last executing test programs:

59.83446329s ago: executing program 1 (id=363):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)

59.042364711s ago: executing program 1 (id=366):
r0 = syz_open_procfs(0x0, &(0x7f0000000300)='mounts\x00')
read$FUSE(r0, &(0x7f0000003800)={0x2020}, 0x2050)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000002004000b7080000000000007b8af8ff00000000b7080000000200007b8af0ff00000000bfa100000000000007010000f8"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x6, 0x0, &(0x7f0000000480)=[{0x1, 0x1, 0xa, 0xb}, {0x2, 0x2, 0xf, 0x7}, {0x7, 0x2, 0x13}, {0x5, 0x5, 0x5, 0x9}, {0x2, 0x3, 0x9}, {0x1, 0x4, 0x9, 0x2}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000400)={0x0, 0x0})
syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f00000000c0), &(0x7f0000000280))
r4 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x40042)
write$binfmt_aout(r4, &(0x7f0000000200)=ANY=[], 0x125)
syz_open_dev$sndpcmp(&(0x7f00000002c0), 0x29ff, 0x101c40)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
listen(r5, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r6 = accept4(r5, 0x0, 0x0, 0x0)
recvmsg$kcm(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)=""/150, 0x96}], 0x5}, 0x0)

55.222579243s ago: executing program 1 (id=373):
r0 = socket$kcm(0xa, 0x2, 0x3a)
r1 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r2 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x3d0, 0xd0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @mcast2, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x0, 0x0, 0x0, 0x50}, 0x0, 0x200, 0x230, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x430)
sendmsg$kcm(r0, &(0x7f0000000440)={&(0x7f0000000800)=@in6={0xa, 0x0, 0x0, @loopback}, 0x80, &(0x7f0000000c00)=[{&(0x7f0000000780)="80005b020eaa4da2", 0xfdef}], 0x1, 0x0, 0x0, 0x900}, 0x0)

54.012137635s ago: executing program 0 (id=376):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x5, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x73, 0x11, 0x42}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={r0, 0xfe, 0x0}, 0x10)

53.874408131s ago: executing program 0 (id=377):
r0 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000003f00), 0x0, 0x0)
read$FUSE(r0, 0x0, 0x0)

53.851858693s ago: executing program 0 (id=378):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)

53.378179843s ago: executing program 1 (id=379):
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r0, 0x10d, 0x86, 0x0, &(0x7f0000000240))
syz_mount_image$btrfs(&(0x7f0000000140), &(0x7f0000005140)='./file0\x00', 0x12, &(0x7f0000000000)={[{@nodatacow}, {@datacow}, {@compress_algo={'compress', 0x3d, 'zlib'}}]}, 0x1, 0x510c, &(0x7f0000005180)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$uinput_user_dev(r1, &(0x7f0000000fc0)={'syz1\x00', {0x6, 0x5, 0x444, 0xa}, 0x21, [0xf9, 0x8, 0xff, 0x2, 0x200, 0x6, 0x8e, 0x9, 0x9, 0x4, 0x400, 0x9, 0x7, 0x1, 0x71c, 0x38, 0xffffff7f, 0xac, 0x5, 0x3ff, 0x0, 0xea7, 0x1, 0x9be4bf38, 0x0, 0x2, 0xc, 0x0, 0x8, 0x6, 0x84, 0xc, 0x8001, 0x3, 0x5, 0xb, 0x2, 0x5f85, 0x1, 0xc1e, 0x9dd, 0x939a, 0x8000, 0x1, 0x5c, 0x8, 0x7f, 0x9, 0xf2b, 0x1, 0x6, 0xfffffffa, 0xffff, 0x8, 0x5, 0x6, 0xffffff80, 0x9, 0x6, 0xd2, 0x6e, 0x5, 0x52, 0x1], [0x3, 0x2, 0xd91, 0x8, 0x401, 0xfffffff8, 0xb4a6, 0x7f, 0x3, 0xa89, 0xfff, 0xffffff4c, 0x1, 0x2, 0x0, 0x1, 0x8, 0x401, 0x0, 0x5, 0x2, 0x9, 0x5, 0x9, 0xd, 0x9, 0x6, 0x8, 0x8, 0x5, 0xfff, 0xb2d1, 0x1, 0x200, 0xd1d, 0x9, 0xe22, 0x9, 0x5, 0x10001, 0x1, 0x865f, 0x80000000, 0x3, 0x1, 0x4, 0x3, 0x29e3, 0xf7f, 0xb4e5, 0x7, 0x200, 0x6e99, 0x4, 0xff, 0x9, 0x1d, 0x3, 0x10000, 0xa, 0x26, 0x2, 0x6, 0x8], [0x4343fe9f, 0xfffffffd, 0x101, 0xffffffff, 0x7f, 0x6587, 0x3, 0x3, 0xc, 0x9, 0xcb06, 0xfffffff9, 0x1, 0x37, 0x5, 0x80003, 0xc8, 0x8, 0x6, 0x6, 0xdf9e, 0x5, 0x8, 0xf9f, 0x3, 0x7, 0x401, 0x5, 0x2, 0x2, 0x3, 0x5, 0x1, 0x0, 0x4, 0x90e, 0x6, 0x8000, 0x40, 0x8, 0xb, 0x7, 0x2, 0x1f85, 0x1, 0x3, 0x2, 0x8, 0x7, 0x401, 0x9, 0x89d, 0x40, 0x80000000, 0x3, 0xa, 0x80, 0xf, 0x5, 0x8, 0x9, 0x4, 0x8, 0xfffffdad], [0x27b, 0xe, 0xef, 0x10, 0x16, 0x8, 0x8, 0x6, 0x7fffffff, 0xe013, 0xfffffff8, 0xfffff800, 0xfffffffb, 0x0, 0x401, 0x401, 0x401, 0x0, 0xa, 0x6, 0x3, 0x5, 0xfffffc00, 0x1, 0x9, 0x2, 0x2, 0x2, 0x6, 0x8000, 0x400, 0x70, 0x2, 0x1000, 0x2, 0xc, 0x2, 0x9, 0x88, 0x10, 0x4, 0x9a2, 0x2, 0xf011, 0x1, 0x4, 0x8, 0x5, 0x4, 0xe4, 0xb, 0x1, 0xc3, 0xfffffffa, 0x7ff, 0x1, 0x3, 0xfffffbff, 0x1, 0xa, 0x5, 0x6, 0x7, 0xfffffff7]}, 0x45c)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9, 0x12, r1, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/mdstat\x00', 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

52.780973029s ago: executing program 0 (id=381):
r0 = socket(0x15, 0x5, 0x0)
connect$inet(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x40000000000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
r4 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r4, 0x107, 0xd, 0x0, 0x0)
msgsnd(0x0, &(0x7f0000000600)={0x1, "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"}, 0xfd1, 0x800)
r5 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a00)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r5, 0x4c0a, &(0x7f0000000780)={r6, 0x0, {0x2a00, 0x80010000, 0x0, 0x7, 0x0, 0x0, 0x2, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f407000000000000008dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00", [0x6]}})
r7 = openat$sequencer2(0xffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r7, 0x40085112, &(0x7f0000000040)=@l={0x92, 0x0, 0xe0})
r8 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000000)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0xf1, [{{0x9, 0x2, 0x48}}]}}, 0x0)
syz_usb_ep_write$ath9k_ep1(r8, 0x82, 0x0, 0x0)

48.634328183s ago: executing program 1 (id=389):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x5, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x73, 0x11, 0x42}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={r0, 0xfe, 0x0}, 0x10)

47.994184871s ago: executing program 1 (id=392):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bd2)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x53cb1000)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xa, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r5 = socket$inet6(0x10, 0x3, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r6, <r7=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sendto$inet6(r5, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)
write$binfmt_aout(r4, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000016c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0101000000db4b050eaa10cdc00008000300", @ANYRES32=r8], 0x34}}, 0x0)

45.476363995s ago: executing program 0 (id=398):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x34, 0x3, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x7c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x54, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x18, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_IMMEDIATE_DATA={0xc, 0x2, 0x0, 0x1, [@NFTA_DATA_VALUE={0x5, 0x1, 'L'}]}]}}}, {0x24, 0x1, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_DREG={0x8, 0x1, 0x1, 0x0, 0x12}, @NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0x14}]}}}]}]}], {0x14}}, 0xf8}}, 0x0)

41.665450243s ago: executing program 3 (id=400):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f0000000200)={0x0, 0x0, 0x0, <r1=>0x0})
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f00000000c0)={0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x5, {0x5, 0xfff7, 0x9, 0x8000, 0x2, 0x7f, 0x0, 0x872, 0x4, 0x0, 0x12, 0x0, 0x100001, 0x2010000, "0e19cd276f6c8c20761a58418bdffb38a310364ef87b48499c76277e0300"}})

41.190873687s ago: executing program 3 (id=403):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x1}]}}}]}]}], {0x14}}, 0xd4}}, 0x0)

40.968061431s ago: executing program 0 (id=404):
r0 = syz_open_procfs(0x0, &(0x7f0000000300)='mounts\x00')
read$FUSE(r0, &(0x7f0000003800)={0x2020}, 0x2050)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000002004000b7080000000000007b8af8ff00000000b7080000000200007b8af0ff00000000bfa100000000000007010000f8"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x6, 0x0, &(0x7f0000000480)=[{0x1, 0x1, 0xa, 0xb}, {0x2, 0x2, 0xf, 0x7}, {0x7, 0x2, 0x13}, {0x5, 0x5, 0x5, 0x9}, {0x2, 0x3, 0x9}, {0x1, 0x4, 0x9, 0x2}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000400)={0x0, 0x0})
syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f00000000c0), &(0x7f0000000280))
r4 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x40042)
write$binfmt_aout(r4, &(0x7f0000000200)=ANY=[], 0x125)
syz_open_dev$sndpcmp(&(0x7f00000002c0), 0x29ff, 0x101c40)
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0x2710, @host}, 0x10)
listen(0xffffffffffffffff, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r5 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmsg$kcm(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)=""/150, 0x96}], 0x5}, 0x0)

39.746890165s ago: executing program 3 (id=407):
syz_usb_connect(0x0, 0x2d, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_getaffinity(r0, 0x8, &(0x7f0000000180))
connect$unix(r1, &(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020701200000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b7030000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
ioctl$BLKTRACESETUP(r4, 0xc0481273, 0x0)
ioctl$BLKTRACETEARDOWN(r4, 0x1276, 0x700)
r5 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r5, 0xc008551b, 0x0)
r6 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$chown(0x4, r6, 0xffffffffffffffff, 0xee00)
add_key$user(&(0x7f0000000200), &(0x7f0000000000)={'syz', 0x3}, 0x0, 0xfeae, r6)
add_key(&(0x7f0000000200)='user\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe)
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file1\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="6572726f72733d636f6e74696e75652c00a3a2a4e7417e941910c27d130b55ac2d5f7a61e59ec6d5de07239091924c32eeb367d16409d6d3ec1fb755f9a7989ebc4e96918e268f0b7acebf67c07bc4731250f87d27b5e9e61000e70f0c6a4e2432073d0d3e18f864e9ef64637d14e5485f36e53c821cb5898685c055a367ea51b653eff6581710f6c3824bc667bd24219163c60803099f985567be0d978e301b4f6603628606afadb04eee58f42f1853f2e8598a5e250e0f4c9a"], 0x1, 0x14fe, &(0x7f0000002ac0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)

38.905513151s ago: executing program 5 (id=408):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

35.665209033s ago: executing program 5 (id=411):
r0 = fanotify_init(0x8, 0x0)
r1 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0)
fanotify_mark(r0, 0x641, 0x48001018, r1, 0x0)
mkdirat(r1, &(0x7f00000001c0)='./file1\x00', 0x4)
r2 = socket$inet6(0xa, 0x1, 0x84)
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)={0x0, 0x2, 0x0, 0x81, 0xfffffffb})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1, 0x8, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xc, 0x4, 0x4, 0xfffffc01, 0x0, r3, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
setsockopt$inet6_int(r2, 0x29, 0x1a, &(0x7f0000000080)=0x2, 0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f0000000340)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
r8 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000640), 0x0, 0x0)
r9 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r9, 0xc0285700, &(0x7f0000000100)={0x9, "5660359c3245d1c42317afad7d48ed51000000000000000100", <r10=>0xffffffffffffffff})
r11 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r11, 0x1, r10, &(0x7f0000000100)={0x2002})
epoll_pwait2(r11, &(0x7f0000000340)=[{}], 0x1, 0x0, 0x0, 0x0)
ppoll(&(0x7f0000000200)=[{r10}, {}], 0x2, 0x0, 0x0, 0x0)
close_range(r8, 0xffffffffffffffff, 0x0)
sendto$inet6(r2, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)

35.44598349s ago: executing program 3 (id=413):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
socket(0x200000100000011, 0x3, 0x0)
socket$inet6(0xa, 0x3, 0x8000000003c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c0085"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/mem_sleep', 0x101a02, 0x0)
copy_file_range(r4, &(0x7f0000000000)=0x8, r4, 0x0, 0x4, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="5000000002060108000000000000000000000000050005000a000000050001000700000005000400030000000900020073797a310000000016000300686173683a6e6574"], 0x50}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @empty}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x14000052}, 0x4000084)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2800009, 0x80010, r0, 0x0)
fcntl$setlease(r0, 0x400, 0x2)
r7 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r7, 0x29, 0x2e, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)
socket$nl_route(0x10, 0x3, 0x0)
signalfd(0xffffffffffffffff, &(0x7f00007aeff8)={[0xfffffffffffffffc]}, 0x8)

31.773631729s ago: executing program 32 (id=392):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bd2)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x53cb1000)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xa, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r5 = socket$inet6(0x10, 0x3, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r6, <r7=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sendto$inet6(r5, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)
write$binfmt_aout(r4, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000016c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0101000000db4b050eaa10cdc00008000300", @ANYRES32=r8], 0x34}}, 0x0)

31.544626613s ago: executing program 5 (id=416):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x34, 0x3, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x7c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x54, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0x18, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_IMMEDIATE_DATA={0xc, 0x2, 0x0, 0x1, [@NFTA_DATA_VALUE={0x5, 0x1, 'L'}]}]}}}, {0x24, 0x1, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_DREG={0x8, 0x1, 0x1, 0x0, 0x12}, @NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0x14}]}}}]}]}], {0x14}}, 0xf8}}, 0x0)

31.233888921s ago: executing program 3 (id=417):
r0 = socket$netlink(0x10, 0x3, 0x0)
open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
mount(&(0x7f0000000080)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000040)='./bus\x00', 0x0, 0x1001, 0x0)
r1 = open(&(0x7f0000000200)='./bus\x00', 0x0, 0x0)
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000140)='./file0\x00', &(0x7f00000000c0)='exfat\x00', 0x0, 0x0)
ioctl$BTRFS_IOC_DEFRAG(r1, 0x1261, 0x3)
r2 = socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r3, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f00000006c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
ioctl$TUNATTACHFILTER(r5, 0x401054d5, &(0x7f00000001c0)={0x1, &(0x7f0000000100)=[{}]})
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)={0x14, 0x1, 0x2, 0x801, 0x0, 0x0, {0xa}}, 0x14}, 0x1, 0x0, 0x0, 0x8}, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r6, 0x8983, &(0x7f0000000040)={0x0, 'pimreg1\x00', {0x1}, 0x9})
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x88, &(0x7f00000005c0)={[{@nogrpid}, {@journal_dev={'journal_dev', 0x3d, 0x10000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@nobarrier}, {@nodiscard}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32, @ANYBLOB="08030000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)

30.419832923s ago: executing program 5 (id=419):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x20, 0x1, 0x0, 0x1, @immediate={{0xe}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_IMMEDIATE_DREG={0x8, 0x1, 0x1, 0x0, 0x1}]}}}]}]}], {0x14}}, 0xd4}}, 0x0)

29.838735142s ago: executing program 4 (id=421):
r0 = socket$kcm(0xa, 0x2, 0x3a)
r1 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r2 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @mcast2, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x0, 0x0, 0x0, 0x50}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
sendmsg$kcm(r0, 0x0, 0x0)

29.786889169s ago: executing program 5 (id=422):
socket$inet6_sctp(0xa, 0x5, 0x84)
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r0, 0x10d, 0x86, &(0x7f0000000000), 0x0)
syz_mount_image$btrfs(&(0x7f0000000140), &(0x7f0000005140)='./file0\x00', 0x12, &(0x7f0000000000)={[{@nodatacow}, {@datacow}, {@compress_algo={'compress', 0x3d, 'zlib'}}]}, 0x1, 0x510c, &(0x7f0000005180)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$uinput_user_dev(r1, &(0x7f0000000fc0)={'syz1\x00', {0x6, 0x5, 0x444, 0xa}, 0x21, [0xf9, 0x8, 0xff, 0x2, 0x200, 0x6, 0x8e, 0x9, 0x9, 0x4, 0x400, 0x9, 0x7, 0x1, 0x71c, 0x38, 0xffffff7f, 0xac, 0x5, 0x3ff, 0x0, 0xea7, 0x1, 0x9be4bf38, 0x0, 0x2, 0xc, 0x0, 0x8, 0x6, 0x84, 0xc, 0x8001, 0x3, 0x5, 0xb, 0x2, 0x5f85, 0x1, 0xc1e, 0x9dd, 0x939a, 0x8000, 0x1, 0x5c, 0x8, 0x7f, 0x9, 0xf2b, 0x1, 0x6, 0xfffffffa, 0xffff, 0x8, 0x5, 0x6, 0xffffff80, 0x9, 0x6, 0xd2, 0x6e, 0x5, 0x52, 0x1], [0x3, 0x2, 0xd91, 0x8, 0x401, 0xfffffff8, 0xb4a6, 0x7f, 0x3, 0xa89, 0xfff, 0xffffff4c, 0x1, 0x2, 0x0, 0x1, 0x8, 0x401, 0x0, 0x5, 0x2, 0x9, 0x5, 0x9, 0xd, 0x9, 0x6, 0x8, 0x8, 0x5, 0xfff, 0xb2d1, 0x1, 0x200, 0xd1d, 0x9, 0xe22, 0x9, 0x5, 0x10001, 0x1, 0x865f, 0x80000000, 0x3, 0x1, 0x4, 0x3, 0x29e3, 0xf7f, 0xb4e5, 0x7, 0x200, 0x6e99, 0x4, 0xff, 0x9, 0x1d, 0x3, 0x10000, 0xa, 0x26, 0x2, 0x6, 0x8], [0x4343fe9f, 0xfffffffd, 0x101, 0xffffffff, 0x7f, 0x6587, 0x3, 0x3, 0xc, 0x9, 0xcb06, 0xfffffff9, 0x1, 0x37, 0x5, 0x80003, 0xc8, 0x8, 0x6, 0x6, 0xdf9e, 0x5, 0x8, 0xf9f, 0x3, 0x7, 0x401, 0x5, 0x2, 0x2, 0x3, 0x5, 0x1, 0x0, 0x4, 0x90e, 0x6, 0x8000, 0x40, 0x8, 0xb, 0x7, 0x2, 0x1f85, 0x1, 0x3, 0x2, 0x8, 0x7, 0x401, 0x9, 0x89d, 0x40, 0x80000000, 0x3, 0xa, 0x80, 0xf, 0x5, 0x8, 0x9, 0x4, 0x8, 0xfffffdad], [0x27b, 0xe, 0xef, 0x10, 0x16, 0x8, 0x8, 0x6, 0x7fffffff, 0xe013, 0xfffffff8, 0xfffff800, 0xfffffffb, 0x0, 0x401, 0x401, 0x401, 0x0, 0xa, 0x6, 0x3, 0x5, 0xfffffc00, 0x1, 0x9, 0x2, 0x2, 0x2, 0x6, 0x8000, 0x400, 0x70, 0x2, 0x1000, 0x2, 0xc, 0x2, 0x9, 0x88, 0x10, 0x4, 0x9a2, 0x2, 0xf011, 0x1, 0x4, 0x8, 0x5, 0x4, 0xe4, 0xb, 0x1, 0xc3, 0xfffffffa, 0x7ff, 0x1, 0x3, 0xfffffbff, 0x1, 0xa, 0x5, 0x6, 0x7, 0xfffffff7]}, 0x45c)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9, 0x12, r1, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000500)='/proc/mdstat\x00', 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

29.025946095s ago: executing program 2 (id=424):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)

28.791201845s ago: executing program 4 (id=425):
syz_usb_connect(0x0, 0x2d, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_getaffinity(r0, 0x8, &(0x7f0000000180))
connect$unix(r1, &(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020701200000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b7030000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
ioctl$BLKTRACESETUP(r4, 0xc0481273, 0x0)
ioctl$BLKTRACETEARDOWN(r4, 0x1276, 0x700)
r5 = syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_TLV_WRITE(r5, 0xc008551b, 0x0)
r6 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000180)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$chown(0x4, r6, 0xffffffffffffffff, 0xee00)
add_key$user(&(0x7f0000000200), &(0x7f0000000000)={'syz', 0x3}, 0x0, 0xfeae, r6)
add_key(&(0x7f0000000200)='user\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe)
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file1\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="6572726f72733d636f6e74696e75652c00a3a2a4e7417e941910c27d130b55ac2d5f7a61e59ec6d5de07239091924c32eeb367d16409d6d3ec1fb755f9a7989ebc4e96918e268f0b7acebf67c07bc4731250f87d27b5e9e61000e70f0c6a4e2432073d0d3e18f864e9ef64637d14e5485f36e53c821cb5898685c055a367ea51b653eff6581710f6c3824bc667bd24219163c60803099f985567be0d978e301b4f6603628606afadb04eee58f42f1853f2e8598a5e250e0f4c9a"], 0x1, 0x14fe, &(0x7f0000002ac0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)

28.649735578s ago: executing program 2 (id=426):
sendmsg$sock(0xffffffffffffffff, 0x0, 0x80080)
r0 = socket$kcm(0x11, 0x200000000000002, 0x300)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001540)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000000)=r1, 0x4)
r2 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001580)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r3, {0xffe0}, {}, {0xfff1, 0xffe0}}, [@filter_kind_options=@f_fw={{0x7}, {0x8, 0x2, [@TCA_FW_ACT={0x4}]}}]}, 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0)

24.819451545s ago: executing program 33 (id=404):
r0 = syz_open_procfs(0x0, &(0x7f0000000300)='mounts\x00')
read$FUSE(r0, &(0x7f0000003800)={0x2020}, 0x2050)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000002004000b7080000000000007b8af8ff00000000b7080000000200007b8af0ff00000000bfa100000000000007010000f8"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x6, 0x0, &(0x7f0000000480)=[{0x1, 0x1, 0xa, 0xb}, {0x2, 0x2, 0xf, 0x7}, {0x7, 0x2, 0x13}, {0x5, 0x5, 0x5, 0x9}, {0x2, 0x3, 0x9}, {0x1, 0x4, 0x9, 0x2}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000400)={0x0, 0x0})
syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f00000000c0), &(0x7f0000000280))
r4 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x40042)
write$binfmt_aout(r4, &(0x7f0000000200)=ANY=[], 0x125)
syz_open_dev$sndpcmp(&(0x7f00000002c0), 0x29ff, 0x101c40)
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0x2710, @host}, 0x10)
listen(0xffffffffffffffff, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r5 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmsg$kcm(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)=""/150, 0x96}], 0x5}, 0x0)

24.632397428s ago: executing program 2 (id=428):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
socket(0x200000100000011, 0x3, 0x0)
socket$inet6(0xa, 0x3, 0x8000000003c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c0085"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/mem_sleep', 0x101a02, 0x0)
copy_file_range(r4, &(0x7f0000000000)=0x8, r4, 0x0, 0x4, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="5000000002060108000000000000000000000000050005000a000000050001000700000005000400030000000900020073797a310000000016000300686173683a6e6574"], 0x50}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @empty}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0x14000052}, 0x4000084)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2800009, 0x80010, r0, 0x0)
fcntl$setlease(r0, 0x400, 0x2)
r7 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r7, 0x29, 0x2e, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)
socket$nl_route(0x10, 0x3, 0x0)
signalfd(0xffffffffffffffff, &(0x7f00007aeff8)={[0xfffffffffffffffc]}, 0x8)

24.562744263s ago: executing program 3 (id=429):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)
r1 = fsopen(&(0x7f0000000040)='afs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, 0x0, &(0x7f00000005c0)='#mS\xb2j\xcb\xa18:.)\xc7\xcb\xc5\xd8\x91\xa1\"\xd5\r\x89M;\x99\xd6\x8e?K\x82\xd5\xd7\xab\x10\xea\x14\n\xea\xe9\xcc\xdc\xf3\xc0\xf8\x89\xd0\x0ep\xb1I\x04T[\r&\xf0z\xde\xc0\xf3\xcd\x9a\xae\xa8*v_(\x94]\xdf\xf1\x95!\xb3+\x1aD\xda\xa1G\x06M\xdaz2\xe9\xe6\xda\x92U\xaaN\xff\xca\xb37-<3\xb28\xb8:UQ\x95|\xe5\xaa\x0e\xe7{\xd4T\x84\x83\x86\x9d', 0x0)
r2 = socket$inet6(0xa, 0x6, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
poll(&(0x7f0000000100)=[{r2, 0x21}, {0xffffffffffffffff, 0x782}], 0x2, 0xa)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x6, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x10, &(0x7f0000000340)=ANY=[@ANYRES64=0x0, @ANYBLOB], &(0x7f0000000300)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffc}, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
r6 = userfaultfd(0x801)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r6, 0xc028aa03, &(0x7f0000000080)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000582000/0x2000)=nil, 0x800000})
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)

23.946228918s ago: executing program 4 (id=430):
syz_mount_image$hfs(&(0x7f0000000480), &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x30008c0, &(0x7f0000000340)={[{@iocharset={'iocharset', 0x3d, 'cp861'}}, {@file_umask={'file_umask', 0x3d, 0x8001}}, {@part={'part', 0x3d, 0x23e0}}, {@part}, {@gid}, {@file_umask={'file_umask', 0x3d, 0x7}}]}, 0x11, 0x2e1, &(0x7f00000024c0)="$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")
r0 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

20.85081251s ago: executing program 5 (id=431):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bd2)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x53cb1000)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xa, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000075ae510561107d000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$inet6(0x10, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r6}, 0x18)
sendto$inet6(r3, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000016c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16, @ANYBLOB="0101000000db4b050eaa10cdc00008000300", @ANYRES32=r7], 0x34}}, 0x0)

20.205488117s ago: executing program 2 (id=432):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYRES32=r2, @ANYBLOB="08002600940900000800b700"], 0x2c}}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r3, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)={0x40, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME={0x22, 0x33, @action={{{}, {}, @device_b, @device_a, @random="a514a0ed377e", {0x0, 0xff}}, @ext_ch_sw={0x4, 0x4, {{0x0, 0x0, 0x40}, @void}}}}]}, 0x40}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

19.364724989s ago: executing program 4 (id=433):
r0 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000003f00), 0x0, 0x0)
read$FUSE(r0, 0x0, 0x0)

17.812567992s ago: executing program 2 (id=434):
r0 = socket$inet6(0xa, 0x400000000001, 0x0)
bind$inet6(r0, &(0x7f0000fa0fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x20000008, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000040)=0x1000, 0x4)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000180)=0x80000039f8, 0x4)
sendto$inet6(r0, &(0x7f0000000000), 0x0, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000004540)=[{{0x0, 0x0, 0x0}, 0x9}], 0x1, 0x12030, 0x0)

17.492508992s ago: executing program 4 (id=435):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
io_pgetevents(0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x0)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='illinois\x00', 0x9)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000e80)=ANY=[], 0x60}}, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000100), 0xfffffd9d)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0xc, 0xfffffffffffff800}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$SIOCRSSL2CALL(0xffffffffffffffff, 0x89e2, &(0x7f00000000c0)=@null={0x40, 0x40, 0x40, 0x40, 0x40, 0x2})
sendfile(r0, 0xffffffffffffffff, 0x0, 0x8000002b)

17.144822486s ago: executing program 2 (id=436):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bd2)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x53cb1000)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xa, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r5 = socket$inet6(0x10, 0x3, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r6, <r7=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r8}, 0x18)
sendto$inet6(r5, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)
write$binfmt_aout(r4, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000016c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0101000000db4b050eaa10cdc00008000300", @ANYRES32=r9], 0x34}}, 0x0)

15.429834816s ago: executing program 4 (id=437):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000002c0)={'macvlan0\x00'})
socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000005c0), 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@cgroup=r5, r4, 0x2, 0x0, 0x4000, @void, @value}, 0x10)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
close(r4)
r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r7}, 0x10)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)={@cgroup=r6, 0xffffffffffffffff, 0x2, 0x0, 0x0, @void, @value}, 0x10)
r8 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r8}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$ndb(&(0x7f00000001c0), 0x0, 0x0)
getpid()

9.230574114s ago: executing program 34 (id=429):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)
r1 = fsopen(&(0x7f0000000040)='afs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r1, 0x1, 0x0, &(0x7f00000005c0)='#mS\xb2j\xcb\xa18:.)\xc7\xcb\xc5\xd8\x91\xa1\"\xd5\r\x89M;\x99\xd6\x8e?K\x82\xd5\xd7\xab\x10\xea\x14\n\xea\xe9\xcc\xdc\xf3\xc0\xf8\x89\xd0\x0ep\xb1I\x04T[\r&\xf0z\xde\xc0\xf3\xcd\x9a\xae\xa8*v_(\x94]\xdf\xf1\x95!\xb3+\x1aD\xda\xa1G\x06M\xdaz2\xe9\xe6\xda\x92U\xaaN\xff\xca\xb37-<3\xb28\xb8:UQ\x95|\xe5\xaa\x0e\xe7{\xd4T\x84\x83\x86\x9d', 0x0)
r2 = socket$inet6(0xa, 0x6, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
poll(&(0x7f0000000100)=[{r2, 0x21}, {0xffffffffffffffff, 0x782}], 0x2, 0xa)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x6, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x10, &(0x7f0000000340)=ANY=[@ANYRES64=0x0, @ANYBLOB], &(0x7f0000000300)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000240), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffc}, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
r6 = userfaultfd(0x801)
ioctl$UFFDIO_API(r6, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r6, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r6, 0xc028aa03, &(0x7f0000000080)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000582000/0x2000)=nil, 0x800000})
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)

4.731121712s ago: executing program 35 (id=431):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bd2)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x53cb1000)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xa, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000075ae510561107d000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$inet6(0x10, 0x3, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r6}, 0x18)
sendto$inet6(r3, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000016c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16, @ANYBLOB="0101000000db4b050eaa10cdc00008000300", @ANYRES32=r7], 0x34}}, 0x0)

1.242617078s ago: executing program 36 (id=436):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bd2)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x53cb1000)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xa, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
r5 = socket$inet6(0x10, 0x3, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r6, <r7=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r8}, 0x18)
sendto$inet6(r5, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0)
write$binfmt_aout(r4, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000016c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="0101000000db4b050eaa10cdc00008000300", @ANYRES32=r9], 0x34}}, 0x0)

0s ago: executing program 37 (id=437):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000002c0)={'macvlan0\x00'})
socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000006112000000000000950000000000000051fa7824c74186dc02ec0696c37b64e3b24da3180100000005345c0f63cdc2e82818254950ee03568b8809a1f04c7c4750eabfafcb9531b31e6a86827d1010c5a909ab98e00e19644a88e95ba26d1c9eecddb2d11c541418ceeb29b9b6829c6e433822bdb3cc85244aab66c1aae9314d7381fcfeb970bea672010000000000000043144648a07a975bd89dc398712376610faa54f12495b4659be8673086f6f3543205d4bc4ce05b8b961103673dff7f158052e62bfbdcddde6985f3f1ac5d9a94cc53207899762a07282a1914452d11858e795a3ca30a101af5574f9035f2b5f703e5be7e4acf8b78c2834ae5805fffee38a9a0033d520bcf6b08ede50899d4b9bdf85c71c5ed44039aab46419496362e54cfad05b4004ac71a003d7b85d07191bed4e5a8908263722d4146f7ed569985439baa355cf3d8731f5e7a237bc06d035a8d601f21746d880819f38b34a495040000000071c2f0cce8c93cc17e9afa314fcb2ba15d646c5b9f87d988c9fbd2b9d9b4e2d71753b1549fa734f0b2e5fcf9549804cddad721971637f9c9730a9cc384eed30345979db9c93e1c52f42cad0a4d4f9436d3f39b0ed09c395dc6e970366087a8e4daeeb1b017006f25caf0cbcefd13d68839893e39c588eb032905f91cafa4996dbf0cc8228d02a3092c0830b8f587a5624515298b2d4eb2bde6f9a2eb83d53f710c490ecd085d2811a7555c53030000007f00000000bfa6478eb96b079c277e2910b7ccdc3d672ed34aa65278c549e2abb549ad954884289130bc71cee2b7de62bf48129ae1af052a2d46a6165eb0954dac7265f1f425735acf6377793946b3229e861d8ea49806b3b533345d36ecef9df700000000f337b1ceb2d8a65dcdcd895d7ba37098d2593fdaaef445af5bee02019c000000aaae37f044bcadeb0f6846582b7653665aa336db9f0384d3c7ddf79c2e0000000000000000000000000000000000000000000000e154aa0d3e41986a668ee1e5ef93a8ceac75f44aae95e26742f895f287111f8ee86f7e3ffb63cfb0e345cf7fc63dd2b0d30977899c6f03640040af4db71f7452bfc79a05118d8bb42b63b195771e42f9942ec626bd4b5461b74324012164e8"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000005c0), 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000240)={@cgroup=r5, r4, 0x2, 0x0, 0x4000, @void, @value}, 0x10)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
close(r4)
r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r7}, 0x10)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000040)={@cgroup=r6, 0xffffffffffffffff, 0x2, 0x0, 0x0, @void, @value}, 0x10)
r8 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r8}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$ndb(&(0x7f00000001c0), 0x0, 0x0)
getpid()

kernel console output (not intermixed with test programs):

T6008]  ? do_syscall_64+0x100/0x230
[   91.975631][ T6008]  ? do_syscall_64+0xb6/0x230
[   91.980348][ T6008]  do_syscall_64+0xf3/0x230
[   91.985076][ T6008]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.991014][ T6008] RIP: 0033:0x7f7e97d8473c
[   91.995453][ T6008] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   92.015120][ T6008] RSP: 002b:00007f7e98b0f030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   92.023573][ T6008] RAX: ffffffffffffffda RBX: 00007f7e97f75fa0 RCX: 00007f7e97d8473c
[   92.031590][ T6008] RDX: 000000000000000f RSI: 00007f7e98b0f0a0 RDI: 0000000000000004
[   92.039603][ T6008] RBP: 00007f7e98b0f090 R08: 0000000000000000 R09: 0000000000000000
[   92.047607][ T6008] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   92.055867][ T6008] R13: 0000000000000000 R14: 00007f7e97f75fa0 R15: 00007fffc2b84418
[   92.063884][ T6008]  </TASK>
[   92.066964][    C0] vkms_vblank_simulate: vblank timer overrun
[   92.164147][ T6004] netlink: 20 bytes leftover after parsing attributes in process `syz.5.15'.
[   92.393869][ T6005] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   92.492256][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[   92.901998][ T5935] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   93.092192][ T5935] usb 2-1: Using ep0 maxpacket: 8
[   93.217100][ T5935] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   93.227105][ T6005] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   93.248409][ T5935] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[   93.298108][ T5935] usb 2-1: New USB device found, idVendor=05ac, idProduct=0246, bcdDevice= 0.00
[   93.375446][ T6005] EXT4-fs (loop4): Remounting filesystem read-only
[   93.413224][ T5935] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   93.457465][ T5935] usb 2-1: config 0 descriptor??
[   93.615465][ T6011] loop3: detected capacity change from 0 to 32768
[   93.630560][ T5827] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.662119][ T6011] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.20 (6011)
[   93.891309][ T6040] loop5: detected capacity change from 0 to 1024
[   93.914446][ T6040] hfsplus: Unknown parameter 'À'
[   94.001089][ T6011] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   94.012799][ T6011] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[   94.024884][ T6011] BTRFS info (device loop3): using free-space-tree
[   94.807518][ T6011] workqueue: Failed to create a rescuer kthread for wq "btrfs-worker": -EINTR
[   94.808919][ T6011] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR
[   94.885044][ T6048] syz.4.30: attempt to access beyond end of device
[   94.885044][ T6048] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[   94.909371][ T6011] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[   94.909731][ T6011] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[   94.934741][ T6048] exFAT-fs (nbd4): unable to read boot sector
[   94.953497][ T6048] exFAT-fs (nbd4): failed to read boot sector
[   94.959730][ T6048] exFAT-fs (nbd4): failed to recognize exfat type
[   94.966898][ T6011] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[   94.967253][ T6011] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[   94.977696][ T6011] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[   94.991240][ T6011] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[   95.005690][ T6011] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[   95.085236][ T6011] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[   95.148064][ T6060] loop5: detected capacity change from 0 to 512
[   95.187944][ T6011] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[   95.188213][ T6011] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[   95.205290][ T6056] loop4: detected capacity change from 0 to 512
[   95.289705][    T8] usb 2-1: USB disconnect, device number 2
[   95.301065][ T6060] EXT4-fs: Ignoring removed i_version option
[   95.311357][ T6056] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   95.342225][ T6011] BTRFS error (device loop3): open_ctree failed
[   95.356794][ T6060] EXT4-fs: Ignoring removed mblk_io_submit option
[   95.376228][ T6056] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   95.389218][ T6060] ext4: Unknown parameter 'seclabel'
[   95.425047][ T6056] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2863: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   95.466008][ T6060] loop5: detected capacity change from 0 to 256
[   95.475083][ T6056] EXT4-fs (loop4): 1 truncate cleaned up
[   95.481954][ T6056] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   95.492117][ T6060] msdos: Bad value for 'errors'
[   95.528475][ T6048] netlink: 'syz.4.30': attribute type 1 has an invalid length.
[   95.541981][ T5893] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   95.722531][ T5893] usb 3-1: config 1 has an invalid descriptor of length 17, skipping remainder of the config
[   95.780364][ T5893] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[   96.626718][ T5893] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[   96.636030][ T5893] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[   96.641725][ T6076] bond0: option use_carrier: invalid value (14)
[   96.644234][ T5893] usb 3-1: SerialNumber: syz
[   97.097748][ T5827] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   97.371397][ T6065] loop2: detected capacity change from 0 to 1024
[   97.527502][ T6065] hfsplus: Unknown parameter '00000000000000000053ÿ½d�piH¯¹’cø›èjey'
[   98.497282][ T5893] usb 3-1: invalid UAC_HEADER (v1)
[   98.544344][ T5893] snd-usb-audio 3-1:1.0: probe with driver snd-usb-audio failed with error -22
[   98.561834][ T5893] usb 3-1: USB disconnect, device number 2
[   98.634054][ T6110] FAULT_INJECTION: forcing a failure.
[   98.634054][ T6110] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   98.662405][ T6111] FAULT_INJECTION: forcing a failure.
[   98.662405][ T6111] name failslab, interval 1, probability 0, space 0, times 0
[   98.692522][ T6110] CPU: 1 UID: 0 PID: 6110 Comm: syz.1.45 Not tainted 6.13.0-rc4-syzkaller #0
[   98.701352][ T6110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   98.711432][ T6110] Call Trace:
[   98.714733][ T6110]  <TASK>
[   98.717771][ T6110]  dump_stack_lvl+0x241/0x360
[   98.722538][ T6110]  ? __pfx_dump_stack_lvl+0x10/0x10
[   98.727810][ T6110]  ? __pfx__printk+0x10/0x10
[   98.732441][ T6110]  ? snprintf+0xda/0x120
[   98.736719][ T6110]  should_fail_ex+0x3b0/0x4e0
[   98.741424][ T6110]  _copy_to_user+0x31/0xb0
[   98.745880][ T6110]  simple_read_from_buffer+0xca/0x150
[   98.751347][ T6110]  proc_fail_nth_read+0x1e9/0x250
[   98.756418][ T6110]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   98.761998][ T6110]  ? srso_alias_return_thunk+0x5/0xfbef5
[   98.767715][ T6110]  ? rw_verify_area+0x55e/0x6f0
[   98.772592][ T6110]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   98.778178][ T6110]  vfs_read+0x1fe/0xb70
[   98.782382][ T6110]  ? __pfx___mutex_lock+0x10/0x10
[   98.787449][ T6110]  ? __pfx_vfs_read+0x10/0x10
[   98.792197][ T6110]  ? __fget_files+0x2a/0x410
[   98.796850][ T6110]  ? __fget_files+0x395/0x410
[   98.801552][ T6110]  ? __fget_files+0x2a/0x410
[   98.806177][ T6110]  ? srso_alias_return_thunk+0x5/0xfbef5
[   98.811837][ T6110]  ksys_read+0x18f/0x2b0
[   98.816218][ T6110]  ? __pfx_ksys_read+0x10/0x10
[   98.820993][ T6110]  ? do_syscall_64+0x100/0x230
[   98.825784][ T6110]  ? do_syscall_64+0xb6/0x230
[   98.830486][ T6110]  do_syscall_64+0xf3/0x230
[   98.835016][ T6110]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.840930][ T6110] RIP: 0033:0x7fe78f18473c
[   98.845353][ T6110] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[   98.865241][ T6110] RSP: 002b:00007fe78fff9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   98.873798][ T6110] RAX: ffffffffffffffda RBX: 00007fe78f375fa0 RCX: 00007fe78f18473c
[   98.881779][ T6110] RDX: 000000000000000f RSI: 00007fe78fff90a0 RDI: 0000000000000005
[   98.889755][ T6110] RBP: 00007fe78fff9090 R08: 0000000000000000 R09: 0000000000000000
[   98.897736][ T6110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   98.905736][ T6110] R13: 0000000000000000 R14: 00007fe78f375fa0 R15: 00007ffd011386e8
[   98.914018][ T6110]  </TASK>
[   98.920273][ T6111] CPU: 1 UID: 0 PID: 6111 Comm: syz.0.46 Not tainted 6.13.0-rc4-syzkaller #0
[   98.929086][ T6111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   98.939347][ T6111] Call Trace:
[   98.942650][ T6111]  <TASK>
[   98.945616][ T6111]  dump_stack_lvl+0x241/0x360
[   98.950340][ T6111]  ? __pfx_dump_stack_lvl+0x10/0x10
[   98.955587][ T6111]  ? __pfx__printk+0x10/0x10
[   98.960388][ T6111]  ? __kmalloc_node_noprof+0xb9/0x4d0
[   98.965797][ T6111]  ? __pfx___might_resched+0x10/0x10
[   98.971113][ T6111]  should_fail_ex+0x3b0/0x4e0
[   98.975911][ T6111]  should_failslab+0xac/0x100
[   98.980622][ T6111]  __kmalloc_node_noprof+0xe1/0x4d0
[   98.986218][ T6111]  ? alloc_slab_obj_exts+0x3a/0xa0
[   98.991373][ T6111]  alloc_slab_obj_exts+0x3a/0xa0
[   98.996346][ T6111]  __memcg_slab_post_alloc_hook+0x319/0x7e0
[   99.002404][ T6111]  ? vm_area_dup+0x61/0x290
[   99.006945][ T6111]  ? vm_area_dup+0x61/0x290
[   99.011479][ T6111]  kmem_cache_alloc_noprof+0x287/0x380
[   99.016983][ T6111]  vm_area_dup+0x61/0x290
[   99.021357][ T6111]  __split_vma+0x1cb/0xc50
[   99.025819][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[   99.031493][ T6111]  ? __pfx___split_vma+0x10/0x10
[   99.036474][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[   99.042169][ T6111]  ? mas_find+0x950/0xbb0
[   99.046649][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[   99.052337][ T6111]  vms_gather_munmap_vmas+0x4c1/0x1600
[   99.057873][ T6111]  ? __pfx_vms_gather_munmap_vmas+0x10/0x10
[   99.063829][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[   99.069504][ T6111]  ? mas_find+0x8c0/0xbb0
[   99.073885][ T6111]  __mmap_region+0x7c4/0x2d30
[   99.078716][ T6111]  ? validate_chain+0x11e/0x5920
[   99.083713][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[   99.089388][ T6111]  ? __pfx___mmap_region+0x10/0x10
[   99.094551][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[   99.100753][ T6111]  ? __lock_acquire+0x1397/0x2100
[   99.105874][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[   99.111557][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[   99.117232][ T6111]  ? mark_lock+0x9a/0x360
[   99.121605][ T6111]  ? __pfx_lock_acquire+0x10/0x10
[   99.126683][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[   99.132357][ T6111]  ? arch_get_unmapped_area_topdown+0x28e/0xc50
[   99.138656][ T6111]  ? __pfx_arch_get_unmapped_area_topdown+0x10/0x10
[   99.145310][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[   99.151037][ T6111]  ? cap_mmap_addr+0x163/0x2c0
[   99.155945][ T6111]  mmap_region+0x1d0/0x2c0
[   99.160408][ T6111]  ? security_mmap_addr+0x6f/0x250
[   99.165659][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[   99.171346][ T6111]  do_mmap+0x8f0/0x1000
[   99.175735][ T6111]  ? __pfx_do_mmap+0x10/0x10
[   99.180373][ T6111]  ? __pfx_down_write_killable+0x10/0x10
[   99.186126][ T6111]  ? common_file_perm+0x1a6/0x210
[   99.191283][ T6111]  vm_mmap_pgoff+0x1dd/0x3d0
[   99.195915][ T6111]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[   99.201152][ T6111]  ? __fget_files+0x2a/0x410
[   99.205797][ T6111]  ? __fget_files+0x395/0x410
[   99.210526][ T6111]  ? __fget_files+0x2a/0x410
[   99.215154][ T6111]  ksys_mmap_pgoff+0x4eb/0x720
[   99.219954][ T6111]  ? __x64_sys_mmap+0x7f/0x140
[   99.224837][ T6111]  do_syscall_64+0xf3/0x230
[   99.229374][ T6111]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   99.235298][ T6111] RIP: 0033:0x7f0f6d585d29
[   99.239727][ T6111] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   99.259370][ T6111] RSP: 002b:00007f0f6e3e3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   99.267819][ T6111] RAX: ffffffffffffffda RBX: 00007f0f6d776080 RCX: 00007f0f6d585d29
[   99.275985][ T6111] RDX: 5a0282e5f6d59419 RSI: 0000000000c00000 RDI: 0000000020000000
[   99.283973][ T6111] RBP: 00007f0f6e3e3090 R08: 0000000000000005 R09: 0000000048079000
[   99.291954][ T6111] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001
[   99.299929][ T6111] R13: 0000000000000000 R14: 00007f0f6d776080 R15: 00007ffe6f0e31c8
[   99.307930][ T6111]  </TASK>
[   99.919340][ T5885] udevd[5885]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  100.125067][ T6123] loop4: detected capacity change from 0 to 512
[  100.183383][ T6125] netlink: 12 bytes leftover after parsing attributes in process `syz.2.49'.
[  100.194103][ T6123] =======================================================
[  100.194103][ T6123] WARNING: The mand mount option has been deprecated and
[  100.194103][ T6123]          and is ignored by this kernel. Remove the mand
[  100.194103][ T6123]          option from the mount to silence this warning.
[  100.194103][ T6123] =======================================================
[  100.293453][ T6125] syz.2.49[6125] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  100.293587][ T6125] syz.2.49[6125] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  100.315345][ T6125] syz.2.49[6125] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  100.362403][ T6125] bridge_slave_0: left allmulticast mode
[  100.392808][ T6125] bridge_slave_0: left promiscuous mode
[  100.400167][ T6125] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.818073][ T6134] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request
[  101.260698][ T6138] syz.0.53: attempt to access beyond end of device
[  101.260698][ T6138] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0
[  101.273622][ T6138] exFAT-fs (nbd0): unable to read boot sector
[  101.279716][ T6138] exFAT-fs (nbd0): failed to read boot sector
[  101.286606][ T6138] exFAT-fs (nbd0): failed to recognize exfat type
[  101.474639][ T6123] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002]
[  101.522504][ T6123] System zones: 0-2, 18-18, 34-34
[  101.630829][ T6123] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.48: bg 0: block 248: padding at end of block bitmap is not set
[  101.678945][ T6123] Quota error (device loop4): write_blk: dquota write failed
[  101.687021][ T6123] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  101.697222][ T6123] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.48: Failed to acquire dquot type 1
[  101.742085][ T6123] EXT4-fs (loop4): 1 truncate cleaned up
[  101.748942][ T6123] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.794467][ T6123] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.827776][ T6144] loop5: detected capacity change from 0 to 1024
[  101.856255][ T6144] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.895748][   T29] audit: type=1800 audit(1734989358.052:2): pid=6123 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.48" name="file1" dev="loop4" ino=15 res=0 errno=0
[  102.280762][ T6123] syz.4.48 (6123) used greatest stack depth: 17656 bytes left
[  103.091808][ T6149] Zero length message leads to an empty skb
[  104.419204][ T6158] netlink: 96 bytes leftover after parsing attributes in process `syz.3.57'.
[  104.499248][ T6159] netlink: 24 bytes leftover after parsing attributes in process `syz.3.57'.
[  104.531059][ T5827] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.657934][ T1324] Quota error (device loop4): do_check_range: Getting block 0 out of range 1-5
[  104.760806][ T1324] EXT4-fs error (device loop4): ext4_release_dquot:6961: comm kworker/u8:6: Failed to release dquot type 1
[  105.210799][ T6168] ipt_REJECT: TCP_RESET invalid for non-tcp
[  105.220846][ T5832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.718200][ T6182] syz.5.68: attempt to access beyond end of device
[  105.718200][ T6182] nbd5: rw=0, sector=0, nr_sectors = 1 limit=0
[  105.812053][ T6182] exFAT-fs (nbd5): unable to read boot sector
[  105.818247][ T6182] exFAT-fs (nbd5): failed to read boot sector
[  105.932493][ T2145] usb 1-1: new full-speed USB device number 3 using dummy_hcd
[  106.107490][ T6182] exFAT-fs (nbd5): failed to recognize exfat type
[  106.120231][ T2145] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  106.144247][ T2145] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  106.222679][ T2145] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  106.276235][ T2145] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  106.397077][ T2145] usb 1-1: Product: syz
[  106.424482][ T2145] usb 1-1: Manufacturer: syz
[  106.739970][ T2145] usb 1-1: SerialNumber: syz
[  107.080394][ T6167] loop4: detected capacity change from 0 to 32768
[  107.267120][ T2145] usb 1-1: 0:2 : does not exist
[  107.284037][ T2145] usb 1-1: 5:0: failed to get current value for ch 0 (-22)
[  107.354039][ T5935] XFS (loop4): Metadata CRC error detected at xfs_sb_read_verify+0x305/0x440, xfs_sb block 0x0 
[  107.387173][ T5935] XFS (loop4): Unmount and run xfs_repair
[  107.401441][ T5935] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  107.409732][ T5935] 00000000: 58 46 53 42 00 00 10 00 00 00 00 00 00 00 10 00  XFSB............
[  107.418744][ T5935] 00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  107.427818][ T5935] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 47 a7 4b ab  ..*.w.B.....G.K.
[  107.437552][ T5935] 00000030: 00 00 00 00 00 00 00 06 00 00 00 00 00 00 04 20  ............... 
[  107.447094][ T5935] 00000040: 00 00 00 00 00 00 04 21 00 00 00 00 00 00 04 22  .......!......."
[  107.456058][ T5935] 00000050: 00 00 00 01 00 00 10 00 00 00 00 01 00 00 00 00  ................
[  107.465116][ T5935] 00000060: 00 00 02 04 b4 b5 02 00 08 00 00 02 00 00 00 00  ................
[  107.474105][ T5935] 00000070: 00 00 00 00 00 00 00 00 0c 09 0b 01 0c 00 00 64  ...............d
[  107.511885][ T6167] XFS (loop4): SB validate failed with error -74.
[  107.558252][ T2145] usb 1-1: USB disconnect, device number 3
[  107.673245][    T8] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  108.005963][    T8] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  108.372562][    T8] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 8
[  108.522995][    T8] usb 4-1: New USB device found, idVendor=054c, idProduct=06c3, bcdDevice= 0.00
[  108.595971][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  108.634270][ T5885] udevd[5885]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  108.701422][    T8] usb 4-1: SerialNumber: syz
[  108.753700][    T8] usb 4-1: config 0 descriptor??
[  108.900735][ T6212] loop1: detected capacity change from 0 to 2048
[  108.966284][ T6212] EXT4-fs: Ignoring removed mblk_io_submit option
[  109.092641][ T6196] loop3: detected capacity change from 0 to 8
[  109.101926][    T8] port100 4-1:0.0: NFC: Could not find bulk-in or bulk-out endpoint
[  109.120090][ T6216] loop0: detected capacity change from 0 to 32768
[  109.155297][ T6216] XFS: attr2 mount option is deprecated.
[  109.219475][ T6212] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.293017][ T6196] SQUASHFS error: xz decompression failed, data probably corrupt
[  109.317903][ T6196] SQUASHFS error: Failed to read block 0x108: -5
[  109.324858][ T6196] SQUASHFS error: Unable to read metadata cache entry [106]
[  109.344248][ T6212] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.75: bg 0: block 234: padding at end of block bitmap is not set
[  109.352346][ T6196] SQUASHFS error: Unable to read inode 0x11f
[  109.371171][ T6212] EXT4-fs (loop1): Remounting filesystem read-only
[  109.393800][ T6216] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  109.418773][ T5831] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.609655][ T6241] loop5: detected capacity change from 0 to 2048
[  109.625458][    T8] usb 4-1: USB disconnect, device number 2
[  109.663725][ T6216] XFS (loop0): Ending clean mount
[  109.674787][ T6244] syz.4.83: attempt to access beyond end of device
[  109.674787][ T6244] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[  109.706377][ T6241] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  109.718081][ T6244] exFAT-fs (nbd4): unable to read boot sector
[  109.733113][ T6244] exFAT-fs (nbd4): failed to read boot sector
[  109.744212][ T6244] exFAT-fs (nbd4): failed to recognize exfat type
[  109.757092][ T6241] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  109.758894][   T29] audit: type=1800 audit(1734989365.922:3): pid=6241 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.82" name="bus" dev="loop5" ino=18 res=0 errno=0
[  109.804414][ T6216] XFS (loop0): Quotacheck needed: Please wait.
[  109.838625][ T5832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.921822][ T6216] XFS (loop0): Quotacheck: Done.
[  110.028780][ T6252] loop4: detected capacity change from 0 to 16
[  110.079835][ T6252] erofs (device loop4): mounted with root inode @ nid 36.
[  110.083522][ T5824] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  116.635985][ T6282] loop4: detected capacity change from 0 to 1024
[  116.662283][ T6282] EXT4-fs: Ignoring removed mblk_io_submit option
[  116.668870][ T6282] EXT4-fs: Ignoring removed orlov option
[  116.689903][ T6282] EXT4-fs: Ignoring removed nomblk_io_submit option
[  116.798831][ T6287] netlink: 96 bytes leftover after parsing attributes in process `syz.2.92'.
[  116.872657][ T6289] netlink: 24 bytes leftover after parsing attributes in process `syz.2.92'.
[  117.623484][    T0] NOHZ tick-stop error: local softirq work is pending, handler #48!!!
[  117.677237][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  118.492868][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  118.576394][ T6294] loop1: detected capacity change from 0 to 2048
[  118.698329][ T6282] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  118.721316][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  118.811698][ T6294] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  118.823927][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  119.132014][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  119.141795][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  119.153014][ T6304] loop3: detected capacity change from 0 to 512
[  119.196842][ T6304] EXT4-fs (loop3): Number of reserved GDT blocks insanely large: 768
[  119.521939][ T6282] EXT4-fs (loop4): changing journal_checksum during remount not supported; ignoring
[  119.540392][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  119.649501][ T6282] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: none.
[  119.680556][ T6282] netlink: 124 bytes leftover after parsing attributes in process `syz.4.94'.
[  120.063148][ T6315] FAULT_INJECTION: forcing a failure.
[  120.063148][ T6315] name failslab, interval 1, probability 0, space 0, times 0
[  120.086574][ T6315] CPU: 1 UID: 0 PID: 6315 Comm: syz.2.101 Not tainted 6.13.0-rc4-syzkaller #0
[  120.095495][ T6315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  120.105575][ T6315] Call Trace:
[  120.108861][ T6315]  <TASK>
[  120.111882][ T6315]  dump_stack_lvl+0x241/0x360
[  120.116592][ T6315]  ? __pfx_dump_stack_lvl+0x10/0x10
[  120.121815][ T6315]  ? __pfx__printk+0x10/0x10
[  120.126429][ T6315]  ? kmem_cache_alloc_node_noprof+0x4f/0x380
[  120.132444][ T6315]  ? __pfx___might_resched+0x10/0x10
[  120.137759][ T6315]  should_fail_ex+0x3b0/0x4e0
[  120.142453][ T6315]  should_failslab+0xac/0x100
[  120.147268][ T6315]  kmem_cache_alloc_node_noprof+0x77/0x380
[  120.153096][ T6315]  ? __alloc_skb+0x1c3/0x440
[  120.157734][ T6315]  __alloc_skb+0x1c3/0x440
[  120.162281][ T6315]  ? srso_alias_return_thunk+0x5/0xfbef5
[  120.167937][ T6315]  ? __local_bh_enable_ip+0x168/0x200
[  120.173396][ T6315]  ? __pfx___alloc_skb+0x10/0x10
[  120.178350][ T6315]  ? srso_alias_return_thunk+0x5/0xfbef5
[  120.184015][ T6315]  kcm_sendmsg+0x2592/0x2a50
[  120.188654][ T6315]  ? srso_alias_return_thunk+0x5/0xfbef5
[  120.194406][ T6315]  ? __pfx_kcm_sendmsg+0x10/0x10
[  120.199456][ T6315]  ? __import_iovec+0x590/0x870
[  120.204425][ T6315]  ? srso_alias_return_thunk+0x5/0xfbef5
[  120.210072][ T6315]  ? aa_sock_msg_perm+0x91/0x160
[  120.215029][ T6315]  ? srso_alias_return_thunk+0x5/0xfbef5
[  120.220678][ T6315]  ? __pfx_kcm_sendmsg+0x10/0x10
[  120.225646][ T6315]  __sock_sendmsg+0x223/0x270
[  120.230356][ T6315]  ____sys_sendmsg+0x52a/0x7e0
[  120.235149][ T6315]  ? __pfx_____sys_sendmsg+0x10/0x10
[  120.240450][ T6315]  ? __fget_files+0x2a/0x410
[  120.245067][ T6315]  ? srso_alias_return_thunk+0x5/0xfbef5
[  120.250711][ T6315]  ? __sys_sendmmsg+0x392/0x720
[  120.255586][ T6315]  ? __might_fault+0xaa/0x120
[  120.260275][ T6315]  __sys_sendmmsg+0x36a/0x720
[  120.264982][ T6315]  ? __pfx___sys_sendmmsg+0x10/0x10
[  120.270211][ T6315]  ? __pfx_lock_release+0x10/0x10
[  120.275258][ T6315]  ? kstrtouint_from_user+0x128/0x190
[  120.280660][ T6315]  ? srso_alias_return_thunk+0x5/0xfbef5
[  120.286307][ T6315]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  120.292227][ T6315]  ? ksys_write+0x22a/0x2b0
[  120.296748][ T6315]  ? __pfx_lock_release+0x10/0x10
[  120.301789][ T6315]  ? srso_alias_return_thunk+0x5/0xfbef5
[  120.307435][ T6315]  ? srso_alias_return_thunk+0x5/0xfbef5
[  120.313075][ T6315]  ? vfs_write+0x730/0xd30
[  120.317506][ T6315]  ? srso_alias_return_thunk+0x5/0xfbef5
[  120.323147][ T6315]  ? __mutex_unlock_slowpath+0x21e/0x790
[  120.328822][ T6315]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  120.334823][ T6315]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  120.341180][ T6315]  ? do_syscall_64+0x100/0x230
[  120.345982][ T6315]  __x64_sys_sendmmsg+0xa0/0xb0
[  120.350852][ T6315]  do_syscall_64+0xf3/0x230
[  120.355383][ T6315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  120.361298][ T6315] RIP: 0033:0x7f7e97d85d29
[  120.365719][ T6315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  120.385340][ T6315] RSP: 002b:00007f7e98b0f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  120.393772][ T6315] RAX: ffffffffffffffda RBX: 00007f7e97f75fa0 RCX: 00007f7e97d85d29
[  120.401751][ T6315] RDX: 0000000000000002 RSI: 0000000020004e80 RDI: 0000000000000004
[  120.409760][ T6315] RBP: 00007f7e98b0f090 R08: 0000000000000000 R09: 0000000000000000
[  120.417743][ T6315] R10: 0000000004000005 R11: 0000000000000246 R12: 0000000000000001
[  120.425723][ T6315] R13: 0000000000000000 R14: 00007f7e97f75fa0 R15: 00007fffc2b84418
[  120.433716][ T6315]  </TASK>
[  121.110851][ T5827] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.693285][ T6341] FAULT_INJECTION: forcing a failure.
[  123.693285][ T6341] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  123.735939][ T6341] CPU: 0 UID: 0 PID: 6341 Comm: syz.0.110 Not tainted 6.13.0-rc4-syzkaller #0
[  123.744836][ T6341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  123.755086][ T6341] Call Trace:
[  123.758385][ T6341]  <TASK>
[  123.761333][ T6341]  dump_stack_lvl+0x241/0x360
[  123.766052][ T6341]  ? __pfx_dump_stack_lvl+0x10/0x10
[  123.771374][ T6341]  ? __pfx__printk+0x10/0x10
[  123.776007][ T6341]  ? snprintf+0xda/0x120
[  123.780283][ T6341]  should_fail_ex+0x3b0/0x4e0
[  123.784989][ T6341]  _copy_to_user+0x31/0xb0
[  123.789446][ T6341]  simple_read_from_buffer+0xca/0x150
[  123.794858][ T6341]  proc_fail_nth_read+0x1e9/0x250
[  123.799919][ T6341]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  123.805504][ T6341]  ? srso_alias_return_thunk+0x5/0xfbef5
[  123.811166][ T6341]  ? rw_verify_area+0x55e/0x6f0
[  123.816045][ T6341]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  123.821623][ T6341]  vfs_read+0x1fe/0xb70
[  123.825990][ T6341]  ? __pfx___mutex_lock+0x10/0x10
[  123.831056][ T6341]  ? __pfx_vfs_read+0x10/0x10
[  123.835760][ T6341]  ? __fget_files+0x2a/0x410
[  123.840398][ T6341]  ? __fget_files+0x395/0x410
[  123.845129][ T6341]  ? __fget_files+0x2a/0x410
[  123.849901][ T6341]  ? srso_alias_return_thunk+0x5/0xfbef5
[  123.855585][ T6341]  ksys_read+0x18f/0x2b0
[  123.859865][ T6341]  ? __pfx_ksys_read+0x10/0x10
[  123.864659][ T6341]  ? do_syscall_64+0x100/0x230
[  123.869501][ T6341]  ? do_syscall_64+0xb6/0x230
[  123.874239][ T6341]  do_syscall_64+0xf3/0x230
[  123.878792][ T6341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.884730][ T6341] RIP: 0033:0x7f0f6d58473c
[  123.889175][ T6341] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  123.908808][ T6341] RSP: 002b:00007f0f6e404030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  123.917252][ T6341] RAX: ffffffffffffffda RBX: 00007f0f6d775fa0 RCX: 00007f0f6d58473c
[  123.925248][ T6341] RDX: 000000000000000f RSI: 00007f0f6e4040a0 RDI: 0000000000000003
[  123.933234][ T6341] RBP: 00007f0f6e404090 R08: 0000000000000000 R09: 0000000000000000
[  123.941220][ T6341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  123.949208][ T6341] R13: 0000000000000000 R14: 00007f0f6d775fa0 R15: 00007ffe6f0e31c8
[  123.957217][ T6341]  </TASK>
[  124.069238][ T6344] netlink: 96 bytes leftover after parsing attributes in process `syz.2.109'.
[  124.142520][ T6346] netlink: 24 bytes leftover after parsing attributes in process `syz.2.109'.
[  126.937238][ T6375] loop0: detected capacity change from 0 to 64
[  127.010281][ T6381] FAULT_INJECTION: forcing a failure.
[  127.010281][ T6381] name failslab, interval 1, probability 0, space 0, times 0
[  127.023666][ T6381] CPU: 0 UID: 0 PID: 6381 Comm: syz.3.120 Not tainted 6.13.0-rc4-syzkaller #0
[  127.032577][ T6381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  127.042675][ T6381] Call Trace:
[  127.045985][ T6381]  <TASK>
[  127.048937][ T6381]  dump_stack_lvl+0x241/0x360
[  127.053666][ T6381]  ? __pfx_dump_stack_lvl+0x10/0x10
[  127.058924][ T6381]  ? __pfx__printk+0x10/0x10
[  127.063573][ T6381]  ? srso_alias_return_thunk+0x5/0xfbef5
[  127.069238][ T6381]  ? validate_chain+0x11e/0x5920
[  127.074238][ T6381]  should_fail_ex+0x3b0/0x4e0
[  127.078969][ T6381]  should_failslab+0xac/0x100
[  127.083706][ T6381]  kmem_cache_alloc_node_noprof+0x77/0x380
[  127.089580][ T6381]  ? __alloc_skb+0x1c3/0x440
[  127.094222][ T6381]  __alloc_skb+0x1c3/0x440
[  127.098679][ T6381]  ? __pfx___alloc_skb+0x10/0x10
[  127.103649][ T6381]  ? srso_alias_return_thunk+0x5/0xfbef5
[  127.109343][ T6381]  tcp_v6_send_response+0x392/0x2780
[  127.114722][ T6381]  ? mark_lock+0x9a/0x360
[  127.119138][ T6381]  ? __pfx_tcp_v6_send_response+0x10/0x10
[  127.124967][ T6381]  ? srso_alias_return_thunk+0x5/0xfbef5
[  127.130651][ T6381]  ? srso_alias_return_thunk+0x5/0xfbef5
[  127.136334][ T6381]  ? srso_alias_return_thunk+0x5/0xfbef5
[  127.142116][ T6381]  ? srso_alias_return_thunk+0x5/0xfbef5
[  127.147896][ T6381]  ? __rt6_find_exception_rcu+0x128/0x4c0
[  127.153660][ T6381]  ? srso_alias_return_thunk+0x5/0xfbef5
[  127.159431][ T6381]  ? rcu_is_watching+0x15/0xb0
[  127.164264][ T6381]  tcp_v6_send_reset+0xdba/0x16c0
[  127.169493][ T6381]  ? tcp_v6_send_reset+0x2eb/0x16c0
[  127.174769][ T6381]  ? inet6_lhash2_lookup+0x4d0/0x500
[  127.180110][ T6381]  ? __pfx_tcp_v6_send_reset+0x10/0x10
[  127.185626][ T6381]  ? srso_alias_return_thunk+0x5/0xfbef5
[  127.191399][ T6381]  ? inet6_lookup_listener+0x1d1/0x2d0
[  127.196923][ T6381]  ? tcp_v6_fill_cb+0x3b/0x470
[  127.201737][ T6381]  ? __asan_memcpy+0x40/0x70
[  127.206367][ T6381]  ? srso_alias_return_thunk+0x5/0xfbef5
[  127.212066][ T6381]  ? srso_alias_return_thunk+0x5/0xfbef5
[  127.217748][ T6381]  ? tcp_checksum_complete+0x14f/0x200
[  127.223337][ T6381]  tcp_v6_rcv+0x20bb/0x2fb0
[  127.227938][ T6381]  ? __pfx_tcp_v6_rcv+0x10/0x10
[  127.233020][ T6381]  ? csum_partial+0x22f/0x2b0
[  127.237742][ T6381]  ? __pfx_tcp_v6_rcv+0x10/0x10
[  127.242636][ T6381]  ? __pfx_tcp_v6_rcv+0x10/0x10
[  127.247531][ T6381]  ip6_protocol_deliver_rcu+0xc79/0x1580
[  127.253280][ T6381]  ? ip6_input_finish+0xdc/0x2d0
[  127.258263][ T6381]  ip6_input_finish+0x187/0x2d0
[  127.263156][ T6381]  ? __pfx_ip6_input_finish+0x10/0x10
[  127.268570][ T6381]  NF_HOOK+0x3a6/0x450
[  127.272691][ T6381]  ? NF_HOOK+0x9a/0x450
[  127.276888][ T6381]  ? __pfx_NF_HOOK+0x10/0x10
[  127.281534][ T6381]  ? __pfx_ip6_input_finish+0x10/0x10
[  127.286949][ T6381]  ? srso_alias_return_thunk+0x5/0xfbef5
[  127.292629][ T6381]  ? srso_alias_return_thunk+0x5/0xfbef5
[  127.298326][ T6381]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  127.303584][ T6381]  NF_HOOK+0x3a6/0x450
[  127.307696][ T6381]  ? srso_alias_return_thunk+0x5/0xfbef5
[  127.313367][ T6381]  ? skb_orphan+0x4d/0xd0
[  127.317733][ T6381]  ? NF_HOOK+0x9a/0x450
[  127.321913][ T6381]  ? __pfx_NF_HOOK+0x10/0x10
[  127.326538][ T6381]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  127.331786][ T6381]  ? srso_alias_return_thunk+0x5/0xfbef5
[  127.337470][ T6381]  ? __pfx_ipv6_rcv+0x10/0x10
[  127.342380][ T6381]  __netif_receive_skb+0x1ea/0x650
[  127.347539][ T6381]  ? __pfx_lock_acquire+0x10/0x10
[  127.352602][ T6381]  ? seqcount_lockdep_reader_access+0x1d7/0x220
[  127.358880][ T6381]  ? __pfx___netif_receive_skb+0x10/0x10
[  127.364560][ T6381]  ? build_skb+0x52/0x2a0
[  127.368967][ T6381]  ? tun_get_user+0x2173/0x48a0
[  127.373851][ T6381]  ? tun_chr_write_iter+0x10d/0x1f0
[  127.379081][ T6381]  ? do_syscall_64+0xf3/0x230
[  127.383778][ T6381]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.389888][ T6381]  ? tun_rx_batched+0x160/0x8f0
[  127.394781][ T6381]  ? __pfx_lockdep_softirqs_off+0x10/0x10
[  127.400544][ T6381]  ? srso_alias_return_thunk+0x5/0xfbef5
[  127.406209][ T6381]  ? netif_receive_skb+0x131/0x890
[  127.411582][ T6381]  ? netif_receive_skb+0x131/0x890
[  127.416741][ T6381]  netif_receive_skb+0x1e8/0x890
[  127.421722][ T6381]  ? tun_rx_batched+0x160/0x8f0
[  127.426614][ T6381]  ? __pfx_netif_receive_skb+0x10/0x10
[  127.432127][ T6381]  ? tun_rx_batched+0x160/0x8f0
[  127.437023][ T6381]  tun_rx_batched+0x1b7/0x8f0
[  127.441790][ T6381]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  127.448585][ T6381]  ? __pfx_lock_acquire+0x10/0x10
[  127.453656][ T6381]  ? __pfx_tun_rx_batched+0x10/0x10
[  127.458924][ T6381]  tun_get_user+0x30cc/0x48a0
[  127.463646][ T6381]  ? tun_get_user+0x2bba/0x48a0
[  127.468547][ T6381]  ? tun_get_user+0x875/0x48a0
[  127.473364][ T6381]  ? srso_alias_return_thunk+0x5/0xfbef5
[  127.479046][ T6381]  ? __pfx_tun_get_user+0x10/0x10
[  127.484138][ T6381]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  127.489665][ T6381]  ? tun_get+0x1e/0x2f0
[  127.493861][ T6381]  ? __pfx_lock_release+0x10/0x10
[  127.498955][ T6381]  ? srso_alias_return_thunk+0x5/0xfbef5
[  127.504631][ T6381]  ? tun_get+0x1e/0x2f0
[  127.508832][ T6381]  ? srso_alias_return_thunk+0x5/0xfbef5
[  127.514514][ T6381]  ? tun_get+0x27d/0x2f0
[  127.518811][ T6381]  tun_chr_write_iter+0x10d/0x1f0
[  127.523883][ T6381]  vfs_write+0xaed/0xd30
[  127.528166][ T6381]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  127.533842][ T6381]  ? __pfx_vfs_write+0x10/0x10
[  127.538641][ T6381]  ? __fget_files+0x2a/0x410
[  127.543287][ T6381]  ? __fget_files+0x2a/0x410
[  127.547924][ T6381]  ? srso_alias_return_thunk+0x5/0xfbef5
[  127.553600][ T6381]  ksys_write+0x18f/0x2b0
[  127.557967][ T6381]  ? __pfx_ksys_write+0x10/0x10
[  127.562847][ T6381]  ? do_syscall_64+0x100/0x230
[  127.567657][ T6381]  ? do_syscall_64+0xb6/0x230
[  127.572379][ T6381]  do_syscall_64+0xf3/0x230
[  127.576930][ T6381]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.582864][ T6381] RIP: 0033:0x7fc0715847df
[  127.587301][ T6381] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  127.606974][ T6381] RSP: 002b:00007fc072469000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  127.615462][ T6381] RAX: ffffffffffffffda RBX: 00007fc071776080 RCX: 00007fc0715847df
[  127.623571][ T6381] RDX: 0000000000000052 RSI: 0000000020000000 RDI: 00000000000000c8
[  127.631583][ T6381] RBP: 00007fc072469090 R08: 0000000000000000 R09: 0000000000000000
[  127.639678][ T6381] R10: 0000000000000052 R11: 0000000000000293 R12: 0000000000000001
[  127.647781][ T6381] R13: 0000000000000000 R14: 00007fc071776080 R15: 00007ffdc8647018
[  127.655817][ T6381]  </TASK>
[  127.799900][ T6389] netlink: 96 bytes leftover after parsing attributes in process `syz.2.124'.
[  127.861055][ T6390] netlink: 24 bytes leftover after parsing attributes in process `syz.2.124'.
[  129.443213][ T6393] loop5: detected capacity change from 0 to 256
[  129.482995][ T6393] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  130.602258][ T6410] FAULT_INJECTION: forcing a failure.
[  130.602258][ T6410] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  130.836338][ T6410] CPU: 0 UID: 0 PID: 6410 Comm: syz.1.131 Not tainted 6.13.0-rc4-syzkaller #0
[  130.845421][ T6410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  130.855493][ T6410] Call Trace:
[  130.858787][ T6410]  <TASK>
[  130.861734][ T6410]  dump_stack_lvl+0x241/0x360
[  130.866447][ T6410]  ? __pfx_dump_stack_lvl+0x10/0x10
[  130.871679][ T6410]  ? __pfx__printk+0x10/0x10
[  130.876734][ T6410]  ? tomoyo_path_number_perm+0x6f9/0x860
[  130.882405][ T6410]  ? __pfx_lock_release+0x10/0x10
[  130.887466][ T6410]  ? tomoyo_path_number_perm+0x206/0x860
[  130.893140][ T6410]  should_fail_ex+0x3b0/0x4e0
[  130.897840][ T6410]  _copy_from_user+0x2f/0xc0
[  130.902465][ T6410]  video_usercopy+0x378/0x1180
[  130.907293][ T6410]  ? __pfx___video_do_ioctl+0x10/0x10
[  130.912674][ T6410]  ? __pfx_video_usercopy+0x10/0x10
[  130.917886][ T6410]  ? __fget_files+0x2a/0x410
[  130.922479][ T6410]  ? srso_alias_return_thunk+0x5/0xfbef5
[  130.928109][ T6410]  ? __fget_files+0x2a/0x410
[  130.932716][ T6410]  v4l2_ioctl+0x18b/0x1e0
[  130.937078][ T6410]  ? __pfx_v4l2_ioctl+0x10/0x10
[  130.942051][ T6410]  __se_sys_ioctl+0xf7/0x170
[  130.946664][ T6410]  do_syscall_64+0xf3/0x230
[  130.951206][ T6410]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.957140][ T6410] RIP: 0033:0x7fe78f185d29
[  130.961581][ T6410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.981214][ T6410] RSP: 002b:00007fe78fff9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  130.989684][ T6410] RAX: ffffffffffffffda RBX: 00007fe78f375fa0 RCX: 00007fe78f185d29
[  130.997695][ T6410] RDX: 0000000020000080 RSI: 00000000c0405602 RDI: 0000000000000003
[  131.005691][ T6410] RBP: 00007fe78fff9090 R08: 0000000000000000 R09: 0000000000000000
[  131.013686][ T6410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  131.021677][ T6410] R13: 0000000000000000 R14: 00007fe78f375fa0 R15: 00007ffd011386e8
[  131.029691][ T6410]  </TASK>
[  131.076226][ T6403] loop4: detected capacity change from 0 to 64
[  131.734571][ T6425] netlink: 28 bytes leftover after parsing attributes in process `syz.1.135'.
[  131.745221][ T6425] netlink: 28 bytes leftover after parsing attributes in process `syz.1.135'.
[  132.352105][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  132.358460][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  132.490324][ T6433] FAULT_INJECTION: forcing a failure.
[  132.490324][ T6433] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  132.646201][ T6433] CPU: 0 UID: 0 PID: 6433 Comm: syz.1.138 Not tainted 6.13.0-rc4-syzkaller #0
[  132.655232][ T6433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  132.665489][ T6433] Call Trace:
[  132.668783][ T6433]  <TASK>
[  132.671730][ T6433]  dump_stack_lvl+0x241/0x360
[  132.676455][ T6433]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.681700][ T6433]  ? __pfx__printk+0x10/0x10
[  132.686335][ T6433]  ? snprintf+0xda/0x120
[  132.690611][ T6433]  should_fail_ex+0x3b0/0x4e0
[  132.695327][ T6433]  _copy_to_user+0x31/0xb0
[  132.699875][ T6433]  simple_read_from_buffer+0xca/0x150
[  132.705289][ T6433]  proc_fail_nth_read+0x1e9/0x250
[  132.710358][ T6433]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  132.715943][ T6433]  ? srso_alias_return_thunk+0x5/0xfbef5
[  132.721873][ T6433]  ? rw_verify_area+0x55e/0x6f0
[  132.726754][ T6433]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  132.732344][ T6433]  vfs_read+0x1fe/0xb70
[  132.736533][ T6433]  ? __pfx___mutex_lock+0x10/0x10
[  132.741604][ T6433]  ? __pfx_vfs_read+0x10/0x10
[  132.746327][ T6433]  ? __fget_files+0x2a/0x410
[  132.750963][ T6433]  ? __fget_files+0x395/0x410
[  132.755679][ T6433]  ? __fget_files+0x2a/0x410
[  132.760310][ T6433]  ? srso_alias_return_thunk+0x5/0xfbef5
[  132.765975][ T6433]  ksys_read+0x18f/0x2b0
[  132.770244][ T6433]  ? __pfx_ksys_read+0x10/0x10
[  132.775032][ T6433]  ? do_syscall_64+0x100/0x230
[  132.779835][ T6433]  ? do_syscall_64+0xb6/0x230
[  132.784590][ T6433]  do_syscall_64+0xf3/0x230
[  132.789224][ T6433]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  132.795156][ T6433] RIP: 0033:0x7fe78f18473c
[  132.799596][ T6433] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  132.819416][ T6433] RSP: 002b:00007fe78fff9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  132.827884][ T6433] RAX: ffffffffffffffda RBX: 00007fe78f375fa0 RCX: 00007fe78f18473c
[  132.835915][ T6433] RDX: 000000000000000f RSI: 00007fe78fff90a0 RDI: 0000000000000005
[  132.843927][ T6433] RBP: 00007fe78fff9090 R08: 0000000000000000 R09: 0000000000000000
[  132.851927][ T6433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  132.859927][ T6433] R13: 0000000000000000 R14: 00007fe78f375fa0 R15: 00007ffd011386e8
[  132.867960][ T6433]  </TASK>
[  133.219691][ T6438] netlink: 96 bytes leftover after parsing attributes in process `syz.0.139'.
[  133.282004][ T6439] netlink: 24 bytes leftover after parsing attributes in process `syz.0.139'.
[  133.708639][ T6442] netlink: 24 bytes leftover after parsing attributes in process `syz.5.141'.
[  133.918053][ T6444] loop1: detected capacity change from 0 to 128
[  133.999114][ T5827] hfs: node 4:3 still has 1 user(s)!
[  134.062622][ T6449] netlink: 16 bytes leftover after parsing attributes in process `syz.3.143'.
[  135.027202][ T6456] loop3: detected capacity change from 0 to 256
[  135.045578][ T6456] vfat: Unknown parameter 'uxi_xlate'
[  135.410767][ T6458] loop0: detected capacity change from 0 to 256
[  135.696322][ T6458] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  136.265837][ T6459] loop3: detected capacity change from 0 to 4096
[  136.274158][ T6459] ntfs3: Unknown parameter '
€Â'
[  136.378367][ T6459] loop3: detected capacity change from 0 to 512
[  136.482646][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  136.492360][    T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!!
[  136.521226][ T6464] syz.2.148: attempt to access beyond end of device
[  136.521226][ T6464] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  136.535374][ T6459] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.549630][ T6464] exFAT-fs (nbd2): unable to read boot sector
[  136.560149][ T6464] exFAT-fs (nbd2): failed to read boot sector
[  136.566834][ T6456] EXT4-fs error (device loop3): ext4_check_all_de:656: inode #12: block 7: comm syz.3.146: bad entry in directory: rec_len is smaller than minimal - offset=16, inode=14, rec_len=1, size=124 fake=0
[  136.589274][ T6464] exFAT-fs (nbd2): failed to recognize exfat type
[  136.677514][ T6456] EXT4-fs (loop3): Remounting filesystem read-only
[  136.713162][ T6464] loop2: detected capacity change from 0 to 512
[  136.752152][ T6464] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  136.770955][ T6464] EXT4-fs (loop2): 1 truncate cleaned up
[  136.786809][ T6464] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.947107][ T6464] netlink: 'syz.2.148': attribute type 1 has an invalid length.
[  136.994519][ T5823] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.442758][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.476257][ T6481] loop1: detected capacity change from 0 to 4096
[  138.864499][ T6486] netlink: 96 bytes leftover after parsing attributes in process `syz.4.157'.
[  138.925889][ T6491] netlink: 24 bytes leftover after parsing attributes in process `syz.4.157'.
[  140.469550][ T6481] netlink: 28 bytes leftover after parsing attributes in process `syz.1.156'.
[  140.485177][ T6512] FAULT_INJECTION: forcing a failure.
[  140.485177][ T6512] name failslab, interval 1, probability 0, space 0, times 0
[  140.497909][ T6512] CPU: 1 UID: 0 PID: 6512 Comm: syz.2.161 Not tainted 6.13.0-rc4-syzkaller #0
[  140.506955][ T6512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  140.517118][ T6512] Call Trace:
[  140.520409][ T6512]  <TASK>
[  140.523359][ T6512]  dump_stack_lvl+0x241/0x360
[  140.528086][ T6512]  ? __pfx_dump_stack_lvl+0x10/0x10
[  140.533319][ T6512]  ? __pfx__printk+0x10/0x10
[  140.537973][ T6512]  ? srso_alias_return_thunk+0x5/0xfbef5
[  140.543635][ T6512]  ? srso_alias_return_thunk+0x5/0xfbef5
[  140.549299][ T6512]  should_fail_ex+0x3b0/0x4e0
[  140.554029][ T6512]  ? __pfx_ip6_dst_gc+0x10/0x10
[  140.559261][ T6512]  should_failslab+0xac/0x100
[  140.563972][ T6512]  ? dst_alloc+0x12b/0x190
[  140.568410][ T6512]  kmem_cache_alloc_noprof+0x70/0x380
[  140.573815][ T6512]  ? __pfx_rt6_find_cached_rt+0x10/0x10
[  140.579396][ T6512]  ? __pfx_ip6_dst_gc+0x10/0x10
[  140.584282][ T6512]  dst_alloc+0x12b/0x190
[  140.588570][ T6512]  ip6_pol_route+0xb87/0x15d0
[  140.593290][ T6512]  ? ip6_pol_route+0x198/0x15d0
[  140.598184][ T6512]  ? __pfx_ip6_pol_route+0x10/0x10
[  140.603351][ T6512]  ? srso_alias_return_thunk+0x5/0xfbef5
[  140.609011][ T6512]  fib6_rule_lookup+0x3c2/0x790
[  140.613900][ T6512]  ? srso_alias_return_thunk+0x5/0xfbef5
[  140.619560][ T6512]  ? __pfx_ip6_pol_route_output+0x10/0x10
[  140.625323][ T6512]  ? __pfx_fib6_rule_lookup+0x10/0x10
[  140.630732][ T6512]  ? __lock_acquire+0x1397/0x2100
[  140.635793][ T6512]  ? srso_alias_return_thunk+0x5/0xfbef5
[  140.641499][ T6512]  ? srso_alias_return_thunk+0x5/0xfbef5
[  140.647193][ T6512]  ? ip6_route_output_flags+0x30/0x610
[  140.652693][ T6512]  ip6_route_output_flags+0x38e/0x610
[  140.658107][ T6512]  ip6_dst_lookup_tail+0x1b3/0x14f0
[  140.663339][ T6512]  ? sk_dst_check+0x29/0x470
[  140.668145][ T6512]  ? __pfx_ip6_dst_lookup_tail+0x10/0x10
[  140.673812][ T6512]  ? sk_dst_check+0x29/0x470
[  140.678439][ T6512]  ? srso_alias_return_thunk+0x5/0xfbef5
[  140.684184][ T6512]  ? sk_dst_check+0x2f9/0x470
[  140.688906][ T6512]  ip6_sk_dst_lookup_flow+0x78c/0xa30
[  140.694309][ T6512]  ? srso_alias_return_thunk+0x5/0xfbef5
[  140.699964][ T6512]  ? txopt_get+0x3e0/0x4f0
[  140.704406][ T6512]  ? __lock_acquire+0x1397/0x2100
[  140.709457][ T6512]  ? __pfx_ip6_sk_dst_lookup_flow+0x10/0x10
[  140.715579][ T6512]  ? udpv6_sendmsg+0x1c01/0x32b0
[  140.720542][ T6512]  ? srso_alias_return_thunk+0x5/0xfbef5
[  140.726203][ T6512]  udpv6_sendmsg+0x202a/0x32b0
[  140.731008][ T6512]  ? __pfx_ip_generic_getfrag+0x10/0x10
[  140.736672][ T6512]  ? __pfx_udpv6_sendmsg+0x10/0x10
[  140.741813][ T6512]  ? inet_send_prepare+0x1b7/0x260
[  140.746946][ T6512]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  140.753304][ T6512]  ? inet_send_prepare+0x1b7/0x260
[  140.758426][ T6512]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  140.764173][ T6512]  ? inet_send_prepare+0x1b7/0x260
[  140.769292][ T6512]  ? srso_alias_return_thunk+0x5/0xfbef5
[  140.775052][ T6512]  ? do_raw_spin_unlock+0x13c/0x8b0
[  140.780267][ T6512]  ? srso_alias_return_thunk+0x5/0xfbef5
[  140.786016][ T6512]  ? inet_send_prepare+0x1b7/0x260
[  140.791227][ T6512]  ? srso_alias_return_thunk+0x5/0xfbef5
[  140.797219][ T6512]  __sock_sendmsg+0xef/0x270
[  140.801834][ T6512]  ____sys_sendmsg+0x52a/0x7e0
[  140.806617][ T6512]  ? __pfx_____sys_sendmsg+0x10/0x10
[  140.811910][ T6512]  ? __fget_files+0x2a/0x410
[  140.816529][ T6512]  ? __fget_files+0x2a/0x410
[  140.821148][ T6512]  __sys_sendmmsg+0x36a/0x720
[  140.825850][ T6512]  ? __pfx___sys_sendmmsg+0x10/0x10
[  140.831072][ T6512]  ? __pfx_lock_release+0x10/0x10
[  140.836104][ T6512]  ? kstrtouint_from_user+0x128/0x190
[  140.841509][ T6512]  ? srso_alias_return_thunk+0x5/0xfbef5
[  140.847161][ T6512]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  140.853077][ T6512]  ? ksys_write+0x22a/0x2b0
[  140.857586][ T6512]  ? __pfx_lock_release+0x10/0x10
[  140.862625][ T6512]  ? srso_alias_return_thunk+0x5/0xfbef5
[  140.868268][ T6512]  ? srso_alias_return_thunk+0x5/0xfbef5
[  140.873907][ T6512]  ? vfs_write+0x730/0xd30
[  140.878332][ T6512]  ? srso_alias_return_thunk+0x5/0xfbef5
[  140.883970][ T6512]  ? __mutex_unlock_slowpath+0x21e/0x790
[  140.889645][ T6512]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  140.895639][ T6512]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  140.902063][ T6512]  ? do_syscall_64+0x100/0x230
[  140.906849][ T6512]  __x64_sys_sendmmsg+0xa0/0xb0
[  140.911714][ T6512]  do_syscall_64+0xf3/0x230
[  140.916277][ T6512]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.922216][ T6512] RIP: 0033:0x7f7e97d85d29
[  140.926653][ T6512] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  140.946285][ T6512] RSP: 002b:00007f7e98b0f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  140.954722][ T6512] RAX: ffffffffffffffda RBX: 00007f7e97f75fa0 RCX: 00007f7e97d85d29
[  140.962705][ T6512] RDX: 0000000000000001 RSI: 0000000020005c80 RDI: 0000000000000003
[  140.970682][ T6512] RBP: 00007f7e98b0f090 R08: 0000000000000000 R09: 0000000000000000
[  140.978684][ T6512] R10: 000000000000b80b R11: 0000000000000246 R12: 0000000000000001
[  140.986659][ T6512] R13: 0000000000000000 R14: 00007f7e97f75fa0 R15: 00007fffc2b84418
[  140.994741][ T6512]  </TASK>
[  141.120200][   T29] audit: type=1804 audit(1734989397.282:4): pid=6501 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.156" name=2F6E6577726F6F742F32362F131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D3382F66696C6530 dev="loop1" ino=33 res=1 errno=0
[  141.324899][ T6517] FAULT_INJECTION: forcing a failure.
[  141.324899][ T6517] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  141.441702][ T6517] CPU: 0 UID: 0 PID: 6517 Comm: syz.3.160 Not tainted 6.13.0-rc4-syzkaller #0
[  141.450606][ T6517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  141.460960][ T6517] Call Trace:
[  141.464280][ T6517]  <TASK>
[  141.467225][ T6517]  dump_stack_lvl+0x241/0x360
[  141.471946][ T6517]  ? __pfx_dump_stack_lvl+0x10/0x10
[  141.477178][ T6517]  ? __pfx__printk+0x10/0x10
[  141.481996][ T6517]  ? snprintf+0xda/0x120
[  141.486271][ T6517]  should_fail_ex+0x3b0/0x4e0
[  141.490971][ T6517]  _copy_to_user+0x31/0xb0
[  141.495424][ T6517]  simple_read_from_buffer+0xca/0x150
[  141.500825][ T6517]  proc_fail_nth_read+0x1e9/0x250
[  141.505882][ T6517]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  141.511459][ T6517]  ? srso_alias_return_thunk+0x5/0xfbef5
[  141.517112][ T6517]  ? rw_verify_area+0x55e/0x6f0
[  141.522073][ T6517]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  141.527653][ T6517]  vfs_read+0x1fe/0xb70
[  141.531841][ T6517]  ? __pfx___mutex_lock+0x10/0x10
[  141.536991][ T6517]  ? __pfx_vfs_read+0x10/0x10
[  141.541696][ T6517]  ? __fget_files+0x2a/0x410
[  141.546322][ T6517]  ? __fget_files+0x395/0x410
[  141.551030][ T6517]  ? __fget_files+0x2a/0x410
[  141.555659][ T6517]  ? srso_alias_return_thunk+0x5/0xfbef5
[  141.561325][ T6517]  ksys_read+0x18f/0x2b0
[  141.565594][ T6517]  ? __pfx_ksys_read+0x10/0x10
[  141.570382][ T6517]  ? do_syscall_64+0x100/0x230
[  141.575187][ T6517]  ? do_syscall_64+0xb6/0x230
[  141.579908][ T6517]  do_syscall_64+0xf3/0x230
[  141.584451][ T6517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.590379][ T6517] RIP: 0033:0x7fc07158473c
[  141.594815][ T6517] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  141.614620][ T6517] RSP: 002b:00007fc07248a030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  141.623069][ T6517] RAX: ffffffffffffffda RBX: 00007fc071775fa0 RCX: 00007fc07158473c
[  141.631154][ T6517] RDX: 000000000000000f RSI: 00007fc07248a0a0 RDI: 0000000000000004
[  141.639146][ T6517] RBP: 00007fc07248a090 R08: 0000000000000000 R09: 0000000000000000
[  141.647136][ T6517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  141.655128][ T6517] R13: 0000000000000000 R14: 00007fc071775fa0 R15: 00007ffdc8647018
[  141.663137][ T6517]  </TASK>
[  141.920689][ T6522] loop5: detected capacity change from 0 to 512
[  141.931172][ T6522] EXT4-fs: Ignoring removed i_version option
[  141.943544][ T6522] EXT4-fs: Ignoring removed mblk_io_submit option
[  141.953706][ T6522] ext4: Unknown parameter 'seclabel'
[  141.985864][ T6522] loop5: detected capacity change from 0 to 256
[  142.298384][ T6522] msdos: Bad value for 'errors'
[  142.916324][ T6532] loop3: detected capacity change from 0 to 256
[  144.613017][ T6532] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  146.019846][ T6540] loop0: detected capacity change from 0 to 1024
[  146.048295][ T6542] FAULT_INJECTION: forcing a failure.
[  146.048295][ T6542] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  146.112621][ T6542] CPU: 0 UID: 0 PID: 6542 Comm: syz.4.167 Not tainted 6.13.0-rc4-syzkaller #0
[  146.121545][ T6542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  146.131623][ T6542] Call Trace:
[  146.134916][ T6542]  <TASK>
[  146.137866][ T6542]  dump_stack_lvl+0x241/0x360
[  146.142592][ T6542]  ? __pfx_dump_stack_lvl+0x10/0x10
[  146.147828][ T6542]  ? __pfx__printk+0x10/0x10
[  146.152457][ T6542]  ? tomoyo_path_number_perm+0x6f9/0x860
[  146.158229][ T6542]  ? __pfx_lock_release+0x10/0x10
[  146.163289][ T6542]  ? tomoyo_path_number_perm+0x206/0x860
[  146.168965][ T6542]  should_fail_ex+0x3b0/0x4e0
[  146.173675][ T6542]  _copy_from_user+0x2f/0xc0
[  146.178310][ T6542]  video_usercopy+0x378/0x1180
[  146.183127][ T6542]  ? __pfx___video_do_ioctl+0x10/0x10
[  146.188641][ T6542]  ? __pfx_video_usercopy+0x10/0x10
[  146.193892][ T6542]  ? __fget_files+0x2a/0x410
[  146.198527][ T6542]  ? srso_alias_return_thunk+0x5/0xfbef5
[  146.204195][ T6542]  ? __fget_files+0x2a/0x410
[  146.208825][ T6542]  v4l2_ioctl+0x18b/0x1e0
[  146.213192][ T6542]  ? __pfx_v4l2_ioctl+0x10/0x10
[  146.218089][ T6542]  __se_sys_ioctl+0xf7/0x170
[  146.222718][ T6542]  do_syscall_64+0xf3/0x230
[  146.227267][ T6542]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.233288][ T6542] RIP: 0033:0x7fc23c385d29
[  146.237729][ T6542] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.257370][ T6542] RSP: 002b:00007fc23d124038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  146.265808][ T6542] RAX: ffffffffffffffda RBX: 00007fc23c575fa0 RCX: 00007fc23c385d29
[  146.273785][ T6542] RDX: 0000000020000000 RSI: 00000000c02c564a RDI: 0000000000000003
[  146.281761][ T6542] RBP: 00007fc23d124090 R08: 0000000000000000 R09: 0000000000000000
[  146.289734][ T6542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  146.297708][ T6542] R13: 0000000000000000 R14: 00007fc23c575fa0 R15: 00007ffd5dc9c908
[  146.305705][ T6542]  </TASK>
[  146.669738][ T6538] loop5: detected capacity change from 0 to 32768
[  146.827121][ T6552] netlink: 96 bytes leftover after parsing attributes in process `syz.4.171'.
[  146.888052][ T6554] netlink: 24 bytes leftover after parsing attributes in process `syz.4.171'.
[  147.171037][ T6538] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  147.928994][ T6538] XFS (loop5): Ending clean mount
[  148.075871][ T6538] XFS (loop5): Quotacheck needed: Please wait.
[  148.969339][ T6544] loop2: detected capacity change from 0 to 32768
[  149.044454][ T6544] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.168 (6544)
[  149.317038][ T6538] XFS (loop5): Quotacheck: Done.
[  149.658008][ T5832] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  149.673401][ T6585] loop0: detected capacity change from 0 to 512
[  149.680613][ T6585] EXT4-fs: Ignoring removed i_version option
[  149.687086][ T6585] EXT4-fs: Ignoring removed mblk_io_submit option
[  149.694007][ T6585] ext4: Unknown parameter 'seclabel'
[  149.706195][ T6585] loop0: detected capacity change from 0 to 256
[  149.713131][ T6585] msdos: Bad value for 'errors'
[  149.721026][ T6586] netlink: 8 bytes leftover after parsing attributes in process `syz.3.180'.
[  149.887355][ T6591] openvswitch: netlink: IP tunnel dst address not specified
[  150.752327][ T5901] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  150.787513][ T5888] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  151.125435][ T5901] usb 3-1: Using ep0 maxpacket: 8
[  151.134265][ T5901] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ee
[  151.143778][ T5901] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  151.151882][ T5901] usb 3-1: Product: syz
[  151.156382][ T5901] usb 3-1: Manufacturer: syz
[  151.163834][ T5901] usb 3-1: SerialNumber: syz
[  151.186428][ T5901] usb 3-1: config 0 descriptor??
[  151.233836][ T5888] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  151.245134][ T5888] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  151.255115][ T5888] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  151.264810][ T5888] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.303489][ T6589] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  151.384443][ T5888] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  151.437003][ T5901] usb 3-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  152.804189][ T5901] dvb_usb_rtl28xxu 3-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -110
[  154.488904][ T5935] usb 2-1: USB disconnect, device number 3
[  154.603258][ T5901] usb 3-1: USB disconnect, device number 3
[  154.679930][ T6626] netlink: 24 bytes leftover after parsing attributes in process `syz.0.187'.
[  155.089103][ T6629] loop1: detected capacity change from 0 to 40427
[  155.102265][ T6629] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x1fffff
[  155.111186][ T6629] F2FS-fs (loop1): Image doesn't support compression
[  155.118005][ T6629] F2FS-fs (loop1): Image doesn't support compression
[  155.128123][ T6629] F2FS-fs (loop1): invalid crc value
[  155.193552][ T6629] F2FS-fs (loop1): Found nat_bits in checkpoint
[  155.273418][ T6629] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  155.706021][ T6627] F2FS-fs (loop1): inject invalid blkaddr in f2fs_is_valid_blkaddr of truncate_node+0x184/0x9b0
[  155.717029][ T6627] F2FS-fs (loop1): nat entry is corrupted, run fsck to fix it, ino:10, nid:10, blkaddr:4614
[  156.132474][ T5831] syz-executor: attempt to access beyond end of device
[  156.132474][ T5831] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  156.148759][ T5831] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  156.171648][ T5888] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  156.551636][ T5888] usb 3-1: Using ep0 maxpacket: 16
[  156.558666][ T5888] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  156.595429][ T6648] loop0: detected capacity change from 0 to 512
[  156.617151][ T5888] usb 3-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  156.691613][ T5888] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.471699][ T6648] EXT4-fs: Ignoring removed i_version option
[  157.508430][ T6648] EXT4-fs: Ignoring removed mblk_io_submit option
[  157.530680][ T6648] ext4: Unknown parameter 'seclabel'
[  157.556797][ T6648] loop0: detected capacity change from 0 to 256
[  157.570024][ T6648] msdos: Bad value for 'errors'
[  157.595610][ T5888] usb 3-1: config 0 descriptor??
[  157.928181][ T6660] loop3: detected capacity change from 0 to 512
[  158.780786][ T5888] mcp2221 0003:04D8:00DD.0001: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0
[  161.069159][ T6678] loop0: detected capacity change from 0 to 128
[  161.263907][    T8] usb 3-1: USB disconnect, device number 4
[  161.569392][ T6685] loop1: detected capacity change from 0 to 32768
[  161.571688][ T6680] loop3: detected capacity change from 0 to 1024
[  161.582704][ T5890] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  161.682374][ T6685] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.194 (6685)
[  161.707897][ T6685] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  161.718333][ T6685] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm
[  161.957625][ T5890] usb 5-1: New USB device found, idVendor=046d, idProduct=08b6, bcdDevice= e.32
[  161.967070][ T5890] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  161.983381][ T5890] usb 5-1: Product: syz
[  161.988295][ T5890] usb 5-1: Manufacturer: syz
[  161.999065][ T5890] usb 5-1: SerialNumber: syz
[  162.011186][ T6680] hfsplus: xattr search failed
[  162.056685][ T5890] usb 5-1: config 0 descriptor??
[  162.079505][ T5890] pwc: Logitech/Cisco VT Camera webcam detected.
[  162.178413][ T6685] BTRFS info (device loop1): rebuilding free space tree
[  162.288952][ T5890] pwc: Failed to set LED on/off time (-71)
[  162.289095][ T6685] BTRFS info (device loop1): disabling free space tree
[  162.297435][ T5890] pwc: send_video_command error -71
[  162.321733][ T5890] pwc: Failed to set video mode VGA@30 fps; return code = -71
[  162.330241][ T5890] Philips webcam 5-1:0.0: probe with driver Philips webcam failed with error -71
[  162.363077][ T6685] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  162.416514][ T5890] usb 5-1: USB disconnect, device number 2
[  162.431744][ T6685] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  162.583693][   T29] audit: type=1800 audit(1734989418.742:5): pid=6685 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.194" name="file2" dev="loop1" ino=261 res=0 errno=0
[  162.996267][ T6722] loop2: detected capacity change from 0 to 128
[  163.003626][ T6722] adfs: Bad value for 'ftsuffix'
[  164.342258][ T5831] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  164.410024][ T6732] loop3: detected capacity change from 0 to 512
[  165.486697][ T6740] bond0: option lp_interval: invalid value (0)
[  165.495726][ T6740] bond0: option lp_interval: allowed values 1 - 2147483647
[  165.727719][ T6753] loop1: detected capacity change from 0 to 512
[  165.734878][ T6753] EXT4-fs: Ignoring removed i_version option
[  165.737776][ T6751] loop5: detected capacity change from 0 to 2048
[  165.740878][ T6753] EXT4-fs: Ignoring removed mblk_io_submit option
[  165.740950][ T6753] ext4: Unknown parameter 'seclabel'
[  165.771393][ T6753] loop1: detected capacity change from 0 to 256
[  165.778335][ T6753] msdos: Bad value for 'errors'
[  165.920102][ T6751] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  167.215351][ T6763] openvswitch: netlink: IP tunnel dst address not specified
[  167.311026][ T6767] loop5: detected capacity change from 0 to 8
[  167.314808][ T6759] netlink: 96 bytes leftover after parsing attributes in process `syz.2.222'.
[  167.702679][ T6749] loop3: detected capacity change from 0 to 32768
[  167.768181][ T6745] loop4: detected capacity change from 0 to 2048
[  167.772971][ T6749] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.220 (6749)
[  167.824141][ T6769] loop2: detected capacity change from 0 to 1024
[  167.831770][ T5890] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  167.843089][ T6769] EXT4-fs: Ignoring removed orlov option
[  167.857007][ T6769] EXT4-fs (loop2): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  167.942375][ T5197] udevd[5197]: worker [5885] terminated by signal 33 (Unknown signal 33)
[  167.952870][ T5197] udevd[5197]: worker [5885] failed while handling '/devices/virtual/block/loop3'
[  168.022003][ T5890] usb 2-1: Using ep0 maxpacket: 8
[  168.036290][ T5890] usb 2-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ee
[  168.046104][ T5890] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  168.077390][ T5890] usb 2-1: Product: syz
[  168.085977][ T5890] usb 2-1: Manufacturer: syz
[  168.090915][ T5890] usb 2-1: SerialNumber: syz
[  168.133671][ T6769] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.133804][ T5890] usb 2-1: config 0 descriptor??
[  168.172508][ T6749] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  168.219600][ T6749] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  168.246077][ T6745] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.269530][ T6749] BTRFS info (device loop3): using free-space-tree
[  168.390405][ T6769] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback.
[  168.466133][ T5890] usb 2-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  168.477805][   T29] audit: type=1326 audit(1734989424.642:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6768 comm="syz.2.225" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7e97d85d29 code=0x0
[  168.501833][ T6749] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  168.502206][ T6749] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  168.513996][ T6749] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  168.529401][ T6749] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  168.539748][ T6749] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  168.550600][ T6749] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  168.562210][ T6749] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  168.574491][ T6749] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  168.624681][ T6779] loop0: detected capacity change from 0 to 32768
[  168.652261][ T6779] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.226 (6779)
[  168.672470][ T5890] dvb_usb_rtl28xxu 2-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[  168.692256][ T5890] usb 2-1: USB disconnect, device number 4
[  168.733992][   T29] audit: type=1800 audit(1734989424.782:7): pid=6745 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.219" name="bus" dev="loop4" ino=18 res=0 errno=0
[  168.805997][ T6779] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  168.851904][ T6779] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm
[  168.929433][ T6749] BTRFS error (device loop3): open_ctree failed
[  168.968091][ T5827] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.645097][ T6813] loop4: detected capacity change from 0 to 40427
[  169.875966][ T6779] BTRFS info (device loop0): rebuilding free space tree
[  169.928521][ T6779] BTRFS info (device loop0): disabling free space tree
[  169.946751][ T6779] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  169.962034][ T6779] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  169.975478][ T6824] loop1: detected capacity change from 0 to 256
[  170.033562][ T6813] F2FS-fs (loop4): invalid crc value
[  170.080137][ T6824] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  170.109214][    T9] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  170.825455][   T29] audit: type=1800 audit(1734989426.712:8): pid=6831 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.231" name="bus" dev="loop1" ino=1048613 res=0 errno=0
[  171.257948][ T6813] F2FS-fs (loop4): Found nat_bits in checkpoint
[  171.365778][    T9] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  171.387074][    T9] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  171.411642][   T29] audit: type=1800 audit(1734989427.452:9): pid=6779 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.226" name="file2" dev="loop0" ino=261 res=0 errno=0
[  171.417400][    T9] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  171.494233][ T6813] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  171.517352][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.619544][ T6818] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  171.635219][    T9] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  171.978795][ T5824] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  172.622949][ T6840] FAULT_INJECTION: forcing a failure.
[  172.622949][ T6840] name failslab, interval 1, probability 0, space 0, times 0
[  172.741528][ T6840] CPU: 0 UID: 0 PID: 6840 Comm: syz.5.233 Not tainted 6.13.0-rc4-syzkaller #0
[  172.750439][ T6840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  172.760515][ T6840] Call Trace:
[  172.763810][ T6840]  <TASK>
[  172.766759][ T6840]  dump_stack_lvl+0x241/0x360
[  172.771479][ T6840]  ? __pfx_dump_stack_lvl+0x10/0x10
[  172.776720][ T6840]  ? __pfx__printk+0x10/0x10
[  172.781343][ T6840]  ? fs_reclaim_acquire+0x93/0x130
[  172.786658][ T6840]  ? __pfx___might_resched+0x10/0x10
[  172.792059][ T6840]  should_fail_ex+0x3b0/0x4e0
[  172.796764][ T6840]  should_failslab+0xac/0x100
[  172.801473][ T6840]  __kmalloc_noprof+0xdd/0x4c0
[  172.806274][ T6840]  ? tomoyo_encode+0x26f/0x540
[  172.811070][ T6840]  tomoyo_encode+0x26f/0x540
[  172.815692][ T6840]  tomoyo_realpath_from_path+0x59e/0x5e0
[  172.821366][ T6840]  tomoyo_path_number_perm+0x236/0x860
[  172.826872][ T6840]  ? srso_alias_return_thunk+0x5/0xfbef5
[  172.832535][ T6840]  ? __lock_acquire+0x1397/0x2100
[  172.837590][ T6840]  ? tomoyo_path_number_perm+0x206/0x860
[  172.843261][ T6840]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  172.849322][ T6840]  ? __fget_files+0x2a/0x410
[  172.854117][ T6840]  ? srso_alias_return_thunk+0x5/0xfbef5
[  172.859773][ T6840]  ? __fget_files+0x2a/0x410
[  172.864402][ T6840]  security_file_ioctl+0xc6/0x2a0
[  172.869467][ T6840]  __se_sys_ioctl+0x46/0x170
[  172.874090][ T6840]  do_syscall_64+0xf3/0x230
[  172.878634][ T6840]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.884563][ T6840] RIP: 0033:0x7f40f4f85d29
[  172.888995][ T6840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  172.908884][ T6840] RSP: 002b:00007f40f5d7b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  172.917328][ T6840] RAX: ffffffffffffffda RBX: 00007f40f5175fa0 RCX: 00007f40f4f85d29
[  172.925404][ T6840] RDX: 0000000020000140 RSI: 00000000c0145608 RDI: 0000000000000003
[  172.933395][ T6840] RBP: 00007f40f5d7b090 R08: 0000000000000000 R09: 0000000000000000
[  172.941384][ T6840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  172.949373][ T6840] R13: 0000000000000000 R14: 00007f40f5175fa0 R15: 00007ffdceefa3d8
[  172.957383][ T6840]  </TASK>
[  173.121618][ T6840] ERROR: Out of memory at tomoyo_realpath_from_path.
[  173.245115][ T6842] loop0: detected capacity change from 0 to 128
[  173.252628][ T6842] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  173.326210][ T6842] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  173.349949][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.420961][ T6844] loop5: detected capacity change from 0 to 512
[  173.440830][ T6844] EXT4-fs: Ignoring removed i_version option
[  173.446948][ T6844] EXT4-fs: Ignoring removed mblk_io_submit option
[  173.461825][ T6837] loop1: detected capacity change from 0 to 32768
[  173.503030][ T5827] syz-executor: attempt to access beyond end of device
[  173.503030][ T5827] loop4: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  173.548519][ T5827] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  173.579543][ T6842] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 0, start 00ff0003)
[  173.581141][ T5827] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  173.601740][ T6842] FAT-fs (loop0): Filesystem has been set read-only
[  173.614417][ T6844] ext4: Unknown parameter 'seclabel'
[  173.747184][ T6844] loop5: detected capacity change from 0 to 256
[  173.760473][    T9] usb 4-1: USB disconnect, device number 3
[  173.851714][ T6844] msdos: Bad value for 'errors'
[  174.972563][ T6856] @: renamed from vlan0 (while UP)
[  175.167237][ T6862] loop2: detected capacity change from 0 to 16
[  175.223754][ T6862] erofs (device loop2): rootino(nid 36) is not a directory(i_mode 16700)
[  175.235241][ T6862] loop2: detected capacity change from 0 to 16
[  175.291655][ T6862] erofs (device loop2): rootino(nid 36) is not a directory(i_mode 16700)
[  175.387640][ T6862] loop2: detected capacity change from 0 to 16
[  175.469061][ T6870] FAULT_INJECTION: forcing a failure.
[  175.469061][ T6870] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  175.484835][ T6862] erofs (device loop2): rootino(nid 36) is not a directory(i_mode 16700)
[  175.538780][ T6870] CPU: 0 UID: 0 PID: 6870 Comm: syz.4.235 Not tainted 6.13.0-rc4-syzkaller #0
[  175.547282][ T6862] loop2: detected capacity change from 0 to 16
[  175.547740][ T6870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  175.563957][ T6870] Call Trace:
[  175.567252][ T6870]  <TASK>
[  175.570199][ T6870]  dump_stack_lvl+0x241/0x360
[  175.574925][ T6870]  ? __pfx_dump_stack_lvl+0x10/0x10
[  175.577385][ T6862] erofs (device loop2): rootino(nid 36) is not a directory(i_mode 16700)
[  175.580228][ T6870]  ? __pfx__printk+0x10/0x10
[  175.580281][ T6870]  should_fail_ex+0x3b0/0x4e0
[  175.597939][ T6870]  strncpy_from_user+0x36/0x270
[  175.602817][ T6870]  getname_flags+0xf1/0x540
[  175.607338][ T6870]  ? fput+0x21b/0x290
[  175.611339][ T6870]  user_path_create+0x24/0x50
[  175.616028][ T6870]  bpf_obj_pin_user+0x11e/0x360
[  175.620893][ T6870]  ? __pfx_bpf_obj_pin_user+0x10/0x10
[  175.626289][ T6870]  __sys_bpf+0x627/0x810
[  175.630548][ T6870]  ? __pfx___sys_bpf+0x10/0x10
[  175.635334][ T6870]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  175.642031][ T6870]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  175.648375][ T6870]  ? do_syscall_64+0x100/0x230
[  175.653161][ T6870]  __x64_sys_bpf+0x7c/0x90
[  175.657598][ T6870]  do_syscall_64+0xf3/0x230
[  175.662150][ T6870]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.668094][ T6870] RIP: 0033:0x7fc23c385d29
[  175.672519][ T6870] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.692140][ T6870] RSP: 002b:00007fc23d124038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  175.700571][ T6870] RAX: ffffffffffffffda RBX: 00007fc23c575fa0 RCX: 00007fc23c385d29
[  175.708554][ T6870] RDX: 0000000000000018 RSI: 0000000020000200 RDI: 0000000000000006
[  175.716528][ T6870] RBP: 00007fc23d124090 R08: 0000000000000000 R09: 0000000000000000
[  175.724509][ T6870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  175.732487][ T6870] R13: 0000000000000000 R14: 00007fc23c575fa0 R15: 00007ffd5dc9c908
[  175.740481][ T6870]  </TASK>
[  175.806476][ T6862] loop2: detected capacity change from 0 to 16
[  175.834596][ T6862] erofs (device loop2): rootino(nid 36) is not a directory(i_mode 16700)
[  175.847225][ T6862] loop2: detected capacity change from 0 to 16
[  175.909201][ T6862] erofs (device loop2): rootino(nid 36) is not a directory(i_mode 16700)
[  176.008666][ T6862] loop2: detected capacity change from 0 to 16
[  176.036843][ T6862] erofs (device loop2): rootino(nid 36) is not a directory(i_mode 16700)
[  176.095045][ T6862] loop2: detected capacity change from 0 to 16
[  176.130240][ T6862] erofs (device loop2): rootino(nid 36) is not a directory(i_mode 16700)
[  176.201495][ T6862] loop2: detected capacity change from 0 to 16
[  176.227583][ T6862] erofs (device loop2): rootino(nid 36) is not a directory(i_mode 16700)
[  176.258637][ T6862] loop2: detected capacity change from 0 to 16
[  176.284534][ T6862] erofs (device loop2): rootino(nid 36) is not a directory(i_mode 16700)
[  176.350520][ T6862] loop2: detected capacity change from 0 to 16
[  176.412944][ T6862] erofs (device loop2): rootino(nid 36) is not a directory(i_mode 16700)
[  176.440649][ T6862] loop2: detected capacity change from 0 to 16
[  176.688850][ T6862] erofs (device loop2): rootino(nid 36) is not a directory(i_mode 16700)
[  177.611897][ T6867] loop3: detected capacity change from 0 to 32768
[  177.692413][ T6867] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.241 (6867)
[  177.801839][ T6867] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  177.812466][ T6867] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  177.821189][ T6867] BTRFS info (device loop3): using free-space-tree
[  178.216584][ T6889] loop1: detected capacity change from 0 to 32768
[  178.226148][ T6889] (syz.1.243,6889,1):ocfs2_parse_options:1448 ERROR: Unrecognized mount option "i64" or missing value
[  178.238569][ T6889] (syz.1.243,6889,1):ocfs2_fill_super:1178 ERROR: status = -22
[  179.264160][ T6867] BTRFS error (device loop3): open_ctree failed
[  179.451961][ T5935] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  179.741284][ T5935] usb 2-1: Using ep0 maxpacket: 16
[  180.191827][ T5935] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  180.261764][ T5935] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  180.365722][ T5935] usb 2-1: config 1 interface 2 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  180.443288][   T29] audit: type=1326 audit(1734989436.582:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6921 comm="syz.2.253" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7e97d85d29 code=0x0
[  182.144638][ T6929] loop5: detected capacity change from 0 to 32768
[  182.307314][ T5935] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  182.316500][ T5935] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  182.942068][ T6950] netlink: 96 bytes leftover after parsing attributes in process `syz.2.261'.
[  182.951717][ T6950] netlink: 24 bytes leftover after parsing attributes in process `syz.2.261'.
[  183.476180][ T5935] usb 2-1: can't set config #1, error -71
[  184.205030][ T6951] netlink: 96 bytes leftover after parsing attributes in process `syz.4.262'.
[  184.276263][ T6954] netlink: 24 bytes leftover after parsing attributes in process `syz.4.262'.
[  184.288123][ T5935] usb 2-1: USB disconnect, device number 5
[  184.326642][ T6929] read_mapping_page failed!
[  184.332642][ T6929] jfs_mount: diMount failed w/rc = -5
[  184.372099][ T6929] Mount JFS Failure: -5
[  185.219566][ T6961] netlink: 96 bytes leftover after parsing attributes in process `syz.1.264'.
[  187.796495][ T6975] loop1: detected capacity change from 0 to 32768
[  187.822567][ T6975] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.268 (6975)
[  187.858375][ T6981] loop2: detected capacity change from 0 to 512
[  187.879052][ T6981] EXT4-fs: Ignoring removed i_version option
[  187.886826][ T6981] EXT4-fs: Ignoring removed mblk_io_submit option
[  187.907155][ T6975] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  187.925781][ T6981] ext4: Unknown parameter 'seclabel'
[  187.964924][ T6975] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  188.056624][ T6975] BTRFS info (device loop1): using free-space-tree
[  189.312468][ T7007] netlink: 16 bytes leftover after parsing attributes in process `syz.2.272'.
[  190.049166][ T7025] syz.2.278: attempt to access beyond end of device
[  190.049166][ T7025] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  190.076416][ T7025] exFAT-fs (nbd2): unable to read boot sector
[  190.091695][ T7025] exFAT-fs (nbd2): failed to read boot sector
[  190.108886][ T7025] exFAT-fs (nbd2): failed to recognize exfat type
[  190.233945][ T7025] loop2: detected capacity change from 0 to 512
[  190.341734][ T7025] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  190.455574][ T7028] netlink: 96 bytes leftover after parsing attributes in process `syz.0.279'.
[  190.467857][ T7024] netlink: 24 bytes leftover after parsing attributes in process `syz.0.279'.
[  190.547267][ T7025] EXT4-fs (loop2): 1 truncate cleaned up
[  190.572972][ T7025] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  190.631891][ T5831] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  190.943587][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.271832][ T7020] loop5: detected capacity change from 0 to 32768
[  191.321065][ T7020] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.277 (7020)
[  191.404781][ T7041] loop3: detected capacity change from 0 to 64
[  191.480435][ T7041] hfs: Unknown parameter '0xffffffffffffffff0x0000000000000000'
[  191.758547][ T7049] loop2: detected capacity change from 0 to 256
[  191.851886][ T5888] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  191.880447][ T7049] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  192.332576][ T7020] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  192.475257][ T7020] BTRFS info (device loop5): using sha256 (sha256-ni) checksum algorithm
[  192.956677][ T7020] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR
[  192.956966][ T7020] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  192.970449][ T5888] usb 4-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  193.020646][ T7020] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  193.020931][ T7020] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  193.033249][ T5888] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  193.169809][ T7020] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  193.172341][ T7020] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  193.223046][ T7020] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  193.244941][ T5888] usb 4-1: config 0 descriptor??
[  193.262990][ T7020] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  193.271393][ T7020] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  193.296205][ T7020] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  193.316586][ T7020] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  193.389779][ T7020] BTRFS error (device loop5): open_ctree failed
[  194.131139][ T7073] netlink: 96 bytes leftover after parsing attributes in process `syz.4.290'.
[  194.558393][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  194.909169][ T7079] netlink: 16 bytes leftover after parsing attributes in process `syz.5.291'.
[  195.269979][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  196.640493][ T7087] loop5: detected capacity change from 0 to 512
[  197.024463][ T5888] usb 4-1: Cannot set autoneg
[  197.030021][ T5888] MOSCHIP usb-ethernet driver 4-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[  197.084387][ T5845] Bluetooth: hci4: command 0x0406 tx timeout
[  197.090497][ T5845] Bluetooth: hci3: command 0x0406 tx timeout
[  197.100705][ T7092] netlink: 96 bytes leftover after parsing attributes in process `syz.4.293'.
[  197.110197][ T7092] netlink: 24 bytes leftover after parsing attributes in process `syz.4.293'.
[  197.119602][ T5845] Bluetooth: hci0: command 0x0406 tx timeout
[  197.125751][ T5845] Bluetooth: hci1: command 0x0406 tx timeout
[  197.130005][ T5888] usb 4-1: USB disconnect, device number 4
[  197.134252][ T5845] Bluetooth: hci2: command 0x0406 tx timeout
[  197.144855][ T5845] Bluetooth: hci5: command 0x0406 tx timeout
[  197.211693][ T7087] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.258364][ T7087] ext4 filesystem being mounted at /54/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  198.036698][ T5844] Bluetooth: hci6: sending frame failed (-49)
[  198.050529][   T53] Bluetooth: hci6: Opcode 0x1003 failed: -49
[  198.223139][ T7098] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  198.465460][ T7085] loop2: detected capacity change from 0 to 32768
[  198.521986][ T7085] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.292 (7085)
[  198.528641][ T7108] loop4: detected capacity change from 0 to 2048
[  198.575497][ T7085] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  198.600411][ T7085] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  198.614533][ T7108] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  198.641816][ T5832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.647685][ T7085] BTRFS info (device loop2): using free-space-tree
[  199.951725][ T7085] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  199.961982][ T7085] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  200.342059][ T7085] BTRFS error (device loop2): open_ctree failed
[  200.677986][ T7136] binder: 7135:7136 ioctl c018620c 20000280 returned -22
[  200.822700][ T7094] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  201.014487][ T7094] EXT4-fs (loop4): Remounting filesystem read-only
[  202.142309][ T7151] syz.3.308: attempt to access beyond end of device
[  202.142309][ T7151] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  202.181173][ T7153] syz.2.309: attempt to access beyond end of device
[  202.181173][ T7153] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  202.199404][ T7151] exFAT-fs (nbd3): unable to read boot sector
[  202.205978][ T7153] exFAT-fs (nbd2): unable to read boot sector
[  202.212304][ T7151] exFAT-fs (nbd3): failed to read boot sector
[  202.218604][ T7153] exFAT-fs (nbd2): failed to read boot sector
[  202.224952][ T7151] exFAT-fs (nbd3): failed to recognize exfat type
[  202.233225][ T7153] exFAT-fs (nbd2): failed to recognize exfat type
[  202.381901][ T7147] netlink: 16 bytes leftover after parsing attributes in process `syz.0.306'.
[  202.400694][ T7151] loop3: detected capacity change from 0 to 512
[  202.415080][ T7151] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  202.550328][ T7151] EXT4-fs (loop3): 1 truncate cleaned up
[  202.559110][ T7151] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.577771][ T7151] netlink: 'syz.3.308': attribute type 1 has an invalid length.
[  202.621741][ T5888] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  202.671230][ T7159] loop2: detected capacity change from 0 to 512
[  202.738382][ T7159] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  202.806690][ T5888] usb 6-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  202.830890][ T5888] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.859235][ T5888] usb 6-1: config 0 descriptor??
[  202.881721][ T7159] EXT4-fs (loop2): 1 truncate cleaned up
[  202.888729][ T7159] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.907862][ T7153] netlink: 'syz.2.309': attribute type 1 has an invalid length.
[  203.393402][ T5827] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.913010][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.915606][ T5823] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.969819][ T7154] loop5: detected capacity change from 0 to 256
[  203.972634][ T7169] netlink: 28 bytes leftover after parsing attributes in process `syz.4.313'.
[  204.126185][ T7154] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d)
[  204.142070][ T7154] exFAT-fs (loop5): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  204.193476][ T7169] loop4: detected capacity change from 0 to 1024
[  204.226069][ T7154] netlink: 8 bytes leftover after parsing attributes in process `syz.5.310'.
[  204.441730][   T29] audit: type=1326 audit(1734989460.602:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7175 comm="syz.3.316" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc071585d29 code=0x0
[  204.605113][ T5888] usb 6-1: Cannot set autoneg
[  204.611352][ T5888] MOSCHIP usb-ethernet driver 6-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[  204.672212][ T5888] usb 6-1: USB disconnect, device number 2
[  204.731757][ T5935] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  205.241747][ T5888] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  205.401634][ T5888] usb 3-1: Using ep0 maxpacket: 32
[  205.470180][ T5888] usb 3-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[  205.528736][ T5888] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  205.542399][ T5935] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  205.550774][ T5935] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  205.560950][ T5935] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 7
[  205.591347][ T5888] usb 3-1: Product: syz
[  205.607640][ T5888] usb 3-1: Manufacturer: syz
[  205.641578][ T5888] usb 3-1: SerialNumber: syz
[  205.671846][ T5935] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  205.672788][ T5888] usb 3-1: config 0 descriptor??
[  205.681081][ T5935] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  205.681118][ T5935] usb 5-1: Manufacturer: syz
[  205.722857][ T5935] usb 5-1: config 0 descriptor??
[  205.783386][ T5888] cdc_ether 3-1:0.0: More than one union descriptor, skipping ...
[  205.811305][ T5888] usb 3-1: bad CDC descriptors
[  205.841788][ T5888] usb 3-1: unsupported MDLM descriptors
[  205.988906][ T5888] usb 3-1: USB disconnect, device number 5
[  206.503476][ T5935] igorplugusb 5-1:0.0: incorrect number of endpoints
[  206.552680][ T5935] usb 5-1: USB disconnect, device number 3
[  206.923408][ T5888] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  207.138780][ T5888] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  207.665895][ T5888] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  207.705827][ T5888] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  207.857282][ T7190] loop3: detected capacity change from 0 to 32768
[  207.866493][ T5888] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  207.874731][ T7190] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.320 (7190)
[  207.892719][ T7190] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  207.904545][ T7190] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  207.942055][ T7190] BTRFS info (device loop3): using free-space-tree
[  207.946455][ T7199] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  207.974763][ T5888] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  208.019667][ T7215] syz.4.327: attempt to access beyond end of device
[  208.019667][ T7215] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[  208.094116][ T7215] exFAT-fs (nbd4): unable to read boot sector
[  208.101756][ T7215] exFAT-fs (nbd4): failed to read boot sector
[  208.107911][ T7215] exFAT-fs (nbd4): failed to recognize exfat type
[  208.256360][ T7215] loop4: detected capacity change from 0 to 512
[  208.295346][ T7215] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  208.384127][ T7215] EXT4-fs (loop4): 1 truncate cleaned up
[  208.390993][ T7215] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.505014][ T7215] netlink: 'syz.4.327': attribute type 1 has an invalid length.
[  208.703902][ T5823] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  208.720527][ T7244] loop2: detected capacity change from 0 to 128
[  208.727910][ T7244] adfs: Bad value for 'ftsuffix'
[  209.052393][ T5827] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  209.963058][ T7252] loop1: detected capacity change from 0 to 64
[  210.329591][ T5935] usb 6-1: USB disconnect, device number 3
[  210.697056][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[  211.141848][ T5888] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  211.489293][ T7269] loop1: detected capacity change from 0 to 512
[  211.521998][ T5888] usb 5-1: Using ep0 maxpacket: 8
[  211.529127][ T5888] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  211.542939][ T7269] EXT4-fs: Ignoring removed i_version option
[  211.546470][ T5888] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  211.548969][ T7269] EXT4-fs: Ignoring removed mblk_io_submit option
[  211.604649][ T7269] ext4: Unknown parameter 'seclabel'
[  211.614070][ T5888] usb 5-1: New USB device found, idVendor=05ac, idProduct=0246, bcdDevice= 0.00
[  211.640573][ T7269] loop1: detected capacity change from 0 to 256
[  211.646420][ T5888] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  211.681318][ T5886] IPVS: starting estimator thread 0...
[  211.690495][ T7269] msdos: Bad value for 'errors'
[  211.700982][   T29] audit: type=1326 audit(1734989467.872:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7272 comm="syz.2.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e97d85d29 code=0x7ffc0000
[  211.726444][ T5888] usb 5-1: config 0 descriptor??
[  211.803304][ T7275] IPVS: using max 19 ests per chain, 45600 per kthread
[  211.841732][   T29] audit: type=1326 audit(1734989467.872:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7272 comm="syz.2.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=220 compat=0 ip=0x7f7e97d85d29 code=0x7ffc0000
[  211.968640][   T29] audit: type=1326 audit(1734989467.872:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7272 comm="syz.2.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e97d85d29 code=0x7ffc0000
[  211.996028][   T29] audit: type=1326 audit(1734989467.872:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7272 comm="syz.2.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7f7e97d85d29 code=0x7ffc0000
[  212.171706][   T29] audit: type=1326 audit(1734989467.872:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7272 comm="syz.2.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7e97d85d29 code=0x7ffc0000
[  212.247591][ T7281] loop2: detected capacity change from 0 to 64
[  212.264716][   T29] audit: type=1326 audit(1734989467.872:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7272 comm="syz.2.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f7e97d85d29 code=0x7ffc0000
[  212.453443][   T29] audit: type=1326 audit(1734989467.872:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7272 comm="syz.2.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f7e97d85d63 code=0x7ffc0000
[  212.598189][   T29] audit: type=1326 audit(1734989467.872:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7272 comm="syz.2.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f7e97d847df code=0x7ffc0000
[  212.625707][   T29] audit: type=1326 audit(1734989467.872:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7272 comm="syz.2.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f7e97d85db7 code=0x7ffc0000
[  212.647775][    C1] vkms_vblank_simulate: vblank timer overrun
[  212.668298][ T7283] loop3: detected capacity change from 0 to 2048
[  212.696184][ T7283] udf: Unknown parameter ''
[  212.732679][   T29] audit: type=1326 audit(1734989467.872:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7272 comm="syz.2.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7e97d84690 code=0x7ffc0000
[  212.854069][ T7288] netlink: 4 bytes leftover after parsing attributes in process `syz.3.346'.
[  213.011395][ T7293] syz.1.350: attempt to access beyond end of device
[  213.011395][ T7293] nbd1: rw=0, sector=0, nr_sectors = 1 limit=0
[  213.044833][ T7293] exFAT-fs (nbd1): unable to read boot sector
[  213.068762][ T7293] exFAT-fs (nbd1): failed to read boot sector
[  213.087305][ T7293] exFAT-fs (nbd1): failed to recognize exfat type
[  213.170731][ T7293] loop1: detected capacity change from 0 to 512
[  213.193265][ T7293] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  213.297263][ T5888] usb 5-1: USB disconnect, device number 4
[  213.305670][ T7293] EXT4-fs (loop1): 1 truncate cleaned up
[  213.330608][ T7293] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  213.434094][ T7293] netlink: 'syz.1.350': attribute type 1 has an invalid length.
[  213.743298][ T7287] loop2: detected capacity change from 0 to 32768
[  214.872852][ T7287] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.347 (7287)
[  215.039707][ T7308] loop0: detected capacity change from 0 to 128
[  215.136623][ T7313] loop3: detected capacity change from 0 to 64
[  215.294603][ T7287] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  215.351914][ T7287] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  215.379360][ T7287] BTRFS info (device loop2): using free-space-tree
[  215.415219][ T5831] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.797286][ T7287] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  215.797570][ T7287] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  215.872660][ T7287] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  216.933495][ T7330] netlink: 24 bytes leftover after parsing attributes in process `syz.0.355'.
[  217.107630][ T7287] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  217.107921][ T7287] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  217.312661][ T7287] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  217.463740][ T7287] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  217.548913][ T7287] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  217.944157][ T7346] loop0: detected capacity change from 0 to 512
[  218.111141][ T7287] BTRFS error (device loop2): open_ctree failed
[  218.295249][ T7346] EXT4-fs: Ignoring removed i_version option
[  218.301739][ T7346] EXT4-fs: Ignoring removed mblk_io_submit option
[  218.308220][ T7346] ext4: Unknown parameter 'seclabel'
[  218.351712][ T7346] loop0: detected capacity change from 0 to 256
[  218.364508][ T7346] msdos: Bad value for 'errors'
[  219.603378][ T7365] FAULT_INJECTION: forcing a failure.
[  219.603378][ T7365] name failslab, interval 1, probability 0, space 0, times 0
[  219.689108][    C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::ffff:0.0.0.0]:20002. Sending cookies.
[  220.754959][ T7369] netlink: 96 bytes leftover after parsing attributes in process `syz.2.367'.
[  220.836364][ T7371] netlink: 24 bytes leftover after parsing attributes in process `syz.2.367'.
[  220.896004][ T7365] CPU: 1 UID: 0 PID: 7365 Comm: syz.0.368 Not tainted 6.13.0-rc4-syzkaller #0
[  220.904927][ T7365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  220.914997][ T7365] Call Trace:
[  220.918290][ T7365]  <TASK>
[  220.921237][ T7365]  dump_stack_lvl+0x241/0x360
[  220.925959][ T7365]  ? __pfx_dump_stack_lvl+0x10/0x10
[  220.931193][ T7365]  ? __pfx__printk+0x10/0x10
[  220.935817][ T7365]  ? kmem_cache_alloc_noprof+0x48/0x380
[  220.941402][ T7365]  ? __pfx___might_resched+0x10/0x10
[  220.946720][ T7365]  should_fail_ex+0x3b0/0x4e0
[  220.951448][ T7365]  should_failslab+0xac/0x100
[  220.956170][ T7365]  ? __pmd_alloc+0x10b/0x670
[  220.960810][ T7365]  kmem_cache_alloc_noprof+0x70/0x380
[  220.966418][ T7365]  ? srso_alias_return_thunk+0x5/0xfbef5
[  220.972109][ T7365]  __pmd_alloc+0x10b/0x670
[  220.976588][ T7365]  ? __pfx___pmd_alloc+0x10/0x10
[  220.981675][ T7365]  handle_mm_fault+0xf76/0x1bb0
[  220.986575][ T7365]  ? mt_find+0x2a9/0x920
[  220.990889][ T7365]  ? __pfx_handle_mm_fault+0x10/0x10
[  220.996219][ T7365]  ? srso_alias_return_thunk+0x5/0xfbef5
[  221.001913][ T7365]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  221.008304][ T7365]  ? srso_alias_return_thunk+0x5/0xfbef5
[  221.013973][ T7365]  ? lock_mm_and_find_vma+0x9c/0x2f0
[  221.019304][ T7365]  exc_page_fault+0x2b9/0x8b0
[  221.024054][ T7365]  asm_exc_page_fault+0x26/0x30
[  221.028939][ T7365] RIP: 0010:_copy_from_user+0x7a/0xc0
[  221.034343][ T7365] Code: 48 bb 00 f0 ff ff ff 7f 00 00 4c 39 e3 48 19 db 4c 09 e3 4c 89 f7 44 89 fe e8 92 8a 43 fd 0f 01 cb 4c 89 f7 4c 89 f9 48 89 de <f3> a4 0f 1f 00 48 89 cb 0f 01 ca 31 ff 48 89 ce e8 01 25 dd fc 48
[  221.053964][ T7365] RSP: 0018:ffffc900048dfbd8 EFLAGS: 00050297
[  221.060060][ T7365] RAX: 0000000000000001 RBX: 0000000020000680 RCX: 0000000000000004
[  221.068057][ T7365] RDX: 0000000000000001 RSI: 0000000020000680 RDI: ffffc900048dfc60
[  221.076058][ T7365] RBP: ffffc900048dfd70 R08: 0000000000000003 R09: fffff5200091bf8c
[  221.084059][ T7365] R10: dffffc0000000000 R11: fffff5200091bf8c R12: 0000000020000680
[  221.092056][ T7365] R13: dffffc0000000000 R14: ffffc900048dfc60 R15: 0000000000000004
[  221.100071][ T7365]  ? _copy_from_user+0x6e/0xc0
[  221.104884][ T7365]  rds_setsockopt+0x418/0x13f0
[  221.109780][ T7365]  ? __pfx_rds_setsockopt+0x10/0x10
[  221.115009][ T7365]  ? aa_sk_perm+0x96d/0xab0
[  221.119560][ T7365]  ? srso_alias_return_thunk+0x5/0xfbef5
[  221.125249][ T7365]  ? vfs_write+0x730/0xd30
[  221.129714][ T7365]  ? __pfx_aa_sk_perm+0x10/0x10
[  221.134622][ T7365]  ? do_sys_openat2+0x17a/0x1d0
[  221.139507][ T7365]  ? srso_alias_return_thunk+0x5/0xfbef5
[  221.145243][ T7365]  ? aa_sock_opt_perm+0x79/0x120
[  221.150224][ T7365]  ? srso_alias_return_thunk+0x5/0xfbef5
[  221.155898][ T7365]  ? __pfx_rds_setsockopt+0x10/0x10
[  221.161151][ T7365]  do_sock_setsockopt+0x3b1/0x720
[  221.166233][ T7365]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  221.172006][ T7365]  ? srso_alias_return_thunk+0x5/0xfbef5
[  221.177680][ T7365]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  221.183712][ T7365]  __x64_sys_setsockopt+0x1ee/0x280
[  221.188954][ T7365]  do_syscall_64+0xf3/0x230
[  221.193513][ T7365]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  221.199481][ T7365] RIP: 0033:0x7f0f6d585d29
[  221.203933][ T7365] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  221.223590][ T7365] RSP: 002b:00007f0f6e404038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  221.232055][ T7365] RAX: ffffffffffffffda RBX: 00007f0f6d775fa0 RCX: 00007f0f6d585d29
[  221.240063][ T7365] RDX: 000000000000000a RSI: 0000000000000114 RDI: 0000000000000003
[  221.248063][ T7365] RBP: 00007f0f6e404090 R08: 0000000000000004 R09: 0000000000000000
[  221.256159][ T7365] R10: 0000000020000680 R11: 0000000000000246 R12: 0000000000000001
[  221.264186][ T7365] R13: 0000000000000000 R14: 00007f0f6d775fa0 R15: 00007ffe6f0e31c8
[  221.272216][ T7365]  </TASK>
[  221.586724][ T7342] loop3: detected capacity change from 0 to 256
[  222.576774][ T7374] syz.2.369: attempt to access beyond end of device
[  222.576774][ T7374] nbd2: rw=0, sector=0, nr_sectors = 1 limit=0
[  222.589648][ T7374] exFAT-fs (nbd2): unable to read boot sector
[  222.740738][ T7376] loop5: detected capacity change from 0 to 64
[  222.749677][ T7374] exFAT-fs (nbd2): failed to read boot sector
[  222.827029][ T7342] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x1cbb3694, utbl_chksum : 0xe619d30d)
[  222.874709][ T7374] exFAT-fs (nbd2): failed to recognize exfat type
[  222.899849][ T7374] loop2: detected capacity change from 0 to 512
[  222.977979][ T7374] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  223.046198][ T7374] EXT4-fs (loop2): 1 truncate cleaned up
[  223.066326][ T7374] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  223.285148][ T7385] loop4: detected capacity change from 0 to 256
[  224.026384][ T7374] netlink: 'syz.2.369': attribute type 1 has an invalid length.
[  224.084269][ T7385] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  224.690472][ T7399] netlink: 24 bytes leftover after parsing attributes in process `syz.5.374'.
[  225.214338][ T7396] netlink: 96 bytes leftover after parsing attributes in process `syz.5.374'.
[  225.533153][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.595753][ T7405] loop5: detected capacity change from 0 to 512
[  225.651954][ T7405] EXT4-fs: Ignoring removed i_version option
[  226.021904][ T7405] EXT4-fs: Ignoring removed mblk_io_submit option
[  226.028467][ T7405] ext4: Unknown parameter 'seclabel'
[  226.987072][ T7405] loop5: detected capacity change from 0 to 256
[  227.018049][ T7405] msdos: Bad value for 'errors'
[  227.582900][ T2145] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  227.742529][ T2145] usb 1-1: too many configurations: 241, using maximum allowed: 8
[  227.835580][ T2145] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[  227.894992][ T2145] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  227.978635][ T2145] usb 1-1: Product: syz
[  227.991646][ T2145] usb 1-1: Manufacturer: syz
[  228.001608][ T2145] usb 1-1: SerialNumber: syz
[  228.052307][ T7402] loop1: detected capacity change from 0 to 32768
[  228.165994][ T2145] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[  228.239078][ T7402] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.379 (7402)
[  228.390733][ T7426] loop3: detected capacity change from 0 to 256
[  229.145553][ T7426] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  229.526947][ T5935] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[  230.171512][ T7440] openvswitch: netlink: IP tunnel dst address not specified
[  230.615920][ T5935] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive
[  232.330077][ T5935] ath9k_htc: Failed to initialize the device
[  232.621818][ T5888] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  232.738482][ T7445] netlink: 96 bytes leftover after parsing attributes in process `syz.1.392'.
[  232.791843][ T5888] usb 6-1: Using ep0 maxpacket: 8
[  232.800318][ T7449] netlink: 24 bytes leftover after parsing attributes in process `syz.1.392'.
[  232.831021][ T5888] usb 6-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ee
[  232.865960][ T5888] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  232.950601][ T5888] usb 6-1: Product: syz
[  232.976557][ T5888] usb 6-1: Manufacturer: syz
[  234.232997][ T5888] usb 6-1: SerialNumber: syz
[  235.245078][ T7455] syz.4.396: attempt to access beyond end of device
[  235.245078][ T7455] nbd4: rw=0, sector=0, nr_sectors = 1 limit=0
[  236.094074][ T7463] loop5: detected capacity change from 0 to 512
[  236.101187][ T7463] EXT4-fs: Ignoring removed i_version option
[  236.107460][ T7463] EXT4-fs: Ignoring removed mblk_io_submit option
[  236.128581][ T7463] ext4: Unknown parameter 'seclabel'
[  236.141092][ T7463] loop5: detected capacity change from 0 to 256
[  236.148278][ T7463] msdos: Bad value for 'errors'
[  236.403854][ T5888] usb 6-1: config 0 descriptor??
[  236.411479][ T7455] exFAT-fs (nbd4): unable to read boot sector
[  236.417697][ T7455] exFAT-fs (nbd4): failed to read boot sector
[  236.424417][ T7455] exFAT-fs (nbd4): failed to recognize exfat type
[  236.431347][ T5888] usb 6-1: can't set config #0, error -71
[  236.439004][ T5888] usb 6-1: USB disconnect, device number 5
[  239.076316][ T7492] loop3: detected capacity change from 0 to 256
[  239.098779][ T7492] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  246.716931][ T7514] loop4: detected capacity change from 0 to 512
[  246.782407][ T7514] EXT4-fs: Ignoring removed i_version option
[  246.988554][ T7514] EXT4-fs: Ignoring removed mblk_io_submit option
[  247.059129][ T7514] ext4: Unknown parameter 'seclabel'
[  247.161203][ T7514] loop4: detected capacity change from 0 to 256
[  247.222336][ T7514] msdos: Bad value for 'errors'
[  247.277806][ T7518] syz.3.417: attempt to access beyond end of device
[  247.277806][ T7518] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  247.786072][ T7518] exFAT-fs (nbd3): unable to read boot sector
[  247.855576][ T7518] exFAT-fs (nbd3): failed to read boot sector
[  248.014293][ T7518] exFAT-fs (nbd3): failed to recognize exfat type
[  248.057639][ T7522] loop3: detected capacity change from 0 to 512
[  248.261960][ T7522] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  248.468511][ T7522] EXT4-fs (loop3): 1 truncate cleaned up
[  248.507777][ T7522] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  248.678528][ T7518] netlink: 'syz.3.417': attribute type 1 has an invalid length.
[  249.064002][ T5844] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  249.073178][ T5844] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  249.083154][ T5844] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  249.091762][ T5844] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  249.099477][ T5844] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  249.106845][ T5844] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  252.884614][ T5844] Bluetooth: hci6: command tx timeout
[  252.985156][ T7546] loop4: detected capacity change from 0 to 256
[  253.046136][ T7546] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  253.754501][ T5823] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.257675][   T53] Bluetooth: hci6: command tx timeout
[  257.328000][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  257.334663][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  257.762981][   T57] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  258.133334][   T57] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  258.170198][ T7539] chnl_net:caif_netlink_parms(): no params data found
[  258.217227][   T57] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  258.331687][   T57] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  258.429292][   T57] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  258.472167][ T7568] loop4: detected capacity change from 0 to 64
[  258.513975][ T7560] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  258.524757][   T57] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  259.941759][   T53] Bluetooth: hci6: command tx timeout
[  260.072445][ T5844] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  260.086538][ T5844] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  260.096052][ T5844] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  260.106935][ T5844] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  260.135909][ T5844] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  260.147516][ T5844] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  260.730557][ T7539] bridge0: port 1(bridge_slave_0) entered blocking state
[  260.803174][ T7539] bridge0: port 1(bridge_slave_0) entered disabled state
[  260.869514][ T7539] bridge_slave_0: entered allmulticast mode
[  260.961932][ T7539] bridge_slave_0: entered promiscuous mode
[  260.991674][ T7539] bridge0: port 2(bridge_slave_1) entered blocking state
[  261.377261][ T7539] bridge0: port 2(bridge_slave_1) entered disabled state
[  262.365803][ T7539] bridge_slave_1: entered allmulticast mode
[  262.380065][ T7539] bridge_slave_1: entered promiscuous mode
[  262.413105][ T5844] Bluetooth: hci6: command tx timeout
[  262.418618][ T5844] Bluetooth: hci1: command tx timeout
[  265.218745][ T7596] netlink: 96 bytes leftover after parsing attributes in process `syz.2.436'.
[  265.236356][ T7539] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  265.280824][ T7598] netlink: 24 bytes leftover after parsing attributes in process `syz.2.436'.
[  265.296623][   T53] Bluetooth: hci1: command tx timeout
[  265.390143][ T7539] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  265.733840][ T7539] team0: Port device team_slave_0 added
[  265.793788][ T7539] team0: Port device team_slave_1 added
[  266.141347][ T7539] batman_adv: batadv0: Adding interface: batadv_slave_0
[  266.191498][ T7539] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  266.310137][ T7539] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  266.376450][ T7539] batman_adv: batadv0: Adding interface: batadv_slave_1
[  266.391799][ T7539] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  266.438173][ T7539] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  267.384602][   T53] Bluetooth: hci1: command tx timeout
[  269.341545][    C1] sched: DL replenish lagged too much
[  269.462107][   T53] Bluetooth: hci1: command tx timeout
[  269.932381][ T5844] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  269.943974][ T5844] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  269.952023][ T5844] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  269.960189][ T5844] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  269.968437][ T5844] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  269.976212][ T5844] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  272.021978][   T53] Bluetooth: hci7: command tx timeout
[  274.101712][   T53] Bluetooth: hci7: command tx timeout
[  274.251745][ T5844] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  274.262705][ T5844] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  274.271884][ T5844] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  274.280322][ T5844] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  274.289900][ T5844] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  274.302150][ T5844] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  276.181822][ T5844] Bluetooth: hci7: command tx timeout
[  276.341995][   T53] Bluetooth: hci8: command tx timeout
[  277.962488][ T5844] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  277.974552][ T5844] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  277.984340][ T5844] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  277.993835][ T5844] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  278.013440][ T5844] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[  278.020821][ T5844] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  278.261910][   T53] Bluetooth: hci7: command tx timeout
[  278.431702][   T53] Bluetooth: hci8: command tx timeout
[  279.111156][ T5844] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  279.126384][ T5844] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  279.135252][ T5844] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  279.144134][ T5844] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  279.153155][ T5844] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[  279.162192][ T5844] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  280.101827][   T53] Bluetooth: hci9: command tx timeout
[  280.514320][   T53] Bluetooth: hci8: command tx timeout
[  281.223105][   T53] Bluetooth: hci10: command tx timeout
[  282.181792][   T53] Bluetooth: hci9: command tx timeout
[  282.581768][   T53] Bluetooth: hci8: command tx timeout
[  283.301831][   T53] Bluetooth: hci10: command tx timeout
[  284.261785][   T53] Bluetooth: hci9: command tx timeout
[  285.382166][   T53] Bluetooth: hci10: command tx timeout
[  286.341717][   T53] Bluetooth: hci9: command tx timeout
[  287.461725][   T53] Bluetooth: hci10: command tx timeout
[  308.458596][ T5844] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  308.467469][ T5844] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[  308.475486][ T5844] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[  308.484835][ T5844] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[  308.493432][ T5844] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[  308.500939][ T5844] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[  310.581883][ T5844] Bluetooth: hci11: command tx timeout
[  312.661822][ T5844] Bluetooth: hci11: command tx timeout
[  314.682773][   T53] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[  314.694520][   T53] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[  314.702546][   T53] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[  314.716562][   T53] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[  314.725335][   T53] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[  314.733134][   T53] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[  314.742455][ T5844] Bluetooth: hci11: command tx timeout
[  316.664778][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  316.671147][ T1286] ieee802154 phy1 wpan1: encryption failed: -22
[  316.821865][ T5844] Bluetooth: hci11: command tx timeout
[  316.827629][   T53] Bluetooth: hci12: command tx timeout
[  318.910510][   T53] Bluetooth: hci12: command tx timeout
[  320.981827][   T53] Bluetooth: hci12: command tx timeout
[  323.061877][   T53] Bluetooth: hci12: command tx timeout
[  331.239808][ T5844] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[  331.252217][ T5844] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[  331.260332][ T5844] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[  331.281358][ T5844] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[  331.300185][ T5844] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3
[  331.307741][ T5844] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[  333.381901][ T5844] Bluetooth: hci13: command tx timeout
[  334.850198][   T53] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[  334.859907][   T53] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[  334.869496][   T53] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[  334.878112][   T53] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[  334.895357][   T53] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3
[  334.903281][   T53] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[  335.461799][   T53] Bluetooth: hci13: command tx timeout
[  336.981904][   T53] Bluetooth: hci14: command tx timeout
[  337.551478][   T53] Bluetooth: hci13: command tx timeout
[  338.171736][ T5844] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[  338.186686][ T5844] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[  338.195601][ T5844] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
[  338.204797][ T5844] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[  338.212940][ T5844] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3
[  338.221058][ T5844] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[  339.062739][   T53] Bluetooth: hci14: command tx timeout
[  339.621657][   T53] Bluetooth: hci13: command tx timeout
[  339.656331][ T5844] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1
[  339.665537][ T5844] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9
[  339.680704][ T5844] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9
[  339.692320][ T5844] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4
[  339.707237][ T5844] Bluetooth: hci16: unexpected cc 0x0c25 length: 249 > 3
[  339.715076][ T5844] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2
[  340.342115][ T5844] Bluetooth: hci15: command tx timeout
[  341.141780][ T5844] Bluetooth: hci14: command tx timeout
[  341.781905][ T5844] Bluetooth: hci16: command tx timeout
[  342.424686][ T5844] Bluetooth: hci15: command tx timeout
[  343.221875][ T5844] Bluetooth: hci14: command tx timeout
[  343.861732][ T5844] Bluetooth: hci16: command tx timeout
[  344.501862][ T5844] Bluetooth: hci15: command tx timeout
[  345.941797][ T5844] Bluetooth: hci16: command tx timeout
[  346.581734][ T5844] Bluetooth: hci15: command tx timeout
[  348.022282][ T5844] Bluetooth: hci16: command tx timeout
[  368.727362][   T53] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1
[  368.736779][   T53] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9
[  368.745636][   T53] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9
[  368.754398][   T53] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4
[  368.765950][   T53] Bluetooth: hci17: unexpected cc 0x0c25 length: 249 > 3
[  368.787391][   T53] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2
[  370.821987][   T53] Bluetooth: hci17: command tx timeout
[  371.151539][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  371.158528][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P7442/1:b..l
[  371.167034][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=15185, q=2957 ncpus=2)
[  371.174859][    C0] task:syz.1.392       state:R  running task     stack:23992 pid:7442  tgid:7441  ppid:5831   flags:0x00004002
[  371.187672][    C0] Call Trace:
[  371.190973][    C0]  <TASK>
[  371.193924][    C0]  __schedule+0x1850/0x4c30
[  371.198464][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.204130][    C0]  ? mark_lock+0x9a/0x360
[  371.208498][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  371.214516][    C0]  ? __pfx___schedule+0x10/0x10
[  371.219405][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.225063][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  371.230295][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.235961][    C0]  ? mark_lock+0x9a/0x360
[  371.240327][    C0]  preempt_schedule_irq+0xfb/0x1c0
[  371.245472][    C0]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  371.251223][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  371.257595][    C0]  irqentry_exit+0x5e/0x90
[  371.262045][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  371.268060][    C0] RIP: 0010:unwind_get_return_address+0x4d/0x90
[  371.274331][    C0] Code: c0 75 4b 83 3b 00 74 3a 48 83 c3 48 49 89 df 49 c1 ef 03 43 80 3c 37 00 74 08 48 89 df e8 6b 34 ba 00 48 8b 3b e8 43 72 1e 00 <85> c0 74 14 43 80 3c 37 00 74 08 48 89 df e8 50 34 ba 00 48 8b 03
[  371.293969][    C0] RSP: 0018:ffffc9000500eb00 EFLAGS: 00000202
[  371.300069][    C0] RAX: 0000000000000001 RBX: ffffc9000500eb68 RCX: ffffffff91792000
[  371.308059][    C0] RDX: ffffffff91942801 RSI: 0000000000000000 RDI: ffffffff821dc274
[  371.316053][    C0] RBP: ffffc9000500ebb0 R08: ffffc9000500eb7f R09: ffffc9000500eb70
[  371.324047][    C0] R10: dffffc0000000000 R11: fffff52000a01d70 R12: ffff888025a50000
[  371.332041][    C0] R13: ffffffff818b3a20 R14: dffffc0000000000 R15: 1ffff92000a01d6d
[  371.340038][    C0]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  371.346224][    C0]  ? __init_begin+0x41000/0x41000
[  371.351278][    C0]  ? no_hash_pointers_enable+0xc1/0xe0
[  371.356766][    C0]  ? shrink_dcache_for_umount+0xb4/0x180
[  371.362463][    C0]  arch_stack_walk+0xfd/0x150
[  371.367175][    C0]  ? shrink_dcache_for_umount+0xb4/0x180
[  371.372848][    C0]  stack_trace_save+0x118/0x1d0
[  371.377732][    C0]  ? __pfx_stack_trace_save+0x10/0x10
[  371.383151][    C0]  save_stack+0xfb/0x1f0
[  371.387417][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  371.392469][    C0]  ? __pfx_save_stack+0x10/0x10
[  371.397339][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.402996][    C0]  ? free_unref_folios+0xe39/0x18b0
[  371.408214][    C0]  ? folios_put_refs+0x76c/0x860
[  371.413173][    C0]  ? shmem_undo_range+0x593/0x1820
[  371.418302][    C0]  ? shmem_evict_inode+0x29b/0xa80
[  371.423443][    C0]  ? evict+0x4ea/0x9a0
[  371.427532][    C0]  ? __dentry_kill+0x20d/0x630
[  371.432326][    C0]  ? shrink_kill+0xa9/0x2c0
[  371.436889][    C0]  ? shrink_dentry_list+0x2c0/0x5b0
[  371.442118][    C0]  ? shrink_dcache_parent+0xcb/0x3b0
[  371.447460][    C0]  ? do_one_tree+0x23/0xe0
[  371.451912][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.457581][    C0]  ? page_ext_get+0x20/0x2a0
[  371.462194][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.467855][    C0]  __reset_page_owner+0x76/0x430
[  371.472817][    C0]  ? __mem_cgroup_uncharge_folios+0x14a/0x1c0
[  371.478916][    C0]  free_unref_folios+0xe39/0x18b0
[  371.483975][    C0]  folios_put_refs+0x76c/0x860
[  371.488775][    C0]  ? __pfx_folios_put_refs+0x10/0x10
[  371.494081][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  371.499313][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.504967][    C0]  ? folio_batch_remove_exceptionals+0x18a/0x1f0
[  371.511326][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.516983][    C0]  shmem_undo_range+0x593/0x1820
[  371.521943][    C0]  ? __pfx_lock_release+0x10/0x10
[  371.527000][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.532665][    C0]  ? 0xffffffffa0003b00
[  371.536844][    C0]  ? __pfx_shmem_undo_range+0x10/0x10
[  371.542267][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.547921][    C0]  ? stack_trace_save+0x118/0x1d0
[  371.553009][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.558671][    C0]  shmem_evict_inode+0x29b/0xa80
[  371.563659][    C0]  ? inode_wait_for_writeback+0x111/0x2a0
[  371.569430][    C0]  ? __pfx_shmem_evict_inode+0x10/0x10
[  371.574937][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.580599][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[  371.585919][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.591580][    C0]  ? __pfx_shmem_evict_inode+0x10/0x10
[  371.597076][    C0]  evict+0x4ea/0x9a0
[  371.601005][    C0]  ? __pfx_evict+0x10/0x10
[  371.605448][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.611107][    C0]  ? _raw_spin_unlock+0x28/0x50
[  371.615984][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.621732][    C0]  ? iput+0x713/0xa50
[  371.625757][    C0]  __dentry_kill+0x20d/0x630
[  371.630400][    C0]  ? shrink_kill+0x8d/0x2c0
[  371.634968][    C0]  shrink_kill+0xa9/0x2c0
[  371.639334][    C0]  shrink_dentry_list+0x2c0/0x5b0
[  371.644421][    C0]  shrink_dcache_parent+0xcb/0x3b0
[  371.649587][    C0]  ? __pfx_shrink_dcache_parent+0x10/0x10
[  371.655356][    C0]  do_one_tree+0x23/0xe0
[  371.659636][    C0]  shrink_dcache_for_umount+0xb4/0x180
[  371.665135][    C0]  generic_shutdown_super+0x6a/0x2d0
[  371.670468][    C0]  kill_litter_super+0x76/0xb0
[  371.675256][    C0]  deactivate_locked_super+0xc6/0x130
[  371.680664][    C0]  cleanup_mnt+0x41f/0x4b0
[  371.685143][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.690797][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  371.696031][    C0]  task_work_run+0x251/0x310
[  371.700745][    C0]  ? __pfx_task_work_run+0x10/0x10
[  371.705886][    C0]  ? do_exit+0xa25/0x28e0
[  371.710242][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.715897][    C0]  ? do_exit+0xa25/0x28e0
[  371.720263][    C0]  do_exit+0xa2a/0x28e0
[  371.724463][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.730242][    C0]  ? __pfx_do_exit+0x10/0x10
[  371.734863][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  371.740271][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.745926][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  371.751945][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  371.758346][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[  371.763495][    C0]  do_group_exit+0x207/0x2c0
[  371.768115][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  371.773459][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.779114][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  371.784607][    C0]  get_signal+0x16b2/0x1750
[  371.789211][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  371.794870][    C0]  ? __pfx_get_signal+0x10/0x10
[  371.799761][    C0]  arch_do_signal_or_restart+0x96/0x860
[  371.805347][    C0]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  371.811543][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  371.817570][    C0]  ? syscall_exit_to_user_mode+0xa3/0x340
[  371.823328][    C0]  syscall_exit_to_user_mode+0xce/0x340
[  371.828911][    C0]  do_syscall_64+0x100/0x230
[  371.833541][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.839473][    C0] RIP: 0033:0x7fe78f185d29
[  371.843904][    C0] RSP: 002b:00007fe78fff9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  371.852431][    C0] RAX: 0000000000018ff8 RBX: 00007fe78f375fa0 RCX: 00007fe78f185d29
[  371.860597][    C0] RDX: 0000000000018ff8 RSI: 0000000020019680 RDI: 0000000000000004
[  371.868586][    C0] RBP: 00007fe78f201aa8 R08: 0000000000000000 R09: 0000000000000000
[  371.876578][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  371.884565][    C0] R13: 0000000000000000 R14: 00007fe78f375fa0 R15: 00007ffd011386e8
[  371.892580][    C0]  </TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  372.901976][   T53] Bluetooth: hci17: command tx timeout
[  374.981805][   T53] Bluetooth: hci17: command tx timeout
[  375.061849][   T53] Bluetooth: hci6: command 0x0406 tx timeout
[  377.061883][   T53] Bluetooth: hci17: command tx timeout
[  378.112652][ T1286] ieee802154 phy0 wpan0: encryption failed: -22
[  378.119182][ T1286] ieee802154 phy1 wpan1: encryption failed: -22