='./bus\x00', 0x13a)
r2 = epoll_create(0xa9a5)
r3 = inotify_init()
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000000))
dup3(r3, r1, 0x0)
io_setup(0x4, &(0x7f0000000240)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x4, 0x0, 0x0, r1, 0x0}])
io_pgetevents(r4, 0x5, 0x5, &(0x7f00000004c0)=[{}, {}, {}, {}, {}], 0x0, 0x0)

19:00:05 executing program 3:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000000)={'wpan1\x00', <r4=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_KEY(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, r2, 0x421, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x1c}}, 0x0)
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000080)={&(0x7f00000003c0)={0x8c, r0, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_SEC_LEVEL={0x1c, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x4}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x20}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5, 0x4, 0x1}]}, @NL802154_ATTR_SEC_LEVEL={0x24, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_FRAME={0x8}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x40}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5, 0x4, 0x1}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_SEC_LEVEL={0x24, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5, 0x4, 0x1}, @NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x3}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x1}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4008814}, 0x0)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  374.449857][T11741] loop3: detected capacity change from 0 to 5
[  374.471338][T11741] qnx6: invalid mount options.
19:00:05 executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x4, &(0x7f0000000580)=@framed={{}, [@func]}, &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000600)={0x0, 0x1}, 0x8, 0x10, &(0x7f0000000640)={0x4, 0x1, 0x2, 0x2}, 0x10}, 0x78)

19:00:05 executing program 2:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'ip_vti0\x00', <r1=>0x0})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x3, 0x1, &(0x7f00000002c0)=@raw=[@call], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r1, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

19:00:05 executing program 3:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000000)={'wpan1\x00', <r4=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_KEY(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, r2, 0x421, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x1c}}, 0x0)
sendmsg$NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000080)={&(0x7f00000003c0)={0x8c, r0, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_SEC_LEVEL={0x1c, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x4}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x20}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5, 0x4, 0x1}]}, @NL802154_ATTR_SEC_LEVEL={0x24, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_FRAME={0x8}, @NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x40}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5, 0x4, 0x1}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_SEC_LEVEL={0x24, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5, 0x4, 0x1}, @NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x3}, @NL802154_SECLEVEL_ATTR_FRAME={0x8, 0x2, 0x1}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4008814}, 0x0)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  375.311725][T11757] loop3: detected capacity change from 0 to 5
[  375.400610][T11757] qnx6: invalid mount options.
19:00:06 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000000180)={0x9, 0x9, 0x2, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0xf}, 0x40)

19:00:06 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000180)={0x9, 0x9, 0x2, 0x8, 0x4}, 0x40)

19:00:08 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000000180)={0x1, 0x9, 0x2, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0xf}, 0x40)

19:00:08 executing program 3:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000000)={'wpan1\x00', <r3=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, r1, 0x421, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}}, 0x0)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:08 executing program 0:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x60801, 0x0)
write$vga_arbiter(r0, 0x0, 0x0)

19:00:08 executing program 1:
syz_open_dev$loop(&(0x7f0000000080), 0xffffffffffffffff, 0x0)

[  378.185169][T11775] loop3: detected capacity change from 0 to 5
[  378.215978][T11775] qnx6: invalid mount options.
19:00:09 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x6, 0x4, 0x0, 0x6, 0x0, 0x1}, 0x40)

19:00:09 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$FOU_CMD_GET(r0, &(0x7f0000002440)={&(0x7f0000002300), 0xc, &(0x7f0000002400)={0x0}}, 0x0)

19:00:09 executing program 3:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000000)={'wpan1\x00'})
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:09 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000040), 0x5, 0x101102)
pwrite64(r0, &(0x7f0000000300)='i', 0x1, 0x0)

19:00:09 executing program 0:
r0 = syz_open_dev$rtc(&(0x7f0000000140), 0x5, 0x102)
ioctl$RTC_AIE_OFF(r0, 0x7002)
pwrite64(r0, &(0x7f0000000300)='i', 0x7ffff000, 0x0)
ioctl$F2FS_IOC_SET_PIN_FILE(0xffffffffffffffff, 0x4004f50d, 0x0)

[  378.899451][T11786] loop3: detected capacity change from 0 to 5
[  378.939572][T11786] qnx6: invalid mount options.
19:00:10 executing program 1:
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = getpgrp(0x0)
sendmmsg$unix(r0, &(0x7f0000000400)=[{0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[@rights={{0x14, 0x1, 0x1, [r1]}}, @cred={{0x1c, 0x1, 0x2, {r2, 0xee01}}}], 0x38}], 0x1, 0x0)

19:00:10 executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
fcntl$getownex(r0, 0x5, &(0x7f0000000080))

19:00:10 executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x0, 0x3, &(0x7f0000000580)=@framed, &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

19:00:10 executing program 3:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  379.509957][T11801] loop3: detected capacity change from 0 to 5
[  379.534250][T11801] qnx6: invalid mount options.
19:00:10 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="16000000", @ANYRES16=r1, @ANYBLOB="010028bd7000fcdbdf2588"], 0x4b0}}, 0x0)

19:00:10 executing program 1:
pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
mlock2(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1)
r0 = syz_open_dev$mouse(&(0x7f0000000280), 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x13, r0, 0x0)

19:00:10 executing program 3:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  379.785780][T11806] netlink: 2 bytes leftover after parsing attributes in process `syz-executor.2'.
[  379.872134][T11809] netlink: 2 bytes leftover after parsing attributes in process `syz-executor.2'.
19:00:10 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_ifreq(r0, 0x5411, &(0x7f0000000000)={'ip6_vti0\x00', @ifru_flags})

19:00:11 executing program 3:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:11 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0xd}, 0x40)

19:00:11 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="16000000", @ANYRES16=r1, @ANYBLOB="010028bd7000fcdbdf2588"], 0x4b0}}, 0x0)

19:00:11 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x9, 0x0, 0x0, 0x8, 0x0, 0x1}, 0x40)

[  380.146418][T11819] netlink: 2 bytes leftover after parsing attributes in process `syz-executor.2'.
19:00:11 executing program 1:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)={0x9, 0x9, 0x2, 0x8}, 0x40)
ioctl$FIGETBSZ(r0, 0x2, &(0x7f0000000140))

19:00:11 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f00000003c0)={'ip_vti0\x00', &(0x7f0000000340)=ANY=[]})

19:00:11 executing program 3:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:11 executing program 0:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000740)={<r0=>0xffffffffffffffff})
ioctl$sock_ifreq(r0, 0x8927, &(0x7f0000000000)={'ip6_vti0\x00', @ifru_flags})

19:00:11 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="16000000", @ANYRES16=r1, @ANYBLOB="010028bd7000fcdbdf2588"], 0x4b0}}, 0x0)

[  380.538891][T11827] netlink: 2 bytes leftover after parsing attributes in process `syz-executor.2'.
[  380.583948][T11830] loop3: detected capacity change from 0 to 5
[  380.647735][T11830] qnx6: invalid mount options.
19:00:11 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="16000000", @ANYRES16=r1, @ANYBLOB="010028bd7000fcdbdf2588"], 0x4b0}}, 0x0)

19:00:11 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000140), 0x5, 0x102)
pwrite64(r0, &(0x7f0000000300)='i', 0x7ffff000, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f0000000340)={{0x0, 0x8, 0x6, 0x2, 0x7, 0x0, 0x0, 0x2, 0x33, 0xfff, 0x0, 0x0, 0x74, 0x4}})

[  381.355691][T11841] netlink: 2 bytes leftover after parsing attributes in process `syz-executor.2'.
19:00:12 executing program 0:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_ifreq(r0, 0x541b, &(0x7f0000000000)={'ip6_vti0\x00', @ifru_flags})

19:00:12 executing program 3:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  381.597022][T11846] loop3: detected capacity change from 0 to 5
[  381.621440][T11846] qnx6: invalid mount options.
19:00:13 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x541b, &(0x7f00000003c0)={'tunl0\x00', 0x0})

19:00:13 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="8d040000", @ANYRES16=r1, @ANYBLOB="010028bd7000fcdbdf25880000000c009900ff7f00007800000014003300a4000100ffffffffffff0802110000000a0006"], 0x4b0}}, 0x0)

19:00:13 executing program 3:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  382.377554][T11854] loop3: detected capacity change from 0 to 5
[  382.394700][T11854] qnx6: invalid mount options.
[  382.457420][T11855] netlink: 1101 bytes leftover after parsing attributes in process `syz-executor.0'.
[  382.522009][T11858] netlink: 1101 bytes leftover after parsing attributes in process `syz-executor.0'.
19:00:13 executing program 1:
socketpair(0x11, 0x2, 0x0, &(0x7f0000000140))

19:00:13 executing program 0:
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000100))

19:00:13 executing program 2:
r0 = syz_open_dev$rtc(&(0x7f0000000140), 0x5, 0x0)
writev(r0, 0x0, 0x0)

19:00:13 executing program 3:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  383.361502][T11867] loop3: detected capacity change from 0 to 5
19:00:14 executing program 2:
mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x7ffffffff000, 0x0, 0x4101033, 0xffffffffffffffff, 0x10000000)

19:00:14 executing program 0:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000000)={'wpan1\x00', <r3=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, r1, 0x421, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}}, 0x0)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  383.449292][T11867] qnx6: invalid mount options.
19:00:14 executing program 1:
pipe(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0)
r4 = socket(0x200000000000011, 0x4000000000080002, 0x0)
r5 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r6=>0x0})
bind$packet(r4, &(0x7f00000001c0)={0x11, 0x0, r6, 0x1, 0x0, 0x6, @random="0d47286bde87"}, 0x14)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000040)={'erspan0\x00', &(0x7f00000001c0)={'tunl0\x00', r6, 0x0, 0x80, 0x6858e364, 0x5, {{0x26, 0x4, 0x0, 0x3a, 0x98, 0x68, 0x0, 0x5, 0x2f, 0x0, @local, @remote, {[@generic={0x83, 0xe, "1289028b98b32e4a2ef815cc"}, @lsrr={0x83, 0xf, 0x5a, [@rand_addr=0x64010102, @dev={0xac, 0x14, 0x14, 0x13}, @local]}, @ra={0x94, 0x4, 0x1}, @noop, @timestamp_prespec={0x44, 0x3c, 0x20, 0x3, 0x3, [{@remote, 0x3}, {@private=0xa010101, 0x587}, {@rand_addr=0x64010101, 0x6}, {@multicast1, 0x10000}, {@private=0xa010101, 0x7ff}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x2}, {@private=0xa010101, 0x5}]}, @generic={0x88, 0x7, "6118f6ed2f"}, @timestamp={0x44, 0x1c, 0xcf, 0x0, 0xa, [0x1, 0x10000, 0x4, 0xb37, 0x81, 0x80]}]}}}}})
preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x38, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}]}]}, 0x38}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe2, 0x0)

19:00:14 executing program 3:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  383.591098][T11872] loop0: detected capacity change from 0 to 5
[  383.635975][T11872] qnx6: invalid mount options.
19:00:14 executing program 2:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x4c, 0x12, 0x1, 0x0, 0x0, {0xa}}, 0x4c}}, 0x0)

[  383.676707][T11874] loop3: detected capacity change from 0 to 5
[  383.746570][T11874] qnx6: invalid mount options.
19:00:14 executing program 0:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000000)={'wpan1\x00', <r3=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, r1, 0x421, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}}, 0x0)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:14 executing program 2:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x4c, 0x12, 0x1, 0x0, 0x0, {0xa}}, 0x4c}}, 0x0)

19:00:15 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  384.095693][T11891] loop3: detected capacity change from 0 to 5
[  384.133073][T11891] qnx6: invalid mount options.
[  384.133357][T11889] loop0: detected capacity change from 0 to 5
[  384.178595][T11889] qnx6: invalid mount options.
19:00:15 executing program 2:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x4c, 0x12, 0x1, 0x0, 0x0, {0xa}}, 0x4c}}, 0x0)

19:00:15 executing program 0:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000000)={'wpan1\x00', <r3=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x1c, r1, 0x421, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x1c}}, 0x0)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:15 executing program 3:
syz_mount_image$qnx6(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  384.527241][T11900] loop0: detected capacity change from 0 to 5
[  384.575445][T11900] qnx6: invalid mount options.
19:00:15 executing program 2:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x4c, 0x12, 0x1, 0x0, 0x0, {0xa}}, 0x4c}}, 0x0)

19:00:15 executing program 1:
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/block/ram10', 0x0, 0x0)
r0 = socket$xdp(0x2c, 0x3, 0x0)
mmap$xdp(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)

[  384.652180][T11904] loop3: detected capacity change from 0 to 5
19:00:16 executing program 3:
syz_mount_image$qnx6(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:16 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_ifreq(r0, 0x8916, &(0x7f0000000000)={'ip6_vti0\x00', @ifru_flags})

[  385.255027][T11916] loop3: detected capacity change from 0 to 5
19:00:16 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x10}, 0x14}}, 0x0)

19:00:16 executing program 0:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000000)={'wpan1\x00'})
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:16 executing program 1:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = getpgrp(0x0)
sendmmsg$unix(r0, &(0x7f0000000400)=[{0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[@rights={{0x14, 0x1, 0x1, [r1]}}, @cred={{0x1c, 0x1, 0x2, {r2, 0xee01}}}], 0x48}], 0x1, 0x0)

[  385.483375][T11920] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2051 sclass=netlink_route_socket pid=11920 comm=syz-executor.2
[  385.523097][T11920] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2051 sclass=netlink_route_socket pid=11920 comm=syz-executor.2
19:00:16 executing program 3:
syz_mount_image$qnx6(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:16 executing program 2:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x2, &(0x7f0000000180)=@raw=[@func, @ldst={0x1, 0x0, 0x3}], &(0x7f0000000200)='GPL\x00', 0x2, 0x82, &(0x7f0000000240)=""/130, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

[  385.601006][T11927] loop0: detected capacity change from 0 to 5
19:00:16 executing program 1:
openat$sysfs(0xffffffffffffff9c, 0xfffffffffffffffd, 0x0, 0x0)

[  385.667032][T11927] qnx6: invalid mount options.
[  385.789267][T11929] loop3: detected capacity change from 0 to 5
19:00:16 executing program 0:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:16 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), 0x0, 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:16 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, r1, 0x1, 0x0, 0x0, {{}, {@void, @void}}, [@NL80211_ATTR_FRAME={0x14, 0x116, @ctrl_frame=@rts={{}, {}, @device_b, @broadcast}}]}, 0x28}}, 0x0)

19:00:17 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000140), 0x5, 0x102)
copy_file_range(r0, &(0x7f0000000000)=0x91ae, r0, 0x0, 0x5, 0x0)

19:00:17 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x5411, &(0x7f0000000180)={'ip_vti0\x00', 0x0})

19:00:17 executing program 0:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:17 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), 0x0, 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  386.618776][T11953] loop3: detected capacity change from 0 to 5
[  386.634181][T11954] loop0: detected capacity change from 0 to 5
[  386.852559][T11954] qnx6: invalid mount options.
19:00:18 executing program 1:
openat$full(0xffffffffffffff9c, &(0x7f00000000c0), 0x1a3600, 0x0)

19:00:18 executing program 2:
r0 = timerfd_create(0x0, 0x0)
timerfd_settime(r0, 0x1, &(0x7f00000001c0)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
timerfd_settime(r0, 0x0, &(0x7f0000000000)={{0x0, 0x3938700}}, 0x0)

19:00:18 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), 0x0, 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  387.770551][T11966] loop3: detected capacity change from 0 to 5
19:00:18 executing program 2:
r0 = timerfd_create(0x9, 0x0)
timerfd_settime(r0, 0x0, &(0x7f0000000180)={{0x77359400}, {0x77359400}}, 0x0)
timerfd_settime(r0, 0x0, &(0x7f0000000000)={{}, {0x77359400}}, 0x0)

19:00:19 executing program 1:
socketpair(0x1e, 0x4, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
sendmmsg$nfc_llcp(r0, &(0x7f0000001c40)=[{&(0x7f0000000180)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "98f887bc8cea39ffb1ba4026917dab9c34879c5a4a1e4e8369d9360149121dc9618366785a7cbd47c939fde941454778dfeadb5e3a250d2d2cef656ae8fbba"}, 0x60, 0x0}], 0x1, 0x0)

19:00:19 executing program 0:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:19 executing program 2:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  388.912373][T11976] loop0: detected capacity change from 0 to 5
19:00:19 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  388.948656][T11976] qnx6: invalid mount options.
19:00:20 executing program 1:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:20 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:21 executing program 0:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  390.185315][T11984] loop1: detected capacity change from 0 to 5
[  390.239002][T11984] qnx6: invalid mount options.
[  390.337348][T11989] loop2: detected capacity change from 0 to 5
[  390.370991][T11991] loop0: detected capacity change from 0 to 5
[  390.481268][T11989] qnx6: invalid mount options.
[  390.504881][T11991] qnx6: invalid mount options.
19:00:21 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:21 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x20, r1, 0x1, 0x0, 0x0, {{}, {@void, @val={0xc}}}}, 0x20}}, 0x0)

19:00:21 executing program 0:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:21 executing program 2:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  390.828233][T12003] loop0: detected capacity change from 0 to 5
[  390.847031][T12003] qnx6: invalid mount options.
19:00:21 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000180)={0x9, 0x9, 0x2, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0xf, 0xa}, 0x40)

19:00:21 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x1, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:21 executing program 0:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  391.065070][T12008] loop2: detected capacity change from 0 to 5
[  391.141195][T12012] loop3: detected capacity change from 0 to 5
[  391.154549][T12008] qnx6: invalid mount options.
[  391.224960][T12012] qnx6: invalid mount options.
[  391.398154][T12018] loop0: detected capacity change from 0 to 5
19:00:22 executing program 1:
openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$xdp(0x2c, 0x3, 0x0)
mmap$xdp(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)

[  391.458188][T12018] qnx6: invalid mount options.
19:00:22 executing program 2:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:22 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  391.592530][T12025] loop2: detected capacity change from 0 to 5
[  391.648379][T12025] qnx6: invalid mount options.
[  391.779602][T12029] qnx6: invalid mount options.
19:00:22 executing program 1:
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x200000, 0x0)
pselect6(0x40, &(0x7f0000000000), 0x0, &(0x7f0000000080)={0x8}, 0x0, 0x0)

19:00:22 executing program 0:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:22 executing program 2:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:22 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  392.108909][T12040] loop0: detected capacity change from 0 to 5
[  392.130002][T12040] qnx6: invalid mount options.
[  392.133454][T12037] qnx6: invalid mount options.
[  392.141470][T12039] loop2: detected capacity change from 0 to 5
[  392.167509][T12039] qnx6: invalid mount options.
19:00:23 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:23 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, 0x0)

19:00:23 executing program 2:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  392.880553][T12050] loop0: detected capacity change from 0 to 5
[  392.944989][T12050] qnx6: invalid mount options.
[  392.964701][T12055] loop2: detected capacity change from 0 to 5
[  393.015458][T12055] qnx6: invalid mount options.
19:00:24 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000000), 0x100002, 0x0)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000340), 0x60041, 0x0)
sendfile(r1, r0, &(0x7f0000000380)=0x6, 0x8)

19:00:24 executing program 0:
syz_mount_image$qnx6(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:24 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, 0x0)

19:00:24 executing program 2:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  393.435332][T12070] loop0: detected capacity change from 0 to 5
[  393.807629][T12072] loop2: detected capacity change from 0 to 5
[  393.868694][T12072] qnx6: invalid mount options.
19:00:24 executing program 1:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getpeername(r0, 0x0, &(0x7f0000000100))

19:00:24 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, 0x0)

19:00:25 executing program 1:
socketpair(0x1e, 0x5, 0x0, &(0x7f0000000680)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$nfc_llcp(r0, &(0x7f0000000640)={&(0x7f0000000040)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "58172ce467758f80cb6d3a35a4fd4b3168ad513e3cb2566f4e264eebfa7bb336c4284008c20683d72beba8ac6da9f9fc356c83ea67f1b7f2bf14fb193a2e29"}, 0x60, 0x0, 0xeaff}, 0x0)

19:00:25 executing program 0:
syz_mount_image$qnx6(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:25 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[])

19:00:25 executing program 2:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  394.671699][T12089] loop0: detected capacity change from 0 to 5
[  394.715992][T12088] loop2: detected capacity change from 0 to 5
[  394.752358][T12088] qnx6: invalid mount options.
19:00:26 executing program 2:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:26 executing program 0:
syz_mount_image$qnx6(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  396.342337][T12096] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  396.363352][T12096] qnx6: wrong signature (magic) in superblock #1.
[  396.376152][T12096] qnx6: unable to read the first superblock
19:00:28 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[])

[  397.619677][T12102] loop2: detected capacity change from 0 to 5
[  397.723287][T12102] qnx6: invalid mount options.
[  397.873428][T12107] loop0: detected capacity change from 0 to 5
19:00:28 executing program 1:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)={0x9, 0x9, 0x2, 0x8}, 0x40)
fcntl$setown(r0, 0x8, 0x0)

[  397.915028][T12108] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  397.960683][T12108] qnx6: wrong signature (magic) in superblock #1.
[  397.987783][T12108] qnx6: unable to read the first superblock
19:00:29 executing program 1:
socketpair(0x2, 0x2, 0x0, &(0x7f0000000680))

19:00:29 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), 0x0, 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:29 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:29 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[])

[  398.267777][T12119] loop2: detected capacity change from 0 to 5
[  398.304369][T12119] qnx6: invalid mount options.
[  398.323323][T12121] loop0: detected capacity change from 0 to 5
19:00:29 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x2)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xc00aa090}, 0xc, &(0x7f0000000100)={0x0}}, 0x0)

19:00:29 executing program 2:
syz_mount_image$qnx6(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:29 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), 0x0, 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  398.692005][T12129] loop2: detected capacity change from 0 to 5
[  399.008090][T12132] loop0: detected capacity change from 0 to 5
[  399.179724][T12139] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  399.224791][T12139] qnx6: wrong signature (magic) in superblock #1.
[  399.275859][T12139] qnx6: unable to read the first superblock
19:00:30 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_ifreq(r0, 0x8914, &(0x7f0000000000)={'ip6_vti0\x00', @ifru_flags})

19:00:30 executing program 2:
syz_mount_image$qnx6(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  399.432615][T12144] loop2: detected capacity change from 0 to 5
19:00:30 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), 0x0, 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  399.833394][T12148] loop0: detected capacity change from 0 to 5
19:00:31 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:31 executing program 1:
socketpair(0x1e, 0x4, 0x0, &(0x7f0000000680)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
getsockname(r0, 0x0, &(0x7f0000000100))

[  400.516410][T12156] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  400.645560][T12156] qnx6: wrong signature (magic) in superblock #1.
[  400.695041][T12156] qnx6: unable to read the first superblock
19:00:31 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f00000002c0)=@updsa={0xf0, 0x11, 0xfe53, 0x0, 0x0, {{@in6=@dev, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in=@multicast2}, @in6=@remote}}, 0xf0}}, 0x0)

19:00:31 executing program 2:
syz_mount_image$qnx6(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:31 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  401.100161][T12162] loop2: detected capacity change from 0 to 5
[  401.275372][T12165] netlink: 208 bytes leftover after parsing attributes in process `syz-executor.1'.
19:00:32 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:32 executing program 1:
syz_open_dev$rtc(&(0x7f0000000000), 0x100002, 0x109200)

19:00:32 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  401.890201][T12169] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  401.913940][T12169] qnx6: wrong signature (magic) in superblock #1.
[  401.938116][T12169] qnx6: unable to read the first superblock
19:00:33 executing program 1:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[], {}, {{0x9, 0x5, 0x3, 0x4, 0x200}}}}}]}}]}}, 0x0)

[  403.764660][ T9599] usb 6-1: new high-speed USB device number 2 using dummy_hcd
19:00:34 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  404.054980][ T9599] usb 6-1: Using ep0 maxpacket: 8
19:00:34 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), 0x0, 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:35 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

[  404.206754][ T9599] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
19:00:35 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x1, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  404.309095][T12185] loop2: detected capacity change from 0 to 5
[  404.324509][T12186] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  404.356111][T12186] qnx6: wrong signature (magic) in superblock #1.
[  404.376698][T12186] qnx6: unable to read the first superblock
[  404.397872][T12191] loop0: detected capacity change from 0 to 5
[  404.419607][T12191] qnx6: invalid mount options.
19:00:35 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), 0x0, 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  404.484755][ T9599] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  404.557365][ T9599] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
19:00:35 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  404.593894][T12196] loop2: detected capacity change from 0 to 5
[  404.624587][ T9599] usb 6-1: Product: syz
[  404.632289][ T9599] usb 6-1: Manufacturer: syz
19:00:35 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b"])

[  404.661821][T12200] qnx6: invalid mount options.
[  404.675812][ T9599] usb 6-1: SerialNumber: syz
[  404.719409][T12203] qnx6: invalid mount options.
[  404.736872][ T9599] cdc_ether: probe of 6-1:1.0 failed with error -22
19:00:35 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), 0x0, 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  404.883689][T12212] loop2: detected capacity change from 0 to 5
[  405.006132][T11751] usb 6-1: USB disconnect, device number 2
[  405.834857][   T43] usb 6-1: new high-speed USB device number 3 using dummy_hcd
19:00:37 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:37 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:37 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:37 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="010028bd7000fcdbdf2588"], 0x4b0}}, 0x0)

[  406.240414][T12225] qnx6: invalid mount options.
[  406.284736][   T43] usb 6-1: device not accepting address 3, error -71
[  406.327311][T12228] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  406.352073][T12228] qnx6: wrong signature (magic) in superblock #1.
[  406.440139][T12228] qnx6: unable to read the first superblock
19:00:37 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000180)={0x0, 0x2, &(0x7f0000000140)={&(0x7f0000000100)={0x14}, 0x14}, 0x300}, 0x0)

19:00:37 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:37 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, 0x0)

19:00:37 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:38 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, 0x0)

19:00:38 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000180)={0x0, 0x2, &(0x7f0000000140)={&(0x7f0000000100)={0x14}, 0x14}, 0x300}, 0x0)

[  407.185325][T12243] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  407.221161][T12243] qnx6: wrong signature (magic) in superblock #1.
[  407.242681][T12243] qnx6: unable to read the first superblock
19:00:38 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000180)={0x0, 0x2, &(0x7f0000000140)={&(0x7f0000000100)={0x14}, 0x14}, 0x300}, 0x0)

19:00:38 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, 0x0)

19:00:38 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:38 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:38 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000180)={0x0, 0x2, &(0x7f0000000140)={&(0x7f0000000100)={0x14}, 0x14}, 0x300}, 0x0)

[  407.700166][T12262] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  407.741079][T12262] qnx6: wrong signature (magic) in superblock #1.
[  407.753457][T12262] qnx6: unable to read the first superblock
19:00:38 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[])

19:00:38 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x1, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  407.969502][T12273] loop2: detected capacity change from 0 to 5
[  408.008476][T12273] qnx6: invalid mount options.
[  408.032887][T12275] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  408.049333][T12275] qnx6: wrong signature (magic) in superblock #1.
[  408.071507][T12275] qnx6: unable to read the first superblock
19:00:39 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446a"])

19:00:39 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[])

19:00:39 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  408.580769][T12283] qnx6: invalid mount options.
[  408.591945][T12282] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  408.639248][T12282] qnx6: wrong signature (magic) in superblock #1.
[  408.660745][T12282] qnx6: unable to read the first superblock
[  408.733575][T12287] qnx6: invalid mount options.
19:00:40 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[])

19:00:40 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x28, r1, 0x125, 0x0, 0x0, {{}, {@val={0x8}, @val={0xc}}}}, 0x28}}, 0x0)

19:00:40 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:00:40 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  409.659758][T12298] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  409.682327][T12298] qnx6: wrong signature (magic) in superblock #1.
[  409.719493][T12296] qnx6: invalid mount options.
[  409.720364][T12298] qnx6: unable to read the first superblock
[  409.830589][T12299] qnx6: invalid mount options.
[  410.297875][ T3401] ieee802154 phy0 wpan0: encryption failed: -22
[  410.310452][ T3401] ieee802154 phy1 wpan1: encryption failed: -22
19:00:41 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:41 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000180)={0x14, 0x0, 0x0, 0x0, 0x204}, 0x40)

19:00:41 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:41 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

[  411.134055][T12312] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  411.139247][T12314] qnx6: invalid mount options.
[  411.158375][T12313] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  411.207602][T12313] qnx6: wrong signature (magic) in superblock #1.
[  411.222345][T12312] qnx6: wrong signature (magic) in superblock #1.
[  411.227248][T12313] qnx6: unable to read the first superblock
[  411.247249][T12312] qnx6: unable to read the first superblock
19:00:42 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:42 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:42 executing program 1:
socketpair(0x1e, 0x4, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
sendmmsg$nfc_llcp(r0, &(0x7f0000001c40)=[{0x0, 0x0, 0x0}], 0x1, 0x0)

19:00:42 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, 0x0)

[  411.562919][T12325] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  411.603141][T12330] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  411.619896][T12325] qnx6: wrong signature (magic) in superblock #1.
[  411.640539][T12325] qnx6: unable to read the first superblock
[  411.684625][T12330] qnx6: wrong signature (magic) in superblock #1.
[  411.715684][T12330] qnx6: unable to read the first superblock
19:00:42 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, 0x0)

19:00:42 executing program 1:
socketpair(0x1e, 0x4, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
sendmsg$GTP_CMD_DELPDP(r0, &(0x7f0000000200)={&(0x7f0000000100), 0xc, &(0x7f00000001c0)={0x0}}, 0x4000840)

19:00:42 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:42 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

[  412.029229][T12338] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  412.051012][T12338] qnx6: wrong signature (magic) in superblock #1.
[  412.064838][T12346] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  412.067522][T12338] qnx6: unable to read the first superblock
[  412.090151][T12346] qnx6: wrong signature (magic) in superblock #1.
[  412.109929][T12346] qnx6: unable to read the first superblock
19:00:43 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, 0x0)

19:00:43 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000040), 0x0, 0x0)
sendfile(0xffffffffffffffff, r0, &(0x7f0000000000)=0xffffffffffffff7f, 0x0)

19:00:43 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b"])

[  412.320654][T12353] qnx6: invalid mount options.
[  412.374979][   T73] Bluetooth: hci2: command 0x0406 tx timeout
[  412.375596][T11751] Bluetooth: hci3: command 0x0406 tx timeout
[  412.390686][   T73] Bluetooth: hci1: command 0x0406 tx timeout
[  412.477755][T11751] Bluetooth: hci0: command 0x0406 tx timeout
19:00:43 executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_ifreq(r0, 0x891b, &(0x7f0000000000)={'ip6_vti0\x00', @ifru_flags})

19:00:43 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0xc0189436, &(0x7f00000003c0)={'tunl0\x00', &(0x7f0000000340)={'erspan0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @private, @empty}}}})

19:00:43 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

[  412.783350][T12362] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  412.802132][T12362] qnx6: wrong signature (magic) in superblock #1.
[  412.813264][T12362] qnx6: unable to read the first superblock
19:00:44 executing program 1:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000280)=[{&(0x7f0000000040)=""/206, 0x44}], 0x1, 0x0, 0x0)

19:00:44 executing program 3:
syz_open_dev$loop(&(0x7f0000000080), 0xffffffffffffffff, 0x6440)

19:00:44 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:44 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[])

[  413.254781][T12375] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  413.297157][T12375] qnx6: wrong signature (magic) in superblock #1.
[  413.322245][T12375] qnx6: unable to read the first superblock
19:00:44 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000140), 0x2, 0xa742)
pwrite64(r0, &(0x7f0000000300)="a2", 0x7ffff000, 0x0)

[  413.441388][T12374] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  413.465666][T12374] qnx6: wrong signature (magic) in superblock #1.
[  413.474175][T12374] qnx6: unable to read the first superblock
19:00:44 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:45 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[])

19:00:46 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="8d040000", @ANYRES16=r1, @ANYBLOB="010328bd7000fcdbdf2588"], 0x4b0}}, 0x0)

19:00:46 executing program 1:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = getpgrp(0x0)
sendmmsg$unix(r0, &(0x7f0000000400)=[{0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[@rights={{0x14, 0x1, 0x1, [r1]}}, @cred={{0x1c, 0x1, 0x2, {r2, 0xee01}}}], 0x38}], 0x1, 0x0)

[  415.426128][T12389] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  415.452455][T12389] qnx6: wrong signature (magic) in superblock #1.
[  415.466255][T12390] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  415.470551][T12389] qnx6: unable to read the first superblock
[  415.518245][T12390] qnx6: wrong signature (magic) in superblock #1.
[  415.541509][T12390] qnx6: unable to read the first superblock
19:00:47 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[])

19:00:47 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446a"])

19:00:47 executing program 1:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
dup(r0)
sendmmsg$unix(r0, &(0x7f00000015c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=[@rights={{0x14, 0x1, 0x1, [r1]}}], 0x18}], 0x1, 0x0)

19:00:47 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="8d040000", @ANYRES16=r1, @ANYBLOB="010328bd7000fcdbdf2588"], 0x4b0}}, 0x0)

[  416.226354][T12405] qnx6: invalid mount options.
[  416.265627][T12408] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  416.287669][T12408] qnx6: wrong signature (magic) in superblock #1.
[  416.328817][T12408] qnx6: unable to read the first superblock
19:00:47 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x9)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000040), 0xc, 0x0}, 0x0)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[], 0x7e8}}, 0x0)

[  416.849107][T12416] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=12416 comm=syz-executor.1
[  417.009702][T12418] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=12418 comm=syz-executor.1
19:00:47 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:00:48 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:48 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000040), 0x10000000000002, 0x0)
r1 = dup(r0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, r1, 0x8000000)

19:00:48 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="8d040000", @ANYRES16=r1, @ANYBLOB="010328bd7000fcdbdf2588"], 0x4b0}}, 0x0)

[  417.673893][T12422] qnx6: invalid mount options.
[  417.708352][T12423] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  417.727703][T12423] qnx6: wrong signature (magic) in superblock #1.
[  417.755545][T12423] qnx6: unable to read the first superblock
19:00:48 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:48 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_LISTALL(r0, &(0x7f0000001680)={0x0, 0x0, &(0x7f0000001640)={0x0}}, 0x0)

19:00:48 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="8d040000", @ANYRES16=r1, @ANYBLOB="010328bd7000fcdbdf2588"], 0x4b0}}, 0x0)

19:00:48 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

[  417.880972][T12436] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  417.897762][T12436] qnx6: wrong signature (magic) in superblock #1.
[  417.909422][T12436] qnx6: unable to read the first superblock
[  417.952323][T12441] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
19:00:48 executing program 1:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$unix(r0, &(0x7f0000000400)=[{0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[@rights={{0x38, 0x1, 0x1, [r1]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01}}}], 0x38}], 0x1, 0x0)

[  417.986334][T12441] qnx6: wrong signature (magic) in superblock #1.
[  418.000044][T12441] qnx6: unable to read the first superblock
19:00:49 executing program 3:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x2200, &(0x7f00000002c0)=@raw=[@call], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

19:00:49 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:49 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:49 executing program 1:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x3, &(0x7f0000000580)=@framed, &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000600), 0x8, 0x10, 0x0}, 0x78)

[  418.455610][T12455] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  418.464011][T12457] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  418.485494][T12455] qnx6: wrong signature (magic) in superblock #1.
[  418.493509][T12455] qnx6: unable to read the first superblock
[  418.509607][T12457] qnx6: wrong signature (magic) in superblock #1.
[  418.535345][T12457] qnx6: unable to read the first superblock
19:00:49 executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$FOU_CMD_ADD(r0, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={0x0}}, 0x0)

19:00:49 executing program 1:
socketpair(0x1e, 0x2, 0x0, &(0x7f0000000680)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$nfc_llcp(r0, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0x0)

19:00:49 executing program 0:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:49 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b"])

[  418.918152][T12468] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  418.974940][T12468] qnx6: wrong signature (magic) in superblock #1.
[  419.003379][T12468] qnx6: unable to read the first superblock
19:00:49 executing program 1:
mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff)

19:00:49 executing program 3:
r0 = socket$netlink(0x10, 0x3, 0xf)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000100)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, 0x3, 0x8, 0x101}, 0x14}}, 0x0)

[  419.363340][T12477] qnx6: invalid mount options.
19:00:50 executing program 1:
openat$cgroup_ro(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0)

19:00:50 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:51 executing program 3:
socketpair(0x2, 0x1, 0x0, &(0x7f0000000680))

[  420.393289][T12485] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  420.421209][T12485] qnx6: wrong signature (magic) in superblock #1.
[  420.473516][T12485] qnx6: unable to read the first superblock
19:00:51 executing program 1:
syz_open_dev$mouse(&(0x7f00000006c0), 0xfffffffffffffff7, 0x7d3b83)

19:00:51 executing program 0:
perf_event_open$cgroup(&(0x7f0000000080)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

19:00:51 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:51 executing program 0:
r0 = syz_open_dev$rtc(&(0x7f0000000040), 0x10000000000082, 0x41)
ioctl$FICLONE(r0, 0x40049409, r0)

19:00:51 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

[  421.058422][T12494] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  421.075240][T12494] qnx6: wrong signature (magic) in superblock #1.
[  421.090567][T12494] qnx6: unable to read the first superblock
[  421.552582][T12500] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  421.580177][T12500] qnx6: wrong signature (magic) in superblock #1.
[  421.599906][T12500] qnx6: unable to read the first superblock
19:00:52 executing program 1:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:53 executing program 0:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_ifreq(r0, 0x8918, &(0x7f0000000000)={'ip6_vti0\x00', @ifru_flags})

19:00:53 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:53 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

[  422.343512][T12508] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  422.358740][T12507] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  422.360176][T12507] qnx6: wrong signature (magic) in superblock #1.
[  422.394275][T12507] qnx6: unable to read the first superblock
[  422.426007][T12508] qnx6: wrong signature (magic) in superblock #1.
[  422.464200][T12508] qnx6: unable to read the first superblock
19:00:53 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446a"])

[  422.889477][T12516] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  422.922840][T12516] qnx6: wrong signature (magic) in superblock #1.
[  422.975975][T12516] qnx6: unable to read the first superblock
19:00:54 executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x4, &(0x7f0000000580)=@framed={{}, [@func]}, &(0x7f00000005c0)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

[  423.662758][T12521] qnx6: invalid mount options.
19:00:54 executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x6, 0x0, 0x0, 0x6, 0x4, 0x1}, 0x40)

19:00:54 executing program 3:
r0 = syz_open_dev$rtc(&(0x7f0000000040), 0x2, 0x4a002)
pread64(r0, 0x0, 0x0, 0x0)

19:00:54 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
ioctl$sock_ifreq(r0, 0x89a2, &(0x7f0000000000)={'ip_vti0\x00', @ifru_flags})

19:00:55 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  424.790740][T12533] qnx6: invalid mount options.
19:00:55 executing program 1:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:55 executing program 0:
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000380)={'wpan1\x00'})
socket$inet_dccp(0x2, 0x6, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000300)=[{&(0x7f0000000180)="5dbe54b35feb0d1f0de723b3d10fc5b4c04184d5770dfe8daf7dacdfa3e9be31877197e1b600bcc8efe7652860095c113c0338e58041f9530d047f32c6989a258e8fb417471176ef9b50dc831db48b4e264d84cf290a29", 0x57, 0x58e}, {&(0x7f0000000200)="f7501b4b5887568132e9863d6dd95afa9c5b39d9146b64c77c38755d830017ed06178054d269510f0154a805d0a5535a6278931c249e5557739674b3cf2fe73536f103d473e81587eba515b085913e6ed904bcd28b30023a5d246d677715138756ad63df20dca1c1f00d67733fae71f114de36e7221af4d90f4fc556ff2478c6bdd0bbbd3f27450166aaf9fdc67b4556cfb3bdcebf8d05baed956ea742de77e962046e891f38524950342f672950cef4828480242ae399d6dce077cf29b07e8a55739984fdc761adb51ad5b17226e58b28ec546b46fa1a8d8c", 0xd9, 0x2}], 0x301801b, &(0x7f0000000480)=ANY=[@ANYBLOB="aa73a18d9b57db286a3d7700133f42fe061aec4fa636be432933ae66cc88cfedc66c244867f903bd0db16db3446aabd25436bae4055b9532e87b9cec777a58a6063a0653631e33d02f9e8498012bea14d9b96eb71dfc958f63569b745cb894bd49b3706358c4cfad3541edfa3e813109000d248a320a9d332cd2303db2cda3029c9c97707c7502cb53ef6a7c556814dc26a6251d4ad80b73b21b6a11bb925b6c71ac5ffb6737f28738017c1ff5a9a545d53b471a64bc"])

19:00:55 executing program 3 (fault-call:0 fault-nth:0):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  424.963797][T12540] FAULT_INJECTION: forcing a failure.
[  424.963797][T12540] name failslab, interval 1, probability 0, space 0, times 1
[  424.979429][T12540] CPU: 1 PID: 12540 Comm: syz-executor.3 Not tainted 5.14.0-rc1-syzkaller #0
[  424.989975][T12540] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  425.001039][T12540] Call Trace:
[  425.005409][T12540]  dump_stack_lvl+0xcd/0x134
[  425.010749][T12540]  should_fail.cold+0x5/0xa
[  425.015530][T12540]  ? __do_sys_memfd_create+0xf7/0x5a0
[  425.021583][T12540]  should_failslab+0x5/0x10
[  425.026362][T12540]  __kmalloc+0x7e/0x4d0
[  425.030849][T12540]  ? strnlen_user+0x1df/0x2a0
[  425.035978][T12540]  __do_sys_memfd_create+0xf7/0x5a0
[  425.041544][T12540]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  425.047702][T12540]  ? syscall_enter_from_user_mode+0x21/0x70
[  425.054812][T12540]  do_syscall_64+0x35/0xb0
[  425.060168][T12540]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  425.066875][T12540] RIP: 0033:0x4665d9
[  425.071014][T12540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  425.104089][T12540] RSP: 002b:00007f2617dacf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  425.113955][T12540] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  425.123262][T12540] RDX: 00007f2617dad000 RSI: 0000000000000000 RDI: 00000000004bee66
19:00:56 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

[  425.131740][T12540] RBP: 0000000000000000 R08: 00007f2617dacff8 R09: ffffffffffffffff
[  425.143382][T12540] R10: 00007f2617dacffc R11: 0000000000000246 R12: 0000000020000100
[  425.152584][T12540] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
[  425.188352][T12541] loop0: detected capacity change from 0 to 5
[  425.201927][T12548] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  425.216988][T12548] qnx6: wrong signature (magic) in superblock #1.
[  425.226099][T12548] qnx6: unable to read the first superblock
19:00:56 executing program 3 (fault-call:0 fault-nth:1):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  425.241163][T12547] loop1: detected capacity change from 0 to 5
[  425.248752][T12541] qnx6: invalid mount options.
[  425.266748][T12547] qnx6: invalid mount options.
[  425.332651][T12554] FAULT_INJECTION: forcing a failure.
[  425.332651][T12554] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  425.383053][T12554] CPU: 0 PID: 12554 Comm: syz-executor.3 Not tainted 5.14.0-rc1-syzkaller #0
[  425.412130][T12554] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  425.423986][T12554] Call Trace:
[  425.428617][T12554]  dump_stack_lvl+0xcd/0x134
[  425.436480][T12554]  should_fail.cold+0x5/0xa
[  425.450131][T12554]  _copy_from_user+0x2c/0x180
[  425.467482][T12554]  __do_sys_memfd_create+0x169/0x5a0
[  425.477470][T12554]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  425.486055][T12554]  ? syscall_enter_from_user_mode+0x21/0x70
[  425.496153][T12554]  do_syscall_64+0x35/0xb0
[  425.504514][T12554]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  425.516193][T12554] RIP: 0033:0x4665d9
[  425.526076][T12554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  425.562055][T12554] RSP: 002b:00007f2617dacf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  425.573099][T12554] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  425.584237][T12554] RDX: 00007f2617dad000 RSI: 0000000000000000 RDI: 00000000004bee66
[  425.594117][T12554] RBP: 0000000000000000 R08: 00007f2617dacff8 R09: ffffffffffffffff
[  425.606273][T12554] R10: 00007f2617dacffc R11: 0000000000000246 R12: 0000000020000100
[  425.618476][T12554] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
19:00:56 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
fcntl$getownex(r0, 0x10, &(0x7f0000000080))

19:00:56 executing program 0:
pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)

19:00:56 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:56 executing program 3 (fault-call:0 fault-nth:2):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  425.809976][T12561] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  425.833975][T12564] FAULT_INJECTION: forcing a failure.
[  425.833975][T12564] name failslab, interval 1, probability 0, space 0, times 0
[  425.858617][T12561] qnx6: wrong signature (magic) in superblock #1.
[  425.868292][T12564] CPU: 1 PID: 12564 Comm: syz-executor.3 Not tainted 5.14.0-rc1-syzkaller #0
[  425.873142][T12561] qnx6: unable to read the first superblock
[  425.880627][T12564] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  425.880646][T12564] Call Trace:
[  425.880654][T12564]  dump_stack_lvl+0xcd/0x134
[  425.880688][T12564]  should_fail.cold+0x5/0xa
[  425.880726][T12564]  should_failslab+0x5/0x10
[  425.880756][T12564]  kmem_cache_alloc+0x58/0x540
[  425.880791][T12564]  ? shmem_destroy_inode+0x70/0x70
[  425.948317][T12564]  shmem_alloc_inode+0x18/0x40
[  425.953992][T12564]  ? shmem_destroy_inode+0x70/0x70
[  425.960525][T12564]  alloc_inode+0x61/0x230
[  425.966168][T12564]  new_inode+0x27/0x2f0
[  425.971080][T12564]  shmem_get_inode+0x195/0xc20
[  425.976314][T12564]  __shmem_file_setup+0xb8/0x310
[  425.984292][T12564]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  425.992975][T12564]  __do_sys_memfd_create+0x26b/0x5a0
[  426.000673][T12564]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  426.008489][T12564]  ? syscall_enter_from_user_mode+0x21/0x70
[  426.015617][T12564]  do_syscall_64+0x35/0xb0
[  426.020681][T12564]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  426.027692][T12564] RIP: 0033:0x4665d9
[  426.032609][T12564] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  426.055701][T12564] RSP: 002b:00007f2617dacf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  426.065775][T12564] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  426.074569][T12564] RDX: 00007f2617dad000 RSI: 0000000000000000 RDI: 00000000004bee66
[  426.084214][T12564] RBP: 0000000000000000 R08: 00007f2617dacff8 R09: ffffffffffffffff
[  426.093034][T12564] R10: 00007f2617dacffc R11: 0000000000000246 R12: 0000000020000100
[  426.101819][T12564] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
19:00:57 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000), 0xc, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x300}, 0x0)

19:00:57 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB])

19:00:57 executing program 1:
sendmsg$NL802154_CMD_SET_LBT_MODE(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={0x0}}, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f00000002c0)=@updsa={0xf0, 0x1a, 0x0, 0x0, 0x0, {{@in=@remote, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in=@multicast2}, @in6=@remote}}, 0xf0}, 0x8}, 0x0)

19:00:57 executing program 3 (fault-call:0 fault-nth:3):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  427.443860][T12573] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000).
[  427.529858][T12573] qnx6: wrong signature (magic) in superblock #1.
[  427.555520][T12573] qnx6: unable to read the first superblock
19:00:58 executing program 0:
socketpair(0x28, 0x0, 0x28, &(0x7f00000000c0))

[  428.043342][T12579] FAULT_INJECTION: forcing a failure.
[  428.043342][T12579] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  428.064741][T12579] CPU: 1 PID: 12579 Comm: syz-executor.3 Not tainted 5.14.0-rc1-syzkaller #0
[  428.075497][T12579] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  428.086666][T12579] Call Trace:
[  428.090438][T12579]  dump_stack_lvl+0xcd/0x134
[  428.096018][T12579]  should_fail.cold+0x5/0xa
[  428.101571][T12579]  prepare_alloc_pages+0x17b/0x580
[  428.108434][T12579]  __alloc_pages+0x12f/0x500
[  428.114200][T12579]  ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0
[  428.122729][T12579]  ? lock_downgrade+0x6e0/0x6e0
[  428.128399][T12579]  alloc_pages+0x18c/0x2a0
[  428.133659][T12579]  __page_cache_alloc+0x303/0x3a0
[  428.139541][T12579]  ? reacquire_held_locks+0x214/0x4e0
[  428.145734][T12579]  page_cache_ra_unbounded+0x348/0x930
[  428.152414][T12579]  ? read_pages+0x8d0/0x8d0
[  428.157723][T12579]  do_page_cache_ra+0xf9/0x140
[  428.163373][T12579]  filemap_fault+0x14b6/0x2500
[  428.168843][T12579]  ? pagecache_get_page+0x18d0/0x18d0
[  428.174977][T12579]  ? find_get_pages_contig+0x920/0x920
[  428.181773][T12579]  ext4_filemap_fault+0x87/0xc0
[  428.187703][T12579]  __do_fault+0x10d/0x4e0
[  428.192833][T12579]  __handle_mm_fault+0x2e32/0x5320
[  428.198753][T12579]  ? vm_iomap_memory+0x190/0x190
[  428.205597][T12579]  handle_mm_fault+0x1c8/0x790
[  428.211757][T12579]  do_user_addr_fault+0x48b/0x11c0
[  428.218803][T12579]  exc_page_fault+0x9e/0x180
[  428.226357][T12579]  ? asm_exc_page_fault+0x8/0x30
[  428.232447][T12579]  asm_exc_page_fault+0x1e/0x30
[  428.238919][T12579] RIP: 0033:0x408000
[  428.244100][T12579] Code: Unable to access opcode bytes at RIP 0x407fd6.
[  428.253355][T12579] RSP: 002b:00007f2617dad178 EFLAGS: 00010212
[  428.260649][T12579] RAX: 0000000000408000 RBX: 000000000056bf80 RCX: 0000000000000000
[  428.271344][T12579] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000020000100
[  428.280646][T12579] RBP: 00007f2617dad1d0 R08: 0000000020000300 R09: 0000000000000000
[  428.291367][T12579] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000001
[  428.301772][T12579] R13: 00007ffce5da159f R14: 00007f2617dad300 R15: 0000000000022000
[  428.349324][T12579] qnx6: invalid mount options.
19:00:59 executing program 1:
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = dup(r0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000001240), r1)

19:00:59 executing program 3 (fault-call:0 fault-nth:4):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:00 executing program 0:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[], {}, {{0x9, 0x5, 0x3, 0x9, 0x200}}}}}]}}]}}, 0x0)

19:01:00 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_ifreq(r0, 0x8919, &(0x7f0000000080)={'team_slave_1\x00', @ifru_settings={0x0, 0x0, @fr_pvc=0x0}})

[  429.571281][T12592] FAULT_INJECTION: forcing a failure.
[  429.571281][T12592] name failslab, interval 1, probability 0, space 0, times 0
[  429.592438][T12592] CPU: 0 PID: 12592 Comm: syz-executor.3 Not tainted 5.14.0-rc1-syzkaller #0
[  429.604557][T12592] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  429.616044][T12592] Call Trace:
[  429.620288][T12592]  dump_stack_lvl+0xcd/0x134
[  429.626018][T12592]  should_fail.cold+0x5/0xa
[  429.631873][T12592]  should_failslab+0x5/0x10
[  429.638291][T12592]  kmem_cache_alloc+0x58/0x540
[  429.643822][T12592]  ? lockdep_hardirqs_on+0x79/0x100
[  429.650086][T12592]  __d_alloc+0x2a/0x950
[  429.655217][T12592]  d_alloc_pseudo+0x19/0x70
[  429.660416][T12592]  alloc_file_pseudo+0xc6/0x250
[  429.666202][T12592]  ? alloc_file+0x590/0x590
[  429.671097][T12592]  ? __sanitizer_cov_trace_const_cmp2+0x22/0x80
[  429.677951][T12592]  ? shmem_get_inode+0x59a/0xc20
[  429.683799][T12592]  __shmem_file_setup+0x144/0x310
[  429.689951][T12592]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  429.698509][T12592]  __do_sys_memfd_create+0x26b/0x5a0
[  429.704793][T12592]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  429.711949][T12592]  ? syscall_enter_from_user_mode+0x21/0x70
[  429.719299][T12592]  do_syscall_64+0x35/0xb0
[  429.725169][T12592]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  429.732214][T12592] RIP: 0033:0x4665d9
[  429.737181][T12592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  429.767088][T12592] RSP: 002b:00007f2617dacf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  429.779448][T12592] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  429.791649][T12592] RDX: 00007f2617dad000 RSI: 0000000000000000 RDI: 00000000004bee66
[  429.801936][T12592] RBP: 0000000000000000 R08: 00007f2617dacff8 R09: ffffffffffffffff
[  429.812342][T12592] R10: 00007f2617dacffc R11: 0000000000000246 R12: 0000000020000100
[  429.822877][T12592] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
[  430.006378][ T9599] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  430.344654][ T9599] usb 5-1: Using ep0 maxpacket: 8
[  430.534931][ T9599] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  430.734678][ T9599] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  430.750448][ T9599] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  430.763199][ T9599] usb 5-1: Product: syz
[  430.775598][ T9599] usb 5-1: Manufacturer: syz
[  430.785495][ T9599] usb 5-1: SerialNumber: syz
[  430.856999][ T9599] cdc_ether: probe of 5-1:1.0 failed with error -22
[  431.081658][ T9599] usb 5-1: USB disconnect, device number 12
19:01:02 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x10}, 0x40)

19:01:02 executing program 3 (fault-call:0 fault-nth:5):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  431.951492][ T9443] usb 5-1: new high-speed USB device number 13 using dummy_hcd
19:01:02 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0xf)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, 0x3, 0x8, 0x101}, 0x14}}, 0x0)

[  432.030113][T12608] FAULT_INJECTION: forcing a failure.
[  432.030113][T12608] name failslab, interval 1, probability 0, space 0, times 0
[  432.140503][T12608] CPU: 0 PID: 12608 Comm: syz-executor.3 Not tainted 5.14.0-rc1-syzkaller #0
19:01:03 executing program 2:
pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff)
pkey_mprotect(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff)

[  432.156887][T12608] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  432.171070][T12608] Call Trace:
[  432.175458][T12608]  dump_stack_lvl+0xcd/0x134
[  432.182345][T12608]  should_fail.cold+0x5/0xa
[  432.189075][T12608]  should_failslab+0x5/0x10
[  432.194888][T12608]  kmem_cache_alloc+0x58/0x540
[  432.200330][T12608]  ? d_instantiate+0x75/0x90
[  432.207683][T12608]  __alloc_file+0x21/0x280
[  432.213500][T12608]  alloc_empty_file+0x6d/0x170
[  432.218646][T12608]  alloc_file+0x59/0x590
[  432.223024][T12608]  alloc_file_pseudo+0x165/0x250
[  432.228373][T12608]  ? alloc_file+0x590/0x590
[  432.233942][T12608]  ? __sanitizer_cov_trace_const_cmp2+0x22/0x80
[  432.240779][T12608]  ? shmem_get_inode+0x59a/0xc20
[  432.246466][T12608]  __shmem_file_setup+0x144/0x310
19:01:03 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000000180)={0x9, 0x9, 0x2, 0x8, 0x2}, 0x40)

[  432.251576][T12608]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  432.283423][T12608]  __do_sys_memfd_create+0x26b/0x5a0
[  432.291579][T12608]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  432.301048][T12608]  ? syscall_enter_from_user_mode+0x21/0x70
[  432.310766][T12608]  do_syscall_64+0x35/0xb0
[  432.315856][T12608]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  432.322710][T12608] RIP: 0033:0x4665d9
[  432.327482][T12608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  432.354439][T12608] RSP: 002b:00007f2617dacf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  432.366872][T12608] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  432.382325][T12608] RDX: 00007f2617dad000 RSI: 0000000000000000 RDI: 00000000004bee66
[  432.393621][T12608] RBP: 0000000000000000 R08: 00007f2617dacff8 R09: ffffffffffffffff
[  432.405030][T12608] R10: 00007f2617dacffc R11: 0000000000000246 R12: 0000000020000100
[  432.417154][T12608] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
19:01:03 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000740)={<r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=[@cred={{0x1c, 0x6}}], 0x20}, 0x0)

19:01:03 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000040), 0x0, 0x0)
ioctl$FICLONE(r0, 0x5452, 0xffffffffffffffff)

19:01:03 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000040), 0x10000000000002, 0x0)
ioctl$FICLONE(r0, 0x4030582a, 0xffffffffffffffff)

19:01:03 executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000000180)={0x9, 0x9, 0x2, 0x8, 0x8}, 0x40)

[  432.754795][ T9443] usb 5-1: device not accepting address 13, error -71
19:01:03 executing program 0:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[], {}, {{0x9, 0x5, 0x3, 0x9, 0x200}}}}}]}}]}}, 0x0)

19:01:03 executing program 3 (fault-call:0 fault-nth:6):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:03 executing program 1:
r0 = timerfd_create(0x9, 0x80000)
timerfd_settime(r0, 0x0, &(0x7f0000000180)={{0x77359400}, {0x77359400}}, 0x0)
timerfd_settime(r0, 0x0, &(0x7f0000000000)={{}, {0x77359400}}, 0x0)

[  432.835269][T12626] FAULT_INJECTION: forcing a failure.
[  432.835269][T12626] name failslab, interval 1, probability 0, space 0, times 0
[  432.902641][T12626] CPU: 0 PID: 12626 Comm: syz-executor.3 Not tainted 5.14.0-rc1-syzkaller #0
[  432.915648][T12626] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  432.929638][T12626] Call Trace:
[  432.934060][T12626]  dump_stack_lvl+0xcd/0x134
[  432.941660][T12626]  should_fail.cold+0x5/0xa
[  432.949359][T12626]  should_failslab+0x5/0x10
[  432.963967][T12626]  kmem_cache_alloc+0x58/0x540
[  432.972175][T12626]  security_file_alloc+0x34/0x170
[  432.984830][T12626]  __alloc_file+0xd8/0x280
[  432.995873][T12626]  alloc_empty_file+0x6d/0x170
[  433.002643][T12626]  alloc_file+0x59/0x590
[  433.008403][T12626]  alloc_file_pseudo+0x165/0x250
[  433.018327][T12626]  ? alloc_file+0x590/0x590
[  433.026674][T12626]  ? __sanitizer_cov_trace_const_cmp2+0x22/0x80
[  433.034384][T12626]  ? shmem_get_inode+0x59a/0xc20
[  433.044156][T12626]  __shmem_file_setup+0x144/0x310
[  433.050245][T12626]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  433.057042][T12626]  __do_sys_memfd_create+0x26b/0x5a0
[  433.064015][T12626]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  433.071503][T12626]  ? syscall_enter_from_user_mode+0x21/0x70
[  433.077866][T12626]  do_syscall_64+0x35/0xb0
[  433.083305][T12626]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  433.089947][T12626] RIP: 0033:0x4665d9
[  433.093960][T12626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  433.119205][T12626] RSP: 002b:00007f2617dacf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  433.131090][T12626] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  433.142021][T12626] RDX: 00007f2617dad000 RSI: 0000000000000000 RDI: 00000000004bee66
[  433.153574][T12626] RBP: 0000000000000000 R08: 00007f2617dacff8 R09: ffffffffffffffff
[  433.163814][T12626] R10: 00007f2617dacffc R11: 0000000000000246 R12: 0000000020000100
[  433.174134][T12626] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
[  433.494665][ T9443] usb 5-1: new high-speed USB device number 14 using dummy_hcd
19:01:04 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000000308006840a8990e5bd812a40b6a5c1397"], 0x803}}, 0x0)

19:01:04 executing program 3 (fault-call:0 fault-nth:7):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  433.764980][ T9443] usb 5-1: Using ep0 maxpacket: 8
[  433.894791][ T9443] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
19:01:04 executing program 1:
socketpair(0x1e, 0x5, 0x0, &(0x7f0000000680)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
accept$unix(r0, 0x0, 0x0)

[  434.119768][ T9443] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  434.141043][T12636] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=2051 sclass=netlink_route_socket pid=12636 comm=syz-executor.2
[  434.165334][T12637] FAULT_INJECTION: forcing a failure.
[  434.165334][T12637] name failslab, interval 1, probability 0, space 0, times 0
[  434.194732][ T9443] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  434.196893][T12636] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12636 comm=syz-executor.2
[  434.248053][ T9443] usb 5-1: Product: syz
[  434.259987][ T9443] usb 5-1: Manufacturer: syz
[  434.287040][T12637] CPU: 1 PID: 12637 Comm: syz-executor.3 Not tainted 5.14.0-rc1-syzkaller #0
[  434.301790][T12637] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  434.316339][T12637] Call Trace:
[  434.321780][T12637]  dump_stack_lvl+0xcd/0x134
[  434.329383][T12637]  should_fail.cold+0x5/0xa
[  434.337106][T12637]  ? tomoyo_realpath_from_path+0xc3/0x620
[  434.346940][T12637]  should_failslab+0x5/0x10
[  434.353272][T12637]  __kmalloc+0x7e/0x4d0
[  434.360089][T12637]  tomoyo_realpath_from_path+0xc3/0x620
[  434.368740][T12637]  ? tomoyo_profile+0x42/0x50
[  434.375471][T12637]  tomoyo_path_perm+0x21b/0x400
[  434.382462][T12637]  ? tomoyo_path_perm+0x1c1/0x400
[  434.390008][T12637]  ? tomoyo_check_open_permission+0x380/0x380
[  434.400696][T12637]  ? find_held_lock+0x2d/0x110
[  434.407256][T12637]  security_path_truncate+0xcf/0x140
[  434.417657][T12637]  do_sys_ftruncate+0x4d8/0x8e0
[  434.427286][T12637]  do_syscall_64+0x35/0xb0
[  434.434958][T12637]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  434.444317][T12637] RIP: 0033:0x466597
[  434.451134][T12637] Code: 48 89 e7 e8 cb e5 ff ff 48 8b 4c 24 18 64 48 2b 0c 25 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 1a 00 00 90 b8 4d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8
[  434.478812][T12637] RSP: 002b:00007f2617dacf48 EFLAGS: 00000217 ORIG_RAX: 000000000000004d
[  434.491970][T12637] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 0000000000466597
[  434.505303][T12637] RDX: 00007f2617dad000 RSI: 0000000000000000 RDI: 0000000000000004
[  434.518225][T12637] RBP: 0000000000000000 R08: 00007f2617dacff8 R09: ffffffffffffffff
[  434.531470][T12637] R10: 00007f2617dacffc R11: 0000000000000217 R12: 0000000000000004
[  434.544867][T12637] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000020000480
[  434.559189][ T9443] usb 5-1: SerialNumber: syz
[  434.694261][T12637] ERROR: Out of memory at tomoyo_realpath_from_path.
[  434.726140][ T9443] cdc_ether: probe of 5-1:1.0 failed with error -22
[  434.999260][ T9443] usb 5-1: USB disconnect, device number 14
19:01:06 executing program 2:
r0 = socket$netlink(0x10, 0x3, 0x0)
getpeername$netlink(r0, &(0x7f0000000000), &(0x7f0000000040)=0xfffffe4d)

19:01:06 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  435.401680][T12651] qnx6: invalid mount options.
19:01:07 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000740)={<r0=>0xffffffffffffffff})
getpgid(0x0)
r1 = getpid()
sendmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[@cred={{0x1c, 0x1, 0x2, {r1, 0xee01}}}], 0x20}, 0x0)

19:01:07 executing program 1:
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/107, 0x1115000, 0x1000}, 0x20)

19:01:07 executing program 0:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[], {}, {{0x9, 0x5, 0x3, 0x9, 0x200}}}}}]}}]}}, 0x0)

19:01:07 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x2, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  436.459251][T12665] qnx6: invalid mount options.
[  436.569603][T12665] qnx6: invalid mount options.
[  436.674795][ T9443] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  436.924571][ T9443] usb 5-1: Using ep0 maxpacket: 8
[  437.045052][ T9443] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
19:01:07 executing program 2:
r0 = socket$unix(0x1, 0x5, 0x0)
read(r0, &(0x7f00000000c0)=""/4096, 0x1000)

[  437.235019][ T9443] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  437.289967][ T9443] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  437.330791][ T9443] usb 5-1: Product: syz
[  437.337109][ T9443] usb 5-1: Manufacturer: syz
[  437.344158][ T9443] usb 5-1: SerialNumber: syz
[  437.425507][ T9443] cdc_ether: probe of 5-1:1.0 failed with error -22
[  437.687523][ T9443] usb 5-1: USB disconnect, device number 15
[  438.782492][ T5051] systemd-udevd invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=-1000
[  438.859348][ T5051] CPU: 0 PID: 5051 Comm: systemd-udevd Not tainted 5.14.0-rc1-syzkaller #0
[  438.872147][ T5051] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  438.885674][ T5051] Call Trace:
[  438.890643][ T5051]  dump_stack_lvl+0xcd/0x134
[  438.897632][ T5051]  dump_header+0x106/0x624
[  438.904336][ T5051]  oom_kill_process.cold+0x10/0x15
[  438.912044][ T5051]  out_of_memory+0x358/0x1460
[  438.919065][ T5051]  ? oom_killer_disable+0x280/0x280
[  438.926919][ T5051]  ? mutex_trylock+0x246/0x2c0
[  438.934449][ T5051]  ? __alloc_pages_slowpath.constprop.0+0xb10/0x21b0
[  438.945341][ T5051]  __alloc_pages_slowpath.constprop.0+0x1bad/0x21b0
[  438.955603][ T5051]  ? warn_alloc+0x120/0x120
[  438.962188][ T5051]  ? prepare_alloc_pages+0x17b/0x580
[  438.972717][ T5051]  __alloc_pages+0x412/0x500
[  438.980549][ T5051]  ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0
[  438.991015][ T5051]  ? find_held_lock+0x2d/0x110
[  438.998682][ T5051]  ? lock_downgrade+0x6e0/0x6e0
[  439.006433][ T5051]  ? do_raw_spin_lock+0x120/0x2b0
[  439.014381][ T5051]  ? rwlock_bug.part.0+0x90/0x90
[  439.022208][ T5051]  alloc_pages+0x18c/0x2a0
[  439.029080][ T5051]  __get_free_pages+0x8/0x40
[  439.036356][ T5051]  inode_doinit_with_dentry+0x66c/0x12e0
[  439.045253][ T5051]  ? selinux_socket_getsockopt+0x2b0/0x2b0
[  439.053948][ T5051]  ? kernfs_get_inode+0x384/0x520
[  439.061627][ T5051]  ? lock_downgrade+0x6e0/0x6e0
[  439.069421][ T5051]  selinux_d_instantiate+0x23/0x30
[  439.078269][ T5051]  security_d_instantiate+0x50/0xe0
[  439.086836][ T5051]  d_splice_alias+0x8c/0xc60
[  439.094388][ T5051]  ? _raw_spin_unlock+0x24/0x40
[  439.102706][ T5051]  kernfs_iop_lookup+0x1ac/0x220
[  439.110733][ T5051]  __lookup_slow+0x24c/0x480
[  439.118463][ T5051]  ? page_put_link+0x220/0x220
[  439.126024][ T5051]  ? ubi_io_read.cold+0x1b1/0x268
[  439.135078][ T5051]  ? ubi_io_read.cold+0x1b1/0x268
[  439.143634][ T5051]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  439.153978][ T5051]  ? selinux_inode_permission+0x9b/0x610
[  439.160667][ T5051]  ? __inode_security_revalidate+0x140/0x140
[  439.169987][ T5051]  walk_component+0x40f/0x6a0
[  439.176400][ T5051]  ? handle_dots.part.0+0x15e0/0x15e0
[  439.183860][ T5051]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  439.191229][ T5051]  ? security_inode_permission+0xc5/0xf0
[  439.199346][ T5051]  link_path_walk.part.0+0x757/0xd00
[  439.205543][ T5051]  ? walk_component+0x6a0/0x6a0
[  439.212063][ T5051]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  439.221050][ T5051]  path_lookupat+0xc8/0x860
[  439.226875][ T5051]  filename_lookup+0x1c6/0x5b0
[  439.232522][ T5051]  ? may_linkat+0x2d0/0x2d0
[  439.238072][ T5051]  ? __check_object_size+0x16e/0x3f0
[  439.244692][ T5051]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  439.252764][ T5051]  ? strncpy_from_user+0x2a0/0x3e0
[  439.260624][ T5051]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  439.269727][ T5051]  ? getname_flags.part.0+0x1dd/0x4f0
[  439.277652][ T5051]  vfs_statx+0x142/0x390
[  439.283721][ T5051]  ? do_readlinkat+0x2f0/0x2f0
[  439.290552][ T5051]  ? __seccomp_filter+0x5b6/0x15e0
[  439.298192][ T5051]  __do_sys_newlstat+0x91/0x110
[  439.305432][ T5051]  ? __do_sys_lstat+0x110/0x110
[  439.315499][ T5051]  ? __context_tracking_exit+0xb8/0xe0
[  439.323465][ T5051]  ? __secure_computing+0x104/0x360
[  439.331387][ T5051]  ? syscall_trace_enter.constprop.0+0x94/0x270
[  439.340614][ T5051]  do_syscall_64+0x35/0xb0
[  439.347570][ T5051]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  439.357204][ T5051] RIP: 0033:0x7fd11cc0a335
[  439.362496][ T5051] Code: Unable to access opcode bytes at RIP 0x7fd11cc0a30b.
[  439.372192][ T5051] RSP: 002b:00007ffc7e0061d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000006
[  439.383577][ T5051] RAX: ffffffffffffffda RBX: 000055ba8056cb60 RCX: 00007fd11cc0a335
[  439.398566][ T5051] RDX: 00007ffc7e006210 RSI: 00007ffc7e006210 RDI: 000055ba8056bb60
[  439.409133][ T5051] RBP: 00007ffc7e0062d0 R08: 00007fd11cec9188 R09: 0000000000001010
[  439.419306][ T5051] R10: 0000000000000060 R11: 0000000000000246 R12: 000055ba8056bb60
[  439.429346][ T5051] R13: 000055ba8056bb80 R14: 000055ba80560aab R15: 000055ba80560ab0
[  439.728136][ T5051] Mem-Info:
[  439.732040][ T5051] active_anon:584 inactive_anon:164456 isolated_anon:0
[  439.732040][ T5051]  active_file:3 inactive_file:0 isolated_file:5
[  439.732040][ T5051]  unevictable:1536 dirty:1 writeback:0
[  439.732040][ T5051]  slab_reclaimable:17113 slab_unreclaimable:55194
[  439.732040][ T5051]  mapped:35343 shmem:7074 pagetables:1663 bounce:0
[  439.732040][ T5051]  free:16973 free_pcp:317 free_cma:0
[  439.782921][ T5051] Node 0 active_anon:636kB inactive_anon:42216kB active_file:12kB inactive_file:0kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:40368kB dirty:0kB writeback:0kB shmem:19224kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 4096kB writeback_tmp:0kB kernel_stack:8192kB pagetables:1944kB all_unreclaimable? yes
[  439.830242][ T5051] Node 1 active_anon:1700kB inactive_anon:615636kB active_file:4kB inactive_file:8kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:101004kB dirty:4kB writeback:0kB shmem:9072kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 284672kB writeback_tmp:0kB kernel_stack:2592kB pagetables:4708kB all_unreclaimable? yes
[  440.082063][ T5051] Node 0 DMA free:2516kB min:720kB low:900kB high:1080kB reserved_highatomic:0KB active_anon:308kB inactive_anon:4920kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  440.324383][ T5051] lowmem_reserve[]: 0 456 456 456 456
[  440.330962][ T5051] Node 0 DMA32 free:19468kB min:21988kB low:27484kB high:32980kB reserved_highatomic:0KB active_anon:328kB inactive_anon:37296kB active_file:0kB inactive_file:28kB unevictable:3072kB writepending:0kB present:1032192kB managed:475840kB mlocked:0kB bounce:0kB free_pcp:660kB local_pcp:216kB free_cma:0kB
[  440.537340][ T5051] lowmem_reserve[]: 0 0 0 0 0
[  440.544242][ T5051] Node 1 DMA32 free:44336kB min:44872kB low:56088kB high:67304kB reserved_highatomic:0KB active_anon:1700kB inactive_anon:615636kB active_file:0kB inactive_file:0kB unevictable:3072kB writepending:4kB present:1048436kB managed:954632kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB
[  440.753050][ T5051] lowmem_reserve[]: 0 0 0 0 0
[  440.798610][ T5051] Node 0 DMA: 89*4kB (UME) 32*8kB (UME) 25*16kB (UME) 9*32kB (UME) 5*64kB (UME) 3*128kB (UME) 0*256kB 1*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 2516kB
[  440.872788][ T5051] Node 0 DMA32: 756*4kB (UME) 644*8kB (UME) 283*16kB (UME) 88*32kB (UME) 22*64kB (UM) 2*128kB (UM) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 17184kB
[  440.894052][ T5051] Node 1 DMA32: 985*4kB (M) 415*8kB (ME) 246*16kB (ME) 173*32kB (UME) 97*64kB (UME) 56*128kB (UME) 27*256kB (UME) 11*512kB (ME) 2*1024kB (UM) 0*2048kB 0*4096kB = 44700kB
[  440.936329][ T5051] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  440.958263][ T5051] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  441.001949][ T5051] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  441.021972][ T5051] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  441.034135][ T5051] 7078 total pagecache pages
[  441.040955][ T5051] 0 pages in swap cache
[  441.051593][ T5051] Swap cache stats: add 0, delete 0, find 0/0
[  441.085863][ T5051] Free swap  = 0kB
[  441.090347][ T5051] Total swap = 0kB
[  441.098082][ T5051] 524155 pages RAM
[  441.103583][ T5051] 0 pages HighMem/MovableOnly
[  441.111529][ T5051] 162697 pages reserved
[  441.150709][ T5051] 0 pages cma reserved
[  441.160454][ T5051] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/,task=syz-executor.1,pid=12655,uid=0
[  441.194762][ T5051] Out of memory: Killed process 12655 (syz-executor.1) total-vm:93256kB, anon-rss:11244kB, file-rss:34820kB, shmem-rss:0kB, UID:0 pgtables:152kB oom_score_adj:1000
[  441.260990][T10684] systemd-udevd invoked oom-killer: gfp_mask=0x1100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0
[  441.279963][ T1664] oom_reaper: reaped process 12655 (syz-executor.1), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  441.280655][T10684] CPU: 1 PID: 10684 Comm: systemd-udevd Not tainted 5.14.0-rc1-syzkaller #0
[  441.310910][T10684] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  441.323633][T10684] Call Trace:
[  441.327906][T10684]  dump_stack_lvl+0xcd/0x134
[  441.333994][T10684]  dump_header+0x106/0x624
[  441.339577][T10684]  oom_kill_process.cold+0x10/0x15
[  441.346215][T10684]  out_of_memory+0x119b/0x1460
[  441.353348][T10684]  ? oom_killer_disable+0x280/0x280
[  441.361711][T10684]  ? mutex_trylock+0x246/0x2c0
[  441.368197][T10684]  ? __alloc_pages_slowpath.constprop.0+0xb10/0x21b0
[  441.375694][T10684]  __alloc_pages_slowpath.constprop.0+0x1bad/0x21b0
[  441.383639][T10684]  ? warn_alloc+0x120/0x120
[  441.389789][T10684]  ? prepare_alloc_pages+0x17b/0x580
[  441.396872][T10684]  __alloc_pages+0x412/0x500
[  441.402908][T10684]  ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0
[  441.411171][T10684]  ? find_held_lock+0x2d/0x110
[  441.416928][T10684]  alloc_pages+0x18c/0x2a0
[  441.422209][T10684]  __page_cache_alloc+0x303/0x3a0
[  441.428887][T10684]  ? xas_load+0x66/0x140
[  441.435334][T10684]  pagecache_get_page+0x357/0x18d0
[  441.442468][T10684]  ? add_to_page_cache_lru+0x5c0/0x5c0
[  441.449438][T10684]  ? read_pages+0x8d0/0x8d0
[  441.455069][T10684]  filemap_fault+0x1511/0x2500
[  441.461047][T10684]  ? pagecache_get_page+0x18d0/0x18d0
[  441.468445][T10684]  ? find_get_pages_contig+0x920/0x920
[  441.476633][T10684]  ext4_filemap_fault+0x87/0xc0
[  441.482652][T10684]  __do_fault+0x10d/0x4e0
[  441.487796][T10684]  __handle_mm_fault+0x2e32/0x5320
[  441.494240][T10684]  ? vm_iomap_memory+0x190/0x190
[  441.500291][T10684]  handle_mm_fault+0x1c8/0x790
[  441.506526][T10684]  do_user_addr_fault+0x48b/0x11c0
[  441.513037][T10684]  exc_page_fault+0x9e/0x180
[  441.518139][T10684]  ? asm_exc_page_fault+0x8/0x30
[  441.524301][T10684]  asm_exc_page_fault+0x1e/0x30
[  441.530146][T10684] RIP: 0033:0x7fd11cb93bd4
[  441.535599][T10684] Code: Unable to access opcode bytes at RIP 0x7fd11cb93baa.
[  441.544976][T10684] RSP: 002b:00007ffc7e007190 EFLAGS: 00010207
[  441.552916][T10684] RAX: 0000000000000007 RBX: 0000000000000000 RCX: 00007fd11cc0a6f0
[  441.562219][T10684] RDX: 0000000000000180 RSI: 00000000000800c2 RDI: 000055ba8050d490
[  441.573061][T10684] RBP: 000000000003a2f8 R08: 000000000000fcf8 R09: 0000000000000030
[  441.582335][T10684] R10: 0000000000000000 R11: 0000000000000246 R12: 000055ba8050d4ad
[  441.592278][T10684] R13: 8421084210842109 R14: 00000000000800c2 R15: 00007fd11cc98540
[  441.605053][T10684] Mem-Info:
[  441.609362][T10684] active_anon:584 inactive_anon:161720 isolated_anon:0
[  441.609362][T10684]  active_file:10 inactive_file:0 isolated_file:0
[  441.609362][T10684]  unevictable:1536 dirty:1 writeback:0
[  441.609362][T10684]  slab_reclaimable:17093 slab_unreclaimable:55844
[  441.609362][T10684]  mapped:35342 shmem:7074 pagetables:1644 bounce:0
[  441.609362][T10684]  free:15739 free_pcp:3694 free_cma:0
[  441.684354][T10684] Node 0 active_anon:636kB inactive_anon:39936kB active_file:24kB inactive_file:0kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:40368kB dirty:0kB writeback:0kB shmem:19224kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 4096kB writeback_tmp:0kB kernel_stack:8152kB pagetables:1868kB all_unreclaimable? yes
[  441.748971][T10684] Node 1 active_anon:1700kB inactive_anon:606944kB active_file:16kB inactive_file:0kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:101000kB dirty:4kB writeback:0kB shmem:9072kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 284672kB writeback_tmp:0kB kernel_stack:2592kB pagetables:4708kB all_unreclaimable? yes
[  441.812535][T10684] Node 0 DMA free:2516kB min:720kB low:900kB high:1080kB reserved_highatomic:0KB active_anon:308kB inactive_anon:4696kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:324kB local_pcp:60kB free_cma:0kB
[  441.859269][T10684] lowmem_reserve[]: 0 456 456 456 456
[  441.882787][T10684] Node 0 DMA32 free:15256kB min:26084kB low:31580kB high:37076kB reserved_highatomic:0KB active_anon:328kB inactive_anon:35132kB active_file:8kB inactive_file:0kB unevictable:3072kB writepending:0kB present:1032192kB managed:475840kB mlocked:0kB bounce:0kB free_pcp:3284kB local_pcp:264kB free_cma:0kB
[  441.934093][T10684] lowmem_reserve[]: 0 0 0 0 0
[  441.942605][T10684] Node 1 DMA32 free:44700kB min:44872kB low:56088kB high:67304kB reserved_highatomic:0KB active_anon:1700kB inactive_anon:606856kB active_file:8kB inactive_file:4kB unevictable:3072kB writepending:4kB present:1048436kB managed:954632kB mlocked:0kB bounce:0kB free_pcp:11044kB local_pcp:776kB free_cma:0kB
[  441.991293][T10684] lowmem_reserve[]: 0 0 0 0 0
[  441.998807][T10684] Node 0 DMA: 89*4kB (UME) 32*8kB (UME) 25*16kB (UME) 9*32kB (UME) 5*64kB (UME) 3*128kB (UME) 0*256kB 1*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 2516kB
[  442.023716][T10684] Node 0 DMA32: 724*4kB (UME) 554*8kB (ME) 237*16kB (UME) 80*32kB (UME) 19*64kB (UM) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 14896kB
[  442.043817][T10684] Node 1 DMA32: 985*4kB (M) 415*8kB (ME) 246*16kB (ME) 173*32kB (UME) 97*64kB (UME) 56*128kB (UME) 27*256kB (UME) 11*512kB (ME) 2*1024kB (UM) 0*2048kB 0*4096kB = 44700kB
[  442.063853][T10684] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  442.112089][T10684] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  442.153133][T10684] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  442.192017][T10684] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  442.221066][T10684] 7079 total pagecache pages
[  442.229435][T10684] 0 pages in swap cache
[  442.239088][T10684] Swap cache stats: add 0, delete 0, find 0/0
[  442.259571][T10684] Free swap  = 0kB
[  442.263745][T10684] Total swap = 0kB
[  442.282404][T10684] 524155 pages RAM
[  442.289669][T10684] 0 pages HighMem/MovableOnly
[  442.298561][T10684] 162697 pages reserved
[  442.303096][T10684] 0 pages cma reserved
[  442.332861][T10684] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/,task=systemd-udevd,pid=10684,uid=0
[  442.355423][T10684] Out of memory (oom_kill_allocating_task): Killed process 10684 (systemd-udevd) total-vm:46996kB, anon-rss:3196kB, file-rss:0kB, shmem-rss:0kB, UID:0 pgtables:112kB oom_score_adj:0
[  442.401122][ T1664] oom_reaper: reaped process 10684 (systemd-udevd), now anon-rss:0kB, file-rss:0kB, shmem-rss:0kB
[  442.425410][ T3025] kworker/1:2 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0
[  442.457344][ T3025] CPU: 1 PID: 3025 Comm: kworker/1:2 Not tainted 5.14.0-rc1-syzkaller #0
[  442.475139][ T3025] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  442.493628][ T3025] Workqueue: events drm_fb_helper_damage_work
[  442.505668][ T3025] Call Trace:
[  442.511744][ T3025]  dump_stack_lvl+0xcd/0x134
[  442.519976][ T3025]  dump_header+0x106/0x624
[  442.528067][ T3025]  oom_kill_process.cold+0x10/0x15
[  442.536234][ T3025]  out_of_memory+0x358/0x1460
[  442.543205][ T3025]  ? oom_killer_disable+0x280/0x280
[  442.553588][ T3025]  ? mutex_trylock+0x246/0x2c0
[  442.561002][ T3025]  ? __alloc_pages_slowpath.constprop.0+0xb10/0x21b0
[  442.573945][ T3025]  __alloc_pages_slowpath.constprop.0+0x1bad/0x21b0
[  442.582428][ T3025]  ? warn_alloc+0x120/0x120
[  442.593537][ T3025]  ? prepare_alloc_pages+0x17b/0x580
[  442.600237][ T3025]  __alloc_pages+0x412/0x500
[  442.611772][ T3025]  ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0
[  442.621160][ T3025]  ? find_held_lock+0x2d/0x110
[  442.627650][ T3025]  ? lock_downgrade+0x6e0/0x6e0
[  442.635498][ T3025]  ? do_raw_spin_lock+0x120/0x2b0
[  442.643159][ T3025]  alloc_pages+0x18c/0x2a0
[  442.652123][ T3025]  __get_free_pages+0x8/0x40
[  442.658684][ T3025]  kasan_populate_vmalloc_pte+0x25/0x160
[  442.667470][ T3025]  __apply_to_page_range+0x694/0x1080
[  442.678221][ T3025]  ? kasan_poison+0x60/0x60
[  442.686873][ T3025]  ? rwlock_bug.part.0+0x90/0x90
[  442.693551][ T3025]  alloc_vmap_area+0xb2d/0x1e30
[  442.699168][ T3025]  ? free_vmap_area+0x1ad0/0x1ad0
[  442.709716][ T3025]  ? rcu_read_lock_sched_held+0x3a/0x70
[  442.718633][ T3025]  ? kmem_cache_alloc_node_trace+0x42a/0x5d0
[  442.734239][ T3025]  __get_vm_area_node.constprop.0+0x128/0x380
[  442.742281][ T3025]  vmap+0x10c/0x2f0
[  442.747245][ T3025]  ? drm_gem_shmem_vmap+0x3d7/0x5a0
[  442.756512][ T3025]  ? vunmap+0x70/0x70
[  442.762479][ T3025]  ? find_held_lock+0x2d/0x110
[  442.772357][ T3025]  drm_gem_shmem_vmap+0x3d7/0x5a0
[  442.779361][ T3025]  ? drm_gem_shmem_get_pages_sgt+0x3b0/0x3b0
19:01:13 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f00000002c0)=@updsa={0x10, 0x1a, 0x4c47, 0x0, 0x0, {{@in6=@dev, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in=@multicast2}, @in6=@remote}}, 0xf0}}, 0x0)

[  442.790896][ T3025]  drm_gem_vmap+0x6b/0xe0
[  442.798031][ T3025]  drm_client_buffer_vmap+0x41/0xd0
[  442.805235][ T3025]  drm_fb_helper_damage_work+0x291/0xac0
[  442.811729][ T3025]  ? lock_release+0x720/0x720
[  442.817704][ T3025]  ? drm_fb_helper_set_suspend_unlocked+0x250/0x250
19:01:13 executing program 0:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[], {}, {{0x9, 0x5, 0x3, 0x9, 0x200}}}}}]}}]}}, 0x0)

[  442.825475][ T3025]  ? do_raw_spin_lock+0x120/0x2b0
19:01:13 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x3, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  442.832790][ T3025]  process_one_work+0x98d/0x1630
[  442.839735][ T3025]  ? pwq_dec_nr_in_flight+0x320/0x320
[  442.853164][ T3025]  ? rwlock_bug.part.0+0x90/0x90
[  442.860860][ T3025]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  442.869097][ T3025]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  442.877483][ T3025]  ? move_linked_works+0x1ec/0x2f0
[  442.885091][ T3025]  worker_thread+0x658/0x11f0
[  442.892291][ T3025]  ? process_one_work+0x1630/0x1630
[  442.899719][ T3025]  kthread+0x3e5/0x4d0
[  442.907197][ T3025]  ? set_kthread_struct+0x130/0x130
[  442.916310][ T3025]  ret_from_fork+0x1f/0x30
[  442.933883][ T3025] Mem-Info:
[  442.949890][ T3025] active_anon:580 inactive_anon:161608 isolated_anon:0
[  442.949890][ T3025]  active_file:633 inactive_file:660 isolated_file:31
[  442.949890][ T3025]  unevictable:1536 dirty:12 writeback:0
[  442.949890][ T3025]  slab_reclaimable:17086 slab_unreclaimable:55075
[  442.949890][ T3025]  mapped:36284 shmem:7074 pagetables:1651 bounce:0
[  442.949890][ T3025]  free:18169 free_pcp:713 free_cma:0
[  443.019647][ T3025] Node 0 active_anon:620kB inactive_anon:39780kB active_file:0kB inactive_file:28kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:40392kB dirty:4kB writeback:0kB shmem:19212kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 4096kB writeback_tmp:0kB kernel_stack:8136kB pagetables:1864kB all_unreclaimable? yes
[  443.114133][ T3025] Node 1 active_anon:1700kB inactive_anon:606652kB active_file:2004kB inactive_file:2048kB unevictable:3072kB isolated(anon):0kB isolated(file):128kB mapped:104844kB dirty:44kB writeback:0kB shmem:9084kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 284672kB writeback_tmp:0kB kernel_stack:2708kB pagetables:4840kB all_unreclaimable? no
[  443.167891][ T3025] Node 0 DMA free:2492kB min:720kB low:900kB high:1080kB reserved_highatomic:0KB active_anon:308kB inactive_anon:4676kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:60kB local_pcp:8kB free_cma:0kB
[  443.208051][ T3025] lowmem_reserve[]: 0 456 456 456 456
[  443.216490][ T3025] Node 0 DMA32 free:23368kB min:30180kB low:35676kB high:41172kB reserved_highatomic:0KB active_anon:312kB inactive_anon:35104kB active_file:0kB inactive_file:28kB unevictable:3072kB writepending:4kB present:1032192kB managed:475840kB mlocked:0kB bounce:0kB free_pcp:1756kB local_pcp:728kB free_cma:0kB
[  443.273218][ T3025] lowmem_reserve[]: 0 0 0 0 0
[  443.281370][ T3025] Node 1 DMA32 free:44596kB min:44872kB low:56088kB high:67304kB reserved_highatomic:0KB active_anon:1700kB inactive_anon:606652kB active_file:1800kB inactive_file:1724kB unevictable:3072kB writepending:44kB present:1048436kB managed:954632kB mlocked:0kB bounce:0kB free_pcp:3392kB local_pcp:808kB free_cma:0kB
[  443.335109][ T3025] lowmem_reserve[]: 0 0 0 0 0
[  443.341460][ T3025] Node 0 DMA: 139*4kB (UME) 42*8kB (UME) 21*16kB (UME) 7*32kB (UME) 4*64kB (UME) 2*128kB (ME) 0*256kB 1*512kB (M) 0*1024kB 0*2048kB 0*4096kB = 2476kB
[  443.364710][ T3025] Node 0 DMA32: 1354*4kB (UME) 1218*8kB (UME) 283*16kB (UME) 80*32kB (UME) 16*64kB (UM) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 23272kB
[  443.389414][ T3025] Node 1 DMA32: 630*4kB (UM) 357*8kB (UME) 271*16kB (UME) 242*32kB (UME) 116*64kB (UME) 56*128kB (UME) 27*256kB (UME) 11*512kB (ME) 2*1024kB (UM) 0*2048kB 0*4096kB = 46640kB
[  443.413761][ T3025] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  443.429736][ T3025] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  443.451070][ T3025] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  443.471927][ T3025] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  443.493298][ T3025] 7361 total pagecache pages
[  443.500649][ T3025] 0 pages in swap cache
[  443.508009][ T3025] Swap cache stats: add 0, delete 0, find 0/0
[  443.519961][ T3025] Free swap  = 0kB
[  443.527504][ T3025] Total swap = 0kB
[  443.533389][ T3025] 524155 pages RAM
[  443.539229][ T3025] 0 pages HighMem/MovableOnly
[  443.547088][ T3025] 162697 pages reserved
[  443.556237][ T3025] 0 pages cma reserved
[  443.562462][ T3025] oom-kill:constraint=CONSTRAINT_NONE,nodemask=(null),cpuset=/,mems_allowed=0-1,global_oom,task_memcg=/,task=syz-executor.0,pid=11094,uid=0
[  443.597478][ T3025] Out of memory: Killed process 11094 (syz-executor.0) total-vm:93256kB, anon-rss:160kB, file-rss:34652kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000
[  443.641844][ T1664] oom_reaper: reaped process 11094 (syz-executor.0), now anon-rss:0kB, file-rss:34816kB, shmem-rss:0kB
[  444.274659][ T9599] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  444.287640][T12686] qnx6: invalid mount options.
19:01:15 executing program 1:
socketpair(0x1e, 0x5, 0x0, &(0x7f0000000680)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$nfc_llcp(r0, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0xea)

19:01:15 executing program 2 (fault-call:0 fault-nth:0):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  444.460828][T12691] FAULT_INJECTION: forcing a failure.
[  444.460828][T12691] name failslab, interval 1, probability 0, space 0, times 0
[  444.515704][T12691] CPU: 1 PID: 12691 Comm: syz-executor.2 Not tainted 5.14.0-rc1-syzkaller #0
[  444.532536][T12691] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  444.542497][ T9599] usb 5-1: Using ep0 maxpacket: 8
[  444.546891][T12691] Call Trace:
[  444.546909][T12691]  dump_stack_lvl+0xcd/0x134
[  444.546944][T12691]  should_fail.cold+0x5/0xa
19:01:15 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NET_DM_CMD_STOP(r0, &(0x7f00000001c0)={&(0x7f0000000040), 0xc, &(0x7f00000002c0)={&(0x7f0000000140)={0x14, 0x0, 0x0, 0x0, 0x0, {}, ["", "", "", ""]}, 0xff51}}, 0x0)

[  444.546995][T12691]  ? __do_sys_memfd_create+0xf7/0x5a0
19:01:15 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x4, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  444.547031][T12691]  should_failslab+0x5/0x10
[  444.547059][T12691]  __kmalloc+0x7e/0x4d0
[  444.547081][T12691]  ? strnlen_user+0x1df/0x2a0
[  444.547120][T12691]  __do_sys_memfd_create+0xf7/0x5a0
[  444.612085][T12691]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  444.621350][T12691]  ? syscall_enter_from_user_mode+0x21/0x70
[  444.631123][T12691]  do_syscall_64+0x35/0xb0
[  444.638434][T12691]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  444.647250][T12691] RIP: 0033:0x4665d9
[  444.653208][T12691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  444.684811][T12691] RSP: 002b:00007f93ef6fff48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  444.700774][T12691] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  444.713256][T12691] RDX: 00007f93ef700000 RSI: 0000000000000000 RDI: 00000000004bee66
[  444.724286][T12691] RBP: 0000000000000000 R08: 00007f93ef6ffff8 R09: ffffffffffffffff
[  444.734462][T12691] R10: 00007f93ef6ffffc R11: 0000000000000246 R12: 0000000020000100
[  444.747291][T12691] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
19:01:15 executing program 2 (fault-call:0 fault-nth:1):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  444.835049][ T9599] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  444.929001][T12698] qnx6: invalid mount options.
19:01:15 executing program 1:
syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[], {}, {{0x9, 0x5, 0x5, 0x2, 0x200}}}}}]}}]}}, 0x0)

[  444.998393][T12701] FAULT_INJECTION: forcing a failure.
[  444.998393][T12701] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  445.035064][ T9599] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  445.072871][ T9599] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  445.076547][T12701] CPU: 2 PID: 12701 Comm: syz-executor.2 Not tainted 5.14.0-rc1-syzkaller #0
[  445.113674][T12701] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  445.127808][T12701] Call Trace:
[  445.132990][T12701]  dump_stack_lvl+0xcd/0x134
[  445.140323][T12701]  should_fail.cold+0x5/0xa
[  445.147869][T12701]  _copy_from_user+0x2c/0x180
[  445.155396][T12701]  __do_sys_memfd_create+0x169/0x5a0
[  445.166341][T12701]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  445.179882][T12701]  ? syscall_enter_from_user_mode+0x21/0x70
[  445.190101][T12701]  do_syscall_64+0x35/0xb0
[  445.197744][T12701]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  445.207830][T12701] RIP: 0033:0x4665d9
[  445.214534][T12701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  445.250082][T12701] RSP: 002b:00007f93ef6fff48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  445.264556][T12701] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  445.264775][   T22] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  445.278298][T12701] RDX: 00007f93ef700000 RSI: 0000000000000000 RDI: 00000000004bee66
[  445.278330][T12701] RBP: 0000000000000000 R08: 00007f93ef6ffff8 R09: ffffffffffffffff
[  445.278354][T12701] R10: 00007f93ef6ffffc R11: 0000000000000246 R12: 0000000020000100
[  445.278374][T12701] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
[  445.317597][ T9599] usb 5-1: Product: syz
[  445.403951][ T9599] usb 5-1: Manufacturer: syz
[  445.410393][ T9599] usb 5-1: SerialNumber: syz
19:01:16 executing program 2 (fault-call:0 fault-nth:2):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  445.566290][ T9599] cdc_ether: probe of 5-1:1.0 failed with error -22
[  445.589389][T12709] FAULT_INJECTION: forcing a failure.
[  445.589389][T12709] name failslab, interval 1, probability 0, space 0, times 0
[  445.596442][   T22] usb 6-1: Using ep0 maxpacket: 8
[  445.609930][T12709] CPU: 3 PID: 12709 Comm: syz-executor.2 Not tainted 5.14.0-rc1-syzkaller #0
[  445.633562][T12709] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  445.649698][T12709] Call Trace:
[  445.655689][T12709]  dump_stack_lvl+0xcd/0x134
[  445.664011][T12709]  should_fail.cold+0x5/0xa
[  445.672183][T12709]  should_failslab+0x5/0x10
[  445.680297][T12709]  kmem_cache_alloc+0x58/0x540
[  445.688919][T12709]  ? shmem_destroy_inode+0x70/0x70
[  445.698186][T12709]  shmem_alloc_inode+0x18/0x40
[  445.708474][T12709]  ? shmem_destroy_inode+0x70/0x70
[  445.717718][T12709]  alloc_inode+0x61/0x230
[  445.725554][T12709]  new_inode+0x27/0x2f0
[  445.735263][T12709]  shmem_get_inode+0x195/0xc20
[  445.742517][T12709]  __shmem_file_setup+0xb8/0x310
[  445.751820][T12709]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  445.763113][T12709]  __do_sys_memfd_create+0x26b/0x5a0
[  445.772210][T12709]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  445.787290][T12709]  ? syscall_enter_from_user_mode+0x21/0x70
[  445.795553][T12709]  do_syscall_64+0x35/0xb0
[  445.801247][T12709]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  445.809001][T12709] RIP: 0033:0x4665d9
[  445.814370][T12709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  445.840966][T12709] RSP: 002b:00007f93ef6fff48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  445.852703][T12709] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  445.863505][T12709] RDX: 00007f93ef700000 RSI: 0000000000000000 RDI: 00000000004bee66
[  445.874341][T12709] RBP: 0000000000000000 R08: 00007f93ef6ffff8 R09: ffffffffffffffff
[  445.884868][T12709] R10: 00007f93ef6ffffc R11: 0000000000000246 R12: 0000000020000100
[  445.896565][T12709] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
[  446.068059][   T22] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  446.108642][   T73] usb 5-1: USB disconnect, device number 16
19:01:17 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x5, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:17 executing program 2 (fault-call:0 fault-nth:3):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  446.300630][   T22] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  446.327533][   T22] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  446.386798][   T22] usb 6-1: Product: syz
[  446.404832][   T22] usb 6-1: Manufacturer: syz
[  446.411858][   T22] usb 6-1: SerialNumber: syz
[  446.422657][T12718] qnx6: invalid mount options.
[  446.432773][T12720] FAULT_INJECTION: forcing a failure.
[  446.432773][T12720] name failslab, interval 1, probability 0, space 0, times 0
[  446.458586][T12720] CPU: 1 PID: 12720 Comm: syz-executor.2 Not tainted 5.14.0-rc1-syzkaller #0
[  446.473128][T12720] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  446.486609][T12720] Call Trace:
[  446.491063][T12720]  dump_stack_lvl+0xcd/0x134
[  446.497312][T12720]  should_fail.cold+0x5/0xa
[  446.505424][T12720]  should_failslab+0x5/0x10
[  446.512405][T12720]  kmem_cache_alloc+0x58/0x540
[  446.519635][T12720]  security_inode_alloc+0x34/0x160
[  446.528673][T12720]  inode_init_always+0x5d8/0xd60
[  446.539051][T12720]  alloc_inode+0x82/0x230
[  446.546507][T12720]  new_inode+0x27/0x2f0
[  446.552261][T12720]  shmem_get_inode+0x195/0xc20
[  446.557931][T12720]  __shmem_file_setup+0xb8/0x310
[  446.566565][T12720]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  446.575760][T12720]  __do_sys_memfd_create+0x26b/0x5a0
[  446.583541][T12720]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  446.596990][T12720]  ? syscall_enter_from_user_mode+0x21/0x70
[  446.608229][T12720]  do_syscall_64+0x35/0xb0
[  446.615616][T12720]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  446.624897][T12720] RIP: 0033:0x4665d9
[  446.632241][T12720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  446.667799][T12720] RSP: 002b:00007f93ef6fff48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  446.679747][T12720] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  446.690160][T12720] RDX: 00007f93ef700000 RSI: 0000000000000000 RDI: 00000000004bee66
[  446.700516][T12720] RBP: 0000000000000000 R08: 00007f93ef6ffff8 R09: ffffffffffffffff
[  446.711090][T12720] R10: 00007f93ef6ffffc R11: 0000000000000246 R12: 0000000020000100
[  446.721399][T12720] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
[  446.746201][   T22] cdc_ether: probe of 6-1:1.0 failed with error -22
[  446.760021][T12718] qnx6: invalid mount options.
[  446.962341][ T5009] usb 6-1: USB disconnect, device number 5
19:01:17 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x6, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:17 executing program 0:
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f0000000080)={0x0, 0x1115000, 0x1000}, 0x20)

19:01:17 executing program 2 (fault-call:0 fault-nth:4):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:18 executing program 0:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000280)=[{&(0x7f0000000040)=""/206, 0xce}], 0x3c0, 0x0, 0x0)

[  447.112488][T12737] FAULT_INJECTION: forcing a failure.
[  447.112488][T12737] name failslab, interval 1, probability 0, space 0, times 0
[  447.131622][T12737] CPU: 2 PID: 12737 Comm: syz-executor.2 Not tainted 5.14.0-rc1-syzkaller #0
[  447.137060][T12738] qnx6: invalid mount options.
[  447.143041][T12737] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  447.143054][T12737] Call Trace:
[  447.143061][T12737]  dump_stack_lvl+0xcd/0x134
[  447.172150][T12737]  should_fail.cold+0x5/0xa
[  447.180922][T12737]  should_failslab+0x5/0x10
[  447.190936][T12737]  kmem_cache_alloc+0x58/0x540
[  447.197747][T12737]  ? lockdep_hardirqs_on+0x79/0x100
[  447.205022][T12737]  __d_alloc+0x2a/0x950
[  447.210753][T12737]  d_alloc_pseudo+0x19/0x70
[  447.217339][T12737]  alloc_file_pseudo+0xc6/0x250
[  447.224285][T12737]  ? alloc_file+0x590/0x590
[  447.230458][T12737]  ? __sanitizer_cov_trace_const_cmp2+0x22/0x80
[  447.238597][T12737]  ? shmem_get_inode+0x59a/0xc20
[  447.245466][T12737]  __shmem_file_setup+0x144/0x310
[  447.252337][T12737]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  447.260837][T12737]  __do_sys_memfd_create+0x26b/0x5a0
[  447.268801][T12737]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  447.280630][T12737]  ? syscall_enter_from_user_mode+0x21/0x70
[  447.289088][T12737]  do_syscall_64+0x35/0xb0
[  447.293851][T12737]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  447.302174][T12737] RIP: 0033:0x4665d9
[  447.306478][T12737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  447.333209][T12737] RSP: 002b:00007f93ef6fff48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  447.342229][T12737] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  447.352057][T12737] RDX: 00007f93ef700000 RSI: 0000000000000000 RDI: 00000000004bee66
[  447.361983][T12737] RBP: 0000000000000000 R08: 00007f93ef6ffff8 R09: ffffffffffffffff
[  447.371782][T12737] R10: 00007f93ef6ffffc R11: 0000000000000246 R12: 0000000020000100
[  447.381570][T12737] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
[  447.453897][T12738] qnx6: invalid mount options.
[  447.784635][ T5009] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  448.054603][ T5009] usb 6-1: Using ep0 maxpacket: 8
[  448.124760][ T5009] usb 6-1: device descriptor read/all, error -71
19:01:19 executing program 0:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000280)=[{&(0x7f0000000040)=""/206, 0xce}], 0x3c0, 0x0, 0x0)

19:01:19 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x7, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:19 executing program 2 (fault-call:0 fault-nth:5):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:19 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_ifreq(r0, 0x891a, &(0x7f0000000000)={'ip6_vti0\x00', @ifru_flags})

[  448.268271][T12754] FAULT_INJECTION: forcing a failure.
[  448.268271][T12754] name failslab, interval 1, probability 0, space 0, times 0
[  448.296134][T12754] CPU: 3 PID: 12754 Comm: syz-executor.2 Not tainted 5.14.0-rc1-syzkaller #0
[  448.299735][T12753] qnx6: invalid mount options.
[  448.309647][T12754] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  448.309669][T12754] Call Trace:
[  448.309680][T12754]  dump_stack_lvl+0xcd/0x134
[  448.309712][T12754]  should_fail.cold+0x5/0xa
[  448.309745][T12754]  should_failslab+0x5/0x10
[  448.309772][T12754]  kmem_cache_alloc+0x58/0x540
[  448.309795][T12754]  ? d_instantiate+0x75/0x90
[  448.309824][T12754]  __alloc_file+0x21/0x280
[  448.309851][T12754]  alloc_empty_file+0x6d/0x170
[  448.309876][T12754]  alloc_file+0x59/0x590
[  448.309904][T12754]  alloc_file_pseudo+0x165/0x250
[  448.387118][T12754]  ? alloc_file+0x590/0x590
[  448.392563][T12754]  ? __sanitizer_cov_trace_const_cmp2+0x22/0x80
[  448.399470][T12754]  ? shmem_get_inode+0x59a/0xc20
[  448.407048][T12754]  __shmem_file_setup+0x144/0x310
[  448.413452][T12754]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  448.423961][T12754]  __do_sys_memfd_create+0x26b/0x5a0
[  448.432338][T12754]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  448.440644][T12754]  ? syscall_enter_from_user_mode+0x21/0x70
[  448.448792][T12754]  do_syscall_64+0x35/0xb0
[  448.454440][T12754]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  448.461235][T12754] RIP: 0033:0x4665d9
[  448.466749][T12754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  448.490410][T12754] RSP: 002b:00007f93ef6fff48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  448.502654][T12754] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  448.513465][T12754] RDX: 00007f93ef700000 RSI: 0000000000000000 RDI: 00000000004bee66
[  448.523060][T12754] RBP: 0000000000000000 R08: 00007f93ef6ffff8 R09: ffffffffffffffff
[  448.532760][T12754] R10: 00007f93ef6ffffc R11: 0000000000000246 R12: 0000000020000100
[  448.543355][T12754] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
19:01:19 executing program 0:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000280)=[{&(0x7f0000000040)=""/206, 0xce}], 0x3c0, 0x0, 0x0)

19:01:19 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_LBT_MODE(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={0x0}, 0x6}, 0x0)

19:01:19 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x8, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:19 executing program 2 (fault-call:0 fault-nth:6):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  448.996089][T12767] FAULT_INJECTION: forcing a failure.
19:01:19 executing program 0:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000280)=[{&(0x7f0000000040)=""/206, 0xce}], 0x3c0, 0x0, 0x0)

[  448.996089][T12767] name failslab, interval 1, probability 0, space 0, times 0
[  449.009774][T12766] qnx6: invalid mount options.
[  449.047505][T12767] CPU: 1 PID: 12767 Comm: syz-executor.2 Not tainted 5.14.0-rc1-syzkaller #0
[  449.062740][T12767] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  449.079308][T12767] Call Trace:
[  449.083858][T12767]  dump_stack_lvl+0xcd/0x134
[  449.091605][T12767]  should_fail.cold+0x5/0xa
[  449.097243][T12767]  should_failslab+0x5/0x10
[  449.103017][T12767]  kmem_cache_alloc+0x58/0x540
[  449.108584][T12767]  security_file_alloc+0x34/0x170
[  449.117464][T12767]  __alloc_file+0xd8/0x280
[  449.124539][T12767]  alloc_empty_file+0x6d/0x170
[  449.131235][T12767]  alloc_file+0x59/0x590
[  449.136595][T12767]  alloc_file_pseudo+0x165/0x250
[  449.143212][T12767]  ? alloc_file+0x590/0x590
[  449.149395][T12767]  ? __sanitizer_cov_trace_const_cmp2+0x22/0x80
[  449.157907][T12767]  ? shmem_get_inode+0x59a/0xc20
[  449.165399][T12767]  __shmem_file_setup+0x144/0x310
[  449.172614][T12767]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  449.181328][T12767]  __do_sys_memfd_create+0x26b/0x5a0
[  449.190008][T12767]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  449.199076][T12767]  ? syscall_enter_from_user_mode+0x21/0x70
[  449.209314][T12767]  do_syscall_64+0x35/0xb0
[  449.216662][T12767]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  449.227068][T12767] RIP: 0033:0x4665d9
[  449.238781][T12767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  449.270667][T12767] RSP: 002b:00007f93ef6fff48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  449.283283][T12767] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  449.294401][T12767] RDX: 00007f93ef700000 RSI: 0000000000000000 RDI: 00000000004bee66
[  449.303202][T12767] RBP: 0000000000000000 R08: 00007f93ef6ffff8 R09: ffffffffffffffff
[  449.312018][T12767] R10: 00007f93ef6ffffc R11: 0000000000000246 R12: 0000000020000100
[  449.322290][T12767] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
19:01:20 executing program 1:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f000000d5c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f00000001c0))
clock_gettime(0x0, &(0x7f0000000140))

[  449.426638][T12766] qnx6: invalid mount options.
19:01:20 executing program 2 (fault-call:0 fault-nth:7):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:20 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x9, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:20 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="8d040000", @ANYRES16=r1, @ANYBLOB="010028bd7000fcdbdf25880000000c001a01"], 0x4b0}}, 0x0)

[  449.599811][T12778] FAULT_INJECTION: forcing a failure.
[  449.599811][T12778] name failslab, interval 1, probability 0, space 0, times 0
[  449.620886][T12778] CPU: 1 PID: 12778 Comm: syz-executor.2 Not tainted 5.14.0-rc1-syzkaller #0
[  449.633093][T12778] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  449.645494][T12778] Call Trace:
[  449.650772][T12778]  dump_stack_lvl+0xcd/0x134
[  449.656997][T12778]  should_fail.cold+0x5/0xa
[  449.676220][T12778]  ? tomoyo_realpath_from_path+0xc3/0x620
[  449.683461][T12778]  should_failslab+0x5/0x10
[  449.688950][T12778]  __kmalloc+0x7e/0x4d0
[  449.694326][T12778]  tomoyo_realpath_from_path+0xc3/0x620
[  449.700377][T12778]  ? tomoyo_profile+0x42/0x50
[  449.705686][T12778]  tomoyo_path_perm+0x21b/0x400
[  449.710812][T12778]  ? tomoyo_path_perm+0x1c1/0x400
[  449.716610][T12778]  ? tomoyo_check_open_permission+0x380/0x380
[  449.724451][T12778]  ? find_held_lock+0x2d/0x110
[  449.730614][T12778]  security_path_truncate+0xcf/0x140
[  449.737681][T12778]  do_sys_ftruncate+0x4d8/0x8e0
[  449.745573][T12778]  do_syscall_64+0x35/0xb0
[  449.752560][T12778]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  449.760659][T12778] RIP: 0033:0x466597
[  449.766000][T12778] Code: 48 89 e7 e8 cb e5 ff ff 48 8b 4c 24 18 64 48 2b 0c 25 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 1a 00 00 90 b8 4d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8
[  449.792168][T12778] RSP: 002b:00007f93ef6fff48 EFLAGS: 00000217 ORIG_RAX: 000000000000004d
[  449.801880][T12778] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 0000000000466597
[  449.810877][T12778] RDX: 00007f93ef700000 RSI: 0000000000000000 RDI: 0000000000000004
[  449.819645][T12778] RBP: 0000000000000000 R08: 00007f93ef6ffff8 R09: ffffffffffffffff
[  449.829037][T12778] R10: 00007f93ef6ffffc R11: 0000000000000217 R12: 0000000000000004
[  449.839986][T12778] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000020000480
[  449.868432][T12778] ERROR: Out of memory at tomoyo_realpath_from_path.
[  449.906404][T12778] qnx6: invalid mount options.
[  449.923145][T12783] netlink: 'syz-executor.1': attribute type 282 has an invalid length.
[  449.943568][T12786] netlink: 'syz-executor.1': attribute type 282 has an invalid length.
[  449.999448][T12784] qnx6: invalid mount options.
19:01:21 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0xf)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, 0x3, 0x8, 0x101}, 0xe80}}, 0x0)

19:01:21 executing program 0:
timerfd_create(0x0, 0x800)
ioctl$RFKILL_IOCTL_NOINPUT(0xffffffffffffffff, 0x5201)
r0 = timerfd_create(0x8, 0x0)
clock_gettime(0x0, &(0x7f0000000140)={<r1=>0x0})
timerfd_settime(r0, 0x0, &(0x7f0000000180)={{0x77359400}, {r1}}, 0x0)

19:01:21 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0xa, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:21 executing program 2 (fault-call:0 fault-nth:8):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  450.632622][T12799] FAULT_INJECTION: forcing a failure.
[  450.632622][T12799] name failslab, interval 1, probability 0, space 0, times 0
[  450.651522][T12796] qnx6: invalid mount options.
[  450.659505][T12799] CPU: 1 PID: 12799 Comm: syz-executor.2 Not tainted 5.14.0-rc1-syzkaller #0
[  450.673646][T12799] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  450.685728][T12799] Call Trace:
[  450.689962][T12799]  dump_stack_lvl+0xcd/0x134
[  450.695882][T12799]  should_fail.cold+0x5/0xa
[  450.701639][T12799]  ? tomoyo_encode2.part.0+0xe9/0x3a0
[  450.708838][T12799]  should_failslab+0x5/0x10
[  450.714760][T12799]  __kmalloc+0x7e/0x4d0
[  450.720607][T12799]  ? tomoyo_realpath_from_path+0xc3/0x620
[  450.728945][T12799]  tomoyo_encode2.part.0+0xe9/0x3a0
[  450.736463][T12799]  tomoyo_encode+0x28/0x50
[  450.743050][T12799]  tomoyo_realpath_from_path+0x186/0x620
[  450.753632][T12799]  ? tomoyo_profile+0x42/0x50
[  450.760647][T12799]  tomoyo_path_perm+0x21b/0x400
[  450.767912][T12799]  ? tomoyo_path_perm+0x1c1/0x400
[  450.775378][T12799]  ? tomoyo_check_open_permission+0x380/0x380
[  450.783549][T12799]  ? find_held_lock+0x2d/0x110
[  450.791669][T12799]  security_path_truncate+0xcf/0x140
[  450.799879][T12799]  do_sys_ftruncate+0x4d8/0x8e0
[  450.805969][T12799]  do_syscall_64+0x35/0xb0
[  450.811432][T12799]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  450.818794][T12799] RIP: 0033:0x466597
[  450.823494][T12799] Code: 48 89 e7 e8 cb e5 ff ff 48 8b 4c 24 18 64 48 2b 0c 25 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 1a 00 00 90 b8 4d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8
[  450.848189][T12799] RSP: 002b:00007f93ef6fff48 EFLAGS: 00000217 ORIG_RAX: 000000000000004d
[  450.858673][T12799] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 0000000000466597
[  450.869106][T12799] RDX: 00007f93ef700000 RSI: 0000000000000000 RDI: 0000000000000004
[  450.880814][T12799] RBP: 0000000000000000 R08: 00007f93ef6ffff8 R09: ffffffffffffffff
[  450.892799][T12799] R10: 00007f93ef6ffffc R11: 0000000000000217 R12: 0000000000000004
[  450.904140][T12799] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000020000480
[  450.931155][T12799] ERROR: Out of memory at tomoyo_realpath_from_path.
[  450.952475][T12799] qnx6: invalid mount options.
[  451.178364][T12796] qnx6: invalid mount options.
19:01:22 executing program 0 (fault-call:0 fault-nth:0):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:22 executing program 2 (fault-call:0 fault-nth:9):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:22 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0xb, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  451.602618][T12812] FAULT_INJECTION: forcing a failure.
[  451.602618][T12812] name failslab, interval 1, probability 0, space 0, times 0
[  451.602796][T12811] FAULT_INJECTION: forcing a failure.
[  451.602796][T12811] name failslab, interval 1, probability 0, space 0, times 0
[  451.605692][T12810] qnx6: invalid mount options.
[  451.644674][T12812] CPU: 1 PID: 12812 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  451.678098][T12812] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  451.701665][T12812] Call Trace:
[  451.706599][T12812]  dump_stack_lvl+0xcd/0x134
[  451.713592][T12812]  should_fail.cold+0x5/0xa
[  451.719680][T12812]  ? __do_sys_memfd_create+0xf7/0x5a0
[  451.726910][T12812]  should_failslab+0x5/0x10
[  451.732525][T12812]  __kmalloc+0x7e/0x4d0
[  451.737511][T12812]  ? strnlen_user+0x1df/0x2a0
[  451.744067][T12812]  __do_sys_memfd_create+0xf7/0x5a0
[  451.751495][T12812]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  451.759014][T12812]  ? syscall_enter_from_user_mode+0x21/0x70
[  451.766868][T12812]  do_syscall_64+0x35/0xb0
[  451.771996][T12812]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  451.779265][T12812] RIP: 0033:0x4665d9
[  451.786616][T12812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  451.811339][T12812] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  451.821561][T12812] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  451.832809][T12812] RDX: 00007f7d4ceaa000 RSI: 0000000000000000 RDI: 00000000004bee66
[  451.841686][T12812] RBP: 0000000000000000 R08: 00007f7d4cea9ff8 R09: ffffffffffffffff
[  451.851401][T12812] R10: 00007f7d4cea9ffc R11: 0000000000000246 R12: 0000000020000100
[  451.861693][T12812] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
[  451.877475][T12811] CPU: 3 PID: 12811 Comm: syz-executor.2 Not tainted 5.14.0-rc1-syzkaller #0
[  451.886942][T12811] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  451.896409][T12811] Call Trace:
[  451.899961][T12811]  dump_stack_lvl+0xcd/0x134
[  451.905009][T12811]  should_fail.cold+0x5/0xa
[  451.909975][T12811]  should_failslab+0x5/0x10
[  451.915207][T12811]  kmem_cache_alloc+0x58/0x540
[  451.920359][T12811]  getname_flags.part.0+0x50/0x4f0
[  451.925818][T12811]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  451.932406][T12811]  getname+0x8e/0xd0
[  451.936957][T12811]  do_sys_openat2+0xf5/0x420
[  451.942116][T12811]  ? build_open_flags+0x6f0/0x6f0
[  451.947430][T12811]  ? __context_tracking_exit+0xb8/0xe0
[  451.953204][T12811]  ? lock_downgrade+0x6e0/0x6e0
[  451.958430][T12811]  __x64_sys_openat+0x13f/0x1f0
[  451.963500][T12811]  ? __ia32_sys_open+0x1c0/0x1c0
[  451.968889][T12811]  ? syscall_enter_from_user_mode+0x21/0x70
[  451.975315][T12811]  do_syscall_64+0x35/0xb0
[  451.980082][T12811]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  451.986787][T12811] RIP: 0033:0x4196c4
[  451.991421][T12811] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  452.013814][T12811] RSP: 002b:00007f93ef6ffed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  452.022914][T12811] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196c4
[  452.031879][T12811] RDX: 0000000000000002 RSI: 00007f93ef700000 RDI: 00000000ffffff9c
[  452.040430][T12811] RBP: 00007f93ef700000 R08: 0000000000000000 R09: ffffffffffffffff
[  452.049030][T12811] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  452.057315][T12811] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  452.156219][T12810] qnx6: invalid mount options.
19:01:23 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0xf)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, 0x3, 0x8, 0x101}, 0xe80}}, 0x0)

19:01:23 executing program 2 (fault-call:0 fault-nth:10):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:23 executing program 0 (fault-call:0 fault-nth:1):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:23 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0xc, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  452.340879][T12823] FAULT_INJECTION: forcing a failure.
[  452.340879][T12823] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  452.365611][T12822] FAULT_INJECTION: forcing a failure.
[  452.365611][T12822] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  452.388780][T12823] CPU: 3 PID: 12823 Comm: syz-executor.2 Not tainted 5.14.0-rc1-syzkaller #0
[  452.401181][T12826] qnx6: invalid mount options.
[  452.402233][T12823] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  452.420271][T12823] Call Trace:
[  452.423993][T12823]  dump_stack_lvl+0xcd/0x134
[  452.429400][T12823]  should_fail.cold+0x5/0xa
[  452.434771][T12823]  prepare_alloc_pages+0x17b/0x580
[  452.442574][T12823]  __alloc_pages+0x12f/0x500
[  452.450970][T12823]  ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0
[  452.464012][T12823]  ? mark_held_locks+0x9f/0xe0
[  452.473063][T12823]  cache_grow_begin+0x75/0x460
[  452.482752][T12823]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  452.495484][T12823]  fallback_alloc+0x1e4/0x2e0
[  452.504156][T12823]  ? tomoyo_realpath_from_path+0xc3/0x620
[  452.515275][T12823]  __kmalloc+0x367/0x4d0
[  452.523328][T12823]  tomoyo_realpath_from_path+0xc3/0x620
[  452.534490][T12823]  ? tomoyo_profile+0x42/0x50
[  452.542996][T12823]  tomoyo_path_perm+0x21b/0x400
[  452.548439][T12823]  ? tomoyo_path_perm+0x1c1/0x400
[  452.553957][T12823]  ? tomoyo_check_open_permission+0x380/0x380
[  452.560355][T12823]  ? find_held_lock+0x2d/0x110
[  452.565509][T12823]  security_path_truncate+0xcf/0x140
[  452.571124][T12823]  do_sys_ftruncate+0x4d8/0x8e0
[  452.577277][T12823]  do_syscall_64+0x35/0xb0
[  452.582665][T12823]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  452.589426][T12823] RIP: 0033:0x466597
[  452.594219][T12823] Code: 48 89 e7 e8 cb e5 ff ff 48 8b 4c 24 18 64 48 2b 0c 25 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 1a 00 00 90 b8 4d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8
[  452.621900][T12823] RSP: 002b:00007f93ef6fff48 EFLAGS: 00000217 ORIG_RAX: 000000000000004d
[  452.631913][T12823] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 0000000000466597
[  452.641817][T12823] RDX: 00007f93ef700000 RSI: 0000000000000000 RDI: 0000000000000004
[  452.650081][T12823] RBP: 0000000000000000 R08: 00007f93ef6ffff8 R09: ffffffffffffffff
[  452.658370][T12823] R10: 00007f93ef6ffffc R11: 0000000000000217 R12: 0000000000000004
[  452.667897][T12823] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000020000480
[  452.685311][T12822] CPU: 1 PID: 12822 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  452.698313][T12822] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  452.719506][T12822] Call Trace:
[  452.725603][T12822]  dump_stack_lvl+0xcd/0x134
[  452.734546][T12822]  should_fail.cold+0x5/0xa
[  452.740254][T12822]  _copy_from_user+0x2c/0x180
[  452.750671][T12822]  __do_sys_memfd_create+0x169/0x5a0
[  452.752007][T12823] ERROR: Out of memory at tomoyo_realpath_from_path.
[  452.760579][T12822]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  452.760635][T12822]  ? syscall_enter_from_user_mode+0x21/0x70
[  452.760679][T12822]  do_syscall_64+0x35/0xb0
[  452.760713][T12822]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  452.760750][T12822] RIP: 0033:0x4665d9
[  452.760778][T12822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  452.760808][T12822] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  452.760873][T12822] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  452.872041][T12823] qnx6: invalid mount options.
[  452.879469][T12822] RDX: 00007f7d4ceaa000 RSI: 0000000000000000 RDI: 00000000004bee66
[  452.879487][T12822] RBP: 0000000000000000 R08: 00007f7d4cea9ff8 R09: ffffffffffffffff
[  452.879497][T12822] R10: 00007f7d4cea9ffc R11: 0000000000000246 R12: 0000000020000100
[  452.879507][T12822] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
[  452.990317][T12826] qnx6: invalid mount options.
19:01:24 executing program 2 (fault-call:0 fault-nth:11):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:24 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0xf)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, 0x3, 0x8, 0x101}, 0xe80}}, 0x0)

19:01:24 executing program 0 (fault-call:0 fault-nth:2):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  453.286638][T12835] FAULT_INJECTION: forcing a failure.
[  453.286638][T12835] name failslab, interval 1, probability 0, space 0, times 0
19:01:24 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0xd, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  453.347475][T12838] FAULT_INJECTION: forcing a failure.
[  453.347475][T12838] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  453.348810][T12835] CPU: 1 PID: 12835 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  453.381770][T12835] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  453.397308][T12835] Call Trace:
[  453.401776][T12835]  dump_stack_lvl+0xcd/0x134
[  453.408627][T12835]  should_fail.cold+0x5/0xa
[  453.413987][T12835]  should_failslab+0x5/0x10
[  453.419177][T12835]  kmem_cache_alloc+0x58/0x540
[  453.424618][T12835]  ? shmem_destroy_inode+0x70/0x70
[  453.430201][T12835]  shmem_alloc_inode+0x18/0x40
[  453.435350][T12835]  ? shmem_destroy_inode+0x70/0x70
[  453.441093][T12835]  alloc_inode+0x61/0x230
[  453.445976][T12835]  new_inode+0x27/0x2f0
[  453.450405][T12835]  shmem_get_inode+0x195/0xc20
[  453.455454][T12835]  __shmem_file_setup+0xb8/0x310
[  453.461267][T12835]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  453.468988][T12835]  __do_sys_memfd_create+0x26b/0x5a0
[  453.475770][T12835]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  453.483292][T12835]  ? syscall_enter_from_user_mode+0x21/0x70
[  453.492051][T12835]  do_syscall_64+0x35/0xb0
[  453.498258][T12835]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  453.506880][T12835] RIP: 0033:0x4665d9
[  453.512608][T12835] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  453.544638][T12835] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  453.555797][T12835] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  453.566634][T12835] RDX: 00007f7d4ceaa000 RSI: 0000000000000000 RDI: 00000000004bee66
[  453.576823][T12835] RBP: 0000000000000000 R08: 00007f7d4cea9ff8 R09: ffffffffffffffff
[  453.587568][T12835] R10: 00007f7d4cea9ffc R11: 0000000000000246 R12: 0000000020000100
[  453.597443][T12835] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
[  453.607250][T12838] CPU: 2 PID: 12838 Comm: syz-executor.2 Not tainted 5.14.0-rc1-syzkaller #0
[  453.618903][T12838] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  453.632899][T12838] Call Trace:
[  453.638538][T12838]  dump_stack_lvl+0xcd/0x134
[  453.645598][T12838]  should_fail.cold+0x5/0xa
[  453.652494][T12838]  prepare_alloc_pages+0x17b/0x580
[  453.659541][T12838]  __alloc_pages+0x12f/0x500
[  453.666294][T12838]  ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0
[  453.674687][T12838]  ? find_held_lock+0x2d/0x110
[  453.680573][T12838]  cache_grow_begin+0x75/0x460
[  453.686454][T12838]  ? cache_alloc_pfmemalloc+0x1e/0x140
[  453.693128][T12838]  cache_alloc_refill+0x27f/0x380
[  453.700393][T12838]  kmem_cache_alloc+0x454/0x540
[  453.707358][T12838]  getname_flags.part.0+0x50/0x4f0
[  453.715769][T12838]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  453.725312][T12838]  getname+0x8e/0xd0
[  453.730526][T12838]  do_sys_openat2+0xf5/0x420
[  453.736352][T12838]  ? build_open_flags+0x6f0/0x6f0
[  453.742813][T12838]  ? __context_tracking_exit+0xb8/0xe0
[  453.750067][T12838]  ? lock_downgrade+0x6e0/0x6e0
[  453.756243][T12838]  __x64_sys_openat+0x13f/0x1f0
[  453.762704][T12838]  ? __ia32_sys_open+0x1c0/0x1c0
[  453.769099][T12838]  ? syscall_enter_from_user_mode+0x21/0x70
[  453.776881][T12838]  do_syscall_64+0x35/0xb0
[  453.782821][T12838]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  453.790743][T12838] RIP: 0033:0x4196c4
[  453.795804][T12838] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  453.824789][T12838] RSP: 002b:00007f93ef6ffed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  453.836512][T12838] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196c4
[  453.847637][T12838] RDX: 0000000000000002 RSI: 00007f93ef700000 RDI: 00000000ffffff9c
[  453.859003][T12838] RBP: 00007f93ef700000 R08: 0000000000000000 R09: ffffffffffffffff
[  453.871170][T12838] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  453.883081][T12838] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  453.895589][T12841] qnx6: invalid mount options.
[  453.988360][T12841] qnx6: invalid mount options.
[  454.026403][T12838] qnx6: invalid mount options.
19:01:24 executing program 0 (fault-call:0 fault-nth:3):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:25 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0xf)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, 0x3, 0x8, 0x101}, 0xe80}}, 0x0)

[  454.125743][T12851] FAULT_INJECTION: forcing a failure.
[  454.125743][T12851] name failslab, interval 1, probability 0, space 0, times 0
19:01:25 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0xe, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:25 executing program 2 (fault-call:0 fault-nth:12):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  454.210591][T12851] CPU: 0 PID: 12851 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  454.228930][T12851] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  454.245285][T12851] Call Trace:
[  454.250744][T12851]  dump_stack_lvl+0xcd/0x134
[  454.255856][T12851]  should_fail.cold+0x5/0xa
[  454.260769][T12851]  should_failslab+0x5/0x10
[  454.264646][T12856] qnx6: invalid mount options.
[  454.266824][T12851]  kmem_cache_alloc+0x58/0x540
[  454.266859][T12851]  security_inode_alloc+0x34/0x160
[  454.266887][T12851]  inode_init_always+0x5d8/0xd60
[  454.266919][T12851]  alloc_inode+0x82/0x230
[  454.266957][T12851]  new_inode+0x27/0x2f0
[  454.266979][T12851]  shmem_get_inode+0x195/0xc20
[  454.267011][T12851]  __shmem_file_setup+0xb8/0x310
[  454.267034][T12851]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  454.267061][T12851]  __do_sys_memfd_create+0x26b/0x5a0
[  454.267091][T12851]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  454.267121][T12851]  ? syscall_enter_from_user_mode+0x21/0x70
[  454.267153][T12851]  do_syscall_64+0x35/0xb0
[  454.267178][T12851]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  454.267205][T12851] RIP: 0033:0x4665d9
[  454.267224][T12851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  454.267252][T12851] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
19:01:25 executing program 0 (fault-call:0 fault-nth:4):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  454.267280][T12851] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  454.267299][T12851] RDX: 00007f7d4ceaa000 RSI: 0000000000000000 RDI: 00000000004bee66
[  454.267316][T12851] RBP: 0000000000000000 R08: 00007f7d4cea9ff8 R09: ffffffffffffffff
[  454.267347][T12851] R10: 00007f7d4cea9ffc R11: 0000000000000246 R12: 0000000020000100
[  454.267364][T12851] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
[  454.331707][T12859] FAULT_INJECTION: forcing a failure.
19:01:25 executing program 1:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x1, &(0x7f00000002c0)=@raw=[@call], &(0x7f0000000300)='GPL\x00', 0x0, 0x2, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

[  454.331707][T12859] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  454.517810][T12859] CPU: 0 PID: 12859 Comm: syz-executor.2 Not tainted 5.14.0-rc1-syzkaller #0
[  454.529699][T12856] qnx6: invalid mount options.
[  454.531983][T12859] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  454.531997][T12859] Call Trace:
[  454.532006][T12859]  dump_stack_lvl+0xcd/0x134
[  454.561868][T12859]  should_fail.cold+0x5/0xa
[  454.571094][T12859]  prepare_alloc_pages+0x17b/0x580
[  454.577781][T12859]  __alloc_pages+0x12f/0x500
[  454.584597][T12859]  ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0
[  454.593973][T12859]  ? find_held_lock+0x2d/0x110
[  454.601597][T12859]  cache_grow_begin+0x75/0x460
[  454.608790][T12859]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  454.619605][T12859]  fallback_alloc+0x1e4/0x2e0
[  454.626382][T12859]  kmem_cache_alloc+0x388/0x540
[  454.632970][T12859]  getname_flags.part.0+0x50/0x4f0
[  454.640465][T12859]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  454.647855][T12859]  getname+0x8e/0xd0
[  454.652680][T12859]  do_sys_openat2+0xf5/0x420
[  454.658231][T12859]  ? build_open_flags+0x6f0/0x6f0
[  454.664242][T12859]  ? __context_tracking_exit+0xb8/0xe0
[  454.670911][T12859]  ? lock_downgrade+0x6e0/0x6e0
[  454.676234][T12859]  __x64_sys_openat+0x13f/0x1f0
[  454.682448][T12859]  ? __ia32_sys_open+0x1c0/0x1c0
[  454.688104][T12859]  ? syscall_enter_from_user_mode+0x21/0x70
[  454.695017][T12859]  do_syscall_64+0x35/0xb0
[  454.700528][T12859]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  454.707942][T12859] RIP: 0033:0x4196c4
[  454.713787][T12859] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  454.740160][T12859] RSP: 002b:00007f93ef6ffed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  454.753026][T12859] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196c4
19:01:25 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0xfffffffb, 0x0, 0x1}, 0x40)

[  454.764965][T12859] RDX: 0000000000000002 RSI: 00007f93ef700000 RDI: 00000000ffffff9c
[  454.774520][T12859] RBP: 00007f93ef700000 R08: 0000000000000000 R09: ffffffffffffffff
[  454.788009][T12859] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
19:01:25 executing program 1:
r0 = socket$unix(0x1, 0x1, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
sendmmsg$unix(r0, &(0x7f0000000400)=[{0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[@rights={{0x10}}, @cred={{0x1c, 0x2, 0x2, {0x0, 0xee01}}}], 0x30}], 0x1, 0x0)

[  454.798324][T12859] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  454.812369][T12866] FAULT_INJECTION: forcing a failure.
[  454.812369][T12866] name failslab, interval 1, probability 0, space 0, times 0
[  454.833435][T12866] CPU: 0 PID: 12866 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  454.842947][T12866] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  454.853859][T12866] Call Trace:
[  454.857452][T12866]  dump_stack_lvl+0xcd/0x134
[  454.863249][T12866]  should_fail.cold+0x5/0xa
[  454.875426][T12866]  should_failslab+0x5/0x10
[  454.880262][T12866]  kmem_cache_alloc+0x58/0x540
[  454.888821][T12866]  ? lockdep_hardirqs_on+0x79/0x100
[  454.894384][T12866]  __d_alloc+0x2a/0x950
[  454.901660][T12866]  d_alloc_pseudo+0x19/0x70
[  454.911171][T12866]  alloc_file_pseudo+0xc6/0x250
[  454.917225][T12866]  ? alloc_file+0x590/0x590
[  454.922717][T12866]  ? __sanitizer_cov_trace_const_cmp2+0x22/0x80
[  454.931484][T12866]  ? shmem_get_inode+0x59a/0xc20
[  454.937278][T12866]  __shmem_file_setup+0x144/0x310
[  454.943833][T12866]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  454.952818][T12866]  __do_sys_memfd_create+0x26b/0x5a0
[  454.959422][T12866]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  454.965838][T12866]  ? syscall_enter_from_user_mode+0x21/0x70
[  454.972984][T12866]  do_syscall_64+0x35/0xb0
[  454.978073][T12866]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  454.984548][T12866] RIP: 0033:0x4665d9
[  454.988817][T12866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  455.011969][T12866] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  455.022046][T12866] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  455.032271][T12866] RDX: 00007f7d4ceaa000 RSI: 0000000000000000 RDI: 00000000004bee66
[  455.044036][T12866] RBP: 0000000000000000 R08: 00007f7d4cea9ff8 R09: ffffffffffffffff
[  455.054904][T12866] R10: 00007f7d4cea9ffc R11: 0000000000000246 R12: 0000000020000100
[  455.065080][T12866] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
19:01:26 executing program 1:
syz_genetlink_get_family_id$fou(&(0x7f0000001900), 0xffffffffffffffff)

19:01:26 executing program 0 (fault-call:0 fault-nth:5):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:26 executing program 2 (fault-call:0 fault-nth:13):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:26 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0xf, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  455.177738][T12882] FAULT_INJECTION: forcing a failure.
[  455.177738][T12882] name failslab, interval 1, probability 0, space 0, times 0
[  455.179588][T12883] qnx6: invalid mount options.
19:01:26 executing program 1:
socketpair(0x1e, 0x5, 0x0, &(0x7f0000000680)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$nfc_llcp(r0, &(0x7f0000000640)={&(0x7f0000000040)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "58172ce467758f80cb6d3a35a4fd4b3168ad513e3cb2566f4e264eebfa7bb336c4284008c20683d72beba8ac6da9f9fc356c83ea67f1b7f2bf14fb193a2e29"}, 0x60, 0x0}, 0x0)

[  455.196366][T12885] FAULT_INJECTION: forcing a failure.
[  455.196366][T12885] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  455.210467][T12882] CPU: 1 PID: 12882 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  455.231785][T12882] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  455.245076][T12882] Call Trace:
[  455.249255][T12882]  dump_stack_lvl+0xcd/0x134
[  455.255327][T12882]  should_fail.cold+0x5/0xa
[  455.261175][T12882]  should_failslab+0x5/0x10
[  455.267878][T12882]  kmem_cache_alloc+0x58/0x540
[  455.274706][T12882]  ? d_instantiate+0x75/0x90
[  455.280980][T12882]  __alloc_file+0x21/0x280
[  455.286873][T12882]  alloc_empty_file+0x6d/0x170
[  455.293167][T12882]  alloc_file+0x59/0x590
[  455.298637][T12882]  alloc_file_pseudo+0x165/0x250
[  455.304931][T12882]  ? alloc_file+0x590/0x590
[  455.311167][T12882]  ? __sanitizer_cov_trace_const_cmp2+0x22/0x80
[  455.319595][T12882]  ? shmem_get_inode+0x59a/0xc20
[  455.326326][T12882]  __shmem_file_setup+0x144/0x310
[  455.332957][T12882]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  455.341467][T12882]  __do_sys_memfd_create+0x26b/0x5a0
[  455.348082][T12882]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  455.355576][T12882]  ? syscall_enter_from_user_mode+0x21/0x70
[  455.363076][T12882]  do_syscall_64+0x35/0xb0
[  455.368194][T12882]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  455.374895][T12882] RIP: 0033:0x4665d9
[  455.379016][T12882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  455.401469][T12882] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  455.410457][T12882] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  455.419766][T12882] RDX: 00007f7d4ceaa000 RSI: 0000000000000000 RDI: 00000000004bee66
[  455.428505][T12882] RBP: 0000000000000000 R08: 00007f7d4cea9ff8 R09: ffffffffffffffff
[  455.438756][T12882] R10: 00007f7d4cea9ffc R11: 0000000000000246 R12: 0000000020000100
[  455.447586][T12882] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
[  455.456822][T12885] CPU: 0 PID: 12885 Comm: syz-executor.2 Not tainted 5.14.0-rc1-syzkaller #0
19:01:26 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8923, &(0x7f00000003c0)={'tunl0\x00', &(0x7f0000000340)={'erspan0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @private, @empty}}}})

[  455.467394][T12885] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  455.482773][T12885] Call Trace:
[  455.488095][T12885]  dump_stack_lvl+0xcd/0x134
[  455.494762][T12885]  should_fail.cold+0x5/0xa
[  455.500975][T12885]  prepare_alloc_pages+0x17b/0x580
[  455.508196][T12885]  __alloc_pages+0x12f/0x500
19:01:26 executing program 0 (fault-call:0 fault-nth:6):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  455.514850][T12885]  ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0
[  455.523890][T12885]  ? find_held_lock+0x2d/0x110
[  455.528164][T12890] FAULT_INJECTION: forcing a failure.
[  455.528164][T12890] name failslab, interval 1, probability 0, space 0, times 0
[  455.537964][T12885]  ? exc_int3+0xb/0x80
[  455.538002][T12885]  ? asm_exc_int3+0x31/0x40
[  455.538026][T12885]  cache_grow_begin+0x75/0x460
[  455.538059][T12885]  ? cache_alloc_pfmemalloc+0x1e/0x140
[  455.577804][T12885]  cache_alloc_refill+0x27f/0x380
[  455.584313][T12885]  kmem_cache_alloc+0x454/0x540
[  455.590733][T12885]  getname_flags.part.0+0x50/0x4f0
[  455.596801][T12885]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  455.603684][T12885]  getname+0x8e/0xd0
[  455.608269][T12885]  do_sys_openat2+0xf5/0x420
[  455.613804][T12885]  ? build_open_flags+0x6f0/0x6f0
[  455.619329][T12885]  ? __context_tracking_exit+0xb8/0xe0
[  455.625531][T12885]  ? lock_downgrade+0x6e0/0x6e0
[  455.631179][T12885]  __x64_sys_openat+0x13f/0x1f0
[  455.636798][T12885]  ? __ia32_sys_open+0x1c0/0x1c0
[  455.642466][T12885]  ? syscall_enter_from_user_mode+0x21/0x70
[  455.649187][T12885]  do_syscall_64+0x35/0xb0
[  455.654109][T12885]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  455.660717][T12885] RIP: 0033:0x4196c4
[  455.665215][T12885] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  455.686153][T12885] RSP: 002b:00007f93ef6ffed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  455.695564][T12885] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196c4
[  455.704275][T12885] RDX: 0000000000000002 RSI: 00007f93ef700000 RDI: 00000000ffffff9c
[  455.713077][T12885] RBP: 00007f93ef700000 R08: 0000000000000000 R09: ffffffffffffffff
[  455.721746][T12885] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  455.730535][T12885] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  455.739760][T12890] CPU: 1 PID: 12890 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  455.754940][T12890] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  455.761219][T12885] qnx6: invalid mount options.
[  455.767605][T12890] Call Trace:
[  455.767618][T12890]  dump_stack_lvl+0xcd/0x134
[  455.767648][T12890]  should_fail.cold+0x5/0xa
[  455.767678][T12890]  should_failslab+0x5/0x10
[  455.767704][T12890]  kmem_cache_alloc+0x58/0x540
[  455.767727][T12890]  security_file_alloc+0x34/0x170
[  455.767752][T12890]  __alloc_file+0xd8/0x280
[  455.767797][T12890]  alloc_empty_file+0x6d/0x170
[  455.767832][T12890]  alloc_file+0x59/0x590
[  455.767855][T12890]  alloc_file_pseudo+0x165/0x250
[  455.845981][T12890]  ? alloc_file+0x590/0x590
[  455.855150][T12890]  ? __sanitizer_cov_trace_const_cmp2+0x22/0x80
[  455.868128][T12890]  ? shmem_get_inode+0x59a/0xc20
[  455.876201][T12890]  __shmem_file_setup+0x144/0x310
[  455.883704][T12890]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  455.893225][T12890]  __do_sys_memfd_create+0x26b/0x5a0
[  455.900511][T12890]  ? hmm_vma_walk_hugetlb_entry+0x8b0/0x8b0
[  455.908753][T12890]  ? syscall_enter_from_user_mode+0x21/0x70
[  455.917930][T12890]  do_syscall_64+0x35/0xb0
[  455.924063][T12890]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  455.932171][T12890] RIP: 0033:0x4665d9
[  455.938842][T12890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  455.967774][T12890] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  455.978123][T12890] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 00000000004665d9
[  455.988811][T12890] RDX: 00007f7d4ceaa000 RSI: 0000000000000000 RDI: 00000000004bee66
[  456.000189][T12890] RBP: 0000000000000000 R08: 00007f7d4cea9ff8 R09: ffffffffffffffff
[  456.011072][T12890] R10: 00007f7d4cea9ffc R11: 0000000000000246 R12: 0000000020000100
[  456.024482][T12890] R13: 0000000020000140 R14: 0000000000000000 R15: 0000000020000480
19:01:26 executing program 2 (fault-call:0 fault-nth:14):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:27 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000140), 0x5, 0x102)
pwrite64(r0, &(0x7f0000000300)="6926df884ab9d98b59e4af0f7e0196b31b4b6a7feb7879a064fd908355f30b5726340a1012c9b720ca092350216ca1c1b8299fa8be4a8a6074efff2831d1eace5a35cfcdbef9f048a5b89bfb4a3b22d21d475d22f1caf96e610fa7dbeef0621f0b2249b4b7a8d7bcc591f38e647b532a4da45b60304054fa4f630965114ee8c59413a0e4e5449625", 0x88, 0x1000)

[  456.055976][T12896] FAULT_INJECTION: forcing a failure.
[  456.055976][T12896] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  456.071085][T12896] CPU: 0 PID: 12896 Comm: syz-executor.2 Not tainted 5.14.0-rc1-syzkaller #0
[  456.080655][T12896] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  456.086300][T12895] qnx6: invalid mount options.
[  456.091051][T12896] Call Trace:
[  456.091061][T12896]  dump_stack_lvl+0xcd/0x134
[  456.107165][T12896]  should_fail.cold+0x5/0xa
[  456.112729][T12896]  prepare_alloc_pages+0x17b/0x580
[  456.119284][T12896]  __alloc_pages+0x12f/0x500
[  456.124526][T12896]  ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0
[  456.134866][T12896]  ? find_held_lock+0x2d/0x110
[  456.141726][T12896]  cache_grow_begin+0x75/0x460
[  456.148978][T12896]  ? cache_alloc_pfmemalloc+0x1e/0x140
[  456.157171][T12896]  cache_alloc_refill+0x27f/0x380
[  456.164569][T12896]  kmem_cache_alloc+0x454/0x540
[  456.171636][T12896]  __alloc_file+0x21/0x280
[  456.177332][T12896]  alloc_empty_file+0x6d/0x170
[  456.183040][T12896]  path_openat+0xde/0x27f0
[  456.185425][T12902] FAULT_INJECTION: forcing a failure.
[  456.185425][T12902] name failslab, interval 1, probability 0, space 0, times 0
[  456.190565][T12896]  ? __lock_acquire+0x162f/0x54a0
[  456.190594][T12896]  ? path_lookupat+0x860/0x860
[  456.190615][T12896]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  456.190640][T12896]  do_filp_open+0x1aa/0x400
[  456.190668][T12896]  ? may_open_dev+0xf0/0xf0
[  456.255521][T12896]  ? alloc_fd+0x2f0/0x670
[  456.261290][T12896]  ? lock_downgrade+0x6e0/0x6e0
[  456.268716][T12896]  ? rwlock_bug.part.0+0x90/0x90
[  456.278795][T12896]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  456.291039][T12896]  ? _find_next_bit+0x1e3/0x260
[  456.297801][T12896]  ? _raw_spin_unlock+0x24/0x40
[  456.305494][T12896]  ? alloc_fd+0x2f0/0x670
[  456.313376][T12896]  do_sys_openat2+0x16d/0x420
[  456.321932][T12896]  ? build_open_flags+0x6f0/0x6f0
[  456.329572][T12896]  ? __context_tracking_exit+0xb8/0xe0
[  456.338584][T12896]  ? lock_downgrade+0x6e0/0x6e0
[  456.345296][T12896]  __x64_sys_openat+0x13f/0x1f0
[  456.351067][T12896]  ? __ia32_sys_open+0x1c0/0x1c0
[  456.358041][T12896]  ? syscall_enter_from_user_mode+0x21/0x70
[  456.367310][T12896]  do_syscall_64+0x35/0xb0
[  456.374273][T12896]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  456.382286][T12896] RIP: 0033:0x4196c4
[  456.392758][T12896] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  456.424553][T12896] RSP: 002b:00007f93ef6ffed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  456.440668][T12896] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196c4
[  456.454334][T12896] RDX: 0000000000000002 RSI: 00007f93ef700000 RDI: 00000000ffffff9c
[  456.471920][T12896] RBP: 00007f93ef700000 R08: 0000000000000000 R09: ffffffffffffffff
[  456.488517][T12896] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  456.505061][T12896] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  456.518543][T12902] CPU: 1 PID: 12902 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  456.538556][T12902] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  456.556704][T12902] Call Trace:
[  456.561244][T12902]  dump_stack_lvl+0xcd/0x134
19:01:27 executing program 0 (fault-call:0 fault-nth:7):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:27 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="8d040000", @ANYRES16=r1, @ANYBLOB="010028bd7000fcdbdf25880000000c009900ff7f00007800000004003300a40001"], 0x4b0}}, 0x0)

[  456.568306][T12902]  should_fail.cold+0x5/0xa
[  456.571466][T12906] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
[  456.574749][T12902]  ? tomoyo_realpath_from_path+0xc3/0x620
[  456.574794][T12902]  should_failslab+0x5/0x10
[  456.574822][T12902]  __kmalloc+0x7e/0x4d0
[  456.574846][T12902]  tomoyo_realpath_from_path+0xc3/0x620
[  456.574876][T12902]  ? tomoyo_profile+0x42/0x50
[  456.574901][T12902]  tomoyo_path_perm+0x21b/0x400
[  456.574927][T12902]  ? tomoyo_path_perm+0x1c1/0x400
[  456.574954][T12902]  ? tomoyo_check_open_permission+0x380/0x380
[  456.574984][T12902]  ? find_held_lock+0x2d/0x110
[  456.575016][T12902]  security_path_truncate+0xcf/0x140
[  456.575043][T12902]  do_sys_ftruncate+0x4d8/0x8e0
[  456.575069][T12902]  do_syscall_64+0x35/0xb0
[  456.575117][T12902]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  456.575147][T12902] RIP: 0033:0x466597
[  456.575168][T12902] Code: 48 89 e7 e8 cb e5 ff ff 48 8b 4c 24 18 64 48 2b 0c 25 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 1a 00 00 90 b8 4d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8
[  456.575195][T12902] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000217 ORIG_RAX: 000000000000004d
[  456.575223][T12902] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 0000000000466597
19:01:27 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x10, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  456.575242][T12902] RDX: 00007f7d4ceaa000 RSI: 0000000000000000 RDI: 0000000000000004
[  456.575259][T12902] RBP: 0000000000000000 R08: 00007f7d4cea9ff8 R09: ffffffffffffffff
[  456.575290][T12902] R10: 00007f7d4cea9ffc R11: 0000000000000217 R12: 0000000000000004
[  456.575308][T12902] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000020000480
[  456.579395][T12896] qnx6: invalid mount options.
[  456.584385][T12902] ERROR: Out of memory at tomoyo_realpath_from_path.
[  456.589161][T12902] qnx6: invalid mount options.
19:01:27 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000180)={0x5, 0x9, 0x2, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0xf}, 0x40)

19:01:27 executing program 0 (fault-call:0 fault-nth:8):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  456.972075][T12914] qnx6: invalid mount options.
19:01:27 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  457.017620][T12920] FAULT_INJECTION: forcing a failure.
[  457.017620][T12920] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  457.036467][T12920] CPU: 1 PID: 12920 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  457.048352][T12920] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  457.060337][T12920] Call Trace:
[  457.064679][T12920]  dump_stack_lvl+0xcd/0x134
[  457.070604][T12920]  should_fail.cold+0x5/0xa
[  457.076344][T12920]  prepare_alloc_pages+0x17b/0x580
[  457.084525][T12920]  __alloc_pages+0x12f/0x500
[  457.090570][T12920]  ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0
[  457.100455][T12920]  ? find_held_lock+0x2d/0x110
[  457.105610][T12920]  cache_grow_begin+0x75/0x460
[  457.111631][T12920]  ? cache_alloc_pfmemalloc+0x1e/0x140
[  457.118981][T12920]  cache_alloc_refill+0x27f/0x380
[  457.124917][T12920]  ? tomoyo_realpath_from_path+0xc3/0x620
[  457.132367][T12920]  __kmalloc+0x3d5/0x4d0
[  457.138555][T12920]  tomoyo_realpath_from_path+0xc3/0x620
[  457.145272][T12920]  ? tomoyo_profile+0x42/0x50
[  457.150748][T12920]  tomoyo_path_perm+0x21b/0x400
[  457.156278][T12920]  ? tomoyo_path_perm+0x1c1/0x400
[  457.162696][T12920]  ? tomoyo_check_open_permission+0x380/0x380
[  457.169601][T12920]  ? find_held_lock+0x2d/0x110
[  457.175719][T12920]  security_path_truncate+0xcf/0x140
[  457.182440][T12920]  do_sys_ftruncate+0x4d8/0x8e0
[  457.189948][T12920]  do_syscall_64+0x35/0xb0
[  457.196267][T12920]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  457.204190][T12920] RIP: 0033:0x466597
[  457.209995][T12920] Code: 48 89 e7 e8 cb e5 ff ff 48 8b 4c 24 18 64 48 2b 0c 25 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 1a 00 00 90 b8 4d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8
[  457.236184][T12920] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000217 ORIG_RAX: 000000000000004d
[  457.246204][T12920] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 0000000000466597
[  457.255681][T12920] RDX: 00007f7d4ceaa000 RSI: 0000000000000000 RDI: 0000000000000004
[  457.265004][T12920] RBP: 0000000000000000 R08: 00007f7d4cea9ff8 R09: ffffffffffffffff
[  457.274162][T12920] R10: 00007f7d4cea9ffc R11: 0000000000000217 R12: 0000000000000004
[  457.284353][T12920] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000020000480
[  457.299137][T12922] qnx6: invalid mount options.
[  457.300176][T12914] qnx6: invalid mount options.
19:01:28 executing program 1:
syz_open_dev$rtc(&(0x7f0000000140), 0x2, 0xa742)
pwrite64(0xffffffffffffffff, &(0x7f0000000300)='i', 0x87000, 0x0)

[  457.325303][T12920] qnx6: invalid mount options.
19:01:28 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x2, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:28 executing program 0 (fault-call:0 fault-nth:9):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:28 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x11, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  457.498477][T12937] qnx6: invalid mount options.
19:01:28 executing program 1:
r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x20802, 0x0)
read$rfkill(r0, 0x0, 0x0)

[  457.508151][T12936] FAULT_INJECTION: forcing a failure.
[  457.508151][T12936] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  457.526855][T12936] CPU: 0 PID: 12936 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  457.529256][T12941] qnx6: invalid mount options.
[  457.538141][T12936] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  457.538158][T12936] Call Trace:
[  457.538165][T12936]  dump_stack_lvl+0xcd/0x134
[  457.538188][T12936]  should_fail.cold+0x5/0xa
[  457.538206][T12936]  prepare_alloc_pages+0x17b/0x580
[  457.538227][T12936]  __alloc_pages+0x12f/0x500
19:01:28 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000180)={0x9, 0x9, 0x2, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x3}, 0x40)

[  457.538243][T12936]  ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0
[  457.538264][T12936]  ? find_held_lock+0x2d/0x110
[  457.538281][T12936]  ? lock_downgrade+0x6e0/0x6e0
[  457.538294][T12936]  ? do_raw_spin_lock+0x120/0x2b0
[  457.538308][T12936]  cache_grow_begin+0x75/0x460
[  457.538326][T12936]  ____cache_alloc_node+0x171/0x1d0
19:01:28 executing program 1:
clock_gettime(0x7f84491d9554163d, 0x0)

[  457.538339][T12936]  ? tomoyo_realpath_from_path+0xc3/0x620
[  457.538357][T12936]  __kmalloc+0x367/0x4d0
[  457.538370][T12936]  tomoyo_realpath_from_path+0xc3/0x620
[  457.538386][T12936]  ? tomoyo_profile+0x42/0x50
[  457.673790][T12936]  tomoyo_path_perm+0x21b/0x400
[  457.680583][T12936]  ? tomoyo_path_perm+0x1c1/0x400
[  457.687672][T12936]  ? tomoyo_check_open_permission+0x380/0x380
[  457.696252][T12936]  ? find_held_lock+0x2d/0x110
[  457.703122][T12936]  security_path_truncate+0xcf/0x140
[  457.710478][T12936]  do_sys_ftruncate+0x4d8/0x8e0
19:01:28 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000040), 0x2, 0x4a002)
pread64(r0, 0x0, 0x0, 0x200)

[  457.717560][T12936]  do_syscall_64+0x35/0xb0
[  457.723568][T12936]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  457.731445][T12936] RIP: 0033:0x466597
[  457.736631][T12936] Code: 48 89 e7 e8 cb e5 ff ff 48 8b 4c 24 18 64 48 2b 0c 25 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 1a 00 00 90 b8 4d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8
[  457.762211][T12936] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000217 ORIG_RAX: 000000000000004d
19:01:28 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000180)={0x9, 0x9, 0x2, 0x1001}, 0x40)

[  457.771640][T12936] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 0000000000466597
[  457.784951][T12936] RDX: 00007f7d4ceaa000 RSI: 0000000000000000 RDI: 0000000000000004
[  457.798701][T12936] RBP: 0000000000000000 R08: 00007f7d4cea9ff8 R09: ffffffffffffffff
[  457.811558][T12936] R10: 00007f7d4cea9ffc R11: 0000000000000217 R12: 0000000000000004
[  457.824723][T12936] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000020000480
[  457.855367][T12936] qnx6: invalid mount options.
[  457.896135][T12937] qnx6: invalid mount options.
[  457.898625][T12941] qnx6: invalid mount options.
19:01:28 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x3, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:28 executing program 1:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x5, &(0x7f00000002c0)=@raw=[@call], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

[  457.992933][T12965] qnx6: invalid mount options.
19:01:28 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x15, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:28 executing program 0 (fault-call:0 fault-nth:10):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:29 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r0)

[  458.047482][T12965] qnx6: invalid mount options.
[  458.053017][T12972] FAULT_INJECTION: forcing a failure.
[  458.053017][T12972] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  458.071583][T12972] CPU: 2 PID: 12972 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
19:01:29 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x4, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  458.080946][T12972] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  458.092996][T12972] Call Trace:
[  458.097485][T12972]  dump_stack_lvl+0xcd/0x134
[  458.104216][T12972]  should_fail.cold+0x5/0xa
[  458.110751][T12972]  prepare_alloc_pages+0x17b/0x580
[  458.117313][T12972]  __alloc_pages+0x12f/0x500
[  458.122993][T12972]  ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0
[  458.130925][T12972]  ? mark_held_locks+0x9f/0xe0
[  458.137205][T12972]  cache_grow_begin+0x75/0x460
[  458.143342][T12972]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  458.152211][T12972]  fallback_alloc+0x1e4/0x2e0
[  458.159373][T12972]  ? tomoyo_realpath_from_path+0xc3/0x620
[  458.167376][T12972]  __kmalloc+0x367/0x4d0
[  458.172635][T12972]  tomoyo_realpath_from_path+0xc3/0x620
[  458.180496][T12972]  ? tomoyo_profile+0x42/0x50
[  458.186674][T12972]  tomoyo_path_perm+0x21b/0x400
[  458.193005][T12972]  ? tomoyo_path_perm+0x1c1/0x400
[  458.199825][T12972]  ? tomoyo_check_open_permission+0x380/0x380
[  458.207860][T12972]  ? find_held_lock+0x2d/0x110
[  458.213952][T12972]  security_path_truncate+0xcf/0x140
[  458.220626][T12972]  do_sys_ftruncate+0x4d8/0x8e0
[  458.226800][T12972]  do_syscall_64+0x35/0xb0
[  458.228054][T12975] qnx6: invalid mount options.
[  458.232369][T12972]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  458.248614][T12972] RIP: 0033:0x466597
[  458.254154][T12972] Code: 48 89 e7 e8 cb e5 ff ff 48 8b 4c 24 18 64 48 2b 0c 25 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 1a 00 00 90 b8 4d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8
[  458.280891][T12972] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000217 ORIG_RAX: 000000000000004d
[  458.293124][T12972] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 0000000000466597
[  458.305216][T12972] RDX: 00007f7d4ceaa000 RSI: 0000000000000000 RDI: 0000000000000004
[  458.315556][T12972] RBP: 0000000000000000 R08: 00007f7d4cea9ff8 R09: ffffffffffffffff
[  458.324439][T12972] R10: 00007f7d4cea9ffc R11: 0000000000000217 R12: 0000000000000004
[  458.333806][T12972] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000020000480
[  458.354273][T12972] ERROR: Out of memory at tomoyo_realpath_from_path.
19:01:29 executing program 1:
r0 = socket$unix(0x1, 0x1, 0x0)
read(r0, &(0x7f00000000c0)=""/4096, 0x1000)

[  458.383017][T12972] qnx6: invalid mount options.
[  458.420322][T12975] qnx6: invalid mount options.
[  458.448288][T12987] qnx6: invalid mount options.
19:01:29 executing program 0 (fault-call:0 fault-nth:11):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:29 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000180)={0x9, 0x9, 0x2, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xdd020000}, 0x40)

19:01:29 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x5, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:29 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x16, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  458.516945][T12991] FAULT_INJECTION: forcing a failure.
[  458.516945][T12991] name failslab, interval 1, probability 0, space 0, times 0
[  458.542958][T12991] CPU: 0 PID: 12991 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  458.555302][T12991] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  458.567643][T12991] Call Trace:
[  458.572139][T12991]  dump_stack_lvl+0xcd/0x134
[  458.578087][T12991]  should_fail.cold+0x5/0xa
[  458.583268][T12991]  ? tomoyo_encode2.part.0+0xe9/0x3a0
[  458.590213][T12991]  should_failslab+0x5/0x10
[  458.596051][T12991]  __kmalloc+0x7e/0x4d0
[  458.601504][T12991]  ? tomoyo_realpath_from_path+0xc3/0x620
[  458.608582][T12991]  tomoyo_encode2.part.0+0xe9/0x3a0
[  458.615242][T12991]  tomoyo_encode+0x28/0x50
[  458.620429][T12991]  tomoyo_realpath_from_path+0x186/0x620
[  458.627123][T12991]  ? tomoyo_profile+0x42/0x50
[  458.632686][T12991]  tomoyo_path_perm+0x21b/0x400
[  458.638624][T12991]  ? tomoyo_path_perm+0x1c1/0x400
[  458.644822][T12991]  ? tomoyo_check_open_permission+0x380/0x380
[  458.652419][T12991]  ? find_held_lock+0x2d/0x110
[  458.658914][T12991]  security_path_truncate+0xcf/0x140
[  458.665656][T12991]  do_sys_ftruncate+0x4d8/0x8e0
[  458.671986][T12991]  do_syscall_64+0x35/0xb0
[  458.677415][T12991]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  458.684348][T12991] RIP: 0033:0x466597
[  458.689273][T12991] Code: 48 89 e7 e8 cb e5 ff ff 48 8b 4c 24 18 64 48 2b 0c 25 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 1a 00 00 90 b8 4d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 bc ff ff ff f7 d8 64 89 02 b8
[  458.714113][T12991] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000217 ORIG_RAX: 000000000000004d
[  458.724156][T12991] RAX: ffffffffffffffda RBX: 0000000020000300 RCX: 0000000000466597
[  458.733942][T12991] RDX: 00007f7d4ceaa000 RSI: 0000000000000000 RDI: 0000000000000004
[  458.743345][T12991] RBP: 0000000000000000 R08: 00007f7d4cea9ff8 R09: ffffffffffffffff
[  458.752935][T12991] R10: 00007f7d4cea9ffc R11: 0000000000000217 R12: 0000000000000004
[  458.762385][T12991] R13: 0000000000000004 R14: 0000000000000000 R15: 0000000020000480
[  458.807747][T12992] qnx6: invalid mount options.
[  458.811434][T13000] qnx6: invalid mount options.
[  458.831961][T12991] ERROR: Out of memory at tomoyo_realpath_from_path.
[  458.847340][T12991] qnx6: invalid mount options.
[  458.875876][T12992] qnx6: invalid mount options.
[  458.892989][T13000] qnx6: invalid mount options.
19:01:29 executing program 1:
r0 = socket(0x11, 0x3, 0x0)
sendmsg$FOU_CMD_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)

19:01:29 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x17, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:29 executing program 0 (fault-call:0 fault-nth:12):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:29 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x6, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:29 executing program 1:
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x0, 0x9, 0x201, 0x0, 0x0, {0xa, 0x0, 0x5}, [@NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_NAME={0x9, 0x1, 'syz0\x00'}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r0 = accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000100), 0x0)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f00000001c0)={0xa, &(0x7f0000000140)=[{0x6, 0x0, 0x4, 0x50}, {0x1000, 0x1, 0x8, 0x4}, {0xaf96, 0x7, 0x9, 0x80}, {0x1, 0x8, 0x0, 0xa0}, {0x401, 0x8, 0x6, 0x8}, {0xfff, 0x35, 0x7, 0x8001}, {0x6, 0x3, 0x3, 0x4}, {0x1ff, 0x4, 0x7f, 0x40}, {0x3, 0x7, 0x0, 0x80}, {0x8, 0x40, 0x1f, 0x5}]}, 0x10)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000200)=@req3={0x0, 0x10001, 0x1, 0x2, 0x3, 0x80000001, 0x4}, 0x1c)
sendto$packet(r0, &(0x7f0000000240)="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", 0x1000, 0x4080, &(0x7f0000001240)={0x11, 0xf8, 0x0, 0x1, 0x7, 0x6, @link_local}, 0x14)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000001440)={&(0x7f0000001280)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000001400)={&(0x7f00000012c0)={0x13c, 0x0, 0x9, 0x3, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x1ff}}, @NFCTH_TUPLE={0x4c, 0x2, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @ipv4={'\x00', '\xff\xff', @multicast1}}, {0x14, 0x4, @loopback}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @loopback}, {0x8, 0x2, @remote}}}, @CTA_TUPLE_ZONE={0x6}]}, @NFCTH_TUPLE={0x78, 0x2, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x32}}}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @local}, {0x8, 0x2, @broadcast}}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private1}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}]}, @NFCTH_STATUS={0x8, 0x6, 0x1, 0x0, 0x1}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_TUPLE={0x30, 0x2, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @mcast1}}}]}, @NFCTH_NAME={0x9, 0x1, 'syz1\x00'}, @NFCTH_QUEUE_NUM={0x8, 0x3, 0x1, 0x0, 0x8}]}, 0x13c}, 0x1, 0x0, 0x0, 0x24008040}, 0x40044080)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_RECONFIGURE(r1, &(0x7f0000001540)={&(0x7f0000001480)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000001500)={&(0x7f00000014c0)={0x20, 0x0, 0x400, 0x70bd25, 0x25dfdbfb, {}, [@NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x8}]}, 0x20}}, 0x0)
syz_usb_connect$cdc_ncm(0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$fou(0x0, 0xffffffffffffffff)

[  459.025911][T13018] FAULT_INJECTION: forcing a failure.
[  459.025911][T13018] name failslab, interval 1, probability 0, space 0, times 0
[  459.042233][T13019] qnx6: invalid mount options.
[  459.043200][T13022] qnx6: invalid mount options.
[  459.045632][T13018] CPU: 0 PID: 13018 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  459.067472][T13018] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  459.079013][T13018] Call Trace:
[  459.083412][T13018]  dump_stack_lvl+0xcd/0x134
[  459.089777][T13018]  should_fail.cold+0x5/0xa
[  459.095461][T13018]  should_failslab+0x5/0x10
[  459.100781][T13018]  kmem_cache_alloc+0x58/0x540
[  459.106390][T13018]  security_file_alloc+0x34/0x170
[  459.112757][T13018]  __alloc_file+0xd8/0x280
[  459.118367][T13018]  alloc_empty_file+0x6d/0x170
[  459.123494][T13018]  path_openat+0xde/0x27f0
[  459.128244][T13018]  ? __lock_acquire+0x162f/0x54a0
[  459.134865][T13018]  ? path_lookupat+0x860/0x860
[  459.140129][T13018]  ? mark_lock+0xef/0x17b0
[  459.145003][T13018]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  459.151463][T13018]  do_filp_open+0x1aa/0x400
[  459.156689][T13018]  ? may_open_dev+0xf0/0xf0
[  459.162556][T13018]  ? alloc_fd+0x2f0/0x670
[  459.167697][T13018]  ? lock_downgrade+0x6e0/0x6e0
[  459.173243][T13018]  ? rwlock_bug.part.0+0x90/0x90
[  459.179103][T13018]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  459.187662][T13018]  ? _find_next_bit+0x1e3/0x260
[  459.194272][T13018]  ? _raw_spin_unlock+0x24/0x40
[  459.200420][T13018]  ? alloc_fd+0x2f0/0x670
[  459.205247][T13018]  do_sys_openat2+0x16d/0x420
[  459.210450][T13018]  ? build_open_flags+0x6f0/0x6f0
[  459.216298][T13018]  ? __context_tracking_exit+0xb8/0xe0
[  459.222802][T13018]  ? lock_downgrade+0x6e0/0x6e0
[  459.228675][T13018]  __x64_sys_openat+0x13f/0x1f0
[  459.234712][T13018]  ? __ia32_sys_open+0x1c0/0x1c0
[  459.240477][T13018]  ? syscall_enter_from_user_mode+0x21/0x70
[  459.247290][T13018]  do_syscall_64+0x35/0xb0
[  459.252217][T13018]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  459.258976][T13018] RIP: 0033:0x4196c4
[  459.263363][T13018] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  459.286539][T13018] RSP: 002b:00007f7d4cea9ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  459.297050][T13018] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196c4
[  459.307248][T13018] RDX: 0000000000000002 RSI: 00007f7d4ceaa000 RDI: 00000000ffffff9c
[  459.316529][T13018] RBP: 00007f7d4ceaa000 R08: 0000000000000000 R09: ffffffffffffffff
[  459.325623][T13018] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  459.335491][T13018] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
19:01:30 executing program 0 (fault-call:0 fault-nth:13):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  459.385812][T13022] qnx6: invalid mount options.
[  459.411121][T13019] qnx6: invalid mount options.
[  459.426890][T13031] FAULT_INJECTION: forcing a failure.
[  459.426890][T13031] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  459.442093][T13031] CPU: 1 PID: 13031 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  459.455687][T13031] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  459.468886][T13031] Call Trace:
[  459.473700][T13031]  dump_stack_lvl+0xcd/0x134
[  459.480155][T13031]  should_fail.cold+0x5/0xa
[  459.487015][T13031]  prepare_alloc_pages+0x17b/0x580
[  459.494003][T13031]  __alloc_pages+0x12f/0x500
[  459.500403][T13031]  ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0
[  459.509854][T13031]  ? find_held_lock+0x2d/0x110
[  459.516815][T13031]  ? lock_downgrade+0x6e0/0x6e0
[  459.523541][T13031]  ? do_raw_spin_lock+0x120/0x2b0
[  459.530632][T13031]  cache_grow_begin+0x75/0x460
[  459.537859][T13031]  ____cache_alloc_node+0x171/0x1d0
[  459.545516][T13031]  kmem_cache_alloc+0x388/0x540
[  459.552148][T13031]  getname_flags.part.0+0x50/0x4f0
[  459.559817][T13031]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  459.568789][T13031]  getname+0x8e/0xd0
[  459.574465][T13031]  do_sys_openat2+0xf5/0x420
[  459.581247][T13031]  ? build_open_flags+0x6f0/0x6f0
[  459.588933][T13031]  ? __context_tracking_exit+0xb8/0xe0
[  459.596785][T13031]  ? lock_downgrade+0x6e0/0x6e0
[  459.603670][T13031]  __x64_sys_openat+0x13f/0x1f0
[  459.610578][T13031]  ? __ia32_sys_open+0x1c0/0x1c0
[  459.617814][T13031]  ? syscall_enter_from_user_mode+0x21/0x70
[  459.625716][T13031]  do_syscall_64+0x35/0xb0
[  459.632971][T13031]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  459.640994][T13031] RIP: 0033:0x4196c4
[  459.646358][T13031] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  459.668929][T13031] RSP: 002b:00007f7d4cea9ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  459.679679][T13031] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196c4
[  459.688877][T13031] RDX: 0000000000000002 RSI: 00007f7d4ceaa000 RDI: 00000000ffffff9c
[  459.700401][T13031] RBP: 00007f7d4ceaa000 R08: 0000000000000000 R09: ffffffffffffffff
[  459.712093][T13031] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  459.723343][T13031] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
19:01:30 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x18, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  459.757692][T13031] qnx6: invalid mount options.
19:01:30 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x9, 0x0, 0x0, 0x0, 0x6, 0x1}, 0x40)

19:01:30 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x7, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  459.858839][T13041] qnx6: invalid mount options.
19:01:30 executing program 0 (fault-call:0 fault-nth:14):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  459.892713][T13045] qnx6: invalid mount options.
[  459.918244][T13050] FAULT_INJECTION: forcing a failure.
[  459.918244][T13050] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  459.939834][T13050] CPU: 1 PID: 13050 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  459.951040][T13050] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  459.963694][T13050] Call Trace:
[  459.968638][T13050]  dump_stack_lvl+0xcd/0x134
[  459.975601][T13050]  should_fail.cold+0x5/0xa
[  459.981913][T13050]  prepare_alloc_pages+0x17b/0x580
[  459.989703][T13050]  __alloc_pages+0x12f/0x500
[  459.996280][T13050]  ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0
[  460.006067][T13050]  ? find_held_lock+0x2d/0x110
[  460.012411][T13050]  ? lock_downgrade+0x6e0/0x6e0
[  460.018792][T13050]  ? do_raw_spin_lock+0x120/0x2b0
[  460.025365][T13050]  cache_grow_begin+0x75/0x460
[  460.031660][T13050]  ____cache_alloc_node+0x171/0x1d0
[  460.038330][T13050]  kmem_cache_alloc+0x388/0x540
[  460.044801][T13050]  getname_flags.part.0+0x50/0x4f0
[  460.068282][T13050]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  460.077302][T13050]  getname+0x8e/0xd0
[  460.082243][T13050]  do_sys_openat2+0xf5/0x420
[  460.088293][T13050]  ? build_open_flags+0x6f0/0x6f0
[  460.095003][T13050]  ? __context_tracking_exit+0xb8/0xe0
[  460.102277][T13050]  ? lock_downgrade+0x6e0/0x6e0
[  460.108972][T13050]  __x64_sys_openat+0x13f/0x1f0
[  460.116634][T13050]  ? __ia32_sys_open+0x1c0/0x1c0
[  460.122791][T13050]  ? syscall_enter_from_user_mode+0x21/0x70
[  460.130673][T13050]  do_syscall_64+0x35/0xb0
[  460.136654][T13050]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  460.145539][T13050] RIP: 0033:0x4196c4
[  460.150520][T13050] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  460.178934][T13050] RSP: 002b:00007f7d4cea9ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  460.191252][T13050] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196c4
[  460.201625][T13050] RDX: 0000000000000002 RSI: 00007f7d4ceaa000 RDI: 00000000ffffff9c
[  460.212448][T13050] RBP: 00007f7d4ceaa000 R08: 0000000000000000 R09: ffffffffffffffff
[  460.223008][T13050] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  460.233390][T13050] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
19:01:31 executing program 1:
pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4, 0xffffffffffffffff)
pkey_mprotect(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff)

[  460.259598][T13050] qnx6: invalid mount options.
[  460.267400][T13041] qnx6: invalid mount options.
[  460.310806][T13045] qnx6: invalid mount options.
19:01:31 executing program 0 (fault-call:0 fault-nth:15):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:31 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x23, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:31 executing program 1:
socketpair(0x1e, 0x5, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
read$FUSE(r0, &(0x7f00000006c0)={0x2020}, 0x2020)

19:01:31 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x8, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  460.424061][T13068] FAULT_INJECTION: forcing a failure.
[  460.424061][T13068] name failslab, interval 1, probability 0, space 0, times 0
[  460.442299][T13068] CPU: 2 PID: 13068 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  460.450117][T13071] qnx6: invalid mount options.
[  460.453355][T13068] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  460.467480][T13072] qnx6: invalid mount options.
[  460.470297][T13068] Call Trace:
[  460.481195][T13068]  dump_stack_lvl+0xcd/0x134
[  460.489592][T13068]  should_fail.cold+0x5/0xa
[  460.496145][T13068]  ? tomoyo_realpath_from_path+0xc3/0x620
[  460.503988][T13068]  should_failslab+0x5/0x10
[  460.510244][T13068]  __kmalloc+0x7e/0x4d0
[  460.515864][T13068]  tomoyo_realpath_from_path+0xc3/0x620
[  460.524388][T13068]  ? tomoyo_profile+0x42/0x50
[  460.531379][T13068]  tomoyo_path_number_perm+0x1d5/0x590
[  460.538744][T13068]  ? tomoyo_path_number_perm+0x18d/0x590
[  460.546678][T13068]  ? tomoyo_execute_permission+0x4a0/0x4a0
[  460.554814][T13068]  ? lock_downgrade+0x6e0/0x6e0
[  460.561169][T13068]  ? __fget_files+0x23d/0x3e0
[  460.568132][T13068]  security_file_ioctl+0x50/0xb0
[  460.575196][T13068]  __x64_sys_ioctl+0xb3/0x200
[  460.581878][T13068]  do_syscall_64+0x35/0xb0
[  460.587682][T13068]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  460.595568][T13068] RIP: 0033:0x466397
[  460.601826][T13068] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  460.628581][T13068] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  460.639814][T13068] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397
[  460.650582][T13068] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  460.661248][T13068] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  460.672222][T13068] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  460.683816][T13068] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  460.699077][T13068] ERROR: Out of memory at tomoyo_realpath_from_path.
[  460.712994][T13068] qnx6: invalid mount options.
[  460.758918][T13072] qnx6: invalid mount options.
[  460.772382][T13071] qnx6: invalid mount options.
19:01:31 executing program 0 (fault-call:0 fault-nth:16):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:31 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x36, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  460.867209][T13087] FAULT_INJECTION: forcing a failure.
19:01:31 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0xe, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  460.867209][T13087] name failslab, interval 1, probability 0, space 0, times 0
[  460.885258][T13087] CPU: 3 PID: 13087 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  460.887841][T13091] qnx6: invalid mount options.
[  460.896226][T13087] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  460.896248][T13087] Call Trace:
[  460.896258][T13087]  dump_stack_lvl+0xcd/0x134
[  460.896290][T13087]  should_fail.cold+0x5/0xa
[  460.896317][T13087]  ? tomoyo_encode2.part.0+0xe9/0x3a0
[  460.896346][T13087]  should_failslab+0x5/0x10
[  460.896372][T13087]  __kmalloc+0x7e/0x4d0
[  460.896392][T13087]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  460.896419][T13087]  ? d_absolute_path+0x10f/0x170
[  460.896470][T13087]  tomoyo_encode2.part.0+0xe9/0x3a0
[  460.896497][T13087]  tomoyo_encode+0x28/0x50
[  460.911517][T13092] qnx6: invalid mount options.
[  460.913747][T13087]  tomoyo_realpath_from_path+0x186/0x620
[  460.913789][T13087]  tomoyo_check_open_permission+0x272/0x380
[  460.913816][T13087]  ? tomoyo_path_number_perm+0x590/0x590
[  460.913840][T13087]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  460.913867][T13087]  ? path_get+0x5d/0x80
[  461.003197][T13087]  ? lock_downgrade+0x6e0/0x6e0
[  461.008677][T13087]  ? do_raw_spin_lock+0x120/0x2b0
[  461.014105][T13087]  tomoyo_file_open+0xa3/0xd0
[  461.019129][T13087]  security_file_open+0x52/0x4f0
[  461.024488][T13087]  do_dentry_open+0x353/0x11d0
[  461.030118][T13087]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  461.038099][T13087]  ? may_open+0x1f6/0x420
[  461.043564][T13087]  path_openat+0x1c23/0x27f0
[  461.049907][T13087]  ? path_lookupat+0x860/0x860
[  461.055920][T13087]  ? mark_lock+0xef/0x17b0
[  461.061060][T13087]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  461.068546][T13087]  do_filp_open+0x1aa/0x400
[  461.075153][T13087]  ? may_open_dev+0xf0/0xf0
[  461.080655][T13087]  ? rwlock_bug.part.0+0x90/0x90
[  461.086576][T13087]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  461.094199][T13087]  ? _find_next_bit+0x1e3/0x260
[  461.099329][T13087]  ? _raw_spin_unlock+0x24/0x40
[  461.105713][T13087]  ? alloc_fd+0x2f0/0x670
[  461.110506][T13087]  do_sys_openat2+0x16d/0x420
[  461.115616][T13087]  ? build_open_flags+0x6f0/0x6f0
[  461.121353][T13087]  ? __context_tracking_exit+0xb8/0xe0
[  461.127614][T13087]  ? lock_downgrade+0x6e0/0x6e0
[  461.132767][T13087]  __x64_sys_openat+0x13f/0x1f0
[  461.137846][T13087]  ? __ia32_sys_open+0x1c0/0x1c0
[  461.144096][T13087]  ? syscall_enter_from_user_mode+0x21/0x70
[  461.152188][T13087]  do_syscall_64+0x35/0xb0
[  461.159077][T13087]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  461.167092][T13087] RIP: 0033:0x4196c4
[  461.171711][T13087] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  461.192944][T13087] RSP: 002b:00007f7d4cea9ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  461.201836][T13087] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196c4
[  461.211634][T13087] RDX: 0000000000000002 RSI: 00007f7d4ceaa000 RDI: 00000000ffffff9c
[  461.220269][T13087] RBP: 00007f7d4ceaa000 R08: 0000000000000000 R09: ffffffffffffffff
[  461.231264][T13087] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  461.240937][T13087] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  461.253996][T13087] ERROR: Out of memory at tomoyo_realpath_from_path.
[  461.270127][T13087] qnx6: invalid mount options.
19:01:32 executing program 1:
pkey_mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x7, 0xffffffffffffffff)

[  461.303415][T13092] qnx6: invalid mount options.
[  461.309732][T13091] qnx6: invalid mount options.
19:01:32 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x8922, &(0x7f00000003c0)={'tunl0\x00', 0x0})

19:01:32 executing program 0 (fault-call:0 fault-nth:17):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:32 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x10, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  461.408726][T13109] FAULT_INJECTION: forcing a failure.
[  461.408726][T13109] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  461.426456][T13113] qnx6: invalid mount options.
19:01:32 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x37, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  461.430043][T13109] CPU: 0 PID: 13109 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  461.430086][T13109] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  461.430104][T13109] Call Trace:
[  461.430119][T13109]  dump_stack_lvl+0xcd/0x134
[  461.430159][T13109]  should_fail.cold+0x5/0xa
[  461.482319][T13109]  prepare_alloc_pages+0x17b/0x580
[  461.490843][T13109]  __alloc_pages+0x12f/0x500
[  461.498250][T13109]  ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0
[  461.501427][T13116] qnx6: invalid mount options.
19:01:32 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000140), 0x5, 0x102)
pwrite64(r0, &(0x7f0000000300)='i', 0x1, 0x7fffffffffffffff)

[  461.509561][T13109]  ? find_held_lock+0x2d/0x110
[  461.509611][T13109]  cache_grow_begin+0x75/0x460
[  461.509654][T13109]  ? cache_alloc_pfmemalloc+0x1e/0x140
[  461.509694][T13109]  cache_alloc_refill+0x27f/0x380
[  461.509727][T13109]  ? tomoyo_realpath_from_path+0xc3/0x620
19:01:32 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000140), 0x5, 0x102)
pwrite64(r0, &(0x7f0000000300)='i', 0x1, 0x0)

[  461.509764][T13109]  __kmalloc+0x3d5/0x4d0
[  461.566991][T13109]  tomoyo_realpath_from_path+0xc3/0x620
[  461.575648][T13109]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  461.585003][T13109]  tomoyo_check_open_permission+0x272/0x380
[  461.594435][T13109]  ? tomoyo_path_number_perm+0x590/0x590
[  461.603154][T13109]  ? lockdep_hardirqs_on_prepare+0x400/0x400
19:01:32 executing program 1:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = dup(r0)
connect$bt_sco(r1, &(0x7f0000001180), 0x8)

[  461.613286][T13109]  ? path_get+0x5d/0x80
[  461.620676][T13109]  ? lock_downgrade+0x6e0/0x6e0
[  461.628172][T13109]  ? do_raw_spin_lock+0x120/0x2b0
[  461.636511][T13109]  tomoyo_file_open+0xa3/0xd0
[  461.644714][T13109]  security_file_open+0x52/0x4f0
[  461.652149][T13109]  do_dentry_open+0x353/0x11d0
[  461.658964][T13109]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  461.670871][T13109]  ? may_open+0x1f6/0x420
19:01:32 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
read$FUSE(r0, &(0x7f0000004900)={0x2020}, 0x2020)

[  461.678329][T13109]  path_openat+0x1c23/0x27f0
[  461.686918][T13109]  ? path_lookupat+0x860/0x860
[  461.694176][T13109]  ? mark_lock+0xef/0x17b0
[  461.701263][T13109]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  461.710782][T13109]  do_filp_open+0x1aa/0x400
[  461.718036][T13109]  ? may_open_dev+0xf0/0xf0
[  461.725134][T13109]  ? rwlock_bug.part.0+0x90/0x90
[  461.732921][T13109]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  461.742637][T13109]  ? _find_next_bit+0x1e3/0x260
[  461.749884][T13109]  ? _raw_spin_unlock+0x24/0x40
[  461.757144][T13109]  ? alloc_fd+0x2f0/0x670
[  461.764079][T13109]  do_sys_openat2+0x16d/0x420
[  461.771891][T13109]  ? build_open_flags+0x6f0/0x6f0
[  461.780043][T13109]  ? __context_tracking_exit+0xb8/0xe0
[  461.788734][T13109]  ? lock_downgrade+0x6e0/0x6e0
[  461.796021][T13109]  __x64_sys_openat+0x13f/0x1f0
[  461.803668][T13109]  ? __ia32_sys_open+0x1c0/0x1c0
[  461.811429][T13109]  ? syscall_enter_from_user_mode+0x21/0x70
[  461.820736][T13109]  do_syscall_64+0x35/0xb0
[  461.827959][T13109]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  461.837385][T13109] RIP: 0033:0x4196c4
[  461.843604][T13109] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  461.875027][T13109] RSP: 002b:00007f7d4cea9ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  461.889258][T13109] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196c4
[  461.901241][T13109] RDX: 0000000000000002 RSI: 00007f7d4ceaa000 RDI: 00000000ffffff9c
[  461.913446][T13109] RBP: 00007f7d4ceaa000 R08: 0000000000000000 R09: ffffffffffffffff
[  461.926728][T13109] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  461.939419][T13109] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  461.963587][T13109] qnx6: invalid mount options.
[  462.022928][T13113] qnx6: invalid mount options.
[  462.027453][T13116] qnx6: invalid mount options.
19:01:33 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x15, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:33 executing program 0 (fault-call:0 fault-nth:18):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  462.099430][T13137] FAULT_INJECTION: forcing a failure.
[  462.099430][T13137] name failslab, interval 1, probability 0, space 0, times 0
[  462.119405][T13137] CPU: 2 PID: 13137 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  462.129184][T13137] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  462.129279][T13139] qnx6: invalid mount options.
[  462.139519][T13137] Call Trace:
[  462.139531][T13137]  dump_stack_lvl+0xcd/0x134
[  462.139554][T13137]  should_fail.cold+0x5/0xa
[  462.139573][T13137]  should_failslab+0x5/0x10
[  462.139594][T13137]  kmem_cache_alloc+0x58/0x540
[  462.139619][T13137]  security_file_alloc+0x34/0x170
[  462.139658][T13137]  __alloc_file+0xd8/0x280
[  462.139677][T13137]  alloc_empty_file+0x6d/0x170
[  462.139693][T13137]  path_openat+0xde/0x27f0
[  462.139715][T13137]  ? __lock_acquire+0x162f/0x54a0
[  462.139741][T13137]  ? path_lookupat+0x860/0x860
[  462.139763][T13137]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  462.139779][T13137]  do_filp_open+0x1aa/0x400
[  462.139793][T13137]  ? may_open_dev+0xf0/0xf0
[  462.139806][T13137]  ? alloc_fd+0x2f0/0x670
[  462.139825][T13137]  ? lock_downgrade+0x6e0/0x6e0
[  462.139847][T13137]  ? rwlock_bug.part.0+0x90/0x90
[  462.139869][T13137]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  462.257429][T13137]  ? _find_next_bit+0x1e3/0x260
[  462.263365][T13137]  ? _raw_spin_unlock+0x24/0x40
[  462.269594][T13137]  ? alloc_fd+0x2f0/0x670
[  462.275025][T13137]  do_sys_openat2+0x16d/0x420
[  462.281008][T13137]  ? build_open_flags+0x6f0/0x6f0
[  462.287658][T13137]  ? __context_tracking_exit+0xb8/0xe0
[  462.294893][T13137]  ? lock_downgrade+0x6e0/0x6e0
[  462.300917][T13137]  __x64_sys_openat+0x13f/0x1f0
[  462.307682][T13137]  ? __ia32_sys_open+0x1c0/0x1c0
[  462.314243][T13137]  ? syscall_enter_from_user_mode+0x21/0x70
[  462.321312][T13137]  do_syscall_64+0x35/0xb0
[  462.327037][T13137]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  462.333824][T13137] RIP: 0033:0x4196c4
[  462.338458][T13137] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  462.366635][T13137] RSP: 002b:00007f7d4cea9ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  462.376877][T13137] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196c4
[  462.386853][T13137] RDX: 0000000000000002 RSI: 00007f7d4ceaa000 RDI: 00000000ffffff9c
[  462.398521][T13137] RBP: 00007f7d4ceaa000 R08: 0000000000000000 R09: ffffffffffffffff
[  462.408324][T13137] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  462.418309][T13137] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
19:01:33 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x38, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  462.453401][T13139] qnx6: invalid mount options.
19:01:33 executing program 0 (fault-call:0 fault-nth:19):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  462.477703][T13148] qnx6: invalid mount options.
[  462.508942][T13151] FAULT_INJECTION: forcing a failure.
[  462.508942][T13151] name failslab, interval 1, probability 0, space 0, times 0
[  462.542956][T13148] qnx6: invalid mount options.
[  462.550554][T13151] CPU: 2 PID: 13151 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  462.560946][T13151] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  462.572993][T13151] Call Trace:
19:01:33 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x16, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  462.577426][T13151]  dump_stack_lvl+0xcd/0x134
[  462.584133][T13151]  should_fail.cold+0x5/0xa
[  462.590130][T13151]  ? tomoyo_realpath_from_path+0xc3/0x620
[  462.596783][T13151]  should_failslab+0x5/0x10
[  462.601923][T13151]  __kmalloc+0x7e/0x4d0
[  462.606359][T13151]  tomoyo_realpath_from_path+0xc3/0x620
[  462.613335][T13151]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  462.621512][T13151]  tomoyo_check_open_permission+0x272/0x380
[  462.628246][T13158] qnx6: invalid mount options.
[  462.629133][T13151]  ? tomoyo_path_number_perm+0x590/0x590
[  462.641811][T13151]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  462.649488][T13151]  ? path_get+0x5d/0x80
[  462.654635][T13151]  ? lock_downgrade+0x6e0/0x6e0
[  462.660959][T13151]  ? do_raw_spin_lock+0x120/0x2b0
[  462.667538][T13151]  tomoyo_file_open+0xa3/0xd0
[  462.673391][T13151]  security_file_open+0x52/0x4f0
[  462.679641][T13151]  do_dentry_open+0x353/0x11d0
[  462.685741][T13151]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  462.693466][T13151]  ? may_open+0x1f6/0x420
[  462.698800][T13151]  path_openat+0x1c23/0x27f0
[  462.704546][T13151]  ? path_lookupat+0x860/0x860
[  462.710352][T13151]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  462.718257][T13151]  do_filp_open+0x1aa/0x400
[  462.723666][T13151]  ? may_open_dev+0xf0/0xf0
[  462.728713][T13151]  ? rwlock_bug.part.0+0x90/0x90
[  462.734478][T13151]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  462.741976][T13151]  ? _find_next_bit+0x1e3/0x260
[  462.747806][T13151]  ? _raw_spin_unlock+0x24/0x40
[  462.753371][T13151]  ? alloc_fd+0x2f0/0x670
[  462.758779][T13151]  do_sys_openat2+0x16d/0x420
[  462.765301][T13151]  ? build_open_flags+0x6f0/0x6f0
[  462.772242][T13151]  ? __context_tracking_exit+0xb8/0xe0
[  462.779692][T13151]  ? lock_downgrade+0x6e0/0x6e0
[  462.786195][T13151]  __x64_sys_openat+0x13f/0x1f0
[  462.791928][T13151]  ? __ia32_sys_open+0x1c0/0x1c0
[  462.798161][T13151]  ? syscall_enter_from_user_mode+0x21/0x70
[  462.805956][T13151]  do_syscall_64+0x35/0xb0
[  462.810755][T13151]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  462.817675][T13151] RIP: 0033:0x4196c4
[  462.823033][T13151] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  462.847810][T13151] RSP: 002b:00007f7d4cea9ed0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  462.858242][T13151] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 00000000004196c4
[  462.868409][T13151] RDX: 0000000000000002 RSI: 00007f7d4ceaa000 RDI: 00000000ffffff9c
[  462.878326][T13151] RBP: 00007f7d4ceaa000 R08: 0000000000000000 R09: ffffffffffffffff
[  462.886603][T13151] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  462.895586][T13151] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
19:01:33 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x4)
sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=ANY=[@ANYBLOB='$'], 0x24}}, 0x0)

[  462.908163][T13151] ERROR: Out of memory at tomoyo_realpath_from_path.
[  462.918527][T13151] qnx6: invalid mount options.
[  462.937894][T13164] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=13164 comm=syz-executor.1
[  462.970778][T13158] qnx6: invalid mount options.
19:01:33 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x48, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:33 executing program 1:
r0 = socket$unix(0x1, 0x1, 0x0)
ioctl$FICLONE(r0, 0x541b, 0xffffffffffffffff)

19:01:33 executing program 0 (fault-call:0 fault-nth:20):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  463.052868][T13172] FAULT_INJECTION: forcing a failure.
[  463.052868][T13172] name failslab, interval 1, probability 0, space 0, times 0
19:01:34 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x17, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  463.069570][T13172] CPU: 2 PID: 13172 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  463.072320][T13174] qnx6: invalid mount options.
[  463.080445][T13172] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  463.080461][T13172] Call Trace:
[  463.080480][T13172]  dump_stack_lvl+0xcd/0x134
[  463.080502][T13172]  should_fail.cold+0x5/0xa
[  463.080521][T13172]  ? alloc_workqueue+0x16d/0xef0
[  463.080557][T13172]  should_failslab+0x5/0x10
[  463.080575][T13172]  __kmalloc+0x7e/0x4d0
[  463.080589][T13172]  alloc_workqueue+0x16d/0xef0
[  463.080612][T13172]  ? __mutex_lock+0x5bf/0x10a0
[  463.080630][T13172]  ? _raw_spin_unlock+0x24/0x40
[  463.080644][T13172]  ? loop_configure+0xc2/0x1580
[  463.080694][T13172]  ? loop_set_status_from_info+0xa60/0xa60
[  463.080709][T13172]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  463.080728][T13172]  ? mutex_lock_io_nested+0xf00/0xf00
[  463.080745][T13172]  ? memcpy+0x39/0x60
[  463.080769][T13172]  ? loop_configure+0x416/0x1580
[  463.136794][T13179] qnx6: invalid mount options.
[  463.141058][T13172]  loop_configure+0x4d8/0x1580
[  463.203398][T13172]  lo_ioctl+0x403/0x1600
[  463.208789][T13172]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  463.217306][T13172]  ? loop_set_status_old+0x250/0x250
[  463.224868][T13172]  ? avc_ss_reset+0x170/0x170
[  463.231517][T13172]  ? kfree+0x1cc/0x2c0
[  463.236839][T13172]  ? tomoyo_path_number_perm+0x441/0x590
[  463.244669][T13172]  ? lockdep_hardirqs_on+0x79/0x100
[  463.251660][T13172]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  463.259766][T13172]  ? tomoyo_path_number_perm+0x24e/0x590
[  463.267411][T13172]  ? selinux_file_ioctl+0x10f/0x5d0
[  463.274810][T13172]  ? selinux_inode_getsecctx+0x90/0x90
[  463.282320][T13172]  ? loop_set_status_old+0x250/0x250
[  463.289516][T13172]  blkdev_ioctl+0x2a1/0x6d0
[  463.297406][T13172]  ? blkdev_common_ioctl+0x1830/0x1830
[  463.305014][T13172]  ? __fget_files+0x23d/0x3e0
[  463.311406][T13172]  block_ioctl+0xf9/0x140
[  463.317295][T13172]  ? bd_unlink_disk_holder+0x430/0x430
[  463.324776][T13172]  __x64_sys_ioctl+0x193/0x200
[  463.331327][T13172]  do_syscall_64+0x35/0xb0
[  463.337714][T13172]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  463.345218][T13172] RIP: 0033:0x466397
[  463.349721][T13172] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  463.374484][T13172] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  463.386351][T13172] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397
[  463.395829][T13172] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  463.405634][T13172] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  463.414731][T13172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  463.423434][T13172] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
19:01:34 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000180)={0x9, 0x9, 0x2, 0x8}, 0x40)

19:01:34 executing program 0 (fault-call:0 fault-nth:21):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:34 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
recvmsg(r0, &(0x7f00000014c0)={0x0, 0x0, 0x0}, 0x40010043)

[  463.489814][T13179] qnx6: invalid mount options.
[  463.510217][T13174] qnx6: invalid mount options.
19:01:34 executing program 1:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_ifreq(r0, 0x891b, &(0x7f0000000000)={'vlan0\x00', @ifru_flags})

[  463.528896][T13191] FAULT_INJECTION: forcing a failure.
[  463.528896][T13191] name failslab, interval 1, probability 0, space 0, times 0
[  463.545649][T13191] CPU: 2 PID: 13191 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  463.556894][T13191] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  463.568217][T13191] Call Trace:
[  463.572542][T13191]  dump_stack_lvl+0xcd/0x134
[  463.577988][T13191]  should_fail.cold+0x5/0xa
[  463.583967][T13191]  ? tomoyo_realpath_from_path+0xc3/0x620
[  463.590687][T13191]  should_failslab+0x5/0x10
[  463.595470][T13191]  __kmalloc+0x7e/0x4d0
[  463.600103][T13191]  tomoyo_realpath_from_path+0xc3/0x620
[  463.607105][T13191]  ? tomoyo_profile+0x42/0x50
[  463.613300][T13191]  tomoyo_path_number_perm+0x1d5/0x590
[  463.620997][T13191]  ? tomoyo_path_number_perm+0x18d/0x590
[  463.629144][T13191]  ? tomoyo_execute_permission+0x4a0/0x4a0
[  463.638029][T13191]  ? lock_downgrade+0x6e0/0x6e0
[  463.645285][T13191]  ? __fget_files+0x23d/0x3e0
[  463.651500][T13191]  security_file_ioctl+0x50/0xb0
[  463.657422][T13191]  __x64_sys_ioctl+0xb3/0x200
[  463.662521][T13191]  do_syscall_64+0x35/0xb0
[  463.667308][T13191]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  463.673784][T13191] RIP: 0033:0x466397
[  463.678192][T13191] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  463.701031][T13191] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  463.712226][T13191] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397
[  463.721650][T13191] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  463.731835][T13191] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  463.742259][T13191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  463.751233][T13191] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  463.762760][T13191] ERROR: Out of memory at tomoyo_realpath_from_path.
[  463.776074][T13191] qnx6: invalid mount options.
19:01:34 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x4c, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:34 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x48, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:34 executing program 1:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x4c, 0x14, 0x1}, 0x4c}}, 0x0)

[  463.847221][T13199] qnx6: invalid mount options.
[  463.860014][T13203] qnx6: invalid mount options.
19:01:34 executing program 0 (fault-call:0 fault-nth:22):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:34 executing program 1:
r0 = socket$unix(0x1, 0x5, 0x0)
r1 = dup(r0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000001240), r1)

[  463.918442][T13199] qnx6: invalid mount options.
[  463.931062][T13213] FAULT_INJECTION: forcing a failure.
[  463.931062][T13213] name failslab, interval 1, probability 0, space 0, times 0
[  463.952947][T13213] CPU: 3 PID: 13213 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  463.967820][T13213] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  463.983242][T13213] Call Trace:
[  463.988960][T13213]  dump_stack_lvl+0xcd/0x134
[  463.996500][T13213]  should_fail.cold+0x5/0xa
[  464.004299][T13213]  ? apply_wqattrs_prepare+0xac/0x890
[  464.012412][T13213]  should_failslab+0x5/0x10
[  464.019734][T13213]  __kmalloc+0x7e/0x4d0
[  464.026748][T13213]  apply_wqattrs_prepare+0xac/0x890
[  464.035627][T13213]  apply_workqueue_attrs_locked+0xc1/0x140
[  464.045090][T13213]  alloc_workqueue+0xafb/0xef0
[  464.052726][T13213]  ? _raw_spin_unlock+0x24/0x40
[  464.060503][T13213]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  464.069989][T13213]  ? memcpy+0x39/0x60
[  464.076831][T13213]  ? loop_configure+0x416/0x1580
[  464.084684][T13213]  loop_configure+0x4d8/0x1580
[  464.092157][T13213]  lo_ioctl+0x403/0x1600
[  464.099072][T13213]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
19:01:35 executing program 1:
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000040)={0xffffffffffffffff, 0x12, 0x0, 0x0, 0x0}, 0x20)

[  464.108800][T13213]  ? loop_set_status_old+0x250/0x250
[  464.117015][T13213]  ? avc_ss_reset+0x170/0x170
[  464.124168][T13213]  ? kfree+0x1cc/0x2c0
[  464.130347][T13213]  ? tomoyo_path_number_perm+0x441/0x590
[  464.138878][T13213]  ? lockdep_hardirqs_on+0x79/0x100
[  464.147217][T13213]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
19:01:35 executing program 1:
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}}}}}]}}, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000940)={{0x12, 0x1, 0x0, 0x34, 0x5a, 0xcb, 0x0, 0x499, 0x1012, 0x5242, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xab, 0x1d, 0x4f}}]}}]}}, 0x0)

[  464.156359][T13213]  ? tomoyo_path_number_perm+0x24e/0x590
[  464.164978][T13213]  ? selinux_file_ioctl+0x10f/0x5d0
[  464.173070][T13213]  ? selinux_inode_getsecctx+0x90/0x90
[  464.181975][T13213]  ? loop_set_status_old+0x250/0x250
[  464.190470][T13213]  blkdev_ioctl+0x2a1/0x6d0
[  464.197513][T13213]  ? blkdev_common_ioctl+0x1830/0x1830
[  464.205976][T13213]  ? __fget_files+0x23d/0x3e0
[  464.213290][T13213]  block_ioctl+0xf9/0x140
[  464.219879][T13213]  ? bd_unlink_disk_holder+0x430/0x430
[  464.228253][T13213]  __x64_sys_ioctl+0x193/0x200
[  464.235885][T13213]  do_syscall_64+0x35/0xb0
[  464.242295][T13213]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  464.251672][T13213] RIP: 0033:0x466397
[  464.257564][T13213] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  464.289040][T13213] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  464.302377][T13213] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397
[  464.314969][T13213] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  464.327234][T13213] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  464.339586][T13213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  464.353270][T13213] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  464.381940][T13203] qnx6: invalid mount options.
19:01:35 executing program 0 (fault-call:0 fault-nth:23):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:35 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x68, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  464.429211][T13226] FAULT_INJECTION: forcing a failure.
[  464.429211][T13226] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  464.443896][T13226] CPU: 0 PID: 13226 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  464.453367][T13226] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  464.459073][T13228] qnx6: invalid mount options.
[  464.462923][T13226] Call Trace:
[  464.462936][T13226]  dump_stack_lvl+0xcd/0x134
[  464.462959][T13226]  should_fail.cold+0x5/0xa
[  464.462977][T13226]  prepare_alloc_pages+0x17b/0x580
[  464.462999][T13226]  __alloc_pages+0x12f/0x500
[  464.463016][T13226]  ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0
[  464.501485][T13226]  ? find_held_lock+0x2d/0x110
[  464.507075][T13226]  ? lock_downgrade+0x6e0/0x6e0
[  464.513129][T13226]  ? do_raw_spin_lock+0x120/0x2b0
[  464.518468][T13226]  cache_grow_begin+0x75/0x460
[  464.523647][T13226]  ____cache_alloc_node+0x171/0x1d0
[  464.530173][T13226]  ? tomoyo_realpath_from_path+0xc3/0x620
[  464.537219][T13226]  __kmalloc+0x367/0x4d0
[  464.541880][T13226]  tomoyo_realpath_from_path+0xc3/0x620
[  464.548494][T13226]  ? tomoyo_profile+0x42/0x50
[  464.554092][T13226]  tomoyo_path_number_perm+0x1d5/0x590
[  464.560617][T13226]  ? tomoyo_path_number_perm+0x18d/0x590
[  464.567634][T13226]  ? tomoyo_execute_permission+0x4a0/0x4a0
[  464.574837][T13226]  ? lock_downgrade+0x6e0/0x6e0
[  464.580630][T13226]  ? __fget_files+0x23d/0x3e0
[  464.586570][T13226]  security_file_ioctl+0x50/0xb0
[  464.592498][T13226]  __x64_sys_ioctl+0xb3/0x200
[  464.598085][T13226]  do_syscall_64+0x35/0xb0
[  464.603128][T13226]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  464.610429][T13226] RIP: 0033:0x466397
[  464.614997][T13226] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  464.639461][T13226] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  464.649072][T13226] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397
[  464.659067][T13226] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  464.670152][T13226] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  464.679139][T13226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  464.689256][T13226] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  464.705443][   T73] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  464.710581][T13226] qnx6: invalid mount options.
19:01:35 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x4c, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  464.773238][T13228] qnx6: invalid mount options.
[  464.777084][T13234] qnx6: invalid mount options.
19:01:35 executing program 0 (fault-call:0 fault-nth:24):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  464.845103][T13241] FAULT_INJECTION: forcing a failure.
[  464.845103][T13241] name failslab, interval 1, probability 0, space 0, times 0
[  464.864546][T13241] CPU: 0 PID: 13241 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  464.865083][T13234] qnx6: invalid mount options.
[  464.876153][T13241] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
19:01:35 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x6c, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  464.876193][T13241] Call Trace:
[  464.876211][T13241]  dump_stack_lvl+0xcd/0x134
[  464.876245][T13241]  should_fail.cold+0x5/0xa
[  464.876275][T13241]  ? tomoyo_realpath_from_path+0xc3/0x620
[  464.917756][T13241]  should_failslab+0x5/0x10
[  464.923842][T13241]  __kmalloc+0x7e/0x4d0
[  464.929764][T13241]  tomoyo_realpath_from_path+0xc3/0x620
[  464.930434][T13246] qnx6: invalid mount options.
[  464.936929][T13241]  ? tomoyo_profile+0x42/0x50
[  464.936969][T13241]  tomoyo_path_number_perm+0x1d5/0x590
[  464.937000][T13241]  ? tomoyo_path_number_perm+0x18d/0x590
[  464.937032][T13241]  ? tomoyo_execute_permission+0x4a0/0x4a0
[  464.937061][T13241]  ? lock_downgrade+0x6e0/0x6e0
[  464.978329][T13241]  ? __fget_files+0x23d/0x3e0
[  464.984155][T13241]  security_file_ioctl+0x50/0xb0
[  464.989873][T13241]  __x64_sys_ioctl+0xb3/0x200
[  464.996200][T13241]  do_syscall_64+0x35/0xb0
[  465.001852][T13241]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  465.009737][T13241] RIP: 0033:0x466397
[  465.014832][T13241] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  465.040219][T13241] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  465.050877][T13241] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397
[  465.060828][T13241] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  465.070215][T13241] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  465.080198][T13241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  465.090651][T13241] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  465.102787][T13241] ERROR: Out of memory at tomoyo_realpath_from_path.
[  465.115408][T13241] qnx6: invalid mount options.
[  465.135274][T13246] qnx6: invalid mount options.
[  465.144719][   T73] usb 6-1: Using ep0 maxpacket: 16
19:01:36 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x68, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:36 executing program 0 (fault-call:0 fault-nth:25):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  465.211804][T13256] qnx6: invalid mount options.
[  465.275661][   T73] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  465.282478][T13256] qnx6: invalid mount options.
[  465.298816][T13260] FAULT_INJECTION: forcing a failure.
[  465.298816][T13260] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  465.322164][T13260] CPU: 2 PID: 13260 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  465.336234][T13260] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  465.349918][T13260] Call Trace:
[  465.355144][T13260]  dump_stack_lvl+0xcd/0x134
[  465.362326][T13260]  should_fail.cold+0x5/0xa
[  465.369343][T13260]  prepare_alloc_pages+0x17b/0x580
[  465.377159][T13260]  __alloc_pages+0x12f/0x500
[  465.384340][T13260]  ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0
[  465.394569][T13260]  ? find_held_lock+0x2d/0x110
[  465.402471][T13260]  cache_grow_begin+0x75/0x460
[  465.409698][T13260]  ? cache_alloc_pfmemalloc+0x1e/0x140
[  465.418395][T13260]  cache_alloc_refill+0x27f/0x380
[  465.425963][T13260]  ? tomoyo_realpath_from_path+0xc3/0x620
[  465.434793][T13260]  __kmalloc+0x3d5/0x4d0
[  465.441634][T13260]  tomoyo_realpath_from_path+0xc3/0x620
[  465.450208][T13260]  ? tomoyo_profile+0x42/0x50
[  465.457468][T13260]  tomoyo_path_number_perm+0x1d5/0x590
[  465.465798][T13260]  ? tomoyo_path_number_perm+0x18d/0x590
[  465.474279][T13260]  ? tomoyo_execute_permission+0x4a0/0x4a0
[  465.483164][T13260]  ? lock_downgrade+0x6e0/0x6e0
[  465.490204][T13260]  ? __fget_files+0x23d/0x3e0
[  465.497233][T13260]  security_file_ioctl+0x50/0xb0
[  465.504875][T13260]  __x64_sys_ioctl+0xb3/0x200
[  465.511967][T13260]  do_syscall_64+0x35/0xb0
[  465.518927][T13260]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  465.528178][T13260] RIP: 0033:0x466397
[  465.534056][T13260] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  465.563481][T13260] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  465.579088][T13260] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397
[  465.590968][T13260] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  465.604527][T13260] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  465.617205][T13260] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  465.631302][T13260] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  465.649264][   T73] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  465.664564][   T73] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  465.677781][T13260] qnx6: invalid mount options.
[  465.682200][   T73] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  465.702846][   T73] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  465.723038][   T73] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  465.931432][   T73] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  465.945239][   T73] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  465.959074][   T73] usb 6-1: Product: syz
[  465.964118][   T73] usb 6-1: Manufacturer: syz
[  465.972205][   T73] usb 6-1: SerialNumber: syz
[  466.221350][T13220] udc-core: couldn't find an available UDC or it's busy
[  466.231211][T13220] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  466.280594][   T73] cdc_ncm 6-1:1.0: bind() failure
[  466.294338][   T73] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[  466.310595][   T73] cdc_ncm 6-1:1.1: bind() failure
[  466.322680][   T73] usb 6-1: USB disconnect, device number 8
[  467.046673][ T3025] usb 6-1: new high-speed USB device number 9 using dummy_hcd
19:01:38 executing program 1:
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_ifreq(r0, 0x89a3, &(0x7f0000000000)={'bridge0\x00', @ifru_flags})

19:01:38 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x74, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:38 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x6c, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:38 executing program 0 (fault-call:0 fault-nth:26):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  467.332303][T13283] qnx6: invalid mount options.
[  467.350071][T13282] qnx6: invalid mount options.
[  467.361699][T13287] FAULT_INJECTION: forcing a failure.
19:01:38 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x74, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  467.361699][T13287] name failslab, interval 1, probability 0, space 0, times 0
[  467.380471][T13287] CPU: 3 PID: 13287 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  467.390809][T13287] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  467.401489][T13287] Call Trace:
[  467.405293][T13287]  dump_stack_lvl+0xcd/0x134
[  467.410535][T13287]  should_fail.cold+0x5/0xa
[  467.415599][T13287]  should_failslab+0x5/0x10
[  467.420755][T13287]  kmem_cache_alloc_trace+0x57/0x480
[  467.428095][T13287]  alloc_workqueue_attrs+0x38/0x80
[  467.434105][T13287]  apply_wqattrs_prepare+0xbc/0x890
[  467.440204][T13287]  apply_workqueue_attrs_locked+0xc1/0x140
[  467.446427][T13287]  alloc_workqueue+0xafb/0xef0
[  467.451618][T13287]  ? _raw_spin_unlock+0x24/0x40
[  467.458133][T13287]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  467.464148][T13287]  ? memcpy+0x39/0x60
[  467.468271][T13287]  ? loop_configure+0x416/0x1580
[  467.473053][T13287]  loop_configure+0x4d8/0x1580
[  467.478149][T13287]  lo_ioctl+0x403/0x1600
[  467.484680][T13287]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  467.494042][T13287]  ? loop_set_status_old+0x250/0x250
[  467.500138][T13287]  ? avc_ss_reset+0x170/0x170
[  467.504660][T13287]  ? kfree+0x1cc/0x2c0
[  467.508832][T13287]  ? tomoyo_path_number_perm+0x441/0x590
[  467.514548][ T3025] usb 6-1: device not accepting address 9, error -71
[  467.514626][T13287]  ? lockdep_hardirqs_on+0x79/0x100
[  467.527576][T13287]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  467.534678][T13287]  ? tomoyo_path_number_perm+0x24e/0x590
[  467.541479][T13287]  ? selinux_file_ioctl+0x10f/0x5d0
[  467.547534][T13287]  ? selinux_inode_getsecctx+0x90/0x90
[  467.554958][T13287]  ? loop_set_status_old+0x250/0x250
[  467.561158][T13287]  blkdev_ioctl+0x2a1/0x6d0
[  467.565828][T13287]  ? blkdev_common_ioctl+0x1830/0x1830
[  467.571413][T13287]  ? __fget_files+0x23d/0x3e0
[  467.576278][T13287]  block_ioctl+0xf9/0x140
[  467.580602][T13287]  ? bd_unlink_disk_holder+0x430/0x430
[  467.586593][T13287]  __x64_sys_ioctl+0x193/0x200
[  467.591778][T13287]  do_syscall_64+0x35/0xb0
[  467.596290][T13287]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  467.602352][T13287] RIP: 0033:0x466397
[  467.606447][T13287] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  467.625856][T13287] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  467.634855][T13287] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397
[  467.642925][T13287] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  467.650842][T13287] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  467.659726][T13287] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  467.668766][T13287] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  467.723243][T13282] qnx6: invalid mount options.
19:01:38 executing program 1:
socketpair(0x1e, 0x5, 0x0, &(0x7f0000000680)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$nfc_llcp(r0, &(0x7f0000000640)={0x0, 0x0, 0x0}, 0x0)

[  467.747594][T13294] qnx6: invalid mount options.
19:01:38 executing program 0 (fault-call:0 fault-nth:27):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:38 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x7a, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:38 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1}, 0x40)

[  467.822771][T13294] qnx6: invalid mount options.
19:01:38 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000140), 0x7, 0x102)
pwrite64(r0, &(0x7f0000000300)='i', 0x1, 0x0)

[  467.857200][T13301] FAULT_INJECTION: forcing a failure.
[  467.857200][T13301] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  467.880861][T13301] CPU: 2 PID: 13301 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  467.882478][T13307] qnx6: invalid mount options.
[  467.892001][T13301] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  467.892016][T13301] Call Trace:
19:01:38 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0xa)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000004d80)=ANY=[@ANYBLOB="ce"], 0x38}}, 0x0)

[  467.892024][T13301]  dump_stack_lvl+0xcd/0x134
[  467.892061][T13301]  should_fail.cold+0x5/0xa
[  467.892080][T13301]  prepare_alloc_pages+0x17b/0x580
[  467.892104][T13301]  __alloc_pages+0x12f/0x500
[  467.892122][T13301]  ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0
[  467.892143][T13301]  ? find_held_lock+0x2d/0x110
[  467.892160][T13301]  cache_grow_begin+0x75/0x460
[  467.892179][T13301]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  467.892196][T13301]  fallback_alloc+0x1e4/0x2e0
[  467.892209][T13301]  ? tomoyo_realpath_from_path+0xc3/0x620
[  467.892227][T13301]  __kmalloc+0x367/0x4d0
[  467.892266][T13301]  tomoyo_realpath_from_path+0xc3/0x620
[  467.892287][T13301]  ? tomoyo_profile+0x42/0x50
[  467.892301][T13301]  tomoyo_path_number_perm+0x1d5/0x590
[  467.892318][T13301]  ? tomoyo_path_number_perm+0x18d/0x590
[  467.892349][T13301]  ? tomoyo_execute_permission+0x4a0/0x4a0
19:01:38 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x7a, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:39 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_LBT_MODE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000080)={0x14, 0x0, 0x0, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV, @NL802154_ATTR_LBT_MODE]}, 0x9dfb7d8f3f2b7eb7}}, 0x0)

[  467.892367][T13301]  ? lock_downgrade+0x6e0/0x6e0
[  467.892382][T13301]  ? __fget_files+0x23d/0x3e0
[  467.892399][T13301]  security_file_ioctl+0x50/0xb0
[  467.892422][T13301]  __x64_sys_ioctl+0xb3/0x200
[  467.892439][T13301]  do_syscall_64+0x35/0xb0
[  467.892457][T13301]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  467.892485][T13301] RIP: 0033:0x466397
19:01:39 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000000), 0x1, 0x0)
pread64(r0, 0x0, 0x0, 0x0)

[  467.892498][T13301] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  467.892515][T13301] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  467.892576][T13301] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397
[  467.892600][T13301] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  467.892615][T13301] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  467.892631][T13301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  467.892640][T13301] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  467.900263][T13301] ERROR: Out of memory at tomoyo_realpath_from_path.
[  467.903679][T13301] qnx6: invalid mount options.
[  468.028738][T13316] qnx6: invalid mount options.
[  468.213266][T13307] qnx6: invalid mount options.
19:01:39 executing program 0 (fault-call:0 fault-nth:28):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  468.250405][T13316] qnx6: invalid mount options.
[  468.282092][T13330] FAULT_INJECTION: forcing a failure.
[  468.282092][T13330] name failslab, interval 1, probability 0, space 0, times 0
19:01:39 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0xa8, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:39 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_LISTALL(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f00000006c0)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000680)={0x0}}, 0x0)

[  468.304102][T13330] CPU: 2 PID: 13330 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  468.318639][T13330] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  468.333927][T13330] Call Trace:
19:01:39 executing program 1:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000200)='reno\x00', 0x5)

[  468.339993][T13330]  dump_stack_lvl+0xcd/0x134
[  468.349018][T13330]  should_fail.cold+0x5/0xa
[  468.357018][T13330]  should_failslab+0x5/0x10
[  468.363858][T13330]  kmem_cache_alloc_trace+0x57/0x480
[  468.370693][T13330]  alloc_workqueue_attrs+0x38/0x80
[  468.377489][T13330]  apply_wqattrs_prepare+0xbc/0x890
[  468.384794][T13330]  apply_workqueue_attrs_locked+0xc1/0x140
[  468.393058][T13330]  alloc_workqueue+0xafb/0xef0
[  468.399765][T13330]  ? _raw_spin_unlock+0x24/0x40
[  468.406796][T13330]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  468.413623][T13330]  ? memcpy+0x39/0x60
[  468.419841][T13330]  ? loop_configure+0x416/0x1580
[  468.426493][T13330]  loop_configure+0x4d8/0x1580
[  468.433126][T13330]  lo_ioctl+0x403/0x1600
[  468.438665][T13330]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  468.447093][T13330]  ? loop_set_status_old+0x250/0x250
[  468.454733][T13330]  ? avc_ss_reset+0x170/0x170
[  468.461395][T13330]  ? kfree+0x1cc/0x2c0
[  468.466226][T13330]  ? tomoyo_path_number_perm+0x441/0x590
[  468.473530][T13330]  ? lockdep_hardirqs_on+0x79/0x100
[  468.480773][T13330]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  468.488772][T13330]  ? tomoyo_path_number_perm+0x24e/0x590
[  468.494959][T13330]  ? selinux_file_ioctl+0x10f/0x5d0
[  468.500615][T13330]  ? selinux_inode_getsecctx+0x90/0x90
[  468.506483][T13330]  ? loop_set_status_old+0x250/0x250
[  468.511867][T13330]  blkdev_ioctl+0x2a1/0x6d0
[  468.516648][T13330]  ? blkdev_common_ioctl+0x1830/0x1830
[  468.522816][T13330]  ? __fget_files+0x23d/0x3e0
[  468.527695][T13330]  block_ioctl+0xf9/0x140
[  468.533044][T13330]  ? bd_unlink_disk_holder+0x430/0x430
[  468.540049][T13330]  __x64_sys_ioctl+0x193/0x200
[  468.546377][T13330]  do_syscall_64+0x35/0xb0
[  468.552565][T13330]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  468.559517][T13330] RIP: 0033:0x466397
[  468.563721][T13330] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  468.586815][T13330] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  468.599041][T13330] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397
[  468.610883][T13330] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  468.622371][T13330] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  468.634432][T13330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  468.646505][T13330] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
19:01:39 executing program 1:
r0 = timerfd_create(0x1, 0x0)
timerfd_settime(r0, 0x1, &(0x7f00000001c0)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)

[  468.669279][T13336] qnx6: invalid mount options.
19:01:39 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0xfe, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:39 executing program 1:
r0 = timerfd_create(0x8, 0x0)
timerfd_settime(r0, 0x0, &(0x7f0000000180)={{0x77359400}, {0x77359400}}, 0x0)
timerfd_settime(r0, 0x0, &(0x7f0000000000)={{}, {0x77359400}}, 0x0)

19:01:39 executing program 0 (fault-call:0 fault-nth:29):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  468.735305][T13336] qnx6: invalid mount options.
[  468.772190][T13351] FAULT_INJECTION: forcing a failure.
19:01:39 executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_LBT_MODE(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000580)={0x14}, 0x14}, 0x6}, 0x0)

[  468.772190][T13351] name failslab, interval 1, probability 0, space 0, times 0
[  468.798029][T13351] CPU: 0 PID: 13351 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
19:01:39 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0xfe, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  468.812270][T13351] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  468.824436][T13351] Call Trace:
[  468.828288][T13352] qnx6: invalid mount options.
[  468.828784][T13351]  dump_stack_lvl+0xcd/0x134
[  468.844397][T13351]  should_fail.cold+0x5/0xa
19:01:39 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000180)={0x0, 0x4000, &(0x7f0000000140)={&(0x7f0000000100)={0x14}, 0x14}, 0x300}, 0x0)

[  468.852086][T13351]  ? alloc_workqueue+0x16d/0xef0
[  468.860826][T13351]  should_failslab+0x5/0x10
[  468.864629][T13357] qnx6: invalid mount options.
[  468.868313][T13351]  __kmalloc+0x7e/0x4d0
[  468.881468][T13351]  alloc_workqueue+0x16d/0xef0
[  468.888972][T13351]  ? __mutex_lock+0x5bf/0x10a0
[  468.896377][T13351]  ? _raw_spin_unlock+0x24/0x40
[  468.903932][T13351]  ? loop_configure+0xc2/0x1580
[  468.911286][T13351]  ? loop_set_status_from_info+0xa60/0xa60
[  468.919647][T13351]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  468.928192][T13351]  ? mutex_lock_io_nested+0xf00/0xf00
[  468.936368][T13351]  ? memcpy+0x39/0x60
[  468.942743][T13351]  ? loop_configure+0x416/0x1580
[  468.950561][T13351]  loop_configure+0x4d8/0x1580
[  468.957835][T13351]  lo_ioctl+0x403/0x1600
[  468.964232][T13351]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
19:01:39 executing program 1:
r0 = timerfd_create(0x0, 0x0)
timerfd_settime(r0, 0x0, &(0x7f0000000000)={{0x77359400}, {0x77359400}}, 0x0)
timerfd_settime(r0, 0x0, &(0x7f00000001c0)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)

19:01:39 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000040), 0x10000000000002, 0x0)
ioctl$FICLONE(r0, 0x541b, 0xffffffffffffffff)

[  468.973837][T13351]  ? loop_set_status_old+0x250/0x250
[  468.990652][T13351]  ? avc_ss_reset+0x170/0x170
[  468.997208][T13351]  ? kfree+0x1cc/0x2c0
[  469.002788][T13351]  ? tomoyo_path_number_perm+0x441/0x590
[  469.010308][T13351]  ? lockdep_hardirqs_on+0x79/0x100
[  469.017250][T13351]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  469.025188][T13351]  ? tomoyo_path_number_perm+0x24e/0x590
[  469.032777][T13351]  ? selinux_file_ioctl+0x10f/0x5d0
[  469.038215][T13351]  ? selinux_inode_getsecctx+0x90/0x90
[  469.043702][T13351]  ? loop_set_status_old+0x250/0x250
[  469.050014][T13351]  blkdev_ioctl+0x2a1/0x6d0
[  469.054873][T13351]  ? blkdev_common_ioctl+0x1830/0x1830
[  469.060975][T13351]  ? __fget_files+0x23d/0x3e0
[  469.066471][T13351]  block_ioctl+0xf9/0x140
[  469.071610][T13351]  ? bd_unlink_disk_holder+0x430/0x430
[  469.078144][T13351]  __x64_sys_ioctl+0x193/0x200
[  469.083906][T13351]  do_syscall_64+0x35/0xb0
[  469.090932][T13351]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  469.097545][T13351] RIP: 0033:0x466397
[  469.106460][T13351] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  469.130169][T13351] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  469.140091][T13351] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397
[  469.149502][T13351] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  469.158936][T13351] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  469.168306][T13351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  469.178261][T13351] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  469.247658][T13352] qnx6: invalid mount options.
[  469.253553][T13357] qnx6: invalid mount options.
19:01:40 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x300, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:40 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000000), 0x100002, 0x0)
r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000340), 0x60041, 0x0)
sendfile(r1, r0, 0x0, 0x8)

19:01:40 executing program 0 (fault-call:0 fault-nth:30):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  469.381818][T13375] loop2: detected capacity change from 0 to 1
[  469.383797][T13378] FAULT_INJECTION: forcing a failure.
[  469.383797][T13378] name failslab, interval 1, probability 0, space 0, times 0
[  469.411658][T13378] CPU: 3 PID: 13378 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  469.424067][T13375] qnx6: invalid mount options.
[  469.425315][T13378] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  469.425335][T13378] Call Trace:
19:01:40 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x1b3, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  469.450855][T13378]  dump_stack_lvl+0xcd/0x134
[  469.458463][T13378]  should_fail.cold+0x5/0xa
[  469.464233][T13378]  should_failslab+0x5/0x10
[  469.469895][T13378]  kmem_cache_alloc+0x58/0x540
[  469.475751][T13378]  ? kernfs_add_one+0x36a/0x4c0
[  469.481295][T13378]  __kernfs_new_node+0xd4/0x8b0
[  469.487244][T13378]  ? kernfs_path_from_node+0x60/0x60
[  469.491029][T13383] qnx6: invalid mount options.
[  469.493657][T13378]  ? __mutex_unlock_slowpath+0xe2/0x610
[  469.493682][T13378]  ? wait_for_completion_io+0x280/0x280
[  469.493701][T13378]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  469.493719][T13378]  ? kernfs_next_descendant_post+0x1a3/0x290
[  469.493739][T13378]  kernfs_new_node+0x93/0x120
[  469.493753][T13378]  __kernfs_create_file+0x51/0x350
[  469.536948][T13378]  sysfs_add_file_mode_ns+0x226/0x540
[  469.542806][T13378]  internal_create_group+0x328/0xb20
[  469.548834][T13378]  ? sysfs_remove_group+0x170/0x170
[  469.554514][T13378]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[  469.561726][T13378]  ? __loop_update_dio+0x2d2/0x690
[  469.568026][T13378]  loop_configure+0xc3b/0x1580
[  469.573408][T13378]  lo_ioctl+0x403/0x1600
[  469.579275][T13378]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  469.587159][T13378]  ? loop_set_status_old+0x250/0x250
[  469.593246][T13378]  ? avc_ss_reset+0x170/0x170
[  469.599736][T13378]  ? kfree+0x1cc/0x2c0
[  469.604895][T13378]  ? tomoyo_path_number_perm+0x441/0x590
[  469.612544][T13378]  ? lockdep_hardirqs_on+0x79/0x100
[  469.619663][T13378]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  469.628483][T13378]  ? tomoyo_path_number_perm+0x24e/0x590
[  469.636297][T13378]  ? selinux_file_ioctl+0x10f/0x5d0
[  469.642952][T13378]  ? selinux_inode_getsecctx+0x90/0x90
[  469.649788][T13378]  ? loop_set_status_old+0x250/0x250
[  469.656492][T13378]  blkdev_ioctl+0x2a1/0x6d0
[  469.661635][T13378]  ? blkdev_common_ioctl+0x1830/0x1830
[  469.667736][T13378]  ? __fget_files+0x23d/0x3e0
[  469.672680][T13378]  block_ioctl+0xf9/0x140
[  469.677396][T13378]  ? bd_unlink_disk_holder+0x430/0x430
[  469.683103][T13378]  __x64_sys_ioctl+0x193/0x200
[  469.688157][T13378]  do_syscall_64+0x35/0xb0
[  469.692845][T13378]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  469.700798][T13378] RIP: 0033:0x466397
[  469.705766][T13378] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  469.736161][T13378] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  469.747531][T13378] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397
[  469.758428][T13378] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  469.768683][T13378] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  469.779150][T13378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  469.789854][T13378] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  469.808885][T13378] qnx6: invalid mount options.
19:01:40 executing program 0 (fault-call:0 fault-nth:31):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:40 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000740)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000006c0)=[{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000080)="f3", 0x1}], 0x1}], 0x1, 0x0)
recvfrom$unix(r1, 0x0, 0x0, 0xdec732482e893bd6, 0x0, 0x0)

[  469.868536][T13383] qnx6: invalid mount options.
[  469.869641][T13375] loop2: detected capacity change from 0 to 1
[  469.887572][T13393] FAULT_INJECTION: forcing a failure.
[  469.887572][T13393] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  469.907136][T13375] qnx6: invalid mount options.
[  469.908929][T13393] CPU: 3 PID: 13393 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  469.908971][T13393] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  469.908992][T13393] Call Trace:
19:01:40 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff})
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0)
openat$zero(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
openat$zero(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
sendmmsg$unix(r1, &(0x7f00000009c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=[@rights={{0x14, 0x1, 0x1, [r0]}}, @rights={{0x10}}], 0x28}], 0x1, 0x0)

[  469.909008][T13393]  dump_stack_lvl+0xcd/0x134
[  469.909050][T13393]  should_fail.cold+0x5/0xa
[  469.909082][T13393]  prepare_alloc_pages+0x17b/0x580
[  469.970882][T13393]  __alloc_pages+0x12f/0x500
[  469.978279][T13393]  ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0
[  469.989204][T13393]  ? find_held_lock+0x2d/0x110
[  469.997329][T13393]  ? lock_downgrade+0x6e0/0x6e0
[  470.005154][T13393]  ? do_raw_spin_lock+0x120/0x2b0
[  470.013592][T13393]  cache_grow_begin+0x75/0x460
[  470.021758][T13393]  ____cache_alloc_node+0x171/0x1d0
[  470.031027][T13393]  ? tomoyo_realpath_from_path+0xc3/0x620
[  470.042091][T13393]  __kmalloc+0x367/0x4d0
[  470.048960][T13393]  tomoyo_realpath_from_path+0xc3/0x620
[  470.058342][T13393]  ? tomoyo_profile+0x42/0x50
[  470.065987][T13393]  tomoyo_path_number_perm+0x1d5/0x590
[  470.074888][T13393]  ? tomoyo_path_number_perm+0x18d/0x590
[  470.083890][T13393]  ? tomoyo_execute_permission+0x4a0/0x4a0
[  470.093071][T13393]  ? lock_downgrade+0x6e0/0x6e0
19:01:41 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_PROBE_MESH_LINK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)=ANY=[@ANYBLOB="10000000", @ANYRES16, @ANYBLOB="010028bd7000fcdbdf2588000000100099"], 0x4b0}}, 0x0)

[  470.100806][T13393]  ? __fget_files+0x23d/0x3e0
[  470.108615][T13393]  security_file_ioctl+0x50/0xb0
[  470.116778][T13393]  __x64_sys_ioctl+0xb3/0x200
[  470.124439][T13393]  do_syscall_64+0x35/0xb0
[  470.131077][T13393]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  470.141541][T13393] RIP: 0033:0x466397
[  470.147848][T13393] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  470.180475][T13393] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  470.193743][T13393] RAX: ffffffffffffffda RBX: 00007f7d4ceaa6bc RCX: 0000000000466397
[  470.206921][T13393] RDX: 0000000000000000 RSI: 0000000000004c01 RDI: 0000000000000005
[  470.218928][T13393] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  470.230779][T13393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000010
[  470.241949][T13393] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
19:01:41 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x500, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:41 executing program 1:
socketpair(0x1e, 0x5, 0x0, &(0x7f0000000680)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmsg$nfc_llcp(r0, &(0x7f0000000640)={&(0x7f0000000040)={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "58172ce467758f80cb6d3a35a4fd4b3168ad513e3cb2566f4e264eebfa7bb336c4284008c20683d72beba8ac6da9f9fc356c83ea67f1b7f2bf14fb193a2e29"}, 0x60, 0x0}, 0xea)

[  470.332244][T13393] qnx6: invalid mount options.
19:01:41 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x300, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:41 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000140), 0x5, 0x102)
pwrite64(r0, &(0x7f0000000300)='i', 0xfffffdef, 0x0)

[  470.379561][T13414] loop2: detected capacity change from 0 to 2
[  470.393829][T13414] qnx6: invalid mount options.
[  470.403254][T13415] loop3: detected capacity change from 0 to 1
19:01:41 executing program 0 (fault-call:0 fault-nth:32):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  470.420989][T13415] qnx6: invalid mount options.
[  470.462910][T13423] FAULT_INJECTION: forcing a failure.
19:01:41 executing program 1:
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000080)={&(0x7f0000000000)='./file0\x00'}, 0x10)
bpf$OBJ_GET_PROG(0x7, &(0x7f00000000c0)={&(0x7f0000000040)='./file0/file0\x00'}, 0x10)

[  470.462910][T13423] name failslab, interval 1, probability 0, space 0, times 0
[  470.484714][T13423] CPU: 3 PID: 13423 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  470.497819][T13423] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  470.499570][T13414] loop2: detected capacity change from 0 to 2
[  470.511698][T13423] Call Trace:
[  470.511714][T13423]  dump_stack_lvl+0xcd/0x134
[  470.511749][T13423]  should_fail.cold+0x5/0xa
[  470.511780][T13423]  should_failslab+0x5/0x10
[  470.511816][T13423]  kmem_cache_alloc+0x58/0x540
19:01:41 executing program 1:
socketpair(0x1e, 0x4, 0x0, &(0x7f0000000680)={<r0=>0xffffffffffffffff})
sendmmsg$nfc_llcp(r0, &(0x7f0000001c40)=[{0x0, 0x0, &(0x7f00000004c0)=[{0x0}, {&(0x7f00000002c0)='8', 0x1}], 0x2}], 0x1, 0x0)

[  470.522496][T13415] loop3: detected capacity change from 0 to 1
[  470.526157][T13423]  ? kernfs_add_one+0x36a/0x4c0
[  470.526202][T13423]  __kernfs_new_node+0xd4/0x8b0
[  470.526242][T13423]  ? kernfs_path_from_node+0x60/0x60
[  470.526273][T13423]  ? __mutex_unlock_slowpath+0xe2/0x610
[  470.526313][T13423]  ? wait_for_completion_io+0x280/0x280
[  470.526341][T13423]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  470.526368][T13423]  ? kernfs_next_descendant_post+0x1a3/0x290
[  470.526427][T13423]  kernfs_new_node+0x93/0x120
19:01:41 executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x541b, 0x0)

[  470.526458][T13423]  __kernfs_create_file+0x51/0x350
[  470.536249][T13415] qnx6: invalid mount options.
[  470.540249][T13423]  sysfs_add_file_mode_ns+0x226/0x540
[  470.560389][T13414] qnx6: invalid mount options.
[  470.562693][T13423]  internal_create_group+0x328/0xb20
[  470.677707][T13423]  ? sysfs_remove_group+0x170/0x170
[  470.684963][T13423]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[  470.693186][T13423]  ? __loop_update_dio+0x2d2/0x690
[  470.699703][T13423]  loop_configure+0xc3b/0x1580
[  470.706832][T13423]  lo_ioctl+0x403/0x1600
[  470.713357][T13423]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  470.721669][T13423]  ? loop_set_status_old+0x250/0x250
[  470.729108][T13423]  ? avc_ss_reset+0x170/0x170
[  470.735133][T13423]  ? kfree+0x1cc/0x2c0
[  470.741125][T13423]  ? tomoyo_path_number_perm+0x441/0x590
[  470.748732][T13423]  ? lockdep_hardirqs_on+0x79/0x100
[  470.755134][T13423]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  470.763505][T13423]  ? tomoyo_path_number_perm+0x24e/0x590
[  470.770389][T13423]  ? selinux_file_ioctl+0x10f/0x5d0
[  470.775963][T13423]  ? selinux_inode_getsecctx+0x90/0x90
[  470.781912][T13423]  ? loop_set_status_old+0x250/0x250
[  470.788496][T13423]  blkdev_ioctl+0x2a1/0x6d0
[  470.794265][T13423]  ? blkdev_common_ioctl+0x1830/0x1830
[  470.801355][T13423]  ? __fget_files+0x23d/0x3e0
[  470.807676][T13423]  block_ioctl+0xf9/0x140
[  470.813569][T13423]  ? bd_unlink_disk_holder+0x430/0x430
[  470.821651][T13423]  __x64_sys_ioctl+0x193/0x200
[  470.828087][T13423]  do_syscall_64+0x35/0xb0
[  470.834705][T13423]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  470.843213][T13423] RIP: 0033:0x466397
[  470.848621][T13423] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  470.874759][T13423] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  470.885565][T13423] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397
[  470.896246][T13423] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  470.906750][T13423] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  470.917655][T13423] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  470.928321][T13423] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  470.958531][T13423] qnx6: invalid mount options.
19:01:42 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x600, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:42 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000040), 0x10000000000002, 0x0)
ioctl$FICLONE(r0, 0x5460, 0xffffffffffffffff)

19:01:42 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x3e7, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:42 executing program 0 (fault-call:0 fault-nth:33):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  471.089560][T13444] loop3: detected capacity change from 0 to 1
19:01:42 executing program 1:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000280)=[{&(0x7f0000000040)=""/206, 0xce}], 0x1, 0x0, 0x0)

[  471.102188][T13445] loop2: detected capacity change from 0 to 3
[  471.118892][T13445] qnx6: invalid mount options.
[  471.123806][T13444] qnx6: invalid mount options.
[  471.135615][T13450] FAULT_INJECTION: forcing a failure.
[  471.135615][T13450] name failslab, interval 1, probability 0, space 0, times 0
[  471.153625][T13450] CPU: 2 PID: 13450 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  471.166954][T13450] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  471.180128][T13450] Call Trace:
[  471.186639][T13450]  dump_stack_lvl+0xcd/0x134
[  471.194349][T13450]  should_fail.cold+0x5/0xa
[  471.201511][T13450]  should_failslab+0x5/0x10
[  471.208374][T13450]  kmem_cache_alloc_trace+0x57/0x480
[  471.216280][T13450]  ? __kmalloc+0x22b/0x4d0
[  471.223124][T13450]  alloc_workqueue_attrs+0x38/0x80
[  471.231575][T13450]  apply_wqattrs_prepare+0xb4/0x890
[  471.239990][T13450]  apply_workqueue_attrs_locked+0xc1/0x140
[  471.249236][T13450]  alloc_workqueue+0xafb/0xef0
[  471.256691][T13450]  ? _raw_spin_unlock+0x24/0x40
[  471.264159][T13450]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  471.274206][T13450]  ? memcpy+0x39/0x60
[  471.280834][T13450]  ? loop_configure+0x416/0x1580
[  471.288495][T13450]  loop_configure+0x4d8/0x1580
[  471.296298][T13450]  lo_ioctl+0x403/0x1600
[  471.302951][T13450]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  471.313517][T13450]  ? loop_set_status_old+0x250/0x250
[  471.321756][T13450]  ? avc_ss_reset+0x170/0x170
[  471.328949][T13450]  ? kfree+0x1cc/0x2c0
[  471.335804][T13450]  ? tomoyo_path_number_perm+0x441/0x590
[  471.344357][T13450]  ? lockdep_hardirqs_on+0x79/0x100
[  471.352619][T13450]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  471.362494][T13450]  ? tomoyo_path_number_perm+0x24e/0x590
[  471.371573][T13450]  ? selinux_file_ioctl+0x10f/0x5d0
[  471.379726][T13450]  ? selinux_inode_getsecctx+0x90/0x90
[  471.388147][T13450]  ? loop_set_status_old+0x250/0x250
[  471.396568][T13450]  blkdev_ioctl+0x2a1/0x6d0
[  471.403392][T13450]  ? blkdev_common_ioctl+0x1830/0x1830
[  471.412071][T13450]  ? __fget_files+0x23d/0x3e0
[  471.419120][T13450]  block_ioctl+0xf9/0x140
[  471.426315][T13450]  ? bd_unlink_disk_holder+0x430/0x430
[  471.435228][T13450]  __x64_sys_ioctl+0x193/0x200
[  471.442430][T13450]  do_syscall_64+0x35/0xb0
[  471.449728][T13450]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  471.459129][T13450] RIP: 0033:0x466397
[  471.465383][T13450] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  471.496585][T13450] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  471.509931][T13450] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397
[  471.522438][T13450] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  471.535469][T13450] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  471.547872][T13450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  471.560336][T13450] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
19:01:42 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000740)={<r0=>0xffffffffffffffff})
ioctl$sock_ifreq(r0, 0x89a1, &(0x7f0000000000)={'batadv0\x00', @ifru_flags})

[  471.611820][T13444] loop3: detected capacity change from 0 to 1
[  471.613144][T13445] loop2: detected capacity change from 0 to 3
[  471.620937][T13444] qnx6: invalid mount options.
[  471.636165][T13445] qnx6: invalid mount options.
19:01:42 executing program 1:
r0 = syz_open_dev$rtc(&(0x7f0000000140), 0x5, 0x102)
pwrite64(r0, 0x0, 0x0, 0x0)

19:01:42 executing program 0 (fault-call:0 fault-nth:34):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  471.691143][T13462] FAULT_INJECTION: forcing a failure.
[  471.691143][T13462] name failslab, interval 1, probability 0, space 0, times 0
[  471.723758][T13462] CPU: 1 PID: 13462 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  471.733838][T13462] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  471.744037][T13462] Call Trace:
[  471.748097][T13462]  dump_stack_lvl+0xcd/0x134
[  471.753608][T13462]  should_fail.cold+0x5/0xa
[  471.759518][T13462]  ? kobject_get_path+0xbe/0x230
[  471.765252][T13462]  should_failslab+0x5/0x10
[  471.770428][T13462]  __kmalloc+0x7e/0x4d0
[  471.775172][T13462]  kobject_get_path+0xbe/0x230
[  471.780556][T13462]  kobject_uevent_env+0x265/0x1650
[  471.786529][T13462]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[  471.793369][T13462]  ? __loop_update_dio+0x2d2/0x690
[  471.799191][T13462]  loop_configure+0x1240/0x1580
[  471.805241][T13462]  lo_ioctl+0x403/0x1600
[  471.810048][T13462]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  471.817056][T13462]  ? loop_set_status_old+0x250/0x250
[  471.823011][T13462]  ? avc_ss_reset+0x170/0x170
[  471.828044][T13462]  ? kfree+0x1cc/0x2c0
[  471.832640][T13462]  ? tomoyo_path_number_perm+0x441/0x590
[  471.838949][T13462]  ? lockdep_hardirqs_on+0x79/0x100
[  471.844924][T13462]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  471.851590][T13462]  ? tomoyo_path_number_perm+0x24e/0x590
[  471.857488][T13462]  ? selinux_file_ioctl+0x10f/0x5d0
[  471.864054][T13462]  ? selinux_inode_getsecctx+0x90/0x90
[  471.870764][T13462]  ? loop_set_status_old+0x250/0x250
[  471.875559][ T3401] ieee802154 phy0 wpan0: encryption failed: -22
[  471.877654][T13462]  blkdev_ioctl+0x2a1/0x6d0
[  471.888038][ T3401] ieee802154 phy1 wpan1: encryption failed: -22
[  471.892828][T13462]  ? blkdev_common_ioctl+0x1830/0x1830
[  471.908210][T13462]  ? __fget_files+0x23d/0x3e0
[  471.913815][T13462]  block_ioctl+0xf9/0x140
[  471.919116][T13462]  ? bd_unlink_disk_holder+0x430/0x430
[  471.924759][T13462]  __x64_sys_ioctl+0x193/0x200
[  471.929801][T13462]  do_syscall_64+0x35/0xb0
[  471.935208][T13462]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  471.941486][T13462] RIP: 0033:0x466397
[  471.945937][T13462] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  471.968367][T13462] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  471.978317][T13462] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397
[  471.986933][T13462] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  471.996544][T13462] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  472.005951][T13462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  472.015093][T13462] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  472.028271][T13462] qnx6: invalid mount options.
19:01:43 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x700, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:43 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x500, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:43 executing program 1:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000740)={<r0=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee01, 0xee00}}}], 0x2}, 0x0)

[  472.079853][T13470] loop3: detected capacity change from 0 to 2
19:01:43 executing program 1:
perf_event_open$cgroup(&(0x7f0000000080)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

[  472.104060][T13474] loop2: detected capacity change from 0 to 3
[  472.112483][T13470] qnx6: invalid mount options.
[  472.122359][T13474] qnx6: invalid mount options.
19:01:43 executing program 0 (fault-call:0 fault-nth:35):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:43 executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x18, 0x4, 0xfffffffc, 0x0, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0xfffffffc}, 0x40)

[  472.173612][T13470] loop3: detected capacity change from 0 to 2
[  472.195600][T13474] loop2: detected capacity change from 0 to 3
[  472.205812][T13470] qnx6: invalid mount options.
[  472.216247][T13474] qnx6: invalid mount options.
[  472.217472][T13485] FAULT_INJECTION: forcing a failure.
[  472.217472][T13485] name failslab, interval 1, probability 0, space 0, times 0
19:01:43 executing program 1:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f00000002c0)=@updsa={0xf0, 0x11, 0x0, 0x0, 0x0, {{@in6=@dev, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in=@multicast2}, @in6=@remote}}, 0xf0}}, 0x0)

[  472.259291][T13485] CPU: 3 PID: 13485 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  472.271687][T13485] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  472.283863][T13485] Call Trace:
[  472.287688][T13485]  dump_stack_lvl+0xcd/0x134
[  472.293444][T13485]  should_fail.cold+0x5/0xa
19:01:43 executing program 1:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
write$nbd(r0, &(0x7f0000002380)=ANY=[@ANYBLOB="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"], 0x1010)

[  472.301057][T13485]  should_failslab+0x5/0x10
[  472.312889][T13485]  kmem_cache_alloc+0x58/0x540
[  472.318672][T13485]  ? kernfs_add_one+0x36a/0x4c0
[  472.324598][T13485]  __kernfs_new_node+0xd4/0x8b0
[  472.329970][T13485]  ? kernfs_path_from_node+0x60/0x60
[  472.336558][T13485]  ? __mutex_unlock_slowpath+0xe2/0x610
[  472.343243][T13485]  ? wait_for_completion_io+0x280/0x280
[  472.349327][T13485]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  472.356322][T13485]  ? kernfs_next_descendant_post+0x1a3/0x290
[  472.363082][T13485]  kernfs_new_node+0x93/0x120
[  472.368044][T13485]  __kernfs_create_file+0x51/0x350
[  472.373993][T13485]  sysfs_add_file_mode_ns+0x226/0x540
[  472.379952][T13485]  internal_create_group+0x328/0xb20
[  472.385767][T13485]  ? sysfs_remove_group+0x170/0x170
[  472.391480][T13485]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[  472.399400][T13485]  ? __loop_update_dio+0x2d2/0x690
[  472.406700][T13485]  loop_configure+0xc3b/0x1580
[  472.412733][T13485]  lo_ioctl+0x403/0x1600
[  472.418106][T13485]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  472.426191][T13485]  ? loop_set_status_old+0x250/0x250
[  472.432186][T13485]  ? avc_ss_reset+0x170/0x170
[  472.437493][T13485]  ? kfree+0x1cc/0x2c0
[  472.442441][T13485]  ? tomoyo_path_number_perm+0x441/0x590
[  472.449770][T13485]  ? lockdep_hardirqs_on+0x79/0x100
[  472.455911][T13485]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  472.463901][T13485]  ? tomoyo_path_number_perm+0x24e/0x590
[  472.470228][T13485]  ? selinux_file_ioctl+0x10f/0x5d0
[  472.477543][T13485]  ? selinux_inode_getsecctx+0x90/0x90
[  472.484747][T13485]  ? loop_set_status_old+0x250/0x250
[  472.491842][T13485]  blkdev_ioctl+0x2a1/0x6d0
[  472.497205][T13485]  ? blkdev_common_ioctl+0x1830/0x1830
[  472.503056][T13485]  ? __fget_files+0x23d/0x3e0
[  472.508062][T13485]  block_ioctl+0xf9/0x140
[  472.512754][T13485]  ? bd_unlink_disk_holder+0x430/0x430
[  472.518658][T13485]  __x64_sys_ioctl+0x193/0x200
[  472.524156][T13485]  do_syscall_64+0x35/0xb0
[  472.529195][T13485]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  472.535839][T13485] RIP: 0033:0x466397
[  472.540776][T13485] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  472.566324][T13485] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  472.577466][T13485] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397
[  472.587773][T13485] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  472.599802][T13485] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  472.609473][T13485] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  472.618304][T13485] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  472.638797][T13485] qnx6: invalid mount options.
19:01:43 executing program 2:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0xe00, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:43 executing program 3:
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x600, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

19:01:43 executing program 1:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x1, &(0x7f00000002c0)=@raw=[@call={0x85, 0x0, 0x0, 0xc}], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

19:01:43 executing program 0 (fault-call:0 fault-nth:36):
syz_mount_image$qnx6(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f0000000300), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="aa"])

[  472.723509][T13505] loop2: detected capacity change from 0 to 7
[  472.725005][T13503] loop3: detected capacity change from 0 to 3
19:01:43 executing program 1:
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff})
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000002c0), 0x1, 0x0)
openat$zero(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
openat$zero(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
sendmmsg$unix(r0, &(0x7f00000009c0)=[{&(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e, 0x0, 0x0, &(0x7f0000000300)=[@rights={{0x10}}], 0x10}], 0x1, 0x0)

[  472.753241][T13503] qnx6: invalid mount options.
[  472.756260][T13508] FAULT_INJECTION: forcing a failure.
[  472.756260][T13508] name failslab, interval 1, probability 0, space 0, times 0
[  472.757355][T13505] qnx6: invalid mount options.
[  472.781139][T13508] CPU: 0 PID: 13508 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  472.791141][T13508] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  472.801408][T13508] Call Trace:
[  472.805052][T13508]  dump_stack_lvl+0xcd/0x134
[  472.810031][T13508]  should_fail.cold+0x5/0xa
[  472.815065][T13508]  should_failslab+0x5/0x10
[  472.820528][T13508]  kmem_cache_alloc_node+0x68/0x590
19:01:43 executing program 1:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x0, 0xf4240, &(0x7f0000000180)=@raw=[@func, @ldst], &(0x7f0000000200)='GPL\x00', 0x0, 0x82, &(0x7f0000000240)=""/130, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)

[  472.826764][T13508]  alloc_unbound_pwq+0x4a5/0xcd0
[  472.832301][T13508]  apply_wqattrs_prepare+0x624/0x890
[  472.837638][T13508]  apply_workqueue_attrs_locked+0xc1/0x140
[  472.843920][T13508]  alloc_workqueue+0xafb/0xef0
[  472.849609][T13508]  ? _raw_spin_unlock+0x24/0x40
[  472.855448][T13508]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  472.861847][T13508]  ? memcpy+0x39/0x60
[  472.866936][T13508]  ? loop_configure+0x416/0x1580
[  472.872877][T13508]  loop_configure+0x4d8/0x1580
[  472.878217][T13508]  lo_ioctl+0x403/0x1600
[  472.882500][T13508]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  472.890273][T13508]  ? loop_set_status_old+0x250/0x250
[  472.896274][T13508]  ? avc_ss_reset+0x170/0x170
[  472.901297][T13508]  ? kfree+0x1cc/0x2c0
[  472.906141][T13508]  ? tomoyo_path_number_perm+0x441/0x590
[  472.913472][T13508]  ? lockdep_hardirqs_on+0x79/0x100
[  472.919363][T13508]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  472.926762][T13508]  ? tomoyo_path_number_perm+0x24e/0x590
[  472.933180][T13508]  ? selinux_file_ioctl+0x10f/0x5d0
[  472.938921][T13508]  ? selinux_inode_getsecctx+0x90/0x90
[  472.944844][T13508]  ? loop_set_status_old+0x250/0x250
19:01:43 executing program 1:
r0 = timerfd_create(0x8, 0x0)
clock_gettime(0x0, &(0x7f0000000140)={0x0, <r1=>0x0})
timerfd_settime(r0, 0x0, &(0x7f0000000180)={{0x77359400}, {0x0, r1+10000000}}, 0x0)

[  472.951368][T13508]  blkdev_ioctl+0x2a1/0x6d0
[  472.960753][T13508]  ? blkdev_common_ioctl+0x1830/0x1830
[  472.967476][T13508]  ? __fget_files+0x23d/0x3e0
[  472.973446][T13508]  block_ioctl+0xf9/0x140
[  472.978309][T13508]  ? bd_unlink_disk_holder+0x430/0x430
[  472.984602][T13508]  __x64_sys_ioctl+0x193/0x200
[  472.990145][T13508]  do_syscall_64+0x35/0xb0
[  472.994763][T13508]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  473.001997][T13508] RIP: 0033:0x466397
[  473.006516][T13508] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  473.029758][T13508] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  473.041389][T13508] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397
[  473.051024][T13508] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  473.059817][T13508] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  473.069437][T13508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  473.078611][T13508] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  473.092243][T13508] ------------[ cut here ]------------
[  473.098408][T13508] WARNING: CPU: 0 PID: 13508 at kernel/locking/lockdep.c:6305 lockdep_unregister_key+0x19a/0x250
[  473.110833][T13508] Modules linked in:
[  473.116218][T13508] CPU: 0 PID: 13508 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  473.127491][T13508] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  473.136624][T13508] RIP: 0010:lockdep_unregister_key+0x19a/0x250
[  473.144401][T13508] Code: 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 8f 00 00 00 4d 89 7d 08 48 b8 22 01 00 00 00 00 ad de 48 89 43 08 eb 02 <0f> 0b 4c 89 f7 ba 01 00 00 00 48 89 ee e8 44 fd ff ff 4c 89 f7 e8
[  473.166030][T13508] RSP: 0018:ffffc90001bc78e0 EFLAGS: 00010046
[  473.172595][T13508] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 1ffffffff1ad8795
[  473.181243][T13508] RDX: 1ffffffff1fcb30e RSI: 0000000000000004 RDI: ffffffff8fe59870
[  473.190493][T13508] RBP: ffff88801db52928 R08: 0000000000000001 R09: 0000000000000003
[  473.200199][T13508] R10: fffff52000378f12 R11: 0000000000000000 R12: 0000000000000246
[  473.210200][T13508] R13: dffffc0000000000 R14: ffffffff8fcd0868 R15: ffff88801db52820
[  473.219063][T13508] FS:  00007f7d4ceaa700(0000) GS:ffff88802ca00000(0000) knlGS:0000000000000000
[  473.229808][T13508] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  473.237699][T13508] CR2: 00007f7d4cea9f78 CR3: 0000000078c46000 CR4: 0000000000150ef0
[  473.246327][T13508] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  473.255789][T13508] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  473.265560][T13508] Call Trace:
[  473.269904][T13508]  alloc_workqueue+0xb31/0xef0
[  473.275816][T13508]  ? _raw_spin_unlock+0x24/0x40
[  473.281877][T13508]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  473.289220][T13508]  ? memcpy+0x39/0x60
[  473.294116][T13508]  ? loop_configure+0x416/0x1580
[  473.299805][T13508]  loop_configure+0x4d8/0x1580
[  473.305731][T13508]  lo_ioctl+0x403/0x1600
[  473.311123][T13508]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  473.318384][T13508]  ? loop_set_status_old+0x250/0x250
[  473.325852][T13508]  ? avc_ss_reset+0x170/0x170
[  473.331567][T13508]  ? kfree+0x1cc/0x2c0
[  473.335814][T13508]  ? tomoyo_path_number_perm+0x441/0x590
[  473.341901][T13508]  ? lockdep_hardirqs_on+0x79/0x100
[  473.348255][T13508]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  473.356931][T13508]  ? tomoyo_path_number_perm+0x24e/0x590
[  473.364241][T13508]  ? selinux_file_ioctl+0x10f/0x5d0
[  473.371027][T13508]  ? selinux_inode_getsecctx+0x90/0x90
[  473.378210][T13508]  ? loop_set_status_old+0x250/0x250
[  473.384507][T13508]  blkdev_ioctl+0x2a1/0x6d0
[  473.389742][T13508]  ? blkdev_common_ioctl+0x1830/0x1830
[  473.395853][T13508]  ? __fget_files+0x23d/0x3e0
[  473.401301][T13508]  block_ioctl+0xf9/0x140
[  473.406485][T13508]  ? bd_unlink_disk_holder+0x430/0x430
[  473.413882][T13508]  __x64_sys_ioctl+0x193/0x200
[  473.420159][T13508]  do_syscall_64+0x35/0xb0
[  473.425586][T13508]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  473.432307][T13508] RIP: 0033:0x466397
[  473.436423][T13508] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  473.459505][T13508] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  473.469108][T13508] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397
[  473.480361][T13508] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  473.491551][T13508] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  473.503106][T13508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  473.514043][T13508] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  473.524394][T13508] Kernel panic - not syncing: panic_on_warn set ...
[  473.531868][T13508] CPU: 0 PID: 13508 Comm: syz-executor.0 Not tainted 5.14.0-rc1-syzkaller #0
[  473.540836][T13508] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  473.550958][T13508] Call Trace:
[  473.554574][T13508]  dump_stack_lvl+0xcd/0x134
[  473.559565][T13508]  panic+0x306/0x73d
[  473.564085][T13508]  ? __warn_printk+0xf3/0xf3
[  473.569165][T13508]  ? __warn.cold+0x1a/0x44
[  473.574244][T13508]  ? lockdep_unregister_key+0x19a/0x250
[  473.580676][T13508]  __warn.cold+0x35/0x44
[  473.585384][T13508]  ? lockdep_unregister_key+0x19a/0x250
[  473.591529][T13508]  report_bug+0x1bd/0x210
[  473.596581][T13508]  handle_bug+0x3c/0x60
[  473.601225][T13508]  exc_invalid_op+0x14/0x40
[  473.606094][T13508]  asm_exc_invalid_op+0x12/0x20
[  473.611192][T13508] RIP: 0010:lockdep_unregister_key+0x19a/0x250
[  473.617709][T13508] Code: 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 8f 00 00 00 4d 89 7d 08 48 b8 22 01 00 00 00 00 ad de 48 89 43 08 eb 02 <0f> 0b 4c 89 f7 ba 01 00 00 00 48 89 ee e8 44 fd ff ff 4c 89 f7 e8
[  473.642237][T13508] RSP: 0018:ffffc90001bc78e0 EFLAGS: 00010046
[  473.650140][T13508] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 1ffffffff1ad8795
[  473.659862][T13508] RDX: 1ffffffff1fcb30e RSI: 0000000000000004 RDI: ffffffff8fe59870
[  473.670188][T13508] RBP: ffff88801db52928 R08: 0000000000000001 R09: 0000000000000003
[  473.680310][T13508] R10: fffff52000378f12 R11: 0000000000000000 R12: 0000000000000246
[  473.690654][T13508] R13: dffffc0000000000 R14: ffffffff8fcd0868 R15: ffff88801db52820
[  473.700959][T13508]  alloc_workqueue+0xb31/0xef0
[  473.707129][T13508]  ? _raw_spin_unlock+0x24/0x40
[  473.713428][T13508]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  473.721771][T13508]  ? memcpy+0x39/0x60
[  473.727354][T13508]  ? loop_configure+0x416/0x1580
[  473.734435][T13508]  loop_configure+0x4d8/0x1580
[  473.740803][T13508]  lo_ioctl+0x403/0x1600
[  473.746410][T13508]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  473.753908][T13508]  ? loop_set_status_old+0x250/0x250
[  473.761092][T13508]  ? avc_ss_reset+0x170/0x170
[  473.766944][T13508]  ? kfree+0x1cc/0x2c0
[  473.772177][T13508]  ? tomoyo_path_number_perm+0x441/0x590
[  473.779592][T13508]  ? lockdep_hardirqs_on+0x79/0x100
[  473.787189][T13508]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  473.795036][T13508]  ? tomoyo_path_number_perm+0x24e/0x590
[  473.802669][T13508]  ? selinux_file_ioctl+0x10f/0x5d0
[  473.809230][T13508]  ? selinux_inode_getsecctx+0x90/0x90
[  473.815643][T13508]  ? loop_set_status_old+0x250/0x250
[  473.821513][T13508]  blkdev_ioctl+0x2a1/0x6d0
[  473.826933][T13508]  ? blkdev_common_ioctl+0x1830/0x1830
[  473.832979][T13508]  ? __fget_files+0x23d/0x3e0
[  473.838049][T13508]  block_ioctl+0xf9/0x140
[  473.843003][T13508]  ? bd_unlink_disk_holder+0x430/0x430
[  473.850282][T13508]  __x64_sys_ioctl+0x193/0x200
[  473.856466][T13508]  do_syscall_64+0x35/0xb0
[  473.861859][T13508]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  473.869399][T13508] RIP: 0033:0x466397
[  473.874311][T13508] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 48 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  473.899561][T13508] RSP: 002b:00007f7d4cea9f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  473.909392][T13508] RAX: ffffffffffffffda RBX: 00000000004afcc0 RCX: 0000000000466397
[  473.919244][T13508] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  473.929525][T13508] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  473.937890][T13508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  473.947186][T13508] R13: 0000000000000004 R14: 0000000020000300 R15: 0000000000000000
[  475.090989][T13508] Shutting down cpus with NMI
[  475.097824][T13508] Kernel Offset: disabled
[  475.102983][T13508] Rebooting in 86400 seconds..

VM DIAGNOSIS:
19:01:44  Registers:
info registers vcpu 0
RAX=000000000000006c RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8432b731 RDI=ffffffff904f3ea0 RBP=ffffffff904f3e60 RSP=ffffc90001bc72b8
R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff8432b722 R11=000000000000001f
R12=0000000000000000 R13=000000000000006c R14=ffffffff904f3e60 R15=dffffc0000000000
RIP=ffffffff8432b75a RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f7d4ceaa700 ffffffff 00c00000
GS =0000 ffff88802ca00000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f7d4cea9f78 CR3=0000000078c46000 CR4=00150ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000005487a800000000005487a0
XMM02=000000000000000000000000000000ff XMM03=ffffffffffffffffffffffffffffffff
XMM04=ffffffffffffffffffffffffffffffff XMM05=ffffffffffffffffffffffffffffffff
XMM06=ffffffffffffffffffffffffffffffff XMM07=00000000000000000000000000000000
XMM08=5f6d6f6f2f666c65732f636f72702f00 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=0000000000000000 RBX=0000000000000000 RCX=0000000000000000 RDX=1ffff11002aa6d45
RSI=0000000000000000 RDI=ffff888015536a28 RBP=ffffc90001587f58 RSP=ffffc90001587f28
R8 =0000000000000001 R9 =0000000000000000 R10=ffffffff812b06bc R11=0000000000000000
R12=ffffc90001587f58 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff817adae0 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f10751858c0 ffffffff 00c00000
GS =0000 ffff88802cb00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe000003e000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000003c000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f107262a000 CR3=00000000259d1000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00009fc0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ffffffffffffffffffffffffffffffff XMM01=3031346236656535333163386434302f
XMM02=39373639386338356131336162303832 XMM03=6c616e72756f6a2e6d65747379732f64
XMM04=006c616e72756f6a2e6d65747379732f XMM05=64393736393863383561313361623038
XMM06=32303134623665653533316338643430 XMM07=2f6c616e72756f6a2f676f6c2f726176
XMM08=1ab213c8072938830000000000326e08 XMM09=51515151685b0c13311100226b515151
XMM10=51515151515151515151515151685b09 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 2
RAX=0000000000000000 RBX=ffff88802ca55de0 RCX=0000000000000000 RDX=ffff88801434e040
RSI=ffffffff816975f0 RDI=0000000000000003 RBP=0000000000000003 RSP=ffffc90000be7a00
R8 =0000000000000000 R9 =0000000000000001 R10=ffffffff81697616 R11=0000000000000000
R12=ffffed100594abbd R13=0000000000000000 R14=ffff88802ca55de8 R15=0000000000000001
RIP=ffffffff816975f2 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802cc00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe0000079000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000077000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f2617dae000 CR3=000000000b68e000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000005487a800000000005487a0
XMM02=000000000000000000000000000000ff XMM03=ffffffffffffffffffffffffffffffff
XMM04=ffffffffffffffffffffffffffffffff XMM05=ffffffffffffffffffffffffffffffff
XMM06=ffffffffffffffffffffffffffffffff XMM07=00000000000000000000000000000000
XMM08=5f6d6f6f2f666c65732f636f72702f00 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 3
RAX=0000000000000003 RBX=0000000000000000 RCX=dffffc0000000000 RDX=0000000000000000
RSI=0000000000000003 RDI=ffffffff901dee80 RBP=ffffffff901dee80 RSP=ffffc900005ef1a0
R8 =0000000000000001 R9 =0000000000000000 R10=fffffbfff203bdd0 R11=0000000000000000
R12=0000000000000000 R13=fffffbfff203bdd0 R14=0000000000000001 R15=ffff88802cd52980
RIP=ffffffff8133060b RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00000000
FS =0000 0000000000000000 ffffffff 00000000
GS =0000 ffff88802cd00000 ffffffff 00000000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe00000b4000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000b2000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000000568000 CR3=0000000078c46000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000005487a800000000005487a0
XMM02=000000000000000000000000000000ff XMM03=ffffffffffffffffffffffffffffffff
XMM04=ffffffffffffffffffffffffffffffff XMM05=ffffffffffffffffffffffffffffffff
XMM06=ffffffffffffffffffffffffffffffff XMM07=00000000000000000000000000000000
XMM08=5f6d6f6f2f666c65732f636f72702f00 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000