last executing test programs:

11.822127335s ago: executing program 4 (id=183):
prctl$PR_SET_SECUREBITS(0x1c, 0x1d)
setuid(0xee01)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x8, &(0x7f0000000080)={[{@sb={'sb', 0x3d, 0x1}}, {@nodioread_nolock}]}, 0x4, 0x511, &(0x7f0000000540)="$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")
r0 = socket$rds(0x15, 0x5, 0x0)
setsockopt$RDS_FREE_MR(r0, 0x114, 0x3, &(0x7f00000001c0)={{0xc1, 0x4}, 0x5}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)

9.982054602s ago: executing program 4 (id=190):
r0 = fsopen(&(0x7f0000000400)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000540)='\xd0\x9e^\xa0\xee\xc8\x17T\xb1GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xf1<e\a\xa5\x8f\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\xd3K\xfa\xc8\x8d#\xce)\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^\x97\b\x14\xc5\xad\t\f\xdeg\x8d\x16wW\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fB\x91\x15\x83\xec(B4/#W\xc5\x05\x9d\xd6\x02\x8cU!a\xdc|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sA\xad\xa6\xb6P\xa3\xf7\xc3\x93\xd4\xb6\x95\x02\xd8*\xa8\xd2\x94\xa3\x89\xa9\xa0\xc5\xc9=\xa5^', &(0x7f0000000240)='sockfs\x00', 0x0)
unshare(0x20000400)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000003880)=ANY=[@ANYBLOB="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"/4545], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000000)={@cgroup=r2, r1, 0x2f, 0x0, 0x0, @void, @value}, 0x20)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x2, &(0x7f0000000780)='\x8d\"', &(0x7f0000000440)="dc", 0x1)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000001680)='\xd0\x9e^\xa0\xee\xc8\x17T\xb1GI\x90\xe2Q1\xb0\x8f\xe1\xa8\x95\xa0\xcd\fL\xf1<e\a\xa5\x8f\xab\x1a\xdaY\xfb\x03dhS\x97nZ\xf8\xc6\x1f\xd3K\xfa\xc8\x8d#\xce)\x9bg-D#g\x16\xf4\xd9\x00\x00\x00\x00\x00eA\x9f\xc3\x11\x18\xe6\xc5\x95\x9e!^\x97\b\x14\xc5\xad\t\f\xdeg\x8d\x16wW\xf6\xacE\xa3\xc8\xe7\xec\xd6\xbd\x1c+\n\xc7Q( \xba\xff\x17N\x1fB\x91\x15\x83\xec(B4/#W\xc5\x05\x9d\xd6\x02\x8cU!a\xdc|6\xdc\xee$\xb5\x1deC\xfb\xa2\xaa\xe0#\xcb\xde;sA\xad\xa6\xb6P\xa3\xf7\xc3\x93\xd4\xb6\x95\x02\xd8*\xa8\xd2\x94\xa3\x89\xa9\xa0\xc5\xc9=\xa5^', &(0x7f0000000640)='dU|\xcbM\xe6\x91q\xe0\x05\xbes\xc0\xd2\xdb0}\xa6\xc4tly\xe0+\xb8~\xd9ymx\xa1\x06\xb4F\xf3Q:\xfem\xea\xed\xfc\x04\xf88\xe0\xa1&\xa8\xff\x10\xb3\xb2\x92N\f\x00!\xdbV\xc3\xca\r\x8c\xfb\x8esJ\xb3\x1bf\xce\v\x0e\xe3\xd5', 0x0)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r3)
sendmsg$NLBL_MGMT_C_ADD(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000580)={0x108, r4, 0xe701ac47a3d23ecd, 0x0, 0x2, {}, [@NLBL_MGMT_A_DOMAIN={0xce, 0x1, 'C\xec\xf8\xa0w\x15|\xd8\xbcs\xe1\xb93\x14\xcd\xcb\xb6\xb9\xbb\x84\xe5\xbc\xdb\x7f\x9a\xf2\xea\xcc\x91:v@\xe83-\x1d\xaagQl\x7f\tKt\fc\x1f\x17]\xd5\xd0\xf0\xa8\xeb\xd2g\x92\x04\x02\v\x00od\xe6,\xd3@I\x17\xf3\xbees0\xad\xc6\xbf/*\xb6(o\x91t\x12\x93UK\xf4@n\xdc\xdc\x8a7y\x81FY\xbe\xbbc\xd2\xc3\x01\xa5\xe2V\x8c\xb3im~\xd2V\xdaG\xbdbF\xc8n\x86\xac\x9c\xfb\xda\xe2&\"\xb4:\x13\xe9\tc\x85\xb4\xcb\x17\xbfm\x846\xe7\x7fp\x9eCdb\xad;\xa2\x8fs\xbf6\xe8\xe3Xg3&\xe2 \xd6\n\x9d=~=\xe5\xdc\x90\a\xe7M\x9c<\x93/\xaf\x89\x06+\x96]\xb5+\xee\xff8^D*\xdb\xb8\xd8t\x80\xd4'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @loopback}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @broadcast}]}, 0x108}, 0x1, 0x0, 0x0, 0x8040}, 0xd085)
r5 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x57e, 0x200e, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x3, 0x5, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x4, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0xf0}}}}}]}}]}}, 0x0)
syz_usb_control_io(r5, 0x0, 0x0)
syz_usb_control_io(r5, &(0x7f0000000080)={0x2c, &(0x7f0000000000)={0x40, 0xd, 0x6, {0x6, 0xe, "ab000000"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f00000007c0)='{)+}@@!}\x00', &(0x7f0000000800)='dU|\xcbM\xe6\x91q\xe0', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000001ec0)='\\$#[\\/\x00\xd5\xd4^\xa7\xe4\xd4\x1f.yh\x18\xb8s\xe6\f\xaf*4\xe1\xa1e\x04%f\x8f\xde\x91\x04\xbb\xc8\x17\x15\xa4\xf0\x00\x15w\x00\x00\xed\xdd}\x00\x18\xf3\xde\n\xbe\x91\xc4\xc5\xe6\xd3o\xaau\xf34\t\x9d\x80rg\xbc\xee\x96p\x18\x9e(h\xeb\xd9\xde\xa6\xfc\x8e\xe3,\xae\xa8\xf0\x82y\x91\x1c{\x85 \xc7P\xa3\x9c\x06\xc1\xd3\x92\xcd\xcc\x17\xb2}\x13:\xbbh\"%;\b\x7f\x91\x8a\xa5Z\x92~<\xfe3\x19\xdcVJ\f\xd1\x89d\xf9N\xbd\x92\x86\xa2\xa8\xc0:\x1f\n\xc9\x8eUO\x8e\xea\x99\xe1\xbe%Y\x9eH#\xa4\x9d5\xa88m6\x89kE\xce\xc3\aBW\xec_\xea_\x81\xbe\x86~\x84F\xa9\xcd\xba\xfb\xd8\x8f\x01\x81~\x9c#\r\x87\xcf\x19\xb9\xbd \xcb\xff\x88io\xb0\xb1\xa0B\x8cI\x82+\xc4\xcf\xf4!+\x16v\xb6\x8a\xb7k}\x1d\xf2\x1c\x00\x8f\xd7\x84R\x12\xed){SM[\xe6g6\xfeF\x1dJ\x83', &(0x7f0000000380)='\xbd\x10\xe2\n\xc4\xa8\xa8?\a\x9e@O<\xf4s\x85~X\x85\xdc\x11\x04a\xf8\xa6f\x96nB\x02\x10+C$\f\xb3\xcc\xed\"M\xb6 V\xc5\x9a\x11o^\xda\xc8', 0x0)
r6 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
getsockopt$bt_BT_SECURITY(r6, 0x111, 0x5, 0x0, 0x0)
fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f0000000d80)='\xcfD\xbc\xbf\x95@\xd6j\'$\x1d\x14\xb7!\x8b\xff\xdc\x83\xc5$\xb3\xecr\xe4\xa5\x9e\xd6\xd2j\x96\x7f\x03\xe5\x94\x04[\x02\xa9[>\xf9\x9c\x83@\x1e\x99\xca\x01\xdfR\xa0\xabL\xaa\x00\x98\x86\xb1\xae,\x91;\x038/h\x85\xb8\xbeSAk\xf4\x9d \xdf\xa0P\x18\x19\xae\x8c\x9a\x19mm\r<|\xe8\x9e\xa0x\x84p2\xf9\xe2m\xb0\f\xe1\xdf\x1a\xae\xd6ez\xe5\xa8\xe1\'\xf8f\x91E8\xebj\\\xfc$m\x92\x97\x8c\x9e\xc5\xa9{\x88', 0x0, r0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f00000001c0)='romfs\x00', &(0x7f0000002940)='\x19\x00\x00\x8dX\x12X\x96\x8a\xc5\xdd\x153\xdf\x9b\xd8\xb8N\x86\x95,B\x032\x13k\xc6]\xe5\xd4\x90\x1c\x06\x1d\xefo/U\x83E+', 0x0)
syz_usb_connect(0x0, 0x3d, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100003bc387404c05c306ad3c0102030109022ba4ad000000000904640002153f64000905040456260002d803040905"], 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x2, 0x46, 0xcf, 0x10, 0x4dd, 0x8002, 0xfcb6, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xff, 0x2, 0x1}}]}}]}}, 0x0)

8.881855555s ago: executing program 1 (id=196):
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {<r0=>0xffffffffffffffff}}, './file0\x00'})
bind$inet(r0, &(0x7f0000000180)={0x2, 0x4e22, @rand_addr=0x64010100}, 0x10)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r0, 0x84, 0x65, &(0x7f0000000280)=[@in6={0xa, 0x4e24, 0x7, @private1, 0xf1}, @in6={0xa, 0x4e23, 0x100, @remote, 0x1}, @in6={0xa, 0x4e24, 0x5, @rand_addr=' \x01\x00', 0x2}, @in6={0xa, 0x4e20, 0x1, @empty, 0x8}, @in={0x2, 0x4e21, @multicast1}, @in={0x2, 0x4e21, @local}, @in={0x2, 0x4e23, @loopback}, @in6={0xa, 0x4e21, 0x80, @mcast1, 0xfffffffa}], 0xbc)
r1 = syz_open_dev$usbfs(&(0x7f0000000080), 0x75, 0x109301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r1, 0x8108551b, 0x0)
r2 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r2, &(0x7f0000000080)={0x18, 0x0, {0x1, @local, 'veth0_virt_wifi\x00'}}, 0x1e)
r3 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r3, &(0x7f0000000080)={0x18, 0x0, {0xfffe, @local, 'geneve0\x00'}}, 0x1e)
r4 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r4, &(0x7f0000000080)={0x18, 0x0, {0xfffe, @local, 'geneve0\x00'}}, 0x1e)
close(r3)
connect$pppoe(r4, &(0x7f0000000000)={0x18, 0x0, {0x3, @broadcast, 'vxcan1\x00'}}, 0x1e)
ioctl$USBDEVFS_SETINTERFACE(r1, 0x80085504, &(0x7f0000000140)={0x3ffffe, 0xa})
r5 = socket$inet6(0xa, 0x2, 0x0)
accept$alg(r0, 0x0, 0x0)
sendmmsg$inet6(r5, &(0x7f0000000400)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x3, @remote, 0x19}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000600)="56501366ff47fd29ff39cc10d7e7ae240fee90ea7a4c89f1cdfe3f2e0f12891baba90886caf8977d0dcc633ed17d0397c438fe56f4fd24f0d26f089b56063df93af577207668dd8d7529d7193dd969a7bde4830ccde8d43cf98710", 0x5b}], 0x1, &(0x7f00000020c0)=ANY=[@ANYBLOB="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"], 0x590}}, {{0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000740)="95db", 0x2}], 0x1}}], 0x2, 0x8048041)
ioctl$FIONCLEX(r0, 0x5450)

8.421881133s ago: executing program 1 (id=198):
syz_mount_image$minix(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x2a0085e, &(0x7f0000000080)=ANY=[], 0x1, 0x229, &(0x7f0000000140)="$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")
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000840)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(r0, 0x8, 0x0, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r3, &(0x7f0000000040)={0x1f, 0x0, @none, 0x6}, 0xe)
connect$netrom(0xffffffffffffffff, &(0x7f0000000140)={{0x6, @rose}, [@null, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0xfffffffffffffd3c)
listen(0xffffffffffffffff, 0x1ad72f7)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, &(0x7f0000000340)={{}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x80000001, 0x0, 0x5, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000000, 0x0, 0x0, 0x2000, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]})
r4 = memfd_create(&(0x7f0000000280)='\x00\x00\x00\x00\x00\x00z\x9b\xb6\xe8t;\xfc\x02\x00\x00\x009\xa0\x8b\x14d\xa2\xa1\xa8!\xe8\xd1\xa0\x8a\xce0\x1c\xb7\xf1\xccm\xce\xd4\xdb\x89\xe5\x8f\xe2\xb6\xd6\x9cF\xbd\xff\x14\x05\x00\x00\x00\x00\x00\x00\x00\xf3\xdc\x91\'\x06\\8\r\xfc\xeeG\xbe\x90C\x1c)5\x98\xa3\xfa\a\xf9\x98\xbb}\xeb\x86P=\xe51\x9d,\xb7\xe6_M\xbe\x19\xea#\xff[\xd1\xc3\x9a\xa3\x1b\xf9\xe9\x1d \xce1\xc9\x9f\xb0\x14\xc2\xeb\xf9\xceE\xad\xa4\x92\f\xef\x87g\xb6\xabW\xac\rP\xf42\xb7\xc8\xaajn\xd7\n\r\x802\xd7\x1b$\x95tO*\xf4\xae\xb8\xb8m\xbf\r\xd5\xbf*\xfd\xc7\x85\x1b\x8b\xe5\x97j`c\xe0\x88?\xda\x8a#t>r\xae\xe8\xc9)', 0x0)
write$binfmt_elf64(r4, &(0x7f0000000540)=ANY=[@ANYBLOB="7f454c46020000000d0200aa1e1c170003003e000839a59434d90a2742a24e000000000000000000deef14b40028e27ebdfd74dafc20380003"], 0xfebe)
execveat(r4, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
sendmmsg$inet(r3, &(0x7f0000002080)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000340)="ce76283f", 0x4}], 0x1}}], 0x1, 0x40488e4)
creat(&(0x7f0000000100)='./file0\x00', 0x88)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x2244, 0x0)
ioctl$TCXONC(r5, 0x540a, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000080)=0x7)
openat$null(0xffffffffffffff9c, &(0x7f0000000880), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5412, &(0x7f00000000c0)=0xed)

6.822245498s ago: executing program 3 (id=205):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x8, &(0x7f0000000000)=[{&(0x7f0000000140)="d800000018007b30e00212ba0d8105040a601100ff0f040b067c55a1bc0009001e0006990600000015000500fec00000000000000300014002000c0901ac04000bd67f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04fb95cae8c9010000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad8ffd5e1cace81ed0b7fece0b42a9ecbee5de6ccd40dd601edef3d93452a92307f00000e97031e9f05e9f16e9cb5000000000000", 0xd8}], 0x1, 0x0, 0x0, 0x2663}, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x3a)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x8993, &(0x7f0000000900)={'veth1_virt_wifi\x00', @random='\x00\x00\x00 \x00'})
sendmmsg$inet6(r0, &(0x7f0000000340)=[{{&(0x7f0000000380)={0xa, 0x0, 0x0, @mcast2={0xff, 0x5, '\x00', 0x0}}, 0x1c, &(0x7f0000000000)=[{&(0x7f0000000100)="a0002883781ecc0e", 0x8}], 0x6}}], 0x1, 0x0)
r2 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'macsec0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001e80)=ANY=[@ANYBLOB="3c0000001000010010000000ffdbdf2500000000", @ANYRES32=r5, @ANYBLOB="00000000000000001c0012800b0001006d616373656300000c00028005000f00ec"], 0x3c}}, 0x0)
ioctl$VIDIOC_ENUMOUTPUT(r2, 0xc0485630, &(0x7f0000003cc0)={0x9, "10f828499bc74eb6b6d34dbddd26068109634de52cc128412e673bc51cd4efc4", 0x2, 0xc, 0x4, 0x1000000, 0x4})
r6 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r6, 0x89f1, &(0x7f0000000440)={'syztnl2\x00', &(0x7f0000000400)={'syztnl0\x00', <r7=>0x0, 0x7800, 0x40, 0x0, 0xfffffffd, {{0x5, 0x4, 0x0, 0x0, 0x14, 0xfffc, 0x0, 0x0, 0x0, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @empty}}}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r6, 0x89f5, &(0x7f00000001c0)={'syztnl0\x00', &(0x7f0000000140)={'erspan0\x00', r7, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @dev={0xac, 0x14, 0x14, 0xd}, @multicast1}}}})

6.373672128s ago: executing program 4 (id=206):
r0 = fanotify_init(0x4, 0x101000)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
fanotify_mark(r0, 0x71, 0x40000009, r1, 0x0)
preadv2(r1, 0x0, 0x0, 0xc6, 0x6, 0x21)
syz_clone3(&(0x7f0000000300)={0x400a0800, 0x0, 0x0, 0x0, {0x31}, 0x0, 0x0, 0x0, 0x0}, 0x58)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)
r2 = syz_open_procfs$pagemap(0x0, &(0x7f00000005c0))
ioctl$PAGEMAP_SCAN(r2, 0xc0606610, &(0x7f0000000140)={0x60, 0x0, &(0x7f0000001000/0x3000)=nil, &(0x7f0000c68000/0x3000)=nil, 0x9, 0x0, 0x0, 0x6, 0x0, 0x2, 0x40})
r3 = semget(0x1, 0x5, 0x200)
semctl$SEM_STAT(r3, 0x0, 0x12, &(0x7f00000003c0)=""/126)

6.231615095s ago: executing program 0 (id=207):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x600, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3400000013000100000000000000000007000000", @ANYRES32=r1, @ANYBLOB="000000000000000014001a8010"], 0x34}}, 0x0)

5.942013991s ago: executing program 3 (id=208):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$pppoe(0x18, 0x1, 0x0)
capset(&(0x7f0000000180)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8b18, &(0x7f0000000000)={'wlan1\x00'})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYRES64=r0, @ANYRESHEX=r2, @ANYRES16=r2], 0x34}}, 0x40081)

5.825916749s ago: executing program 4 (id=209):
r0 = syz_usb_connect(0x5, 0x79, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x2a, 0xb3, 0xdf, 0x8, 0x4bb, 0x901, 0x56a0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xc7, 0xad, 0xd8}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000001200)={0x2c, &(0x7f0000001040)=ANY=[], 0x0, 0x0, 0x0, 0x0})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
syz_usb_connect$printer(0x3, 0x2d, &(0x7f0000000040)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0xff, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0x9, 0x60, 0x2, [{{0x9, 0x4, 0x0, 0xb0, 0x1, 0x7, 0x1, 0x3, 0x8, "", {{{0x9, 0x5, 0x1, 0x2, 0x200, 0x7, 0x6d, 0xa5}}}}}]}}]}}, &(0x7f00000003c0)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x300, 0xe6, 0x7, 0x40, 0xff, 0xb}, 0x113, &(0x7f0000000280)={0x5, 0xf, 0x113, 0x6, [@ptm_cap={0x3}, @ssp_cap={0x10, 0x10, 0xa, 0xdd, 0x1, 0xe, 0xf, 0x2, [0xf]}, @generic={0x60, 0x10, 0x3, "0a5e002da078a2f0770cc3c6e41c0a26c6189b1200fe90f2c93d3e6b1474ed7b377196caf24313f1c6e2f24a9d218308e70748b944591a7df064053cebc82a1d8cff5a65644d61033586ac8514724352135e885b6acdc1fce5e9dfb1d7"}, @generic={0x85, 0x10, 0x4, "68e2b9098415999a4e2a84296a8266daa7b1c6b32f6a27f06fc9626224542a2636daf5dd1b43cd150430c27b533cf8c68c8b0e7c41a77ef9643844c78050dc618c3f9e8a7a4b9dc9164b5616bcaa1cc7244086b8113ea04509a088e60d4b0764e87893cdad75bea79cfd7b9c4da277f9cb6a6ab9a54b744e1693cf888b43b07ff697"}, @ssp_cap={0xc, 0x10, 0xa, 0x2, 0x0, 0x6, 0xf00, 0x8}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x0, 0x9, 0x13, 0x401}]}, 0x4, [{0x4, &(0x7f00000000c0)=@lang_id={0x4, 0x3, 0x44d}}, {0x75, &(0x7f00000004c0)=@string={0x75, 0x3, "e1c81794c8bf2e194ec5afc9a5a75704e9cccc5dda8f0bcaaf21e537f934e8921420c269572e0ab2c19deb70603adbace04eb486cf880b7d0b3a52038de1f225e63b863c27eac439ed06e64d49d291a79576aea2722457c0f4dd3ba9ed2c4bd73b2f4cf98f2375baa41c43345193016c7f814a"}}, {0x4, &(0x7f0000000140)=@lang_id={0x4, 0x3, 0x40d}}, {0x34, &(0x7f0000000180)=@string={0x34, 0x3, "97589d9d2eb60d34af3e65d7dde30eaad7b510a89bd7ed9765efa9577dc32b7a00fa94209f69c35fe0541d886f2ffd03177e"}}]})
connect$inet(r1, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x0)
mkdir(&(0x7f0000000200)='./file0\x00', 0x104)
syz_usb_connect(0x5, 0x36, &(0x7f00000008c0)={{0x12, 0x1, 0x0, 0x6a, 0xd3, 0x6c, 0x8, 0x110a, 0x1130, 0xb3a3, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x2, 0x0, 0x10, 0x3, [{{0x9, 0x4, 0xf1, 0x2, 0x2, 0x4, 0x8f, 0x45, 0x0, [], [{{0x9, 0x5, 0x9, 0x2, 0x200, 0x2}}, {{0x9, 0x5, 0x82, 0x2, 0x200}}]}}]}}]}}, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r2, 0x0, 0x482, &(0x7f0000000240)={0x100000011, @multicast2, 0x0, 0x0, 'dh\x00', 0x19, 0x8a, 0x1b}, 0x2c)
syz_usb_control_io(r0, 0x0, 0x0)

5.825502662s ago: executing program 0 (id=210):
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
syz_emit_vhci(&(0x7f0000001fc0)=@HCI_EVENT_PKT={0x4, @hci_ev_encrypt_change={{0x8, 0x4}, {0x6, 0xc9}}}, 0x7)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
ptrace$ARCH_GET_FS(0x1e, r0, 0x0, 0x1003)
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x43, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000280)=[@text16={0x10, 0x0}], 0x1, 0x73, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_emit_vhci(&(0x7f0000000300)=ANY=[@ANYBLOB="040504"], 0x7)

5.383068005s ago: executing program 2 (id=211):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff}, 0x13f}}, 0x20)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
getsockopt$bt_hci(r2, 0x0, 0x1, 0x0, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000100)={0x3, 0x40, 0xfa00, {{0x2, 0x4e21, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xfffffffe}, {0xa, 0x4, 0x0, @mcast2}, r1}}, 0x48)
r3 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={<r4=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000380)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000580)=0x1, r4, 0x0, 0x2, 0x4}}, 0x20)

4.532887508s ago: executing program 3 (id=212):
ioperm(0x2, 0x7ff, 0x8)
io_submit(0x0, 0x0, 0x0) (fail_nth: 1)

3.851932821s ago: executing program 1 (id=213):
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000380)='\xbd\x10\xe2\n\xc4\xa8\xa8?\a\x9e@O<\xf4s\x85~X\x85\xdc\x11\x04a\xf8\xa6f\x96nB\x02\x10+C$\f\xb3\xcc\xed\"M\xb6 V\xc5\x9a\x11o^\xda\xc8', 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x1e, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000711228000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
connect$inet6(r0, &(0x7f0000000380)={0xa, 0x0, 0x0, @loopback, 0x4}, 0x1c)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r1, 0x84, 0x7f, &(0x7f0000000080)="010000000980ffff", 0x8)

3.754033899s ago: executing program 3 (id=214):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x401, 0xce7e, &(0x7f0000006680))
r0 = socket(0x10, 0x803, 0x0)
getsockopt$sock_int(r0, 0x1, 0x29, 0x0, &(0x7f0000000340))
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000e00), r1)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="2400000001040102000000c9fd0000000000000008000340000100000500010001"], 0x24}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c00000001040168b800000000000000000004000500010001"], 0x1c}}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x14, 0x1, 0x4, 0x201}, 0x14}}, 0x0)
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000240)='./bus\x00', 0x808016, &(0x7f0000000380)=ANY=[@ANYBLOB='nodots,flush,dots,dots,dots,dots,dots,dos1xfloppy,errors=continue,fmask=00000000000000000000003,time_offset=0x000000000000021d,fmask=0000000Q000000000000220,nodots,discard,nodots,nodots,dots,nodots,dots,dots,nodots,dots,\x00'], 0x1, 0x1dc, &(0x7f0000000640)="$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")
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r5, &(0x7f0000004180)={0x2020}, 0x2020)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r6=>0x0})
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0xba8, 0x0, 0x111, 0x4b4, 0x0, 0xd4feffff, 0xad8, 0x20a, 0x278, 0xad8, 0x278, 0x3, 0x0, {[{{@ipv6={@empty, @empty, [], [], 'ipvlan0\x00', 'team_slave_0\x00', {}, {}, 0x6}, 0x7a, 0x1c0, 0x1e8, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'macsec0\x00', {0x0, 0x0, 0x6, 0x0, 0x0, 0x3ff, 0x401}}}, @common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "6d93eb04697dfa39de04767f46614613a407abbf4ed2e83a63b484dbb3bf6b2a850e79009e2905d2f98ba19f91f3c9faee6d3686e9bee067f4e77d9ad66238750c4100d7ee97ec7646259d90edece6e9787a97bc956c01754c34c5c9518c46178ed5f9194454980e579c80eca35a58dc47d1d5e4ff6e216c724e88c702448587", 0x28}}]}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0xffff}}}, {{@ipv6={@loopback, @private1, [], [], 'veth1_to_hsr\x00', 'pim6reg1\x00'}, 0x0, 0x888, 0x8f0, 0x0, {}, [@common=@unspec=@u32={{0x7e0}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0xc08)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, 0x0, 0x0)
r8 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x181000, 0x0)
ioctl$SNDCTL_SEQ_RESETSAMPLES(r8, 0x40045109, 0x0)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000fcdbdf253b00000008000300", @ANYRES32=r6, @ANYBLOB="5b003300500800000802110000010802110000005050505050500b0000000000000000003d00100000060101010101010100060207002d1a08000b06000000000000000f000e00080000000100f4448123080141"], 0x78}, 0x1, 0x0, 0x0, 0xba4820d6f6815606}, 0x0)
syz_kvm_setup_cpu$x86(r5, r5, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000001940)=[@textreal={0x8, &(0x7f00000018c0)="f36f440f20c066350c000000440f22c02e0f00500b66b87c3b00000f23d00f21f86635300000070f23f8660f5c2466b9800000c00f326635000100000f3066b9aa0b00000f3266660fd5cc0f01d13e0f01c2", 0x52}], 0x1, 0x0, &(0x7f0000001980)=[@cr0={0x0, 0x4000002c}], 0x1)
accept4$inet(r0, 0x0, 0x0, 0x800)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port1\x00'})

3.604218056s ago: executing program 2 (id=215):
semget(0x2, 0x7ec2de97fe2621b0, 0x12b) (fail_nth: 1)

3.226360806s ago: executing program 2 (id=216):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x74, 0x0, 0x4}]})
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f0000000000)='./bus\x00', 0x1000000, &(0x7f0000000f40)=ANY=[@ANYBLOB="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", @ANYRESOCT, @ANYBLOB="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", @ANYRES8, @ANYRESHEX], 0x9, 0xc56, &(0x7f0000001bc0)="$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")
symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000e40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
lstat(&(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', 0x0)

2.982353307s ago: executing program 1 (id=217):
r0 = open(&(0x7f00000005c0)='./bus\x00', 0xfd55026bb2fc922b, 0x0)
pwritev2(r0, 0x0, 0x0, 0x2000, 0x0, 0x3)
ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000000)={0x400, 0x8})
r1 = syz_open_dev$media(&(0x7f0000000040), 0x2, 0x0)
ioctl$MEDIA_IOC_ENUM_LINKS(r1, 0xc0287c02, &(0x7f0000000140)={0x80000000, 0x0, 0xffffffffffffffff})

2.925360306s ago: executing program 3 (id=218):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0)
unshare(0x20000400)
ioctl$FUSE_DEV_IOC_CLONE(r1, 0x8004e500, &(0x7f0000000280)=r2)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="7400000000010184000000000000000002000000240001801400018008000100ac14141108000200000000000c0002800500010000000000240002801400018008000100ac14140008000200e00000020c000280050001000000000008000740000000000800084000000000080004"], 0x74}}, 0x0)
setsockopt$inet6_tcp_buf(r0, 0x29, 0x33, 0x0, 0x0)

2.538529961s ago: executing program 2 (id=219):
r0 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r0, 0x0, 0x28, &(0x7f0000000040)={@multicast1, @local, @loopback}, 0xc)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000140)={0x6, {{0x2, 0x0, @multicast1}}}, 0x88)
r1 = io_uring_setup(0x7fe7, &(0x7f0000000140)={0x0, 0x0, 0x3000, 0x0, 0xfffffffe})
exit(0x9)
poll(&(0x7f0000000000)=[{r1, 0xc4}], 0x1, 0xffffffff)
exit(0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r3=>0x0})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r2)
sendmsg$NL80211_CMD_JOIN_IBSS(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x34, r4, 0x101, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SSID={0x5, 0x34, @random="f7"}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1478}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}]]}, 0x34}}, 0x0)
getsockopt$inet_buf(r0, 0x0, 0x29, &(0x7f0000000040)=""/185, &(0x7f0000000100)=0xb9)

2.478392478s ago: executing program 3 (id=220):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da07000000000001090224000100000000090400000903000000092100000001222200090581030800000000"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="00222200000096231306e53ba63f070c0000002a9000070900be0083000000000b09007a150b5d8c"], 0x0}, 0x0)
r1 = accept4$tipc(0xffffffffffffffff, &(0x7f00000000c0)=@name, &(0x7f0000000100)=0x10, 0x80000)
socket$nl_route(0x10, 0x3, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
socket$packet(0x11, 0x2, 0x300)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r3 = socket(0x1, 0x803, 0x0)
pipe(&(0x7f0000000100))
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x403, 0xfffffffc, 0x3f, {0x0, 0x0, 0x0, 0x0, 0x88adfda5}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvtap={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r4}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x44}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
setsockopt(r1, 0x47, 0x4, &(0x7f0000000200)="e421708797c1a6520ebc547f9712fce006216453be8b0feb316556dca1bd0c429e9c59f71b67f01494c7e97722e818c45dce13523a33c943fdc52c690b5e44011506d80be7c25700e24096fa57a1032aaa0308e4f1ca9bd140377f18aa7800ffc754aefb44bbfc6b08534ee6c1e684a583601fd9aa0c5b5fc3aa2ff82ec38426f2aa57ca58137eac43b89f17d050eda8072b486001d777c53cb54ca3ad8dbc8c407ae670266005d688431e4f125e13682d99ea617eab547bb8084568b25b212f49c4ed4855574a6043ca89f080cbea4b1632b7af65e356fb5aa5b972ba3967703726c571e9107e6687d7f80168c53c1ebcea686f96", 0xf5)
syz_usb_ep_write(r0, 0x81, 0x7, &(0x7f0000000000)='BBBBBBB')
syz_usb_ep_write(r0, 0x81, 0x7, &(0x7f0000000000)='BBBBBBB')
kexec_load(0x0, 0x0, 0x0, 0x3f7f7da60e189b65)
r5 = socket(0x2c, 0x3, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="110000000401e13bff73a92d79c308ef4763adb000000004000000ff00000800000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r6, &(0x7f0000000280), &(0x7f0000000080)=@udp6=r5, 0x2}, 0x20)
syz_usb_ep_write(r0, 0x81, 0x7, &(0x7f0000000000)='BBBBBBB')

2.478002726s ago: executing program 1 (id=221):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000400)={[{@sysvgroups}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000}}]}, 0xff, 0x241, &(0x7f0000001cc0)="$eJzs3T1oLFUYBuB3Zne9N/cuctVGEH9ARDQQrp1gExuFgIQgIqgQEbFREiEm2CVWNhZaq6SyCWJntJQ0wUYRrKKmiI2gwcJgocXK7CQSkxXUjTviPA/Mzg/nzHeGmffsNsMGaK1rSWaTdJJMJ+klKU43uKterh3vbk7tLiaDweM/FsN29X7tpN/VJBtJHkyyUxZ5sZusbT998PPeo/e+sdq7573tp6YmepHHDg/2Hzt6d/71D+ceWPv8y+/ni8ym/4frunjFiGPdIrn53yj2H1F0mx4Bf8XCqx98VeX+liR3D/PfS5n65r25csNOL/e/82d93/rhi9smOVbg4g0Gveo7cGMAtE6ZpJ+inElSb5flzEz9G/7rzpXypeWVV6ZfWF5der7pmQq4KP1k/5GPL3109Uz+v+vU+Qf+v6r8P7Gw9U21fdRpejTARNxer6r8Tz+7fl/kH1pH/qG95B/aS/6hveQf2kv+ob3kH9pL/qG95B/aS/6hvU7nHwBol8Glpt9ABprS9PwDAAAAAAAAAAAAAAAAAACctzm1u3iyTKrmp28nhw8n6Y6q3xn+H3Fyefh55aeiava7ou42lmfuHPMEY3q/4bevb/y22fqf3dFs/fWlZOO1JNe73fPPX3H8/P1zN404dvnUdu+5MQv8TcWZ/YeenGz9s37darb+3F7ySTX/XB81/5S5dbgePf/0q/s3Zv2XfxnzBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEzMbwEAAP//lf1tTw==")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r0, 0x0)
mq_getsetattr(0xffffffffffffffff, &(0x7f0000000140), 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x0)
open_by_handle_at(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="08000000020000000b"], 0xc000)

2.337927937s ago: executing program 0 (id=222):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x16, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="85000000080000004e00000000000000850000007d00000095000000000000007ab9e683b171b4b09980af6c1ebeda4ac0d3e3aa71a9ab17e14e1b0be949499ca6a5b2c467b6d3d1c0ae1e9820331afd90cc832c761aa3adf9be48c401c7f893694bf8cd19b7173cd4688904f7310af046fd490d3f2cf49b5f68aecf0bc659dc3d"], &(0x7f0000000140)='GPL\x00', 0x0, 0x99, &(0x7f00000004c0)=""/153, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000440)={r0, 0x0, 0xb, 0x0, &(0x7f0000000600)="61df712bc884fef053a7a9", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.114034002s ago: executing program 0 (id=223):
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000006bc0), 0x0, 0x0) (async)
r1 = openat$cuse(0xffffffffffffff9c, &(0x7f00000005c0), 0x2, 0x0)
fcntl$setstatus(r1, 0x4, 0x2c00) (async)
read$FUSE(r1, &(0x7f0000000f80)={0x2020}, 0x2020) (async)
r2 = syz_io_uring_setup(0x34ff, &(0x7f0000000340)={0x0, 0x0, 0x10100}, &(0x7f0000000240), &(0x7f0000000200)=<r3=>0x0) (async)
syz_io_uring_setup(0x1f33, &(0x7f00000002c0), &(0x7f0000000040)=<r4=>0x0, &(0x7f0000000180))
syz_io_uring_submit(r4, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r2, 0x184c, 0x0, 0x0, 0x0, 0x0) (async)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000010000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r5}, 0x10)
getxattr(0x0, 0x0, 0x0, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000a0db000000000000000000850000000e000000d50000002a00c50095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
prlimit64(0x0, 0x7, &(0x7f0000000180), 0x0) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r6}, 0x11) (async)
ioctl$BTRFS_IOC_SNAP_CREATE_V2(r0, 0x7041, 0x0) (async)
syz_usb_connect(0x0, 0x62, &(0x7f0000000400)=ANY=[@ANYBLOB="12010000fb5d7d086d04c308166b0102030109025000010000000009041f0000ff0100000a24010400050201020724070500000508240805040004960d240601010302000100060006092403050503220581092403060101"], 0x0)

2.0103795s ago: executing program 1 (id=224):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
setgroups(0x0, 0x0)

1.938118701s ago: executing program 4 (id=225):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0), 0x13f}}, 0x20)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
getsockopt$bt_hci(r1, 0x0, 0x1, 0x0, &(0x7f0000000380)=0xfffffffffffffd4f)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, 0x0, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={<r3=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000380)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000580)=0x1, r3, 0x0, 0x2, 0x4}}, 0x20)

1.625220122s ago: executing program 4 (id=226):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
syz_mount_image$bcachefs(&(0x7f00000000c0), &(0x7f0000000240)='./file1\x00', 0x800010, &(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYBLOB="1e0534e9c8ed25d9"], 0x1, 0x5956, &(0x7f0000008e40)="$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")
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = socket$kcm(0x21, 0x2, 0xa)
sendmsg$kcm(r1, &(0x7f00000000c0)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x0, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x80, 0x0, 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="81fdffffffffffaa6a72030000000000dc00000000000000931e2cf4cf072c9d26c24a014a78429a824d73b51deba30def320b8e86da97db1021d45b59492ff2a7a6a0373553980b05a20124937b84adae8b07283d0361b613c53c7585a38164d070e9a7e2add37ad2a007c834f395"], 0x18}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="3c000000000801010000000000000000000000000c00048008000140000000000600024000000000050003008800000009000100"], 0x3c}}, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mmap(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x0, 0x31, 0xffffffffffffffff, 0x0)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000002ec0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_BIND(r4, &(0x7f0000002f80)={0x16, 0x88, 0xfa00, {0xffffffffffffffff, 0x30, 0x0, @in={0x2, 0x4e23, @multicast1}}}, 0x90)
r5 = epoll_create(0x3)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r3, &(0x7f00000003c0)={0x9000000c})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r7 = fanotify_init(0xf00, 0x1001)
fanotify_mark(r7, 0x105, 0x5000003a, r6, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x42, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./bus\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2)
readv(r4, &(0x7f0000000180)=[{&(0x7f0000000080)=""/62, 0x3e}], 0x1)
syz_open_dev$sndmidi(&(0x7f0000000440), 0x3, 0x0)
r8 = getpid()
r9 = syz_pidfd_open(r8, 0x0)
close_range(r9, 0xffffffffffffffff, 0x0)
syz_usb_connect(0x0, 0xb, &(0x7f00000010c0)=ANY=[], 0x0)
ioctl$BTRFS_IOC_ADD_DEV(r9, 0x40095505, 0x0)

1.025962171s ago: executing program 0 (id=227):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0xfeffff07, 0x80, &(0x7f0000000240)=@filter={'filter\x00', 0xe, 0x1, 0xa28, [0x0, 0x200005c0, 0x200005f0, 0x20000fb8], 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"]}, 0xaa0)

794.137967ms ago: executing program 2 (id=228):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x401, 0xce7e, &(0x7f0000006680))
r0 = socket(0x10, 0x803, 0x0)
getsockopt$sock_int(r0, 0x1, 0x29, 0x0, &(0x7f0000000340))
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000e00), r1)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="2400000001040102000000c9fd0000000000000008000340000100000500010001"], 0x24}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c00000001040168b800000000000000000004000500010001"], 0x1c}}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x14, 0x1, 0x4, 0x201}, 0x14}}, 0x0)
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000240)='./bus\x00', 0x808016, &(0x7f0000000380)=ANY=[@ANYBLOB='nodots,flush,dots,dots,dots,dots,dots,dos1xfloppy,errors=continue,fmask=00000000000000000000003,time_offset=0x000000000000021d,fmask=0000000Q000000000000220,nodots,discard,nodots,nodots,dots,nodots,dots,dots,nodots,dots,\x00'], 0x1, 0x1dc, &(0x7f0000000640)="$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")
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r5, &(0x7f0000004180)={0x2020}, 0x2020)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r6=>0x0})
r7 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0xba8, 0x0, 0x111, 0x4b4, 0x0, 0xd4feffff, 0xad8, 0x20a, 0x278, 0xad8, 0x278, 0x3, 0x0, {[{{@ipv6={@empty, @empty, [], [], 'ipvlan0\x00', 'team_slave_0\x00', {}, {}, 0x6}, 0x7a, 0x1c0, 0x1e8, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'macsec0\x00', {0x0, 0x0, 0x6, 0x0, 0x0, 0x3ff, 0x401}}}, @common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "6d93eb04697dfa39de04767f46614613a407abbf4ed2e83a63b484dbb3bf6b2a850e79009e2905d2f98ba19f91f3c9faee6d3686e9bee067f4e77d9ad66238750c4100d7ee97ec7646259d90edece6e9787a97bc956c01754c34c5c9518c46178ed5f9194454980e579c80eca35a58dc47d1d5e4ff6e216c724e88c702448587", 0x28}}]}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0xffff}}}, {{@ipv6={@loopback, @private1, [], [], 'veth1_to_hsr\x00', 'pim6reg1\x00'}, 0x0, 0x888, 0x8f0, 0x0, {}, [@common=@unspec=@u32={{0x7e0}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0xc08)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, 0x0, 0x0)
r8 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x181000, 0x0)
ioctl$SNDCTL_SEQ_RESETSAMPLES(r8, 0x40045109, 0x0)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000fcdbdf253b00000008000300", @ANYRES32=r6, @ANYBLOB="5b003300500800000802110000010802110000005050505050500b0000000000000000003d00100000060101010101010100060207002d1a08000b06000000000000000f000e00080000000100f4448123080141"], 0x78}, 0x1, 0x0, 0x0, 0xba4820d6f6815606}, 0x0)
syz_kvm_setup_cpu$x86(r5, r5, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000001940)=[@textreal={0x8, &(0x7f00000018c0)="f36f440f20c066350c000000440f22c02e0f00500b66b87c3b00000f23d00f21f86635300000070f23f8660f5c2466b9800000c00f326635000100000f3066b9aa0b00000f3266660fd5cc0f01d13e0f01c2", 0x52}], 0x1, 0x0, &(0x7f0000001980)=[@cr0={0x0, 0x4000002c}], 0x1)
accept4$inet(r0, 0x0, 0x0, 0x800)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port1\x00'})

187.244144ms ago: executing program 0 (id=229):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r2 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$eJzs3TFoM2UcBvDnLomf/b4gVRdBUEFEtFDqJrjURaEgpYgIKlREXJRWqC1urZOLg84qnVyKuFkdpUtxUQSnqh3qImhxsDjoELlcK9VGFFNz8t3vB5fcJe97//e4e95kOS5Aa00nmU/SSTKTpJekON/grnqZPt3cntpfTgaDx38shu3q7dpZv2tJtpI8mGSvLPJiN9nYffro54NH731jvXfPe7tPTU30IE8dHx0+dvLu4usfLjyw8fmX3y8WmU//D8d1+YoRn3WL5Jb/otj/RNFtegT8E0uvfvBVlftbk9w9zH8vZeqT9+baDXu93P/OX/V964cvbp/kWIHLNxj0qt/ArQHQOmWSfopyNkm9Xpazs/V/+K87V8uXVtdemXlhdX3l+aZnKuCy9JPDRz6+8tG1P+X/u06df+D6VeX/iaWdb6r1k07TowEmqcr/zLOb90X+oXXkH9pL/qG95B/aS/6hveQf2kv+ob3kH9pL/qG95B/a63z+AYB2GVxp+g5koClNzz8AAAAAAAAAAAAAAAAAAMBF21P7y2fLpGp++nZy/HCS7qj6neHziJMbh69XfyqqZr8r6m5jeebOMXcwpvcbvvv6pm+brf/ZHc3W31xJtl5LMtftXrz+itPr79+7+W++7z03ZoExPfRks/V/3Wm2/sJB8kk1/8yNmn/K3DZ8Hz3/9KvzN2b9l38ZcwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABMzG8BAAD//8n0bSk=")
setresuid(0x0, 0xee00, 0x0)
r3 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f00000000c0)={'fscrypt:', @desc3}, &(0x7f0000000100)={0x0, "4e350d948ddf7696cae7dcb01d572a662309215487a5a92bb00eaf2f219f9229163beb89cd904f56c75bb95b05c112859c18ee5ef08ac7de091e0ba771e0f176", 0x2f}, 0x48, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r3, 0x0, 0x0)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r2, 0xc0506617, &(0x7f0000000600)={@desc={0x1, 0x0, @desc2}, 0x10, r3, '\x00', @d})
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000580)={0x44, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_RX_USECS_IRQ={0x8, 0x4, 0x6}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES={0x8}, @ETHTOOL_A_COALESCE_TX_USECS={0x8, 0x6, 0x100}]}, 0x44}, 0x1, 0x0, 0x0, 0x2400c000}, 0x0)

0s ago: executing program 2 (id=230):
unshare(0x22020400)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0xe)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xc, 0x4, 0x4, 0x3, 0x0, r0, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x1f, 0x1c, &(0x7f0000000380)=ANY=[@ANYBLOB="0000007015687fdb2f984fb35787", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000b7080000000000007b8af8ff00000000b7080000000100007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000a5000000bf91000000000000b7020000010000008500000085000000b7000000000000009500000000000000"], &(0x7f0000000100)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000025c0)=@delchain={0x48, 0x65, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x4, 0x4}, {0xffe0, 0x5}}, [@filter_kind_options=@f_u32={{0x8}, {0x4}}, @TCA_RATE={0x6}, @filter_kind_options=@f_route={{0xa}, {0x4}}]}, 0x48}, 0x1, 0x0, 0x0, 0x1}, 0x6004800)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r2, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f00000008c0)={0x14, 0x2c, 0x1, 0x0, 0x0, "", [@nested={0x4, 0x98}]}, 0x14}], 0x1}, 0x0)
r3 = socket(0x10, 0x803, 0x0)
bind$llc(r3, &(0x7f0000000540)={0x1a, 0x301, 0x6, 0x4, 0xf9, 0x5, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x18}}, 0x10)
sendto(r3, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
r4 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCPKT(r5, 0x5420, &(0x7f0000000100)=0xcf5)
ioctl$TCSETSW(r5, 0x5403, &(0x7f0000000000)={0x513e, 0x3, 0xcb6, 0x7f, 0x9, "1381147ec2526d02fe0080d7f300000300"})
ioctl$TCSETS2(r5, 0x402c542b, &(0x7f00000002c0)={0x6, 0x2, 0x10025, 0x6, 0xff, "e1db165246eaa57f8e2dde600196d74ab3ebea", 0x9, 0x4000009})
ioctl$VIDIOC_REQBUFS(r4, 0xc0145608, &(0x7f0000000600)={0x1, 0x6, 0x1, 0x0, 0xfc})
recvmmsg(r3, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
sendmsg$AUDIT_USER_TTY(r3, &(0x7f0000000340)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0xfaaa0c5bb0ecf931}, 0xc, &(0x7f0000000300)={&(0x7f0000000880)=ANY=[@ANYBLOB="c80000006404040028bd7000fcdbdf25f961beefa7fb8fbc20259059d51644c7fc0e2e58353cac91170eb7f7e657f022adb7c3cb1ef3c8e0abee03755fa68cd627bf0542865c5636e3362948761b43cfddc7bed2f87095f9a5730388d84668dce63c780ae725a6c44ddd9095d51457b81209ed5bcd8f070668d02a4470f9a301cb87b756b812a738437bef4a61be7404699be9bb990b1c8d76e97c4e151b31f4dca53946bc22aeeb2658509dda7a9373272c2fb39e830dc1f8fa9c86d807721aaf6bb27b57e4aac1437ce2b26ca798f06e2cbb"], 0xc8}, 0x1, 0x0, 0x0, 0x4}, 0x4000000)

kernel console output (not intermixed with test programs):

5] Cannot create hsr debugfs directory
[  231.229515][ T5787] hsr_slave_0: entered promiscuous mode
[  231.239336][ T5787] hsr_slave_1: entered promiscuous mode
[  231.248061][ T5787] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  231.255966][ T5787] Cannot create hsr debugfs directory
[  231.262341][ T5788] Bluetooth: hci0: command tx timeout
[  231.342124][ T5788] Bluetooth: hci1: command tx timeout
[  231.347776][ T5788] Bluetooth: hci2: command tx timeout
[  231.512707][ T5792] Bluetooth: hci3: command tx timeout
[  231.512856][ T5788] Bluetooth: hci4: command tx timeout
[  232.010659][ T5782] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  232.091586][ T5782] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  232.161105][ T5782] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  232.191571][ T5782] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  232.236815][ T5786] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  232.277435][ T5786] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  232.387089][ T5786] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  232.484358][ T5786] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  232.520238][ T5797] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  232.579000][ T5797] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  232.639999][ T5795] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  232.672703][ T5797] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  232.782935][ T5787] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  232.808107][ T5795] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  232.830487][ T5795] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  232.854462][ T5797] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  232.889440][ T5787] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  232.918125][ T5795] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  232.948402][ T5787] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  232.997990][ T5787] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  233.344686][ T5788] Bluetooth: hci0: command tx timeout
[  233.439575][ T5788] Bluetooth: hci2: command tx timeout
[  233.440221][ T5792] Bluetooth: hci1: command tx timeout
[  233.582843][ T5792] Bluetooth: hci3: command tx timeout
[  233.586149][ T5788] Bluetooth: hci4: command tx timeout
[  233.747350][ T5782] 8021q: adding VLAN 0 to HW filter on device bond0
[  233.896243][ T5786] 8021q: adding VLAN 0 to HW filter on device bond0
[  234.015547][ T5782] 8021q: adding VLAN 0 to HW filter on device team0
[  234.056042][ T5795] 8021q: adding VLAN 0 to HW filter on device bond0
[  234.116290][ T5786] 8021q: adding VLAN 0 to HW filter on device team0
[  234.149045][ T4473] bridge0: port 1(bridge_slave_0) entered blocking state
[  234.156805][ T4473] bridge0: port 1(bridge_slave_0) entered forwarding state
[  234.181072][ T5797] 8021q: adding VLAN 0 to HW filter on device bond0
[  234.239124][ T4473] bridge0: port 2(bridge_slave_1) entered blocking state
[  234.246900][ T4473] bridge0: port 2(bridge_slave_1) entered forwarding state
[  234.263166][ T4473] bridge0: port 1(bridge_slave_0) entered blocking state
[  234.270829][ T4473] bridge0: port 1(bridge_slave_0) entered forwarding state
[  234.285891][ T4473] bridge0: port 2(bridge_slave_1) entered blocking state
[  234.293560][ T4473] bridge0: port 2(bridge_slave_1) entered forwarding state
[  234.399531][ T5795] 8021q: adding VLAN 0 to HW filter on device team0
[  234.445804][ T5797] 8021q: adding VLAN 0 to HW filter on device team0
[  234.538381][ T4604] bridge0: port 1(bridge_slave_0) entered blocking state
[  234.546138][ T4604] bridge0: port 1(bridge_slave_0) entered forwarding state
[  234.612736][ T4604] bridge0: port 1(bridge_slave_0) entered blocking state
[  234.620408][ T4604] bridge0: port 1(bridge_slave_0) entered forwarding state
[  234.725602][ T5787] 8021q: adding VLAN 0 to HW filter on device bond0
[  234.827380][ T4604] bridge0: port 2(bridge_slave_1) entered blocking state
[  234.835148][ T4604] bridge0: port 2(bridge_slave_1) entered forwarding state
[  234.876923][ T4604] bridge0: port 2(bridge_slave_1) entered blocking state
[  234.884683][ T4604] bridge0: port 2(bridge_slave_1) entered forwarding state
[  235.073703][ T5787] 8021q: adding VLAN 0 to HW filter on device team0
[  235.234375][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  235.242241][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  235.385274][ T5797] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  235.396863][ T5797] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  235.441076][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  235.448855][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  236.798721][ T5782] 8021q: adding VLAN 0 to HW filter on device batadv0
[  236.907719][ T5786] 8021q: adding VLAN 0 to HW filter on device batadv0
[  237.319266][ T5782] veth0_vlan: entered promiscuous mode
[  237.354891][ T5795] 8021q: adding VLAN 0 to HW filter on device batadv0
[  237.397026][ T5797] 8021q: adding VLAN 0 to HW filter on device batadv0
[  237.512347][ T5782] veth1_vlan: entered promiscuous mode
[  237.574334][ T5786] veth0_vlan: entered promiscuous mode
[  237.659554][ T5787] 8021q: adding VLAN 0 to HW filter on device batadv0
[  237.731633][ T5786] veth1_vlan: entered promiscuous mode
[  238.023535][ T5782] veth0_macvtap: entered promiscuous mode
[  238.034037][ T5797] veth0_vlan: entered promiscuous mode
[  238.041206][ T5795] veth0_vlan: entered promiscuous mode
[  238.118067][ T5786] veth0_macvtap: entered promiscuous mode
[  238.150485][ T5782] veth1_macvtap: entered promiscuous mode
[  238.173368][ T5797] veth1_vlan: entered promiscuous mode
[  238.190873][ T5795] veth1_vlan: entered promiscuous mode
[  238.220603][ T5786] veth1_macvtap: entered promiscuous mode
[  238.408112][ T5782] batman_adv: batadv0: Interface activated: batadv_slave_0
[  238.457227][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  238.469897][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  238.486296][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_0
[  238.529983][ T5782] batman_adv: batadv0: Interface activated: batadv_slave_1
[  238.591513][ T5797] veth0_macvtap: entered promiscuous mode
[  238.635704][ T5795] veth0_macvtap: entered promiscuous mode
[  238.653513][ T5782] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  238.662759][ T5782] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  238.671793][ T5782] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  238.681024][ T5782] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  238.709600][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  238.720518][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  238.735460][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_1
[  238.757859][ T5797] veth1_macvtap: entered promiscuous mode
[  238.790813][ T5786] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  238.800187][ T5786] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  238.809446][ T5786] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  238.818720][ T5786] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  238.852477][ T5795] veth1_macvtap: entered promiscuous mode
[  238.987417][ T5797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  238.998317][ T5797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.008695][ T5797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  239.019468][ T5797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.035788][ T5797] batman_adv: batadv0: Interface activated: batadv_slave_0
[  239.157581][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  239.168484][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.178999][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  239.189812][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.200278][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  239.211105][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.225674][ T5795] batman_adv: batadv0: Interface activated: batadv_slave_0
[  239.251454][ T5797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  239.263775][ T5797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.275088][ T5797] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  239.287063][ T5797] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.306779][ T5797] batman_adv: batadv0: Interface activated: batadv_slave_1
[  239.359545][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  239.372698][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.383076][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  239.393904][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.404223][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  239.415121][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.429217][ T5795] batman_adv: batadv0: Interface activated: batadv_slave_1
[  239.478935][ T5797] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  239.488863][ T5797] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  239.498084][ T5797] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  239.507314][ T5797] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  239.723548][ T5795] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  239.732845][ T5795] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  239.742142][ T5795] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  239.751185][ T5795] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  240.514104][ T5787] veth0_vlan: entered promiscuous mode
[  240.630685][ T5787] veth1_vlan: entered promiscuous mode
[  241.030869][ T5787] veth0_macvtap: entered promiscuous mode
[  241.089103][ T5787] veth1_macvtap: entered promiscuous mode
[  241.242268][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  241.253191][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.264871][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  241.276560][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.286721][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  241.298345][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.308719][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  241.319581][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.333902][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_0
[  241.457156][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  241.469705][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.480330][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  241.491111][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.501294][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  241.512339][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.522487][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  241.534543][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.548927][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_1
[  241.704549][ T5787] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  241.715638][ T5787] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  241.726339][ T5787] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  241.735608][ T5787] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  245.008563][ T3773] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  245.017689][ T3773] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  245.273458][ T4604] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  245.282136][ T4604] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  245.416998][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  245.426016][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  245.678577][ T5782] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  245.750685][ T4473] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  245.758944][ T4473] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  246.378573][  T752] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  246.388479][  T752] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  246.502673][ T5851] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  246.594679][ T3842] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  246.603136][ T3842] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  246.655630][ T4604] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  246.664075][ T4604] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  246.693854][ T5851] usb 2-1: Using ep0 maxpacket: 8
[  246.731829][ T5851] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  246.744682][ T5851] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  246.755652][ T5851] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  246.766731][ T5851] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024
[  246.773868][ T3612] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  246.778280][ T5851] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  246.795068][ T3612] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  246.802949][ T5851] usb 2-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  246.813642][ T5851] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  246.908327][ T5966] ------------[ cut here ]------------
[  246.915110][ T5966] WARNING: CPU: 0 PID: 5966 at mm/page_alloc.c:4729 __alloc_pages_noprof+0x619/0xe00
[  246.931239][ T5966] Modules linked in:
[  246.937754][ T5966] CPU: 0 UID: 0 PID: 5966 Comm: syz.0.1 Not tainted 6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  246.949539][ T5966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  246.963176][ T5966] RIP: 0010:__alloc_pages_noprof+0x619/0xe00
[  246.969520][ T5966] Code: 98 e9 28 02 00 00 44 89 f7 e8 f3 be 17 00 e9 a1 fa ff ff 48 c7 c7 eb 81 f6 91 e8 22 b2 17 00 c6 00 00 c6 05 93 f2 b9 0f 01 90 <0f> 0b 90 e9 8e fa ff ff 89 7d c8 89 4d c4 e8 c4 be 17 00 8b 4d c4
[  246.989081][ T5851] usb 2-1: config 0 descriptor??
[  246.990557][ T5966] RSP: 0018:ffff88812d27b660 EFLAGS: 00010286
[  246.998862][ T5963] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  247.001605][ T5966] RAX: ffff88823fa591eb RBX: 0000000000040d40 RCX: 000000023f0601e8
[  247.021472][ T5966] RDX: ffff88823f0601e8 RSI: ffff88813fffaae0 RDI: ffffffff91f681e8
[  247.036426][ T5966] RBP: ffff88812d27b728 R08: ffffea000000000f R09: 0000000000000000
[  247.047482][ T5966] R10: ffff88812ca7b678 R11: 0000000000000004 R12: 0000000000040d40
[  247.055869][ T5966] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001
[  247.064253][ T5966] FS:  00007f55541b96c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000
[  247.073654][ T5966] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  247.080547][ T5966] CR2: 0000000020001000 CR3: 000000004c156000 CR4: 00000000003526f0
[  247.088960][ T5966] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  247.097346][ T5966] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  247.106243][ T5966] Call Trace:
[  247.109722][ T5966]  <TASK>
[  247.113001][ T5966]  ? show_trace_log_lvl+0x268/0x3d0
[  247.118540][ T5966]  ? ___kmalloc_large_node+0x119/0x370
[  247.129639][ T5966]  ? show_regs+0xb4/0xe0
[  247.135788][ T5966]  ? __warn+0x2c7/0x780
[  247.140267][ T5966]  ? __alloc_pages_noprof+0x619/0xe00
[  247.146147][ T5966]  ? report_bug+0x929/0xbd0
[  247.150937][ T5966]  ? __alloc_pages_noprof+0x619/0xe00
[  247.156844][ T5966]  ? handle_bug+0x6d/0x90
[  247.161467][ T5966]  ? exc_invalid_op+0x1f/0x50
[  247.166609][ T5966]  ? asm_exc_invalid_op+0x1f/0x30
[  247.172088][ T5966]  ? __alloc_pages_noprof+0x619/0xe00
[  247.177769][ T5966]  ? kmsan_get_metadata+0x13e/0x1c0
[  247.183441][ T5966]  ? kmsan_get_metadata+0x13e/0x1c0
[  247.188937][ T5966]  ___kmalloc_large_node+0x119/0x370
[  247.195308][ T5966]  __kmalloc_large_node_noprof+0x3f/0x1e0
[  247.201368][ T5966]  ? p9_client_clunk+0x362/0x3a0
[  247.206835][ T5966]  __kmalloc_noprof+0xc7d/0x1230
[  247.212214][ T5966]  ? v9fs_fid_xattr_get+0x436/0x580
[  247.217732][ T5966]  ? v9fs_fid_get_acl+0xe9/0x370
[  247.223268][ T5966]  v9fs_fid_get_acl+0xe9/0x370
[  247.233746][ T5966]  v9fs_get_acl+0xd5/0x720
[  247.238510][ T5966]  v9fs_inode_from_fid_dotl+0x566/0x680
[  247.246067][ T5966]  v9fs_mount+0xc2c/0x1300
[  247.250853][ T5966]  legacy_get_tree+0x114/0x290
[  247.256038][ T5966]  ? __pfx_v9fs_mount+0x10/0x10
[  247.261237][ T5966]  vfs_get_tree+0xb1/0x5a0
[  247.266945][ T5966]  ? mount_capable+0x97/0x120
[  247.273317][ T5966]  do_new_mount+0x71f/0x15e0
[  247.278199][ T5966]  ? kmsan_get_metadata+0x13e/0x1c0
[  247.283940][ T5966]  path_mount+0x742/0x1f10
[  247.288631][ T5966]  ? user_path_at+0x374/0x3e0
[  247.293752][ T5966]  __se_sys_mount+0x722/0x810
[  247.298716][ T5966]  ? kmsan_get_metadata+0x13e/0x1c0
[  247.304353][ T5966]  __x64_sys_mount+0xe4/0x150
[  247.309319][ T5966]  x64_sys_call+0x39bf/0x3c30
[  247.314499][ T5966]  do_syscall_64+0xcd/0x1e0
[  247.319287][ T5966]  ? clear_bhb_loop+0x25/0x80
[  247.324439][ T5966]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.336259][ T5966] RIP: 0033:0x7f5553385d29
[  247.340954][ T5966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  247.347808][ T5844] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  247.363449][ T5966] RSP: 002b:00007f55541b9038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  247.377519][ T5966] RAX: ffffffffffffffda RBX: 00007f5553575fa0 RCX: 00007f5553385d29
[  247.385951][ T5966] RDX: 0000000020000b80 RSI: 00000000200003c0 RDI: 0000000000000000
[  247.394406][ T5966] RBP: 00007f5553401b08 R08: 0000000020000580 R09: 0000000000000000
[  247.402769][ T5966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  247.410990][ T5966] R13: 0000000000000000 R14: 00007f5553575fa0 R15: 00007ffe7b53e688
[  247.419407][ T5966]  </TASK>
[  247.425579][ T5966] ---[ end trace 0000000000000000 ]---
[  247.803778][ T5844] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  247.803862][ T5963] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2'.
[  247.824909][ T5963] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2'.
[  247.887384][ T5972] 9pnet_fd: Insufficient options for proto=fd
[  247.920223][ T5963] Zero length message leads to an empty skb
[  248.031981][ T5851] usb 2-1: USB disconnect, device number 2
[  248.060466][ T5788] Bluetooth: hci5: Opcode 0x0c03 failed: -71
[  248.061026][ T5844] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  248.086665][ T5844] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  248.095066][ T5844] usb 1-1: Product: syz
[  248.099476][ T5844] usb 1-1: Manufacturer: syz
[  248.104391][ T5844] usb 1-1: SerialNumber: syz
[  248.323289][ T5843] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  248.439988][ T5977] netlink: 256 bytes leftover after parsing attributes in process `syz.3.4'.
[  248.449376][ T5977] netlink: 56 bytes leftover after parsing attributes in process `syz.3.4'.
[  248.553694][ T5843] usb 3-1: Using ep0 maxpacket: 16
[  248.596228][ T5843] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  248.607036][ T5843] usb 3-1: config 0 interface 0 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  248.620925][ T5843] usb 3-1: config 0 interface 0 has no altsetting 0
[  248.627987][ T5843] usb 3-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[  248.637426][ T5843] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  248.758094][ T4473] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  248.770230][ T4473] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  248.849020][ T3612] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  248.858077][ T3612] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  248.991808][ T5843] usb 3-1: config 0 descriptor??
[  249.067359][ T5843] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  249.428558][ T5977] loop3: detected capacity change from 0 to 32768
[  249.439505][ T5977] =======================================================
[  249.439505][ T5977] WARNING: The mand mount option has been deprecated and
[  249.439505][ T5977]          and is ignored by this kernel. Remove the mand
[  249.439505][ T5977]          option from the mount to silence this warning.
[  249.439505][ T5977] =======================================================
[  249.734715][ T5977] XFS (loop3): Mounting V5 filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 in no-recovery mode. Filesystem will be inconsistent.
[  249.803607][ T5851] XFS (loop3): Metadata CRC error detected at xfs_agi_read_verify+0x2a3/0x300, xfs_agi block 0x2 
[  249.804887][ T5990] FAULT_INJECTION: forcing a failure.
[  249.804887][ T5990] name failslab, interval 1, probability 0, space 0, times 1
[  249.814998][ T5851] XFS (loop3): Unmount and run xfs_repair
[  249.827789][ T5990] CPU: 0 UID: 0 PID: 5990 Comm: syz.4.5 Tainted: G        W          6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  249.833568][ T5851] XFS (loop3): First 128 bytes of corrupted metadata buffer:
[  249.845418][ T5990] Tainted: [W]=WARN
[  249.845470][ T5990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  249.845549][ T5990] Call Trace:
[  249.853116][ T5851] 00000000: 58 41 47 49 00 00 00 01 00 00 00 00 00 00 20 00  XAGI.......... .
[  249.856764][ T5990]  <TASK>
[  249.856820][ T5990]  dump_stack_lvl+0x216/0x2d0
[  249.867062][ T5851] 00000010: 00 00 00 40 00 00 00 03 00 00 00 01 00 00 00 37  ...@...........7
[  249.870257][ T5990]  dump_stack+0x1e/0x24
[  249.879309][ T5851] 00000020: 00 00 24 40 ff ff ff ff ff ff ff ff ff ff ff ff  ..$@............
[  249.882163][ T5990]  should_fail_ex+0x748/0x7f0
[  249.882340][ T5990]  should_failslab+0x17f/0x210
[  249.882490][ T5990]  kmem_cache_alloc_noprof+0xee/0xe10
[  249.887213][ T5851] 00000030: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  249.896037][ T5990]  ? mm_alloc+0x59/0x190
[  249.896164][ T5990]  ? kmsan_get_metadata+0x13e/0x1c0
[  249.896314][ T5990]  mm_alloc+0x59/0x190
[  249.896440][ T5990]  alloc_bprm+0x53b/0x1490
[  249.896624][ T5990]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  249.896774][ T5990]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  249.896928][ T5990]  do_execveat_common+0x288/0xe00
[  249.897137][ T5990]  __x64_sys_execve+0xf4/0x130
[  249.897325][ T5990]  x64_sys_call+0x161f/0x3c30
[  249.897511][ T5990]  do_syscall_64+0xcd/0x1e0
[  249.897659][ T5990]  ? clear_bhb_loop+0x25/0x80
[  249.897843][ T5990]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.898026][ T5990] RIP: 0033:0x7fe6d0b85d29
[  249.898135][ T5990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  249.898259][ T5990] RSP: 002b:00007fe6d19d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  249.898401][ T5990] RAX: ffffffffffffffda RBX: 00007fe6d0d75fa0 RCX: 00007fe6d0b85d29
[  249.898508][ T5990] RDX: 0000000020019640 RSI: 0000000000000000 RDI: 0000000020000000
[  249.903612][ T5851] 00000040: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  249.911629][ T5990] RBP: 00007fe6d19d7090 R08: 0000000000000000 R09: 0000000000000000
[  249.911728][ T5990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  249.916540][ T5851] 00000050: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  249.921217][ T5990] R13: 0000000000000000 R14: 00007fe6d0d75fa0 R15: 00007ffc732c3ac8
[  249.921339][ T5990]  </TASK>
[  249.926815][ T5851] 00000060: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  249.944577][ T5986] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  249.946357][ T5851] 00000070: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  249.949650][ T5986] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING
[  249.954388][ T5977] XFS (loop3): metadata I/O error in "xfs_read_agi+0x246/0x570" at daddr 0x2 len 1 error 74
[  250.188363][ T5977] XFS (loop3): xfs_imap_lookup: xfs_ialloc_read_agi() returned error -117, agno 0
[  250.200868][ T5977] XFS (loop3): Failed to read root inode 0x2440, error 117
[  250.209413][ T5977] XFS (loop3): Uncorrected metadata errors detected; please run xfs_repair.
[  250.247049][ T5966] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  250.257834][ T5966] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  250.311383][ T5991] loop2: detected capacity change from 0 to 512
[  250.396471][ T5991] EXT4-fs: Ignoring removed orlov option
[  250.547393][ T5991] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  250.650766][ T5992] loop1: detected capacity change from 0 to 2048
[  250.753690][ T5844] cdc_ncm 1-1:1.0: MAC-Address: 42:42:42:42:42:42
[  250.760447][ T5844] cdc_ncm 1-1:1.0: dwNtbInMaxSize=16 is too small. Using 2048
[  250.768460][ T5844] cdc_ncm 1-1:1.0: setting rx_max = 2048
[  250.801439][ T5991] EXT4-fs (loop2): orphan cleanup on readonly fs
[  250.860841][ T5992] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  250.872497][ T5992] NILFS (loop1): segment count 8142508126285856831 exceeds upper limit (1152921504606846975 segments)
[  250.928130][ T5966] loop0: detected capacity change from 0 to 256
[  250.994689][ T5991] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3: bg 0: block 248: padding at end of block bitmap is not set
[  251.147087][ T5966] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[  251.170744][ T5991] Quota error (device loop2): write_blk: dquota write failed
[  251.179907][ T5991] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  251.190558][ T5991] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.3: Failed to acquire dquot type 1
[  251.440185][ T5991] EXT4-fs (loop2): 1 truncate cleaned up
[  251.447905][ T5844] cdc_ncm 1-1:1.0: setting tx_max = 88
[  251.464791][ T5995] loop4: detected capacity change from 0 to 4096
[  251.465580][ T5844] cdc_ncm 1-1:1.0 eth1: register 'cdc_ncm' at usb-dummy_hcd.0-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  251.591591][ T5991] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  251.696664][ T5991] syz.2.3 (5991) used greatest stack depth: 3888 bytes left
[  251.783022][ T5795] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  251.967284][ T5843] usb 3-1: USB disconnect, device number 2
[  252.157389][ T5844] usb 1-1: USB disconnect, device number 2
[  252.165120][ T5844] cdc_ncm 1-1:1.0 eth1: unregister 'cdc_ncm' usb-dummy_hcd.0-1, CDC NCM (NO ZLP)
[  252.526646][ T6013] netlink: 256 bytes leftover after parsing attributes in process `syz.3.12'.
[  252.536056][ T6013] netlink: 56 bytes leftover after parsing attributes in process `syz.3.12'.
[  252.760039][ T6016] netlink: 256 bytes leftover after parsing attributes in process `syz.2.13'.
[  252.769345][ T6016] netlink: 56 bytes leftover after parsing attributes in process `syz.2.13'.
[  253.709292][ T6013] loop3: detected capacity change from 0 to 32768
[  253.918985][ T6013] XFS (loop3): Mounting V5 filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 in no-recovery mode. Filesystem will be inconsistent.
[  253.929258][ T6016] loop2: detected capacity change from 0 to 32768
[  254.108086][ T5844] XFS (loop3): Metadata CRC error detected at xfs_agi_read_verify+0x2a3/0x300, xfs_agi block 0x2 
[  254.119553][ T5844] XFS (loop3): Unmount and run xfs_repair
[  254.125632][ T5844] XFS (loop3): First 128 bytes of corrupted metadata buffer:
[  254.133522][ T5844] 00000000: 58 41 47 49 00 00 00 01 00 00 00 00 00 00 20 00  XAGI.......... .
[  254.142697][ T5844] 00000010: 00 00 00 40 00 00 00 03 00 00 00 01 00 00 00 37  ...@...........7
[  254.151847][ T5844] 00000020: 00 00 24 40 ff ff ff ff ff ff ff ff ff ff ff ff  ..$@............
[  254.161033][ T5844] 00000030: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  254.170439][ T5844] 00000040: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  254.179661][ T5844] 00000050: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  254.188876][ T5844] 00000060: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  254.200744][ T5844] 00000070: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  254.210832][ T6013] XFS (loop3): metadata I/O error in "xfs_read_agi+0x246/0x570" at daddr 0x2 len 1 error 74
[  254.221524][ T6013] XFS (loop3): xfs_imap_lookup: xfs_ialloc_read_agi() returned error -117, agno 0
[  254.231409][ T6013] XFS (loop3): Failed to read root inode 0x2440, error 117
[  254.239105][ T6013] XFS (loop3): Uncorrected metadata errors detected; please run xfs_repair.
[  254.253747][ T5995] ntfs3(loop4): Failed to read $UpCase (-4).
[  254.350779][ T6016] XFS (loop2): Mounting V5 filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 in no-recovery mode. Filesystem will be inconsistent.
[  254.642775][ T5851] XFS (loop2): Metadata CRC error detected at xfs_agi_read_verify+0x2a3/0x300, xfs_agi block 0x2 
[  254.654225][ T5851] XFS (loop2): Unmount and run xfs_repair
[  254.660187][ T5851] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[  254.668023][ T5851] 00000000: 58 41 47 49 00 00 00 01 00 00 00 00 00 00 20 00  XAGI.......... .
[  254.677233][ T5851] 00000010: 00 00 00 40 00 00 00 03 00 00 00 01 00 00 00 37  ...@...........7
[  254.686470][ T5851] 00000020: 00 00 24 40 ff ff ff ff ff ff ff ff ff ff ff ff  ..$@............
[  254.695667][ T5851] 00000030: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  254.707403][ T5851] 00000040: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  254.717462][ T5851] 00000050: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  254.726735][ T5851] 00000060: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  254.735970][ T5851] 00000070: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  254.745565][ T6016] XFS (loop2): metadata I/O error in "xfs_read_agi+0x246/0x570" at daddr 0x2 len 1 error 74
[  254.756387][ T6016] XFS (loop2): xfs_imap_lookup: xfs_ialloc_read_agi() returned error -117, agno 0
[  254.766075][ T6016] XFS (loop2): Failed to read root inode 0x2440, error 117
[  254.773851][ T6016] XFS (loop2): Uncorrected metadata errors detected; please run xfs_repair.
[  254.794852][ T6019] loop0: detected capacity change from 0 to 4096
[  255.737736][ T6043] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  255.799017][ T6043] netlink: 60 bytes leftover after parsing attributes in process `syz.3.15'.
[  255.808804][ T6043] netlink: 60 bytes leftover after parsing attributes in process `syz.3.15'.
[  256.143069][ T6050] loop2: detected capacity change from 0 to 2048
[  256.390850][ T6048] loop4: detected capacity change from 0 to 128
[  256.427139][ T6060] loop1: detected capacity change from 0 to 256
[  256.515133][ T6048] hpfs: 
[  256.515133][ T6048] HPFS filesystem options:
[  256.515133][ T6048]       help              do not mount and display this text
[  256.515133][ T6048]       uid=xxx           set uid of files that don't have uid specified in eas
[  256.515133][ T6048]       gid=xxx           set gid of files that don't have gid specified in eas
[  256.515133][ T6048]       umask=xxx         set mode of files that don't have mode specified in eas
[  256.515133][ T6048]       case=lower        lowercase all files
[  256.515133][ T6048]       case=asis         do not lowercase files (default)
[  256.515133][ T6048]       check=none        no fs checks - kernel may crash on corrupted filesystem
[  256.515133][ T6048]       check=normal      do some checks - it should not crash (default)
[  256.515133][ T6048]       check=strict      do extra time-consuming checks, used for debugging
[  256.515133][ T6048]       errors=continue   continue on errors
[  256.515133][ T6048]       errors=remount-ro remount read-only if errors found (default)
[  256.515133][ T6048]       errors=panic      panic on errors
[  256.515133][ T6048]       chkdsk=no         do not mark fs for chkdsking even if there were errors
[  256.515133][ T6048]       chkdsk=errors     mark fs dirty if errors found (default)
[  256.515133][ T6048]       chkdsk=always     always mark fs dirty - used for debugging
[  256.515133][ T6048]       e
[  256.572235][ T6050]  loop2: p1 p2 p3
[  256.699223][    C1] vkms_vblank_simulate: vblank timer overrun
[  257.196649][ T6069] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  257.779744][ T5851] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  257.864444][ T6077] FAULT_INJECTION: forcing a failure.
[  257.864444][ T6077] name failslab, interval 1, probability 0, space 0, times 0
[  257.880955][ T6077] CPU: 1 UID: 0 PID: 6077 Comm: syz.3.20 Tainted: G        W          6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  257.893291][ T6077] Tainted: [W]=WARN
[  257.897266][ T6077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  257.907532][ T6077] Call Trace:
[  257.910985][ T6077]  <TASK>
[  257.914122][ T6077]  dump_stack_lvl+0x216/0x2d0
[  257.919099][ T6077]  dump_stack+0x1e/0x24
[  257.923525][ T6077]  should_fail_ex+0x748/0x7f0
[  257.928496][ T6077]  should_failslab+0x17f/0x210
[  257.933524][ T6077]  __kmalloc_noprof+0x176/0x1230
[  257.938751][ T6077]  ? kmsan_get_metadata+0x13e/0x1c0
[  257.944214][ T6077]  ? tomoyo_encode+0x5f8/0xa40
[  257.949272][ T6077]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  257.955342][ T6077]  ? kmsan_get_metadata+0x13e/0x1c0
[  257.960802][ T6077]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  257.966885][ T6077]  tomoyo_encode+0x5f8/0xa40
[  257.971798][ T6077]  tomoyo_realpath_from_path+0x9dd/0xaa0
[  257.977771][ T6077]  tomoyo_path_number_perm+0x1d9/0x8f0
[  257.983523][ T6077]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[  257.990166][ T6077]  ? kmsan_get_metadata+0x13e/0x1c0
[  257.995626][ T6077]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  258.001731][ T6077]  tomoyo_file_ioctl+0x3f/0x50
[  258.006759][ T6077]  security_file_ioctl+0x145/0x590
[  258.012155][ T6077]  __se_sys_ioctl+0xd0/0x440
[  258.017036][ T6077]  __x64_sys_ioctl+0x96/0xe0
[  258.021912][ T6077]  x64_sys_call+0x19f0/0x3c30
[  258.026898][ T6077]  do_syscall_64+0xcd/0x1e0
[  258.031659][ T6077]  ? clear_bhb_loop+0x25/0x80
[  258.036653][ T6077]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.042856][ T6077] RIP: 0033:0x7f6b1c985d29
[  258.047496][ T6077] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  258.067384][ T6077] RSP: 002b:00007f6b1a7f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  258.076090][ T6077] RAX: ffffffffffffffda RBX: 00007f6b1cb76080 RCX: 00007f6b1c985d29
[  258.084336][ T6077] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005
[  258.092540][ T6077] RBP: 00007f6b1a7f6090 R08: 0000000000000000 R09: 0000000000000000
[  258.100744][ T6077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  258.108948][ T6077] R13: 0000000000000000 R14: 00007f6b1cb76080 R15: 00007ffe6bf592b8
[  258.117169][ T6077]  </TASK>
[  258.121343][ T6077] ERROR: Out of memory at tomoyo_realpath_from_path.
[  258.229294][ T5851] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  258.239356][ T5851] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  258.299427][ T5950] udevd[5950]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[  258.310580][ T5999] udevd[5999]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  258.341524][ T5951] udevd[5951]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  258.436808][ T5851] usb 1-1: config 0 descriptor??
[  258.448284][ T6076] loop2: detected capacity change from 0 to 4096
[  258.484695][ T6076] ntfs3: Unknown parameter '‹>a%¾@x×ÅòX�ä'
[  258.498117][ T5851] cp210x 1-1:0.0: cp210x converter detected
[  258.782573][ T5851] cp210x 1-1:0.0: failed to get vendor val 0x370b size 1: -32
[  258.790605][ T5851] cp210x 1-1:0.0: querying part number failed
[  258.934270][ T5851] usb 1-1: cp210x converter now attached to ttyUSB0
[  259.392512][    T8] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  259.569532][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  259.581045][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  259.593406][    T8] usb 5-1: New USB device found, idVendor=1b1c, idProduct=0c10, bcdDevice= 0.00
[  259.604294][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  259.658123][ T5843] usb 1-1: USB disconnect, device number 3
[  259.885164][    T8] usb 5-1: config 0 descriptor??
[  260.015504][ T5843] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  260.034383][ T5843] cp210x 1-1:0.0: device disconnected
[  260.145801][ T5851] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  260.255136][    T8] usbhid 5-1:0.0: can't add hid device: -71
[  260.262736][    T8] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  260.284967][ T6101] FAULT_INJECTION: forcing a failure.
[  260.284967][ T6101] name failslab, interval 1, probability 0, space 0, times 0
[  260.298528][ T6101] CPU: 0 UID: 0 PID: 6101 Comm: syz.0.27 Tainted: G        W          6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  260.310862][ T6101] Tainted: [W]=WARN
[  260.314864][ T6101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  260.325158][ T6101] Call Trace:
[  260.328624][ T6101]  <TASK>
[  260.331737][ T6101]  dump_stack_lvl+0x216/0x2d0
[  260.336736][ T6101]  dump_stack+0x1e/0x24
[  260.341204][ T6101]  should_fail_ex+0x748/0x7f0
[  260.346205][ T6101]  should_failslab+0x17f/0x210
[  260.351258][ T6101]  kmem_cache_alloc_node_noprof+0xf4/0xe00
[  260.357410][ T6101]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[  260.364070][ T6101]  ? __alloc_skb+0x1e9/0x7b0
[  260.368948][ T6101]  ? kmsan_get_metadata+0x13e/0x1c0
[  260.374452][ T6101]  __alloc_skb+0x1e9/0x7b0
[  260.379158][ T6101]  tcp_stream_alloc_skb+0x4d/0x5c0
[  260.384584][ T6101]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  260.390689][ T6101]  tcp_sendmsg_locked+0x190e/0x6e60
[  260.396241][ T6101]  ? tcp_sendmsg_locked+0x2f1/0x6e60
[  260.401838][ T6101]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[  260.408493][ T6101]  ? kmsan_get_metadata+0x13e/0x1c0
[  260.413980][ T6101]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[  260.420660][ T6101]  ? __pfx_tcp_sendmsg+0x10/0x10
[  260.424531][ T5851] usb 4-1: Using ep0 maxpacket: 16
[  260.425838][ T6101]  tcp_sendmsg+0x49/0x90
[  260.435510][ T6101]  ? __pfx_tcp_sendmsg+0x10/0x10
[  260.440756][ T6101]  ? __pfx_tcp_sendmsg+0x10/0x10
[  260.446006][ T6101]  inet_sendmsg+0x142/0x280
[  260.450784][ T6101]  ? __pfx_inet_sendmsg+0x10/0x10
[  260.456095][ T6101]  __sock_sendmsg+0x267/0x380
[  260.461100][ T6101]  __sys_sendto+0x594/0x750
[  260.465963][ T6101]  ? kmsan_get_metadata+0x13e/0x1c0
[  260.471440][ T6101]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[  260.478119][ T6101]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  260.484531][ T6101]  __x64_sys_sendto+0x125/0x1d0
[  260.489674][ T6101]  x64_sys_call+0x346a/0x3c30
[  260.494667][ T6101]  do_syscall_64+0xcd/0x1e0
[  260.499441][ T6101]  ? clear_bhb_loop+0x25/0x80
[  260.504421][ T6101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.510614][ T6101] RIP: 0033:0x7f5553385d29
[  260.515256][ T6101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  260.535149][ T6101] RSP: 002b:00007f55541b9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  260.543867][ T6101] RAX: ffffffffffffffda RBX: 00007f5553575fa0 RCX: 00007f5553385d29
[  260.552099][ T6101] RDX: ffffffffffffff94 RSI: 0000000020000000 RDI: 0000000000000003
[  260.560398][ T6101] RBP: 00007f55541b9090 R08: 0000000000000000 R09: 0000000000000000
[  260.568634][ T6101] R10: 000000000000000b R11: 0000000000000246 R12: 0000000000000001
[  260.576879][ T6101] R13: 0000000000000000 R14: 00007f5553575fa0 R15: 00007ffe7b53e688
[  260.585110][ T6101]  </TASK>
[  260.636943][ T5851] usb 4-1: config 0 has an invalid interface number: 8 but max is 0
[  260.648621][ T5851] usb 4-1: config 0 has no interface number 0
[  260.656703][ T5851] usb 4-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 248, changing to 11
[  260.668542][ T5851] usb 4-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid maxpacket 33403, setting to 1024
[  260.833791][ T5851] usb 4-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  260.843667][ T5851] usb 4-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  260.854338][ T5851] usb 4-1: Product: syz
[  260.858748][ T5851] usb 4-1: SerialNumber: syz
[  260.875869][    T8] usb 5-1: USB disconnect, device number 2
[  261.009865][ T5851] usb 4-1: config 0 descriptor??
[  261.028187][ T6104] evm: overlay not supported
[  261.048108][ T5851] cm109 4-1:0.8: invalid payload size 1024, expected 4
[  261.065335][ T5851] input: CM109 USB driver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.8/input/input5
[  261.349693][ T6093] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  261.363909][ T6093] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  261.516983][ T6108] loop4: detected capacity change from 0 to 1
[  261.589326][ T6108] syz.4.29: attempt to access beyond end of device
[  261.589326][ T6108] loop4: rw=2048, sector=0, nr_sectors = 8 limit=1
[  261.603149][ T6108] SQUASHFS error: Failed to read block 0x0: -5
[  261.609680][ T6108] unable to read squashfs_super_block
[  261.696161][    C1] cm109 4-1:0.8: cm109_urb_irq_callback: urb status -71
[  261.703473][    C1] ------------[ cut here ]------------
[  261.709169][    C1] URB ffff88804ff23c00 submitted while active
[  261.718374][    C1] WARNING: CPU: 1 PID: 6092 at drivers/usb/core/urb.c:379 usb_submit_urb+0x223/0x2350
[  261.728361][    C1] Modules linked in:
[  261.732536][    C1] CPU: 1 UID: 0 PID: 6092 Comm: syz.3.25 Tainted: G        W          6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  261.744924][    C1] Tainted: [W]=WARN
[  261.748947][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  261.759272][    C1] RIP: 0010:usb_submit_urb+0x223/0x2350
[  261.765185][    C1] Code: 00 00 00 00 49 c7 86 68 09 00 00 00 00 00 00 49 c7 86 80 0c 00 00 00 00 00 00 48 c7 c7 63 7d 26 91 4c 89 fe e8 3e c6 ac f7 90 <0f> 0b 90 90 b8 f0 ff ff ff e9 9b fe ff ff 44 89 ef 48 89 8d 48 ff
[  261.785172][    C1] RSP: 0018:ffff88813fd05768 EFLAGS: 00010087
[  261.791568][    C1] RAX: ffffffff815df4f9 RBX: 0000000000000000 RCX: 0000000000040000
[  261.799843][    C1] RDX: ffffc90001602000 RSI: 0000000000001eb1 RDI: 0000000000001eb2
[  261.808090][    C1] RBP: ffff88813fd05878 R08: ffffffff815df4ef R09: 0000000000000000
[  261.816335][    C1] R10: ffff88823fc64a90 R11: 0000000000000004 R12: 0000000000000820
[  261.824679][    C1] R13: 0000000000000000 R14: ffff88813fda1c80 R15: ffff88804ff23c00
[  261.832908][    C1] FS:  0000555586dd0500(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[  261.842127][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  261.848961][    C1] CR2: 00007f55540a56c0 CR3: 000000004c15c000 CR4: 00000000003526f0
[  261.857184][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  261.865410][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  261.873641][    C1] Call Trace:
[  261.877110][    C1]  <IRQ>
[  261.880145][    C1]  ? show_trace_log_lvl+0x268/0x3d0
[  261.885688][    C1]  ? cm109_urb_irq_callback+0xf79/0x1390
[  261.891704][    C1]  ? show_regs+0xb4/0xe0
[  261.896298][    C1]  ? __warn+0x2c7/0x780
[  261.900789][    C1]  ? usb_submit_urb+0x223/0x2350
[  261.906017][    C1]  ? report_bug+0x929/0xbd0
[  261.910836][    C1]  ? usb_submit_urb+0x223/0x2350
[  261.916080][    C1]  ? handle_bug+0x6d/0x90
[  261.920701][    C1]  ? exc_invalid_op+0x1f/0x50
[  261.925684][    C1]  ? asm_exc_invalid_op+0x1f/0x30
[  261.931048][    C1]  ? __warn_printk+0x43f/0x470
[  261.936156][    C1]  ? __warn_printk+0x449/0x470
[  261.941241][    C1]  ? usb_submit_urb+0x223/0x2350
[  261.946486][    C1]  ? usb_submit_urb+0x222/0x2350
[  261.951703][    C1]  ? kmsan_get_metadata+0x13e/0x1c0
[  261.957184][    C1]  ? kmsan_get_metadata+0x13e/0x1c0
[  261.962680][    C1]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[  261.969379][    C1]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  261.975836][    C1]  ? kmsan_get_metadata+0x13e/0x1c0
[  261.981362][    C1]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  261.987492][    C1]  cm109_urb_irq_callback+0xf79/0x1390
[  261.993317][    C1]  ? __pfx_cm109_urb_irq_callback+0x10/0x10
[  261.999628][    C1]  __usb_hcd_giveback_urb+0x572/0x840
[  262.005352][    C1]  ? kmsan_get_metadata+0x13e/0x1c0
[  262.010850][    C1]  usb_hcd_giveback_urb+0x157/0x720
[  262.016393][    C1]  dummy_timer+0xda2/0x6bd0
[  262.021206][    C1]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  262.027788][    C1]  ? kmsan_get_metadata+0x13e/0x1c0
[  262.033275][    C1]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  262.039397][    C1]  ? kmsan_get_metadata+0x13e/0x1c0
[  262.044885][    C1]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  262.051038][    C1]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  262.057141][    C1]  ? rb_erase+0x20e/0x23b0
[  262.061939][    C1]  ? __pfx_dummy_timer+0x10/0x10
[  262.067190][    C1]  __hrtimer_run_queues+0x564/0xe40
[  262.072712][    C1]  hrtimer_run_softirq+0x18f/0x750
[  262.078124][    C1]  ? tasklet_action_common+0x56/0xd60
[  262.083844][    C1]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  262.089984][    C1]  ? __pfx_hrtimer_run_softirq+0x10/0x10
[  262.095927][    C1]  handle_softirqs+0x1a0/0x7c0
[  262.101040][    C1]  ? irqtime_account_irq+0x19d/0x280
[  262.106676][    C1]  __irq_exit_rcu+0x68/0x180
[  262.111530][    C1]  irq_exit_rcu+0x12/0x20
[  262.116117][    C1]  sysvec_apic_timer_interrupt+0x83/0x90
[  262.122081][    C1]  </IRQ>
[  262.125187][    C1]  <TASK>
[  262.128293][    C1]  asm_sysvec_apic_timer_interrupt+0x1f/0x30
[  262.134653][    C1] RIP: 0010:_raw_spin_unlock_irqrestore+0x33/0x60
[  262.141403][    C1] Code: 56 53 49 89 f6 48 89 fb e8 2a e1 66 f2 48 89 df e8 32 d3 66 f2 c6 00 00 c6 03 00 41 f7 c6 00 02 00 00 74 01 fb be 04 00 00 00 <48> c7 c7 c8 5f 0a 00 e8 41 d5 66 f2 65 ff 0d 62 f1 1c 70 74 09 5b
[  262.161312][    C1] RSP: 0018:ffff88805088f8c8 EFLAGS: 00000206
[  262.167674][    C1] RAX: ffff888237ef6c70 RBX: ffffffff946fdc70 RCX: 00000002246efc70
[  262.175921][    C1] RDX: ffff8882246efc70 RSI: 0000000000000004 RDI: ffffffff946fdc70
[  262.184152][    C1] RBP: ffff88805088f8d8 R08: ffffea000000000f R09: 0000000000000000
[  262.192380][    C1] R10: 0000000000000000 R11: ffffffff817703c0 R12: ffff88804fef0b38
[  262.200601][    C1] R13: 0000000000000000 R14: 0000000000000292 R15: 0000000000000000
[  262.208823][    C1]  ? __pfx_check_preempt_wakeup_fair+0x10/0x10
[  262.215377][    C1]  ? _raw_spin_unlock_irqrestore+0x1e/0x60
[  262.221503][    C1]  usb_hcd_poll_rh_status+0x5a6/0x9f0
[  262.227206][    C1]  dummy_pullup+0x287/0x320
[  262.231995][    C1]  ? __pfx_dummy_pullup+0x10/0x10
[  262.237285][    C1]  usb_gadget_disconnect_locked+0x1f8/0x5b0
[  262.243480][    C1]  gadget_unbind_driver+0xe6/0x5f0
[  262.248901][    C1]  ? __pfx_gadget_unbind_driver+0x10/0x10
[  262.254922][    C1]  device_release_driver_internal+0x58a/0x990
[  262.261304][    C1]  driver_detach+0x360/0x540
[  262.266181][    C1]  bus_remove_driver+0x465/0x500
[  262.271412][    C1]  driver_unregister+0x8d/0x100
[  262.276571][    C1]  ? __pfx_gadget_unbind+0x10/0x10
[  262.281989][    C1]  usb_gadget_unregister_driver+0x55/0xa0
[  262.288022][    C1]  raw_release+0x1bc/0x400
[  262.292749][    C1]  ? __pfx_raw_release+0x10/0x10
[  262.297997][    C1]  __fput+0x32c/0x1120
[  262.302363][    C1]  ? __pfx_____fput+0x10/0x10
[  262.307310][    C1]  ____fput+0x25/0x30
[  262.311590][    C1]  task_work_run+0x268/0x310
[  262.316467][    C1]  syscall_exit_to_user_mode+0xbf/0x160
[  262.322332][    C1]  do_syscall_64+0xda/0x1e0
[  262.327097][    C1]  ? clear_bhb_loop+0x25/0x80
[  262.332081][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.338399][    C1] RIP: 0033:0x7f6b1c985d29
[  262.343042][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  262.362930][    C1] RSP: 002b:00007ffe6bf59418 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  262.371643][    C1] RAX: 0000000000000000 RBX: 000000000003f527 RCX: 00007f6b1c985d29
[  262.379843][    C1] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  262.388042][    C1] RBP: 00007f6b1cb77ba0 R08: 0000000000000001 R09: 00007ffe6bf5970f
[  262.396247][    C1] R10: 00007f6b1c800000 R11: 0000000000000246 R12: 000000000003fe4b
[  262.404459][    C1] R13: 00007f6b1cb75fa0 R14: 0000000000000032 R15: ffffffffffffffff
[  262.412684][    C1]  </TASK>
[  262.415872][    C1] ---[ end trace 0000000000000000 ]---
[  262.421541][    C1] cm109 4-1:0.8: cm109_submit_ctl: usb_submit_urb (urb_ctl) failed -16
[  262.430547][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  262.448534][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  262.458476][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  262.466049][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  262.473598][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  262.481132][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  262.490915][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  262.499097][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  262.506749][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  262.514346][    C1] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71
[  262.521923][    C1] cm109 4-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  262.531230][ T5851] usb 4-1: USB disconnect, device number 2
[  262.547386][ T6114] FAULT_INJECTION: forcing a failure.
[  262.547386][ T6114] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  262.562405][ T6114] CPU: 1 UID: 0 PID: 6114 Comm: syz.2.30 Tainted: G        W          6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  262.574733][ T6114] Tainted: [W]=WARN
[  262.578724][ T6114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  262.589020][ T6114] Call Trace:
[  262.592482][ T6114]  <TASK>
[  262.595596][ T6114]  dump_stack_lvl+0x216/0x2d0
[  262.600590][ T6114]  dump_stack+0x1e/0x24
[  262.605044][ T6114]  should_fail_ex+0x748/0x7f0
[  262.610055][ T6114]  should_fail+0x2a/0x40
[  262.614718][ T6114]  should_fail_usercopy+0x2e/0x40
[  262.620078][ T6114]  _copy_from_user+0x35/0x110
[  262.625082][ T6114]  kstrtouint_from_user+0x75/0x140
[  262.630490][ T6114]  ? proc_fail_nth_write+0x43/0x2e0
[  262.635983][ T6114]  ? vfs_write+0x48a/0x1540
[  262.640793][ T6114]  proc_fail_nth_write+0x62/0x2e0
[  262.646118][ T6114]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  262.652047][ T6114]  vfs_write+0x48a/0x1540
[  262.656674][ T6114]  ? stack_depot_save_flags+0x2c/0x750
[  262.662462][ T6114]  ? kmsan_get_metadata+0x13e/0x1c0
[  262.667956][ T6114]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[  262.674635][ T6114]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  262.680719][ T6114]  ksys_write+0x240/0x4b0
[  262.685366][ T6114]  ? kmsan_get_metadata+0x13e/0x1c0
[  262.690855][ T6114]  __x64_sys_write+0x93/0xe0
[  262.695762][ T6114]  x64_sys_call+0x3161/0x3c30
[  262.700763][ T6114]  do_syscall_64+0xcd/0x1e0
[  262.705540][ T6114]  ? clear_bhb_loop+0x25/0x80
[  262.710559][ T6114]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  262.716772][ T6114] RIP: 0033:0x7fc30bf847df
[  262.721435][ T6114] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  262.741366][ T6114] RSP: 002b:00007fc30ce48030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  262.750084][ T6114] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fc30bf847df
[  262.758299][ T6114] RDX: 0000000000000001 RSI: 00007fc30ce480a0 RDI: 0000000000000006
[  262.766495][ T6114] RBP: 00007fc30ce48090 R08: 0000000000000000 R09: 0000000000000000
[  262.774692][ T6114] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  262.782889][ T6114] R13: 0000000000000000 R14: 00007fc30c176080 R15: 00007ffcd99551b8
[  262.791117][ T6114]  </TASK>
[  262.949083][ T5851] cm109 4-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  262.995118][ T6116] loop4: detected capacity change from 0 to 1024
[  263.011586][ T6116] EXT4-fs: Ignoring removed nobh option
[  263.020663][ T6116] EXT4-fs: Ignoring removed bh option
[  263.432963][ T6116] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  263.656123][ T6127] loop2: detected capacity change from 0 to 1024
[  263.665921][ T6127] EXT4-fs: Ignoring removed nobh option
[  263.671768][ T6127] EXT4-fs: Ignoring removed bh option
[  264.049187][ T6116] EXT4-fs (loop4): shut down requested (0)
[  264.124919][ T6127] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  264.129088][ T6128] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4115: comm syz.4.32: Allocating blocks 481-513 which overlap fs metadata
[  264.383301][ T5851] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  264.825825][ T6150] capability: warning: `syz.0.37' uses deprecated v2 capabilities in a way that may be insecure
[  264.849525][ T6127] EXT4-fs (loop2): shut down requested (0)
[  264.917291][ T6153] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4115: comm syz.2.33: Allocating blocks 481-513 which overlap fs metadata
[  264.932567][ T5851] usb 4-1: Using ep0 maxpacket: 32
[  265.168940][ T5851] usb 4-1: config 1 interface 0 altsetting 7 endpoint 0x1 has invalid maxpacket 1032, setting to 1024
[  265.180908][ T5851] usb 4-1: config 1 interface 0 altsetting 7 bulk endpoint 0x1 has invalid maxpacket 1024
[  265.191343][ T5851] usb 4-1: config 1 interface 0 altsetting 7 bulk endpoint 0x82 has invalid maxpacket 1024
[  265.201790][ T5851] usb 4-1: config 1 interface 0 has no altsetting 0
[  265.290640][ T5851] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  265.301722][ T5851] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  265.310998][ T5851] usb 4-1: Product: 뉃ᙀ뢘몰�὇뉆ﾳ腙턕ﶵ훠凸쵻�떊䄗㢕
[  265.320223][ T5851] usb 4-1: Manufacturer: 쫎谌舰�헆눾ɡ�⠟�璕ﹶ飋浓걾�䥀�溺蒈膄譢⎅︥첊�驢⌨�ɼ柴鄸��缄�ס悄뺼賕턛译�炲�ᓧꀴុ첫溟q঩��枴�뼯䗤镀᛬䚴쵕Ⳝ肷隸ꥆɬ湫�箈쪡ߺ塨೺嗵౹㾉츖삧﫶霅
[  265.356064][ T5851] usb 4-1: SerialNumber: syz
[  265.634549][ T5787] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  265.693924][ T6131] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  265.705407][ T6131] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  265.892407][ T5795] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  266.465045][ T6175] netlink: 24 bytes leftover after parsing attributes in process `syz.2.41'.
[  267.170997][ T6174] loop0: detected capacity change from 0 to 32768
[  267.200906][ T6174] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.42 (6174)
[  267.328298][ T6174] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  267.339291][ T6174] BTRFS info (device loop0): using sha256 (sha256-generic) checksum algorithm
[  267.350843][ T6174] BTRFS info (device loop0): using free-space-tree
[  267.580232][ T6189] loop1: detected capacity change from 0 to 128
[  267.770095][    T8] usb 3-1: new full-speed USB device number 3 using dummy_hcd
[  267.870345][ T6185] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  268.075326][ T5851] usblp 4-1:1.0: usblp0: USB Bidirectional printer dev 3 if 0 alt 7 proto 2 vid 0x0525 pid 0xA4A8
[  268.085950][ T6203] loop4: detected capacity change from 0 to 256
[  268.150486][ T5851] usb 4-1: USB disconnect, device number 3
[  268.170135][    T8] usb 3-1: not running at top speed; connect to a high speed hub
[  268.183639][ T5851] usblp0: removed
[  268.200892][    T8] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[  268.202242][ T6203] exfat: Deprecated parameter 'utf8'
[  268.212783][    T8] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  268.237873][    T8] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[  268.349165][ T6174] BTRFS info (device loop0): rebuilding free space tree
[  268.408883][    T8] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  268.419380][    T8] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  268.436132][    T8] usb 3-1: Product: syz
[  268.440789][    T8] usb 3-1: Manufacturer: 脚�䆄鑊鋊១வ䈠�㪡梠둂ꉩ⌜鎊�ↄ汓鎤是�耉䒢Ⲷ底豎㑋׌僺院騞
[  268.456942][    T8] usb 3-1: SerialNumber: syz
[  268.461439][ T6203] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d)
[  268.590215][ T6186] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  268.641126][ T5786] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  268.693795][ T6189] fscrypt: Error allocating hmac(sha512): -2
[  269.599728][    T8] cdc_ncm 3-1:1.0: bind() failure
[  269.619691][    T8] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  269.627865][    T8] cdc_ncm 3-1:1.1: bind() failure
[  269.732349][ T5843] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  269.903366][    T8] usb 3-1: USB disconnect, device number 3
[  269.947817][ T5843] usb 5-1: Using ep0 maxpacket: 16
[  269.997658][ T6213] syz.3.46 uses obsolete (PF_INET,SOCK_PACKET)
[  270.113330][ T5843] usb 5-1: config 1 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  270.126667][ T5843] usb 5-1: config 1 interface 0 has no altsetting 0
[  270.366342][ T5843] usb 5-1: New USB device found, idVendor=0eef, idProduct=73f7, bcdDevice= 0.40
[  270.381492][ T5843] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  270.391652][ T5843] usb 5-1: Product: �䲨ﶦ῞經鼎酴뛬衈�䞺�抧처繫ɯ젅⡮㭔䈇⩈셒蟉웻ᓂ澖䓔擌첓≠樑䩊颎ဠ��㊨梠㿳煰䔋貭궓㽡䢋⤕��脙짋㞅ᘕ�臗蘽਩㻃ꨱ䄪颕幅඙�犦暧簢웲ꪯ
[  270.416164][ T5843] usb 5-1: Manufacturer: à°„
[  270.421042][ T5843] usb 5-1: SerialNumber: ꎻ㤔뵒㼞�歲ꗻ�袤욯곴鼷诽릳뎘穸熣숞�떽㽉鳥ᱟ廃뚑朴怨ž�ტ蜶㘰᧺᎚ѹ�뜪皼៮�줽ⷃ턪拖ṫ㋭ﻠ⤻俔ᖸ�ﻬ甉뮑찌汤臖䴥〉ኊ刷ꄅ럮׆�蠴觌ᒤ䉋㢠喈᥽碑梄綱ޫ踎㉦逥騴�䋒䢿ᩃ玵䫪�딼쮹쇻듨�煰㣻��鷊⟥ꕽ㫌
[  270.583871][ T6220] loop2: detected capacity change from 0 to 256
[  270.653381][ T6220] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  270.758013][ T6220] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=512, location=512
[  270.768384][ T6220] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[  270.776473][ T6220] UDF-fs: Scanning with blocksize 512 failed
[  270.967563][ T6220] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  270.986851][   T29] audit: type=1326 audit(1736642201.068:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6202 comm="syz.4.44" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6d0b85d29 code=0x7ffc0000
[  271.008134][ T6222] loop1: detected capacity change from 0 to 1024
[  271.010764][   T29] audit: type=1326 audit(1736642201.068:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6202 comm="syz.4.44" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fe6d0b85d29 code=0x7ffc0000
[  271.038552][   T29] audit: type=1326 audit(1736642201.068:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6202 comm="syz.4.44" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6d0b85d29 code=0x7ffc0000
[  271.061727][   T29] audit: type=1326 audit(1736642201.078:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6202 comm="syz.4.44" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe6d0b85d29 code=0x7ffc0000
[  271.076848][ T6222] EXT4-fs: Ignoring removed nobh option
[  271.084574][   T29] audit: type=1326 audit(1736642201.148:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6202 comm="syz.4.44" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6d0b85d29 code=0x7ffc0000
[  271.084778][   T29] audit: type=1326 audit(1736642201.148:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6202 comm="syz.4.44" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6d0b85d29 code=0x7ffc0000
[  271.148156][ T6222] EXT4-fs: Ignoring removed bh option
[  271.262491][ T6220] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  271.487492][ T6222] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  271.492743][   T29] audit: type=1326 audit(1736642201.258:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6202 comm="syz.4.44" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe6d0b85d29 code=0x7ffc0000
[  271.529884][   T29] audit: type=1326 audit(1736642201.258:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6202 comm="syz.4.44" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6d0b85d29 code=0x7ffc0000
[  271.552618][   T29] audit: type=1326 audit(1736642201.298:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6202 comm="syz.4.44" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe6d0b85d29 code=0x7ffc0000
[  271.575180][   T29] audit: type=1326 audit(1736642201.298:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6202 comm="syz.4.44" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6d0b85d29 code=0x7ffc0000
[  271.788730][ T6222] EXT4-fs (loop1): shut down requested (0)
[  271.837093][ T5843] usbhid 5-1:1.0: can't add hid device: -71
[  271.844057][ T5843] usbhid 5-1:1.0: probe with driver usbhid failed with error -71
[  271.883864][ T6230] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4115: comm syz.1.50: Allocating blocks 481-513 which overlap fs metadata
[  271.898916][ T5843] usb 5-1: USB disconnect, device number 3
[  271.945795][ T5950] udevd[5950]: failed to send result of seq 10902 to main daemon: Connection refused
[  272.283417][ T5782] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  272.691697][ T6246] netlink: 8 bytes leftover after parsing attributes in process `syz.2.56'.
[  272.701475][ T6246] netlink: 'syz.2.56': attribute type 3 has an invalid length.
[  272.734226][ T6246] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  272.743525][ T6246] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  272.752825][ T6246] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  272.761971][ T6246] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  272.762322][ T5851] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  273.051384][ T5851] usb 4-1: Using ep0 maxpacket: 8
[  273.077007][ T5851] usb 4-1: config 0 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 240, changing to 11
[  273.088689][ T5851] usb 4-1: config 0 interface 0 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0
[  273.098891][ T5851] usb 4-1: config 0 interface 0 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  273.112237][ T5851] usb 4-1: config 0 interface 0 has no altsetting 0
[  273.119189][ T5851] usb 4-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00
[  273.128650][ T5851] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  273.168285][ T5851] usb 4-1: config 0 descriptor??
[  273.196114][ T5844] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  273.369374][ T5844] usb 1-1: device descriptor read/64, error -71
[  273.556108][ T6259] loop2: detected capacity change from 0 to 8
[  273.589623][ T6257] loop1: detected capacity change from 0 to 256
[  273.599040][ T6261] netlink: 8 bytes leftover after parsing attributes in process `syz.4.63'.
[  273.603801][ T6257] msdos: Bad value for 'fmask'
[  273.614299][ T5844] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  273.655028][ T5851] nintendo 0003:057E:200E.0001: unknown main item tag 0x0
[  273.662626][ T5851] nintendo 0003:057E:200E.0001: unknown main item tag 0x0
[  273.711668][ T6257] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  273.734443][ T6257] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  273.736142][ T5851] nintendo 0003:057E:200E.0001: hidraw0: USB HID v80.04 Device [HID 057e:200e] on usb-dummy_hcd.3-1/input0
[  273.822789][ T5844] usb 1-1: device descriptor read/64, error -71
[  273.873817][ T6234] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  273.883130][ T6234] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  273.904244][ T5851] nintendo 0003:057E:200E.0001: Failed charging grip handshake
[  273.912274][ T5851] nintendo 0003:057E:200E.0001: Failed to initialize controller; ret=-110
[  273.933003][ T5844] usb usb1-port1: attempt power cycle
[  273.937059][ T6234] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  273.948005][ T6234] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  273.963055][ T5851] nintendo 0003:057E:200E.0001: probe - fail = -110
[  273.970563][ T5851] nintendo 0003:057E:200E.0001: probe with driver nintendo failed with error -110
[  274.048315][ T6264] loop4: detected capacity change from 0 to 1024
[  274.070908][ T6264] EXT4-fs: Ignoring removed nobh option
[  274.077260][ T6264] EXT4-fs: Ignoring removed bh option
[  274.102772][ T5843] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  274.130837][ T6264] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  274.187777][ T6270] netlink: 28 bytes leftover after parsing attributes in process `syz.2.66'.
[  274.246359][ T6264] EXT4-fs (loop4): shut down requested (0)
[  274.272154][ T5844] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  274.302134][ T5843] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  274.302617][ T5844] usb 1-1: device descriptor read/8, error -71
[  274.312813][ T5843] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  274.360478][ T5843] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  274.375673][ T5843] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  274.385887][ T5843] usb 2-1: SerialNumber: syz
[  274.468963][ T5787] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  274.566205][ T5844] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  274.634357][ T5844] usb 1-1: device descriptor read/8, error -71
[  274.735688][ T5851] usb 4-1: USB disconnect, device number 4
[  274.754146][ T5844] usb usb1-port1: unable to enumerate USB device
[  275.022729][ T6274] loop3: detected capacity change from 0 to 16
[  275.086969][ T6274] erofs (device loop3): mounted with root inode @ nid 36.
[  275.138089][ T6272] warning: `syz.2.67' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  275.386242][ T6257] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  275.403158][ T6257] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  275.564208][ T5843] usb 2-1: 0:2 : does not exist
[  275.569428][ T5843] usb 2-1: unit 5: unexpected type 0x0a
[  275.826591][ T5843] usb 2-1: USB disconnect, device number 3
[  276.229621][ T6288] FAULT_INJECTION: forcing a failure.
[  276.229621][ T6288] name failslab, interval 1, probability 0, space 0, times 0
[  276.242734][ T6288] CPU: 0 UID: 0 PID: 6288 Comm: syz.0.73 Tainted: G        W          6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  276.255082][ T6288] Tainted: [W]=WARN
[  276.259072][ T6288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  276.269376][ T6288] Call Trace:
[  276.272846][ T6288]  <TASK>
[  276.275976][ T6288]  dump_stack_lvl+0x216/0x2d0
[  276.280988][ T6288]  dump_stack+0x1e/0x24
[  276.285433][ T6288]  should_fail_ex+0x748/0x7f0
[  276.290444][ T6288]  should_failslab+0x17f/0x210
[  276.295503][ T6288]  __kmalloc_noprof+0x176/0x1230
[  276.300736][ T6288]  ? kfree+0x20/0xdb0
[  276.305000][ T6288]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  276.311079][ T6288]  ? tomoyo_realpath_from_path+0x104/0xaa0
[  276.317206][ T6288]  ? kmsan_get_metadata+0x13e/0x1c0
[  276.322680][ T6288]  tomoyo_realpath_from_path+0x104/0xaa0
[  276.328653][ T6288]  ? __srcu_read_lock+0x76/0xd0
[  276.333766][ T6288]  tomoyo_path_number_perm+0x1d9/0x8f0
[  276.339552][ T6288]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[  276.346227][ T6288]  ? kmsan_get_metadata+0x13e/0x1c0
[  276.351725][ T6288]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  276.357840][ T6288]  tomoyo_file_ioctl+0x3f/0x50
[  276.362914][ T6288]  security_file_ioctl+0x145/0x590
[  276.368357][ T6288]  __se_sys_ioctl+0xd0/0x440
[  276.373267][ T6288]  __x64_sys_ioctl+0x96/0xe0
[  276.378176][ T6288]  x64_sys_call+0x19f0/0x3c30
[  276.383184][ T6288]  do_syscall_64+0xcd/0x1e0
[  276.387954][ T6288]  ? clear_bhb_loop+0x25/0x80
[  276.392952][ T6288]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  276.399177][ T6288] RIP: 0033:0x7f5553385d29
[  276.403832][ T6288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  276.423730][ T6288] RSP: 002b:00007f55541b9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  276.432444][ T6288] RAX: ffffffffffffffda RBX: 00007f5553575fa0 RCX: 00007f5553385d29
[  276.440657][ T6288] RDX: 0000000020000580 RSI: 00000000c0585609 RDI: 0000000000000003
[  276.448862][ T6288] RBP: 00007f55541b9090 R08: 0000000000000000 R09: 0000000000000000
[  276.457070][ T6288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  276.465271][ T6288] R13: 0000000000000000 R14: 00007f5553575fa0 R15: 00007ffe7b53e688
[  276.473509][ T6288]  </TASK>
[  276.482996][ T6288] ERROR: Out of memory at tomoyo_realpath_from_path.
[  276.583181][ T6280] loop2: detected capacity change from 0 to 4096
[  276.676993][ T6293] netlink: 8 bytes leftover after parsing attributes in process `syz.1.76'.
[  277.226599][ T6304] loop1: detected capacity change from 0 to 1024
[  277.295235][ T6304] EXT4-fs: Ignoring removed nobh option
[  277.301102][ T6304] EXT4-fs: Ignoring removed bh option
[  277.344441][ T6307] netlink: 8 bytes leftover after parsing attributes in process `syz.4.81'.
[  277.463937][ T6304] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  277.533464][ T6311] loop4: detected capacity change from 0 to 128
[  277.810925][ T6307] netlink: 16 bytes leftover after parsing attributes in process `syz.4.81'.
[  277.820536][ T6307] netlink: 20 bytes leftover after parsing attributes in process `syz.4.81'.
[  277.942304][ T5851] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  278.175556][ T5851] usb 3-1: Using ep0 maxpacket: 8
[  278.223365][ T5851] usb 3-1: config 0 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 240, changing to 11
[  278.235108][ T5851] usb 3-1: config 0 interface 0 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0
[  278.245276][ T5851] usb 3-1: config 0 interface 0 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  278.260709][ T5851] usb 3-1: config 0 interface 0 has no altsetting 0
[  278.268429][ T5851] usb 3-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00
[  278.278061][ T5851] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  278.429421][ T5851] usb 3-1: config 0 descriptor??
[  278.439545][ T6314] loop3: detected capacity change from 0 to 16
[  278.485595][ T6314] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[  278.566543][ T5844] hid-generic 0005:7FFF:0008.0002: item fetching failed at offset 0/1
[  278.600425][ T5844] hid-generic 0005:7FFF:0008.0002: probe with driver hid-generic failed with error -22
[  278.634967][ T6314] x_tables: duplicate underflow at hook 2
[  278.707070][   T29] kauditd_printk_skb: 11 callbacks suppressed
[  278.707147][   T29] audit: type=1326 audit(1736642208.788:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6313 comm="syz.3.83" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b1c985d29 code=0x7ffc0000
[  278.736610][   T29] audit: type=1326 audit(1736642208.798:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6313 comm="syz.3.83" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6b1c985d29 code=0x7ffc0000
[  278.800820][ T6304] EXT4-fs (loop1): shut down requested (0)
[  278.862424][ T5851] nintendo 0003:057E:200E.0003: unknown main item tag 0x0
[  278.874298][ T5851] nintendo 0003:057E:200E.0003: unknown main item tag 0x0
[  278.997080][ T5851] nintendo 0003:057E:200E.0003: hidraw0: USB HID v80.04 Device [HID 057e:200e] on usb-dummy_hcd.2-1/input0
[  279.014135][ T5782] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  279.081680][ T6298] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  279.091130][ T6298] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  279.109432][ T5851] nintendo 0003:057E:200E.0003: Failed charging grip handshake
[  279.112783][ T6322] process 'syz.4.84' launched './file2' with NULL argv: empty string added
[  279.117751][ T5851] nintendo 0003:057E:200E.0003: Failed to initialize controller; ret=-110
[  279.147102][ T6298] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  279.156565][ T6298] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  279.201332][ T5851] nintendo 0003:057E:200E.0003: probe - fail = -110
[  279.211559][ T5851] nintendo 0003:057E:200E.0003: probe with driver nintendo failed with error -110
[  279.619325][ T6328] loop3: detected capacity change from 0 to 1024
[  279.654782][ T6328] EXT4-fs: inline encryption not supported
[  280.054041][ T6328] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  280.107221][ T5851] usb 3-1: USB disconnect, device number 4
[  280.204815][ T6339] netlink: 'syz.4.89': attribute type 27 has an invalid length.
[  280.357835][ T6341] loop1: detected capacity change from 0 to 128
[  280.394460][ T6341] befs: Unknown parameter 'ˆgÍs'
[  280.423393][ T6328] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  280.598076][ T6342] loop4: detected capacity change from 0 to 2048
[  280.737768][ T5797] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  280.744462][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  280.754318][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  280.788181][ T6342] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  280.843910][ T6342] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  282.431042][ T6371] netlink: 32 bytes leftover after parsing attributes in process `syz.3.97'.
[  282.473192][ T6372] netlink: 32 bytes leftover after parsing attributes in process `syz.3.97'.
[  282.479725][ T6365] netlink: 372 bytes leftover after parsing attributes in process `syz.1.96'.
[  282.505445][ T6373] FAULT_INJECTION: forcing a failure.
[  282.505445][ T6373] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  282.519209][ T6373] CPU: 1 UID: 0 PID: 6373 Comm: syz.4.99 Tainted: G        W          6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  282.531552][ T6373] Tainted: [W]=WARN
[  282.535555][ T6373] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  282.545856][ T6373] Call Trace:
[  282.549337][ T6373]  <TASK>
[  282.552455][ T6373]  dump_stack_lvl+0x216/0x2d0
[  282.557461][ T6373]  dump_stack+0x1e/0x24
[  282.561911][ T6373]  should_fail_ex+0x748/0x7f0
[  282.566913][ T6373]  should_fail+0x2a/0x40
[  282.571449][ T6373]  should_fail_usercopy+0x2e/0x40
[  282.576798][ T6373]  _copy_from_user+0x35/0x110
[  282.581795][ T6373]  ucma_write+0x15d/0x5a0
[  282.586412][ T6373]  ? kmsan_get_metadata+0x13e/0x1c0
[  282.591898][ T6373]  ? __pfx_ucma_write+0x10/0x10
[  282.597038][ T6373]  ? __pfx_ucma_write+0x10/0x10
[  282.602197][ T6373]  vfs_write+0x48a/0x1540
[  282.606815][ T6373]  ? stack_depot_save_flags+0x2c/0x750
[  282.612563][ T6373]  ? kmsan_get_metadata+0x13e/0x1c0
[  282.618020][ T6373]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[  282.624658][ T6373]  ? kmsan_get_metadata+0x13e/0x1c0
[  282.630115][ T6373]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  282.636192][ T6373]  ksys_write+0x240/0x4b0
[  282.640805][ T6373]  ? kmsan_get_metadata+0x13e/0x1c0
[  282.646269][ T6373]  __x64_sys_write+0x93/0xe0
[  282.651150][ T6373]  x64_sys_call+0x3161/0x3c30
[  282.656130][ T6373]  do_syscall_64+0xcd/0x1e0
[  282.660901][ T6373]  ? clear_bhb_loop+0x25/0x80
[  282.665892][ T6373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  282.672095][ T6373] RIP: 0033:0x7fe6d0b85d29
[  282.676741][ T6373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  282.696631][ T6373] RSP: 002b:00007fe6d19d7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  282.705334][ T6373] RAX: ffffffffffffffda RBX: 00007fe6d0d75fa0 RCX: 00007fe6d0b85d29
[  282.713545][ T6373] RDX: 0000000000000020 RSI: 0000000020000340 RDI: 0000000000000003
[  282.721735][ T6373] RBP: 00007fe6d19d7090 R08: 0000000000000000 R09: 0000000000000000
[  282.729929][ T6373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  282.738116][ T6373] R13: 0000000000000000 R14: 00007fe6d0d75fa0 R15: 00007ffc732c3ac8
[  282.746338][ T6373]  </TASK>
[  283.417837][ T6384] netlink: 'syz.2.103': attribute type 11 has an invalid length.
[  283.427854][ T6384] netlink: 44 bytes leftover after parsing attributes in process `syz.2.103'.
[  283.562466][    T8] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  283.848725][ T6393] FAULT_INJECTION: forcing a failure.
[  283.848725][ T6393] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  283.862800][ T6393] CPU: 1 UID: 0 PID: 6393 Comm: syz.0.104 Tainted: G        W          6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  283.875223][ T6393] Tainted: [W]=WARN
[  283.879229][ T6393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  283.889521][ T6393] Call Trace:
[  283.893006][ T6393]  <TASK>
[  283.896127][ T6393]  dump_stack_lvl+0x216/0x2d0
[  283.901419][ T6393]  dump_stack+0x1e/0x24
[  283.905871][ T6393]  should_fail_ex+0x748/0x7f0
[  283.910868][ T6393]  should_fail_alloc_page+0x235/0x2b0
[  283.916540][ T6393]  __alloc_pages_noprof+0x343/0xe00
[  283.922053][ T6393]  dup_task_struct+0x286/0xac0
[  283.927123][ T6393]  copy_process+0x968/0x5c20
[  283.931994][ T6393]  ? filter_irq_stacks+0x60/0x1a0
[  283.937342][ T6393]  ? stack_depot_save_flags+0x2c/0x750
[  283.943137][ T6393]  kernel_clone+0x401/0x1040
[  283.948046][ T6393]  __se_sys_clone3+0x566/0x580
[  283.953135][ T6393]  ? ksys_write+0x408/0x4b0
[  283.958040][ T6393]  ? kmsan_get_metadata+0x13e/0x1c0
[  283.963529][ T6393]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  283.969640][ T6393]  __x64_sys_clone3+0x6c/0xa0
[  283.974621][ T6393]  x64_sys_call+0x3b78/0x3c30
[  283.979625][ T6393]  do_syscall_64+0xcd/0x1e0
[  283.984403][ T6393]  ? clear_bhb_loop+0x25/0x80
[  283.989404][ T6393]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  283.995621][ T6393] RIP: 0033:0x7f5553385d29
[  284.000282][ T6393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  284.020299][ T6393] RSP: 002b:00007f55541b8f08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  284.029039][ T6393] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007f5553385d29
[  284.037294][ T6393] RDX: 00007f55541b8f20 RSI: 0000000000000058 RDI: 00007f55541b8f20
[  284.045529][ T6393] RBP: 00007f55541b9090 R08: 0000000000000000 R09: 0000000000000058
[  284.053754][ T6393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  284.061969][ T6393] R13: 0000000000000000 R14: 00007f5553575fa0 R15: 00007ffe7b53e688
[  284.070215][ T6393]  </TASK>
[  284.073545][    C1] vkms_vblank_simulate: vblank timer overrun
[  284.362564][ T6400] netlink: 8 bytes leftover after parsing attributes in process `syz.2.107'.
[  284.363239][    T8] usb 4-1: Using ep0 maxpacket: 8
[  284.371778][ T6400] netlink: 8 bytes leftover after parsing attributes in process `syz.2.107'.
[  284.383152][    T8] usb 4-1: config 0 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 240, changing to 11
[  284.385693][ T6400] netlink: 8 bytes leftover after parsing attributes in process `syz.2.107'.
[  284.396870][    T8] usb 4-1: config 0 interface 0 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0
[  284.397021][    T8] usb 4-1: config 0 interface 0 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  284.397194][    T8] usb 4-1: config 0 interface 0 has no altsetting 0
[  284.443840][    T8] usb 4-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00
[  284.453314][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  284.555906][    T8] usb 4-1: config 0 descriptor??
[  285.367901][    T8] nintendo 0003:057E:200E.0004: unknown main item tag 0x0
[  285.376110][    T8] nintendo 0003:057E:200E.0004: unknown main item tag 0x0
[  285.504136][    T8] nintendo 0003:057E:200E.0004: hidraw0: USB HID v80.04 Device [HID 057e:200e] on usb-dummy_hcd.3-1/input0
[  285.551472][ T6377] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  285.560661][ T6377] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  285.623388][    T8] nintendo 0003:057E:200E.0004: Failed charging grip handshake
[  285.632890][ T6423] loop2: detected capacity change from 0 to 1024
[  285.636019][ T6423] EXT4-fs: Ignoring removed nobh option
[  285.636151][ T6423] EXT4-fs: Ignoring removed bh option
[  285.640867][ T6377] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  285.648847][    T8] nintendo 0003:057E:200E.0004: Failed to initialize controller; ret=-110
[  285.652923][ T6377] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  285.683086][    C1] vkms_vblank_simulate: vblank timer overrun
[  285.721287][    T8] nintendo 0003:057E:200E.0004: probe - fail = -110
[  285.732727][ T6423] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  285.738502][    T8] nintendo 0003:057E:200E.0004: probe with driver nintendo failed with error -110
[  286.110828][ T6423] EXT4-fs (loop2): shut down requested (0)
[  286.263263][ T5795] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  286.412347][    T8] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  286.453449][ T5851] usb 4-1: USB disconnect, device number 5
[  286.577180][ T6437] loop1: detected capacity change from 0 to 1024
[  286.597286][    T8] usb 5-1: unable to get BOS descriptor or descriptor too short
[  286.617537][    T8] usb 5-1: config 2 has an invalid interface number: 212 but max is 1
[  286.626337][    T8] usb 5-1: config 2 has an invalid interface number: 127 but max is 1
[  286.634923][    T8] usb 5-1: config 2 has no interface number 0
[  286.641252][    T8] usb 5-1: config 2 has no interface number 1
[  286.647733][    T8] usb 5-1: config 2 interface 212 has no altsetting 0
[  286.748048][ T6437] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  286.912774][    T8] usb 5-1: New USB device found, idVendor=046d, idProduct=08d9, bcdDevice=96.d5
[  286.922555][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  286.930812][    T8] usb 5-1: Product: syz
[  286.935443][    T8] usb 5-1: Manufacturer: syz
[  286.940279][    T8] usb 5-1: SerialNumber: syz
[  287.350320][    T8] usb 5-1: USB disconnect, device number 4
[  287.553256][ T5782] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  288.180722][ T6459] netlink: 20 bytes leftover after parsing attributes in process `syz.3.124'.
[  288.193999][ T6459] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[  288.364232][ T6465] loop2: detected capacity change from 0 to 128
[  288.381482][ T6465] FAT-fs (loop2): bogus number of reserved sectors
[  288.390751][ T6465] FAT-fs (loop2): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  288.403219][ T6465] FAT-fs (loop2): Can't find a valid FAT filesystem
[  288.512009][    T8] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  288.542954][ T6465] loop2: detected capacity change from 0 to 128
[  288.697048][    T8] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  288.713007][    T8] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  288.726276][    T8] usb 2-1: too many endpoints for config 1 interface 1 altsetting 145: 217, using maximum allowed: 30
[  288.737682][    T8] usb 2-1: config 1 interface 1 altsetting 145 has 0 endpoint descriptors, different from the interface descriptor's value: 217
[  288.751399][    T8] usb 2-1: config 1 interface 1 has no altsetting 0
[  288.853217][    T8] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  288.862806][    T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  288.871114][    T8] usb 2-1: Product: syz
[  288.875951][    T8] usb 2-1: Manufacturer: syz
[  288.880795][    T8] usb 2-1: SerialNumber: syz
[  288.964064][    T8] cdc_acm 2-1:1.0: probe with driver cdc_acm failed with error -22
[  289.162227][ T5843] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  289.186029][    T8] usb 2-1: USB disconnect, device number 4
[  289.343654][ T5843] usb 5-1: Using ep0 maxpacket: 8
[  289.356924][ T5843] usb 5-1: config 0 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 240, changing to 11
[  289.368695][ T5843] usb 5-1: config 0 interface 0 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0
[  289.378946][ T5843] usb 5-1: config 0 interface 0 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  289.392295][ T5843] usb 5-1: config 0 interface 0 has no altsetting 0
[  289.399324][ T5843] usb 5-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00
[  289.408968][ T5843] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.482236][ T6478] loop3: detected capacity change from 0 to 256
[  289.491048][ T5843] usb 5-1: config 0 descriptor??
[  289.975969][ T5843] nintendo 0003:057E:200E.0005: unknown main item tag 0x0
[  289.985744][ T5843] nintendo 0003:057E:200E.0005: unknown main item tag 0x0
[  290.258006][ T5843] nintendo 0003:057E:200E.0005: hidraw0: USB HID v80.04 Device [HID 057e:200e] on usb-dummy_hcd.4-1/input0
[  290.329166][ T6471] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  290.344379][ T6471] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  290.354753][ T5843] nintendo 0003:057E:200E.0005: Failed charging grip handshake
[  290.362696][ T5843] nintendo 0003:057E:200E.0005: Failed to initialize controller; ret=-110
[  290.488394][ T6471] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  290.497739][ T6471] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  290.529971][ T5843] nintendo 0003:057E:200E.0005: probe - fail = -110
[  290.537644][ T5843] nintendo 0003:057E:200E.0005: probe with driver nintendo failed with error -110
[  290.806167][ T6491] loop2: detected capacity change from 0 to 128
[  290.820424][ T6491] netlink: 8 bytes leftover after parsing attributes in process `syz.2.137'.
[  290.829773][ T6491] netlink: 20 bytes leftover after parsing attributes in process `syz.2.137'.
[  291.092895][ T5851] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  291.301434][ T6501] netlink: 4 bytes leftover after parsing attributes in process `syz.1.140'.
[  291.364271][ T5851] usb 3-1: Using ep0 maxpacket: 32
[  291.386946][ T5851] usb 3-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.3f
[  291.396434][ T5851] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  291.404863][ T5851] usb 3-1: Product: syz
[  291.409267][ T5851] usb 3-1: Manufacturer: syz
[  291.414295][ T5851] usb 3-1: SerialNumber: syz
[  291.432762][ T5843] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  291.443039][ T5851] usb 3-1: config 0 descriptor??
[  291.469904][ T6503] netlink: 1400 bytes leftover after parsing attributes in process `syz.3.141'.
[  291.534195][ T5844] usb 5-1: USB disconnect, device number 5
[  291.565234][ T6503] tipc: Started in network mode
[  291.573395][ T6503] tipc: Node identity 62fa99874e0e, cluster identity 4711
[  291.582416][ T6503] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  291.594116][ T5843] usb 1-1: Using ep0 maxpacket: 32
[  291.624226][ T5843] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  291.635899][ T5843] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  291.645310][ T5843] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  291.728408][ T5843] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  291.738373][ T5843] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  291.747882][ T5843] usb 1-1: Product: syz
[  291.753202][ T5843] usb 1-1: Manufacturer: syz
[  291.758060][ T5843] usb 1-1: SerialNumber: syz
[  291.801176][ T6491] loop2: detected capacity change from 0 to 4096
[  291.810149][ T6491] ntfs3: Unknown parameter ''
[  291.835247][ T6502] tipc: Disabling bearer <eth:syzkaller0>
[  291.883440][ T5851] airspy 3-1:0.0: usb_control_msg() failed -71 request 09
[  291.890876][ T5851] airspy 3-1:0.0: Could not detect board
[  291.897360][ T5851] airspy 3-1:0.0: probe with driver airspy failed with error -71
[  291.920756][ T5851] usb 3-1: USB disconnect, device number 5
[  291.950875][ T5843] cdc_ncm 1-1:1.0: CDC Union missing and no IAD found
[  291.959943][ T5843] cdc_ncm 1-1:1.0: bind() failure
[  292.271680][ T6510] loop4: detected capacity change from 0 to 64
[  292.396749][ T6512] loop3: detected capacity change from 0 to 1024
[  292.406472][ T6512] EXT4-fs: Ignoring removed nobh option
[  292.412492][ T6512] EXT4-fs: Ignoring removed bh option
[  292.437268][ T6509] loop1: detected capacity change from 0 to 4096
[  292.546762][ T6497] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  292.556417][ T6497] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  292.625330][ T6512] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  292.725332][ T5843] usb 1-1: USB disconnect, device number 8
[  293.341610][ T6519] netlink: 8 bytes leftover after parsing attributes in process `syz.2.146'.
[  293.377011][ T6517] sp0: Synchronizing with TNC
[  293.386407][ T6512] EXT4-fs (loop3): shut down requested (0)
[  293.470384][ T6519] loop2: detected capacity change from 0 to 512
[  293.494475][ T6519] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  293.552727][ T6519] netlink: 'syz.2.146': attribute type 2 has an invalid length.
[  293.692971][ T5797] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  294.705774][ T6523] loop1: detected capacity change from 0 to 4096
[  295.622903][ T5851] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  295.803751][ T5851] usb 3-1: Using ep0 maxpacket: 8
[  295.838307][ T5851] usb 3-1: config 0 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 240, changing to 11
[  295.850142][ T5851] usb 3-1: config 0 interface 0 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0
[  295.860415][ T5851] usb 3-1: config 0 interface 0 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  295.876113][ T5851] usb 3-1: config 0 interface 0 has no altsetting 0
[  295.883893][ T5851] usb 3-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00
[  295.893343][ T5851] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  295.913869][ T5843] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  295.952640][ T5851] usb 3-1: config 0 descriptor??
[  296.768466][ T6537] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  296.778205][ T6537] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  296.968222][ T6537] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  296.977921][ T6537] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  297.540984][ T5843] usb 4-1: config index 0 descriptor too short (expected 62994, got 18)
[  297.549856][ T5843] usb 4-1: config 0 has an invalid interface number: 0 but max is -1
[  297.558375][ T5843] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 0
[  297.576819][ T6552] loop1: detected capacity change from 0 to 1024
[  297.600330][ T5843] usb 4-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  297.615206][ T5843] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  297.625562][ T5843] usb 4-1: Product: syz
[  297.630000][ T5843] usb 4-1: Manufacturer: syz
[  297.634995][ T5843] usb 4-1: SerialNumber: syz
[  297.644301][ T5843] usb 4-1: config 0 descriptor??
[  297.664910][ T6552] ext3: Bad value for 'max_dir_size_kb'
[  298.382555][ T6541] loop3: detected capacity change from 0 to 512
[  298.497201][ T6541] ext4: Unknown parameter 'fscontext'
[  298.513115][ T5851] usbhid 3-1:0.0: can't add hid device: -71
[  298.519830][ T5851] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  298.535900][ T5851] usb 3-1: USB disconnect, device number 6
[  298.742867][ T5843] usb 4-1: Firmware version (0.0) predates our first public release.
[  298.751272][ T5843] usb 4-1: Please update to version 0.2 or newer
[  298.856710][ T5843] usb 4-1: USB disconnect, device number 6
[  299.082224][ T1666] usb 3-1: new full-speed USB device number 7 using dummy_hcd
[  299.294882][ T1666] usb 3-1: unable to get BOS descriptor or descriptor too short
[  299.313027][ T1666] usb 3-1: not running at top speed; connect to a high speed hub
[  299.332429][ T1666] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  299.343150][ T1666] usb 3-1: config 1 interface 0 altsetting 8 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  299.361799][ T1666] usb 3-1: config 1 interface 0 has no altsetting 0
[  299.379586][ T1666] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  299.389292][ T1666] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  299.398126][ T1666] usb 3-1: Product: syz
[  299.402660][ T1666] usb 3-1: Manufacturer: syz
[  299.407502][ T1666] usb 3-1: SerialNumber: syz
[  299.822625][ T5792] Bluetooth: hci2: command 0x0406 tx timeout
[  299.834909][ T6562] loop2: detected capacity change from 0 to 256
[  300.125169][ T1666] usb 3-1: bad CDC descriptors
[  300.155995][ T1666] usb 3-1: USB disconnect, device number 7
[  300.746448][ T6589] loop3: detected capacity change from 0 to 64
[  302.512501][ T1666] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  302.607351][ T6603] FAULT_INJECTION: forcing a failure.
[  302.607351][ T6603] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  302.621480][ T6603] CPU: 0 UID: 0 PID: 6603 Comm: syz.2.174 Tainted: G        W          6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  302.633906][ T6603] Tainted: [W]=WARN
[  302.637894][ T6603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  302.648188][ T6603] Call Trace:
[  302.651657][ T6603]  <TASK>
[  302.654780][ T6603]  dump_stack_lvl+0x216/0x2d0
[  302.659782][ T6603]  dump_stack+0x1e/0x24
[  302.664225][ T6603]  should_fail_ex+0x748/0x7f0
[  302.669220][ T6603]  should_fail+0x2a/0x40
[  302.673764][ T6603]  should_fail_usercopy+0x2e/0x40
[  302.679090][ T6603]  _copy_from_user+0x35/0x110
[  302.684077][ T6603]  set_user_sigmask+0x84/0x320
[  302.689153][ T6603]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  302.695525][ T6603]  ? __msan_memset+0xf5/0x1b0
[  302.700495][ T6603]  __se_sys_ppoll+0x127/0x530
[  302.705445][ T6603]  __x64_sys_ppoll+0xe4/0x150
[  302.710390][ T6603]  x64_sys_call+0x3623/0x3c30
[  302.715372][ T6603]  do_syscall_64+0xcd/0x1e0
[  302.720131][ T6603]  ? clear_bhb_loop+0x25/0x80
[  302.725104][ T6603]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  302.731302][ T6603] RIP: 0033:0x7fc30bf85d29
[  302.735959][ T6603] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  302.755866][ T6603] RSP: 002b:00007fc30ce69038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f
[  302.764582][ T6603] RAX: ffffffffffffffda RBX: 00007fc30c175fa0 RCX: 00007fc30bf85d29
[  302.772787][ T6603] RDX: 0000000020000940 RSI: 0000000000000000 RDI: 0000000000000000
[  302.780980][ T6603] RBP: 00007fc30ce69090 R08: 0000000000000008 R09: 0000000000000000
[  302.789171][ T6603] R10: 0000000020000980 R11: 0000000000000246 R12: 0000000000000001
[  302.797396][ T6603] R13: 0000000000000000 R14: 00007fc30c175fa0 R15: 00007ffcd99551b8
[  302.805644][ T6603]  </TASK>
[  302.924060][ T1666] usb 5-1: Using ep0 maxpacket: 8
[  302.953509][ T1666] usb 5-1: config 0 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 240, changing to 11
[  302.965295][ T1666] usb 5-1: config 0 interface 0 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0
[  302.975507][ T1666] usb 5-1: config 0 interface 0 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  302.988761][ T1666] usb 5-1: config 0 interface 0 has no altsetting 0
[  302.995821][ T1666] usb 5-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00
[  303.005302][ T1666] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  303.017843][ T1666] usb 5-1: config 0 descriptor??
[  303.323558][ T6608] sp0: Synchronizing with TNC
[  303.587248][ T1666] nintendo 0003:057E:200E.0006: unknown main item tag 0x0
[  303.595154][ T1666] nintendo 0003:057E:200E.0006: unknown main item tag 0x0
[  303.748526][ T1666] nintendo 0003:057E:200E.0006: hidraw0: USB HID v80.04 Device [HID 057e:200e] on usb-dummy_hcd.4-1/input0
[  303.765012][ T6596] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  303.765491][ T6596] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  303.770217][ T6596] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  303.796044][ T6596] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  303.805970][ T6612] mmap: syz.0.176 (6612): VmData 175878144 exceed data ulimit 8. Update limits or use boot option ignore_rlimit_data.
[  303.833198][ T1666] nintendo 0003:057E:200E.0006: Failed charging grip handshake
[  303.841040][ T1666] nintendo 0003:057E:200E.0006: Failed to initialize controller; ret=-110
[  303.990576][ T1666] nintendo 0003:057E:200E.0006: probe - fail = -110
[  303.998725][ T1666] nintendo 0003:057E:200E.0006: probe with driver nintendo failed with error -110
[  304.201810][ T6614] loop2: detected capacity change from 0 to 1024
[  304.275674][ T6617] FAULT_INJECTION: forcing a failure.
[  304.275674][ T6617] name failslab, interval 1, probability 0, space 0, times 0
[  304.288819][ T6617] CPU: 1 UID: 0 PID: 6617 Comm: syz.0.178 Tainted: G        W          6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  304.301244][ T6617] Tainted: [W]=WARN
[  304.305241][ T6617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  304.315532][ T6617] Call Trace:
[  304.319000][ T6617]  <TASK>
[  304.322112][ T6617]  dump_stack_lvl+0x216/0x2d0
[  304.327138][ T6617]  dump_stack+0x1e/0x24
[  304.331598][ T6617]  should_fail_ex+0x748/0x7f0
[  304.336606][ T6617]  should_failslab+0x17f/0x210
[  304.341655][ T6617]  __kmalloc_cache_noprof+0xc5/0xdf0
[  304.347269][ T6617]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  304.353376][ T6617]  ? io_uring_alloc_task_context+0x66/0x730
[  304.359582][ T6617]  ? kstrtoull+0xbf/0x3b0
[  304.364200][ T6617]  ? kmsan_get_metadata+0x13e/0x1c0
[  304.369691][ T6617]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  304.375802][ T6617]  io_uring_alloc_task_context+0x66/0x730
[  304.381827][ T6617]  ? kmsan_get_metadata+0x13e/0x1c0
[  304.387318][ T6617]  __io_uring_add_tctx_node+0x119/0x980
[  304.393172][ T6617]  ? __fget_files+0x42b/0x500
[  304.398131][ T6617]  ? kmsan_get_metadata+0x13e/0x1c0
[  304.403625][ T6617]  __io_uring_add_tctx_node_from_submit+0xed/0x1b0
[  304.410462][ T6617]  __se_sys_io_uring_enter+0x12a8/0x4ce0
[  304.416435][ T6617]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  304.422928][ T6617]  ? kmsan_get_metadata+0x13e/0x1c0
[  304.428413][ T6617]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  304.434513][ T6617]  ? kmsan_get_metadata+0x13e/0x1c0
[  304.439993][ T6617]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[  304.446664][ T6617]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  304.453071][ T6617]  ? fput+0x359/0x400
[  304.457340][ T6617]  ? kmsan_get_metadata+0x13e/0x1c0
[  304.462875][ T6617]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  304.468988][ T6617]  __x64_sys_io_uring_enter+0x11f/0x1a0
[  304.474886][ T6617]  x64_sys_call+0xce5/0x3c30
[  304.479805][ T6617]  do_syscall_64+0xcd/0x1e0
[  304.484591][ T6617]  ? clear_bhb_loop+0x25/0x80
[  304.489598][ T6617]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.495825][ T6617] RIP: 0033:0x7f5553385d29
[  304.500485][ T6617] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  304.520399][ T6617] RSP: 002b:00007f555418b038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  304.529150][ T6617] RAX: ffffffffffffffda RBX: 00007f5553576080 RCX: 00007f5553385d29
[  304.537408][ T6617] RDX: 0000000000000000 RSI: 0000000000000567 RDI: 0000000000000003
[  304.545649][ T6617] RBP: 00007f555418b090 R08: 0000000000000000 R09: 0000000000000000
[  304.553889][ T6617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  304.562115][ T6617] R13: 0000000000000000 R14: 00007f5553576080 R15: 00007ffe7b53e688
[  304.570368][ T6617]  </TASK>
[  304.642177][ T1666] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  304.802477][ T1666] usb 3-1: Using ep0 maxpacket: 8
[  304.826886][ T1666] usb 3-1: config 0 has an invalid interface number: 211 but max is 0
[  304.835850][ T1666] usb 3-1: config 0 has no interface number 0
[  304.842460][ T1666] usb 3-1: config 0 interface 211 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  304.853788][ T1666] usb 3-1: config 0 interface 211 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[  304.866295][ T1666] usb 3-1: config 0 interface 211 altsetting 0 endpoint 0x84 has an invalid bInterval 239, changing to 11
[  304.883732][ T1666] usb 3-1: config 0 interface 211 altsetting 0 endpoint 0x84 has invalid maxpacket 9059, setting to 1024
[  304.893874][ T5851] usb 5-1: USB disconnect, device number 6
[  304.897176][ T1666] usb 3-1: config 0 interface 211 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  305.042893][ T1666] usb 3-1: New USB device found, idVendor=07c0, idProduct=1506, bcdDevice=15.ab
[  305.052715][ T1666] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  305.062267][ T1666] usb 3-1: Product: syz
[  305.066687][ T1666] usb 3-1: Manufacturer: syz
[  305.071542][ T1666] usb 3-1: SerialNumber: syz
[  305.137270][ T1666] usb 3-1: config 0 descriptor??
[  305.176849][ T1666] iowarrior 3-1:0.211: no interrupt-out endpoint found
[  305.315810][ T6621] netlink: 8 bytes leftover after parsing attributes in process `syz.4.180'.
[  305.362558][ T1666] usb 3-1: USB disconnect, device number 8
[  305.426578][ T6621] loop4: detected capacity change from 0 to 64
[  305.978997][ T6630] loop4: detected capacity change from 0 to 512
[  307.017685][ T6630] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  307.033905][ T6630] ext4 filesystem being mounted at /37/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  307.299301][ T6638] loop1: detected capacity change from 0 to 256
[  307.308630][ T6638] msdos: Bad value for 'fmask'
[  307.486495][ T6638] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  307.782541][ T5787] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  308.423001][ T6654] binder: 6653:6654 ioctl c0306201 20000180 returned -22
[  308.851668][ T5851] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  308.965568][ T6666] FAULT_INJECTION: forcing a failure.
[  308.965568][ T6666] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  308.985128][ T6666] CPU: 0 UID: 0 PID: 6666 Comm: syz.3.197 Tainted: G        W          6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  308.997559][ T6666] Tainted: [W]=WARN
[  309.001598][ T6666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  309.011906][ T6666] Call Trace:
[  309.015370][ T6666]  <TASK>
[  309.018485][ T6666]  dump_stack_lvl+0x216/0x2d0
[  309.023489][ T6666]  dump_stack+0x1e/0x24
[  309.027949][ T6666]  should_fail_ex+0x748/0x7f0
[  309.032943][ T6666]  should_fail+0x2a/0x40
[  309.037478][ T6666]  should_fail_usercopy+0x2e/0x40
[  309.042824][ T6666]  _copy_from_user+0x35/0x110
[  309.047801][ T6666]  dccp_setsockopt+0x524/0x2040
[  309.052974][ T6666]  ? __pfx_dccp_setsockopt+0x10/0x10
[  309.058562][ T6666]  sock_common_setsockopt+0xf9/0x140
[  309.064182][ T6666]  do_sock_setsockopt+0x4bb/0x7d0
[  309.069498][ T6666]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  309.075742][ T6666]  __x64_sys_setsockopt+0x33d/0x4f0
[  309.081252][ T6666]  x64_sys_call+0x30b9/0x3c30
[  309.086262][ T6666]  do_syscall_64+0xcd/0x1e0
[  309.091061][ T6666]  ? clear_bhb_loop+0x25/0x80
[  309.094689][ T5851] usb 5-1: Using ep0 maxpacket: 8
[  309.095970][ T6666]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.107214][ T6666] RIP: 0033:0x7f6b1c985d29
[  309.111864][ T6666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  309.121374][ T5851] usb 5-1: config 0 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 240, changing to 11
[  309.131656][ T6666] RSP: 002b:00007f6b1d6e3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  309.131799][ T6666] RAX: ffffffffffffffda RBX: 00007f6b1cb75fa0 RCX: 00007f6b1c985d29
[  309.131903][ T6666] RDX: 0000000000000017 RSI: 000000000000010d RDI: 0000000000000003
[  309.131990][ T6666] RBP: 00007f6b1d6e3090 R08: 0000000000000004 R09: 0000000000000000
[  309.132082][ T6666] R10: 0000000020000040 R11: 0000000000000246 R12: 0000000000000001
[  309.132174][ T6666] R13: 0000000000000000 R14: 00007f6b1cb75fa0 R15: 00007ffe6bf592b8
[  309.143718][ T5851] usb 5-1: config 0 interface 0 altsetting 3 endpoint 0x81 has invalid wMaxPacketSize 0
[  309.151789][ T6666]  </TASK>
[  309.209823][ T5851] usb 5-1: config 0 interface 0 altsetting 3 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  309.223053][ T5851] usb 5-1: config 0 interface 0 has no altsetting 0
[  309.230018][ T5851] usb 5-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00
[  309.239457][ T5851] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  309.249518][ T5844] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  309.313381][ T5851] usb 5-1: config 0 descriptor??
[  309.442313][ T6668] loop1: detected capacity change from 0 to 64
[  309.452623][ T5844] usb 3-1: device descriptor read/64, error -71
[  309.668954][ T5788] Bluetooth: hci1: command tx timeout
[  309.732423][ T5844] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  309.770284][ T5851] nintendo 0003:057E:200E.0007: unknown main item tag 0x0
[  309.777968][ T5851] nintendo 0003:057E:200E.0007: unknown main item tag 0x0
[  309.849059][ T5851] nintendo 0003:057E:200E.0007: hidraw0: USB HID v80.04 Device [HID 057e:200e] on usb-dummy_hcd.4-1/input0
[  309.882539][ T5844] usb 3-1: device descriptor read/64, error -71
[  309.940958][ T5851] nintendo 0003:057E:200E.0007: Failed charging grip handshake
[  309.949019][ T5851] nintendo 0003:057E:200E.0007: Failed to initialize controller; ret=-110
[  310.013124][ T5851] nintendo 0003:057E:200E.0007: probe - fail = -110
[  310.020602][ T5851] nintendo 0003:057E:200E.0007: probe with driver nintendo failed with error -110
[  310.054034][ T5844] usb usb3-port1: attempt power cycle
[  310.129750][ T6658] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  310.139048][ T6658] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  310.165728][ T6658] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  310.175270][ T6658] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  310.281496][ T6678] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  310.405194][ T5844] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  310.406735][ T6680] FAULT_INJECTION: forcing a failure.
[  310.406735][ T6680] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  310.434352][ T6680] CPU: 0 UID: 0 PID: 6680 Comm: syz.3.203 Tainted: G        W          6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  310.446787][ T6680] Tainted: [W]=WARN
[  310.450791][ T6680] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  310.461088][ T6680] Call Trace:
[  310.464559][ T6680]  <TASK>
[  310.467679][ T6680]  dump_stack_lvl+0x216/0x2d0
[  310.472677][ T6680]  dump_stack+0x1e/0x24
[  310.477130][ T6680]  should_fail_ex+0x748/0x7f0
[  310.482124][ T6680]  should_fail+0x2a/0x40
[  310.486652][ T6680]  should_fail_usercopy+0x2e/0x40
[  310.491989][ T6680]  _copy_from_iter+0x1d8/0x2b00
[  310.497133][ T6680]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  310.503228][ T6680]  ? kmsan_get_metadata+0x13e/0x1c0
[  310.508717][ T6680]  ? skb_put+0x189/0x230
[  310.513248][ T6680]  netlink_sendmsg+0xc1d/0x11e0
[  310.518433][ T6680]  ? __pfx_netlink_sendmsg+0x10/0x10
[  310.524032][ T6680]  ? __pfx_netlink_sendmsg+0x10/0x10
[  310.529638][ T6680]  __sock_sendmsg+0x30f/0x380
[  310.534638][ T6680]  ____sys_sendmsg+0x877/0xb60
[  310.536238][ T5844] usb 3-1: device descriptor read/8, error -71
[  310.539631][ T6680]  ___sys_sendmsg+0x28d/0x3c0
[  310.550782][ T6680]  ? __rcu_read_unlock+0x7b/0xe0
[  310.556050][ T6680]  ? __fget_files+0x42b/0x500
[  310.561026][ T6680]  ? kmsan_get_metadata+0x13e/0x1c0
[  310.566532][ T6680]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  310.572656][ T6680]  __x64_sys_sendmsg+0x212/0x3c0
[  310.577992][ T6680]  ? kmsan_get_metadata+0x13e/0x1c0
[  310.583491][ T6680]  x64_sys_call+0x2ed6/0x3c30
[  310.588501][ T6680]  do_syscall_64+0xcd/0x1e0
[  310.593282][ T6680]  ? clear_bhb_loop+0x25/0x80
[  310.598288][ T6680]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.604494][ T6680] RIP: 0033:0x7f6b1c985d29
[  310.609135][ T6680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  310.629029][ T6680] RSP: 002b:00007f6b1d6e3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  310.637743][ T6680] RAX: ffffffffffffffda RBX: 00007f6b1cb75fa0 RCX: 00007f6b1c985d29
[  310.645953][ T6680] RDX: 0000000000000050 RSI: 0000000020000400 RDI: 0000000000000003
[  310.654146][ T6680] RBP: 00007f6b1d6e3090 R08: 0000000000000000 R09: 0000000000000000
[  310.662342][ T6680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  310.670548][ T6680] R13: 0000000000000000 R14: 00007f6b1cb75fa0 R15: 00007ffe6bf592b8
[  310.678770][ T6680]  </TASK>
[  310.823886][ T5841] usb 5-1: USB disconnect, device number 7
[  310.872280][ T5844] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  310.905846][ T5844] usb 3-1: device descriptor read/8, error -71
[  311.031779][ T5844] usb usb3-port1: unable to enumerate USB device
[  311.919273][ T6696] sp0: Synchronizing with TNC
[  313.176944][ T1666] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  313.332757][ T1666] usb 5-1: Using ep0 maxpacket: 8
[  313.368797][ T1666] usb 5-1: New USB device found, idVendor=04bb, idProduct=0901, bcdDevice=56.a0
[  313.384067][ T1666] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  313.394217][ T1666] usb 5-1: Product: syz
[  313.398640][ T1666] usb 5-1: Manufacturer: syz
[  313.403635][ T1666] usb 5-1: SerialNumber: syz
[  313.425906][ T6705] FAULT_INJECTION: forcing a failure.
[  313.425906][ T6705] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  313.439646][ T6705] CPU: 0 UID: 0 PID: 6705 Comm: syz.3.212 Tainted: G        W          6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  313.452065][ T6705] Tainted: [W]=WARN
[  313.456057][ T6705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  313.466362][ T6705] Call Trace:
[  313.469841][ T6705]  <TASK>
[  313.472957][ T6705]  dump_stack_lvl+0x216/0x2d0
[  313.477958][ T6705]  dump_stack+0x1e/0x24
[  313.482408][ T6705]  should_fail_ex+0x748/0x7f0
[  313.487406][ T6705]  should_fail+0x2a/0x40
[  313.491934][ T6705]  should_fail_usercopy+0x2e/0x40
[  313.497268][ T6705]  _copy_to_user+0x34/0x120
[  313.502080][ T6705]  simple_read_from_buffer+0x199/0x340
[  313.507883][ T6705]  proc_fail_nth_read+0x1e5/0x2c0
[  313.513205][ T6705]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  313.519044][ T6705]  vfs_read+0x29d/0xf50
[  313.523497][ T6705]  ? stack_depot_save_flags+0x2c/0x750
[  313.529263][ T6705]  ? kmsan_get_metadata+0x13e/0x1c0
[  313.534744][ T6705]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[  313.541431][ T6705]  ksys_read+0x240/0x4b0
[  313.545978][ T6705]  ? kmsan_get_metadata+0x13e/0x1c0
[  313.551503][ T6705]  __x64_sys_read+0x93/0xe0
[  313.556349][ T6705]  x64_sys_call+0x314c/0x3c30
[  313.561364][ T6705]  do_syscall_64+0xcd/0x1e0
[  313.566147][ T6705]  ? clear_bhb_loop+0x25/0x80
[  313.571177][ T6705]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  313.577395][ T6705] RIP: 0033:0x7f6b1c98473c
[  313.582151][ T6705] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  313.602079][ T6705] RSP: 002b:00007f6b1d6e3030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  313.610834][ T6705] RAX: ffffffffffffffda RBX: 00007f6b1cb75fa0 RCX: 00007f6b1c98473c
[  313.619079][ T6705] RDX: 000000000000000f RSI: 00007f6b1d6e30a0 RDI: 0000000000000003
[  313.627319][ T6705] RBP: 00007f6b1d6e3090 R08: 0000000000000000 R09: 0000000000000000
[  313.635544][ T6705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  313.643762][ T6705] R13: 0000000000000000 R14: 00007f6b1cb75fa0 R15: 00007ffe6bf592b8
[  313.652006][ T6705]  </TASK>
[  313.874213][ T1666] usb 5-1: config 0 descriptor??
[  313.949990][ T6709] loop3: detected capacity change from 0 to 256
[  313.959541][ T6709] msdos: Bad value for 'fmask'
[  314.071411][ T6712] FAULT_INJECTION: forcing a failure.
[  314.071411][ T6712] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  314.072809][ T6709] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  314.084914][ T6712] CPU: 0 UID: 0 PID: 6712 Comm: syz.2.215 Tainted: G        W          6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  314.107084][ T6712] Tainted: [W]=WARN
[  314.111088][ T6712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  314.121391][ T6712] Call Trace:
[  314.124866][ T6712]  <TASK>
[  314.127985][ T6712]  dump_stack_lvl+0x216/0x2d0
[  314.132989][ T6712]  dump_stack+0x1e/0x24
[  314.137448][ T6712]  should_fail_ex+0x748/0x7f0
[  314.142439][ T6712]  should_fail+0x2a/0x40
[  314.146979][ T6712]  should_fail_usercopy+0x2e/0x40
[  314.152326][ T6712]  _copy_to_user+0x34/0x120
[  314.157149][ T6712]  simple_read_from_buffer+0x199/0x340
[  314.162954][ T6712]  proc_fail_nth_read+0x1e5/0x2c0
[  314.168275][ T6712]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  314.174125][ T6712]  vfs_read+0x29d/0xf50
[  314.178601][ T6712]  ? stack_depot_save_flags+0x2c/0x750
[  314.184368][ T6712]  ? kmsan_get_metadata+0x13e/0x1c0
[  314.189857][ T6712]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[  314.196547][ T6712]  ksys_read+0x240/0x4b0
[  314.201097][ T6712]  ? kmsan_get_metadata+0x13e/0x1c0
[  314.206595][ T6712]  __x64_sys_read+0x93/0xe0
[  314.211427][ T6712]  x64_sys_call+0x314c/0x3c30
[  314.216443][ T6712]  do_syscall_64+0xcd/0x1e0
[  314.221235][ T6712]  ? clear_bhb_loop+0x25/0x80
[  314.226254][ T6712]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.232476][ T6712] RIP: 0033:0x7fc30bf8473c
[  314.237138][ T6712] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  314.257058][ T6712] RSP: 002b:00007fc30ce69030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  314.265798][ T6712] RAX: ffffffffffffffda RBX: 00007fc30c175fa0 RCX: 00007fc30bf8473c
[  314.274040][ T6712] RDX: 000000000000000f RSI: 00007fc30ce690a0 RDI: 0000000000000003
[  314.282283][ T6712] RBP: 00007fc30ce69090 R08: 0000000000000000 R09: 0000000000000000
[  314.290503][ T6712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  314.298719][ T6712] R13: 0000000000000001 R14: 00007fc30c175fa0 R15: 00007ffcd99551b8
[  314.306970][ T6712]  </TASK>
[  314.424418][ T1666] kaweth 5-1:0.0: Firmware present in device.
[  314.563461][ T6716] loop2: detected capacity change from 0 to 2048
[  314.570381][ T6717] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  314.580261][ T6717] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  314.623039][ T6716] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  314.768668][ T6717] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  314.778408][ T6717] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  314.893693][ T5843] IPVS: starting estimator thread 0...
[  314.897032][ T6702] IPVS: dh: UDP 224.0.0.2:0 - no destination available
[  314.900779][ T1666] kaweth 5-1:0.0: Error reading configuration (-32), no net device created
[  314.924803][ T1666] kaweth 5-1:0.0: probe with driver kaweth failed with error -5
[  314.999261][ T1666] usb 5-1: USB disconnect, device number 8
[  315.000075][ T6722] netlink: 4 bytes leftover after parsing attributes in process `syz.3.218'.
[  315.212704][ T6720] IPVS: using max 240 ests per chain, 12000 per kthread
[  315.318614][ T6726] loop1: detected capacity change from 0 to 128
[  315.384483][ T6726] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  315.405363][ T6726] ext4 filesystem being mounted at /41/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  315.568501][ T5851] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  315.655628][ T5782] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  315.792299][ T5851] usb 4-1: Using ep0 maxpacket: 16
[  315.822779][ T5851] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  315.834226][ T5851] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  315.851543][ T5851] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  315.861092][ T5851] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  315.878817][ T5851] usb 4-1: config 0 descriptor??
[  316.590607][ T5851] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0
[  316.598457][ T5851] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0
[  316.606336][ T5851] microsoft 0003:045E:07DA.0008: unknown main item tag 0x0
[  316.619415][ T5851] microsoft 0003:045E:07DA.0008: item fetching failed at offset 31/34
[  316.832919][ T6745] loop4: detected capacity change from 0 to 32768
[  316.888012][ T5851] microsoft 0003:045E:07DA.0008: parse failed
[  316.895107][ T5851] microsoft 0003:045E:07DA.0008: probe with driver microsoft failed with error -22
[  316.945161][ T6752] loop2: detected capacity change from 0 to 256
[  316.966340][ T6724] dummy0: entered promiscuous mode
[  316.972165][ T6724] macvtap1: entered promiscuous mode
[  317.025504][ T6752] msdos: Bad value for 'fmask'
[  317.067325][ T6724] dummy0: left promiscuous mode
[  317.103163][ T6745] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io
[  317.125392][ T6745] bcachefs (loop4): recovering from clean shutdown, journal seq 10
[  317.135122][ T6745] bcachefs (loop4): Version upgrade required:
[  317.135122][ T6745] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  317.135122][ T6745] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[  317.135122][ T6745]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  317.218084][ T6745] bcachefs (loop4): dropping and reconstructing all alloc info
[  317.273965][ T6752] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  317.284478][ T6745] bcachefs (loop4): check_topology... done
[  317.290741][ T6745] bcachefs (loop4): accounting_read... done
[  317.300712][ T6745] bcachefs (loop4): alloc_read... done
[  317.306887][ T6745] bcachefs (loop4): stripes_read... done
[  317.313071][ T6745] bcachefs (loop4): snapshots_read... done
[  317.319699][ T6745] bcachefs (loop4): check_allocations... done
[  317.547862][ T6745] bcachefs (loop4): going read-write
[  317.608465][ T6745] bcachefs (loop4): done starting filesystem
[  317.904702][ T6758] =====================================================
[  317.912282][ T6758] BUG: KMSAN: uninit-value in bch2_dirent_validate+0x5ee/0xc30
[  317.920046][ T6758]  bch2_dirent_validate+0x5ee/0xc30
[  317.925653][ T6758]  bch2_bkey_val_validate+0x2b5/0x440
[  317.931261][ T6758]  validate_bset_keys+0x1531/0x2080
[  317.936754][ T6758]  validate_bset_for_write+0x142/0x290
[  317.942527][ T6758]  __bch2_btree_node_write+0x53df/0x6830
[  317.948381][ T6758]  bch2_btree_node_write+0xa5/0x2e0
[  317.953888][ T6758]  __btree_node_flush+0x606/0x680
[  317.959106][ T6758]  bch2_btree_node_flush1+0x38/0x60
[  317.964591][ T6758]  journal_flush_pins+0xce6/0x1780
[  317.969893][ T6758]  __bch2_journal_reclaim+0xda8/0x1670
[  317.975601][ T6758]  bch2_journal_reclaim_thread+0x18e/0x760
[  317.981597][ T6758]  kthread+0x3e2/0x540
[  317.988811][ T6758]  ret_from_fork+0x6d/0x90
[  317.994295][ T6758]  ret_from_fork_asm+0x1a/0x30
[  317.999276][ T6758] 
[  318.001697][ T6758] Uninit was stored to memory at:
[  318.007114][ T6758]  bch2_sort_keys_keep_unwritten_whiteouts+0x12d5/0x19d0
[  318.014499][ T6758]  __bch2_btree_node_write+0x3ae8/0x6830
[  318.020362][ T6758]  bch2_btree_node_write+0xa5/0x2e0
[  318.025885][ T6758]  __btree_node_flush+0x606/0x680
[  318.031114][ T6758]  bch2_btree_node_flush1+0x38/0x60
[  318.036595][ T6758]  journal_flush_pins+0xce6/0x1780
[  318.042090][ T6758]  __bch2_journal_reclaim+0xda8/0x1670
[  318.047738][ T6758]  bch2_journal_reclaim_thread+0x18e/0x760
[  318.053808][ T6758]  kthread+0x3e2/0x540
[  318.058051][ T6758]  ret_from_fork+0x6d/0x90
[  318.062751][ T6758]  ret_from_fork_asm+0x1a/0x30
[  318.067766][ T6758] 
[  318.070190][ T6758] Uninit was created at:
[  318.074786][ T6758]  ___kmalloc_large_node+0x22c/0x370
[  318.080285][ T6758]  __kmalloc_large_node_noprof+0x3f/0x1e0
[  318.086318][ T6758]  __kmalloc_node_noprof+0xc96/0x1250
[  318.094682][ T6758]  __kvmalloc_node_noprof+0xc0/0x2d0
[  318.100164][ T6758]  btree_node_sort+0x78a/0x1d30
[  318.106219][ T6758]  bch2_btree_post_write_cleanup+0x1b0/0xf20
[  318.112509][ T6758]  bch2_btree_node_write+0x21c/0x2e0
[  318.118008][ T6758]  __btree_node_flush+0x606/0x680
[  318.123332][ T6758]  bch2_btree_node_flush0+0x35/0x60
[  318.128727][ T6758]  journal_flush_pins+0xce6/0x1780
[  318.134102][ T6758]  __bch2_journal_reclaim+0xda8/0x1670
[  318.139743][ T6758]  bch2_journal_reclaim_thread+0x18e/0x760
[  318.145851][ T6758]  kthread+0x3e2/0x540
[  318.150091][ T6758]  ret_from_fork+0x6d/0x90
[  318.154833][ T6758]  ret_from_fork_asm+0x1a/0x30
[  318.159807][ T6758] 
[  318.162995][ T6758] CPU: 1 UID: 0 PID: 6758 Comm: bch-reclaim/loo Tainted: G        W          6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  318.175886][ T6758] Tainted: [W]=WARN
[  318.179805][ T6758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  318.192840][ T6758] =====================================================
[  318.199893][ T6758] Disabling lock debugging due to kernel taint
[  318.207182][ T6758] Kernel panic - not syncing: kmsan.panic set ...
[  318.213742][ T6758] CPU: 1 UID: 0 PID: 6758 Comm: bch-reclaim/loo Tainted: G    B   W          6.13.0-rc6-syzkaller-00231-g77a903cd8e5a #0
[  318.226567][ T6758] Tainted: [B]=BAD_PAGE, [W]=WARN
[  318.231711][ T6758] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  318.241905][ T6758] Call Trace:
[  318.245293][ T6758]  <TASK>
[  318.248340][ T6758]  dump_stack_lvl+0x216/0x2d0
[  318.253226][ T6758]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  318.259222][ T6758]  dump_stack+0x1e/0x24
[  318.263567][ T6758]  panic+0x4e2/0xcf0
[  318.267656][ T6758]  ? kmsan_get_metadata+0xc1/0x1c0
[  318.272963][ T6758]  kmsan_report+0x2c7/0x2d0
[  318.277637][ T6758]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  318.283631][ T6758]  ? __msan_warning+0x95/0x120
[  318.288613][ T6758]  ? bch2_dirent_validate+0x5ee/0xc30
[  318.294198][ T6758]  ? bch2_bkey_val_validate+0x2b5/0x440
[  318.299963][ T6758]  ? validate_bset_keys+0x1531/0x2080
[  318.305539][ T6758]  ? validate_bset_for_write+0x142/0x290
[  318.311393][ T6758]  ? __bch2_btree_node_write+0x53df/0x6830
[  318.317404][ T6758]  ? bch2_btree_node_write+0xa5/0x2e0
[  318.322972][ T6758]  ? __btree_node_flush+0x606/0x680
[  318.328347][ T6758]  ? bch2_btree_node_flush1+0x38/0x60
[  318.333896][ T6758]  ? journal_flush_pins+0xce6/0x1780
[  318.339349][ T6758]  ? __bch2_journal_reclaim+0xda8/0x1670
[  318.345156][ T6758]  ? bch2_journal_reclaim_thread+0x18e/0x760
[  318.351312][ T6758]  ? kthread+0x3e2/0x540
[  318.355718][ T6758]  ? ret_from_fork+0x6d/0x90
[  318.360479][ T6758]  ? ret_from_fork_asm+0x1a/0x30
[  318.365617][ T6758]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  318.371610][ T6758]  ? kmsan_get_metadata+0x13e/0x1c0
[  318.376972][ T6758]  ? kmsan_get_metadata+0x13e/0x1c0
[  318.382331][ T6758]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  318.388308][ T6758]  ? kmsan_get_metadata+0x13e/0x1c0
[  318.393663][ T6758]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  318.399647][ T6758]  ? kmsan_get_metadata+0x13e/0x1c0
[  318.405023][ T6758]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  318.411009][ T6758]  ? kmsan_get_metadata+0x13e/0x1c0
[  318.416372][ T6758]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  318.422351][ T6758]  __msan_warning+0x95/0x120
[  318.427134][ T6758]  bch2_dirent_validate+0x5ee/0xc30
[  318.432522][ T6758]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  318.438500][ T6758]  ? kmsan_get_metadata+0x13e/0x1c0
[  318.443862][ T6758]  ? __pfx_bch2_dirent_validate+0x10/0x10
[  318.449775][ T6758]  bch2_bkey_val_validate+0x2b5/0x440
[  318.455367][ T6758]  validate_bset_keys+0x1531/0x2080
[  318.460815][ T6758]  validate_bset_for_write+0x142/0x290
[  318.466487][ T6758]  __bch2_btree_node_write+0x53df/0x6830
[  318.472343][ T6758]  ? __update_load_avg_se+0xbb0/0x11a0
[  318.478064][ T6758]  bch2_btree_node_write+0xa5/0x2e0
[  318.483474][ T6758]  __btree_node_flush+0x606/0x680
[  318.488682][ T6758]  ? __btree_node_flush+0xd3/0x680
[  318.493991][ T6758]  ? __pfx_bch2_btree_node_flush1+0x10/0x10
[  318.500076][ T6758]  bch2_btree_node_flush1+0x38/0x60
[  318.505470][ T6758]  journal_flush_pins+0xce6/0x1780
[  318.510794][ T6758]  __bch2_journal_reclaim+0xda8/0x1670
[  318.516438][ T6758]  ? __try_to_del_timer_sync+0x3d3/0x420
[  318.522301][ T6758]  bch2_journal_reclaim_thread+0x18e/0x760
[  318.528311][ T6758]  kthread+0x3e2/0x540
[  318.532542][ T6758]  ? __pfx_bch2_journal_reclaim_thread+0x10/0x10
[  318.539061][ T6758]  ? __pfx_kthread+0x10/0x10
[  318.543807][ T6758]  ret_from_fork+0x6d/0x90
[  318.548392][ T6758]  ? __pfx_kthread+0x10/0x10
[  318.553149][ T6758]  ret_from_fork_asm+0x1a/0x30
[  318.558127][ T6758]  </TASK>
[  318.561532][ T6758] Kernel Offset: disabled
[  318.565916][ T6758] Rebooting in 86400 seconds..