last executing test programs:

55.019322132s ago: executing program 2 (id=325):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$unix(0x1, 0x2, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x44, r2, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x7ff, 0x2a}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller1\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0xc}]}, 0x44}, 0x1, 0x0, 0x0, 0x91}, 0x0) (fail_nth: 4)

54.817553164s ago: executing program 2 (id=327):
socket$inet_sctp(0x2, 0x5, 0x84)
bpf$PROG_LOAD(0x5, &(0x7f000000d000)={0xa, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="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"], &(0x7f0000014ff5)='GPL\x00', 0x2, 0x1000, &(0x7f0000014000)=""/4096, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x19)
bpf$BPF_PROG_QUERY(0x9, &(0x7f0000000400)={@map=r1, 0x4, 0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

54.737124959s ago: executing program 2 (id=328):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/firmware/fdt', 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000540)='uid_map\x00')
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="747329d30f2c379b06399e350000002126f152ea7ab184992be05333f58135e3ac4c501de68af9ad8a1337f43bdebc83cf0eb5e0374f780ef20d9b968c083e7fe6eef135d40647184d131f2ea48b21d8576c64d34eabb543e83c576d145a66a2f8fcb3cb46", @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',\x00'])
openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/power/resume', 0x40001, 0xe1981c83da7e4c73)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000006140)={0x2020}, 0x2020)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = mq_open(&(0x7f0000000100)='&\x00', 0x40, 0x100, 0x0)
mq_notify(r3, &(0x7f0000000000)={0x110c230000, 0x3, 0x2, @thr={0x0, 0x0}})

54.463391644s ago: executing program 2 (id=331):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000100)='./bus\x00', 0x1000840, &(0x7f00000003c0)={[{@fat=@sys_immutable}, {@uni_xlate}, {@rodir}, {@iocharset={'iocharset', 0x3d, 'cp1250'}}, {@shortname_mixed}, {@uni_xlateno}, {@iocharset={'iocharset', 0x3d, 'koi8-ru'}}, {@fat=@codepage={'codepage', 0x3d, '949'}}, {@uni_xlate}, {@rodir}, {@shortname_lower}, {@utf8no}]}, 0x3, 0x350, &(0x7f0000000c00)="$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")
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
r0 = memfd_create(&(0x7f0000000580)='+\x88\xc7s\x00\x00\x942nodev\x00\x00\x8cZ_Pv\x03\xa7\xc1\b\xec\x90Q\x85\x83\xcd\x16\xdc4\x00\x8a\xe5N\x8c\x17\xfd\xc5\xad\xd5y\x15\x1f`\x13\x96\x04\xd1.\x8cA\x17\x86\xb7-j!Y\x92\xd9\xa3\xf0\x8a*\xc4\x87\xcd\x1fl\xfc\xf3]\xb8\xbd\x02\v<\fl\xa6my\x1a@<\x19\"\'\xb4]\xa5\xfb\x05\xcb\x9c\xe2\xc8\x05\xa5\xa5\xeb\xa9\xef\xe3\xf1b\x81\xec\xac\xb6\x80\xd5\xf5S\x85\x06O\x05\xba\xa1\x15\xcc\x17\xe8s\x95\x95B\xee_\x98\x91)\xe7\xa8+\x8c\xee\x83@q\x16\xcd3\xebm\x01\xc0`i\x01m:\xcc\x14\xed<\xcf?3n\xfd\n>\x03\xae\f \xdbH\'\x05\x82\xdbLE\x14\xcd\x00'/193, 0x7)
fcntl$addseals(r0, 0x409, 0x12)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1008, 0x0, 0x13, r0, 0x0)
r1 = syz_clone(0x20300000, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r2)
mount(0x0, &(0x7f0000000280)='./bus\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
ptrace(0x10, r1)
r3 = syz_open_procfs(r1, &(0x7f0000000040)='status\x00')
preadv(r3, &(0x7f0000000680)=[{&(0x7f0000000400)=""/121, 0x79}], 0x1, 0xffffffff, 0x1)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000240)='./file0\x00', 0x8801, 0x0, 0x10, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r5 = socket$inet6_dccp(0xa, 0x6, 0x0)
getsockopt$IP_VS_SO_GET_INFO(r5, 0x0, 0x481, &(0x7f00000006c0), &(0x7f0000000700)=0xc)
r6 = dup(r4)
write$FUSE_BMAP(r6, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r6, &(0x7f00000012c0)=ANY=[@ANYBLOB="b0"], 0xb0)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000340)=ANY=[@ANYRES32=0x0, @ANYRESHEX=r3, @ANYBLOB="00100000000000", @ANYRES16=0x0])
openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f00000001c0)={0x0, <r7=>0x0, <r8=>0x0}, &(0x7f0000000200)=0xc)
read$FUSE(r6, &(0x7f0000003340)={0x2020, 0x0, 0x0, <r9=>0x0}, 0x2020)
r10 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
r11 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r11, 0x84, 0x6f, &(0x7f00000003c0)={<r12=>0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x4e22, @rand_addr=0x64010101}]}, &(0x7f0000000400)=0x10)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r11, 0x84, 0x25, &(0x7f0000000740)={r12, @in={{0x2, 0x4e1e, @rand_addr=0x640100ff}}, 0x0, 0x80}, 0x90)
syz_mount_image$fuse(&(0x7f00000000c0), &(0x7f0000000140)='./file0\x00', 0x2001, &(0x7f0000000800)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r10, @ANYBLOB=',rootmode=00000000000000000010000,user_id=', @ANYRESDEC=r7, @ANYBLOB="0000000000177f292b0d2af53977db92eee4cb61b66a462138f64497adb73e1bc440c5f8b71db81a6b3e2848f61559435ec8bca13002d4bb53927a5654dc9a6cc928ecddf9011cb814a2a5a34cec176e05f6a6825143f1faf5c16063fa7f6be7aff0f8c7374551ac93b31f", @ANYRESDEC=r8, @ANYBLOB=',allow_other,smackfsroot=9p\x00,permit_directio,fowner=', @ANYRESDEC=r9, @ANYBLOB=',dont_appraise,\x00'], 0x0, 0x0, &(0x7f0000000440)="900923c58009421f6dd503ff0bba16932fb240fbd6acfe31ec10e6ee0e9d25e058e8d20c7c169ee7b5e31f53d42ee60c5970e91ddf97a66df4dae6ea8db2cd659d594d45ae546d99f0dba1a74d32b0e38f7a8d892bda19a189bab820c405184852d06796c1ee9486bc61f7eff046dd99db2ba47f8c1e228cef0a9c47662206f11bd0f050db7c640e897370ab41f16f5d1559b7f605e5581ae28ed47ef25b4bd49455f9f79bb3cf3ecf75d3e00cb0a1da2e3a39f65275eb20052f617992518e3fbeed693bd11d5af25eeec4ef9b94c0a270705292260ea952d1a9936ccc")

53.103462662s ago: executing program 2 (id=336):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f00000000c0)=@framed={{0xffffffb4, 0x2, 0x0, 0x0, 0x0, 0x61, 0x11, 0x69}, [@call]}, &(0x7f0000000380)='GPL\x00', 0x5, 0xff92, &(0x7f00000003c0)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000100), 0x36c, 0x10, &(0x7f0000000000), 0x26, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) (async)
r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x80000000003, 0x101301)
ioctl$USBDEVFS_FREE_STREAMS(r0, 0xc0105500, &(0x7f0000000000)=ANY=[@ANYBLOB="230102ffe02a17006000000002000020"]) (async)
r1 = socket$inet6(0xa, 0x800000000000002, 0x0)
sendto$inet6(r1, 0x0, 0x0, 0x4c881, &(0x7f0000000540)={0xa, 0x4e24, 0x0, @local, 0x6}, 0x1c) (async)
sendmmsg$inet6(r1, &(0x7f0000002540)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000040)='v', 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f00000001c0)="f8", 0x1}], 0x11, &(0x7f00000026c0)=ANY=[], 0x318}}], 0x2, 0x400c404) (async)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000140)={'gre0\x00', <r2=>0x0, 0x1, 0x7800, 0x4000000, 0x1, {{0x10, 0x4, 0x3, 0x23, 0x40, 0x68, 0x0, 0x4, 0x29, 0x0, @local, @multicast2, {[@ssrr={0x89, 0xf, 0x1e, [@initdev={0xac, 0x1e, 0x1, 0x0}, @loopback, @broadcast]}, @lsrr={0x83, 0x1b, 0xd, [@initdev={0xac, 0x1e, 0x0, 0x0}, @private=0xa010100, @broadcast, @multicast1, @local, @private=0xa010101]}]}}}}})
ioctl$sock_inet6_SIOCDELRT(r1, 0x890c, &(0x7f0000000200)={@private0={0xfc, 0x0, '\x00', 0x1}, @remote, @private2={0xfc, 0x2, '\x00', 0x1}, 0x1640, 0x7, 0x2, 0x400, 0xa8bb, 0x10, r2})

52.313880387s ago: executing program 2 (id=343):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f00000002c0)={'ip6_vti0\x00', &(0x7f0000000240)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @empty}})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x4)
sendmsg$NL80211_CMD_GET_COALESCE(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000200)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x8f)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3c0000001000030400000006000000005dcc0300", @ANYRES32=r3, @ANYBLOB="71e79fd800000000140012800c0001006d616376746170001400028008000500", @ANYRES32=r4], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtfilter={0x24, 0x10, 0x1, 0x70bd2a, 0x1000, {0x0, 0x0, 0x74, r3, {0x5, 0xf}, {0xffe0}, {0xa, 0x1}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4004140}, 0x0)

52.244500951s ago: executing program 32 (id=343):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f00000002c0)={'ip6_vti0\x00', &(0x7f0000000240)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @empty}})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x4)
sendmsg$NL80211_CMD_GET_COALESCE(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000200)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x8f)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3c0000001000030400000006000000005dcc0300", @ANYRES32=r3, @ANYBLOB="71e79fd800000000140012800c0001006d616376746170001400028008000500", @ANYRES32=r4], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtfilter={0x24, 0x10, 0x1, 0x70bd2a, 0x1000, {0x0, 0x0, 0x74, r3, {0x5, 0xf}, {0xffe0}, {0xa, 0x1}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4004140}, 0x0)

8.957586466s ago: executing program 3 (id=848):
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0, 0x0, {0x40, 0x4, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x120, 0x6000, 0x0, 0x0, 0x0, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x14c0348, 0x0, 0x1, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}}, 0x50)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x1)
ioctl$TIOCGPTPEER(r2, 0x929, 0x8)

8.833948363s ago: executing program 3 (id=850):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$KDFONTOP_GET(r0, 0x4b72, &(0x7f0000000000)={0x1, 0x0, 0x12, 0x1c, 0x117, 0x0})

8.772845146s ago: executing program 3 (id=851):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000001180)=0x2000001)
mmap$dsp(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3, 0x12, r0, 0x0)
ioctl$SNDCTL_DSP_GETOPTR(r0, 0x5008, 0x0)
ioctl$SNDCTL_DSP_GETOPTR(r0, 0x800c5012, &(0x7f0000000080))

4.121534514s ago: executing program 5 (id=950):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000001bc0)=@newchain={0x24, 0x64, 0x2, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0xf, 0x7}, {0xffff, 0x4}, {0xffe0, 0xa}}}, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=@newqdisc={0x24, 0x24, 0xf0b, 0xfffffffd, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000600)=@newtfilter={0x30, 0x2c, 0xd27, 0x3, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x6}, {}, {0x1c, 0xfff1}}, [@filter_kind_options=@f_u32={{0x8}, {0x4}}]}, 0x30}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

4.029290049s ago: executing program 5 (id=952):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f00000003c0)={0x0, 0x465f}, 0x8)
bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmmsg$inet6(r0, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000000240)='\x00', 0x1}], 0x1}}], 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x79, &(0x7f0000000040)=ANY=[], 0x8)

3.630258802s ago: executing program 4 (id=964):
open(&(0x7f0000000480)='./cgroup.cpu/cgroup.procs\x00', 0x181842, 0x94)

3.592063814s ago: executing program 4 (id=966):
socket$netlink(0x10, 0x3, 0x0)
r0 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x34f}, &(0x7f00000002c0)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x3, &(0x7f0000000000)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)

3.492740929s ago: executing program 4 (id=969):
socket(0x2, 0x80805, 0x0)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x84, @dev={0xac, 0x14, 0x14, 0x2d}, 0x4e20, 0x3, 'wrr\x00', 0x1, 0x2, 0x6e}, 0x2c)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x6)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x15d74000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0xffd}, 0x2a, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, 0x0)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f0000000380)={0x0, 0x80000})
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb), &(0x7f0000cab000)=0xc)
keyctl$chown(0x4, 0x0, 0xee00, 0x0)
keyctl$setperm(0x5, 0x0, 0x1100100)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0xffffff9e, &(0x7f0000000000)={&(0x7f00000009c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01130000000000000000010000000900010073797a30000000003c000000090a010400000000000000180100000008000a40000000000900020073797a32000000000900010700797a30000000000800054000000008740000000c0a010300000000000000000100000008000440000000000900010073797a300000000038000380340000800400018004000680140007800c000100636f756e7465720004000280140001800c00cb00636f756e7465720080170280140000001000010000000000000000000000000a"], 0xe4}}, 0x0)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r5, 0x0, 0x487, &(0x7f0000000580)={{0x84, @multicast2, 0x4e23, 0x3, 'lc\x00', 0x2, 0x4, 0x7e}, {@private=0xa010102, 0x4e20, 0x2, 0xc8, 0x80012d58, 0x12d5c}}, 0x44)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0)
mount(&(0x7f0000000040)=@sr0, 0x0, &(0x7f00000000c0)='hfsplus\x00', 0x100000, &(0x7f0000000100)='*-/+^]\x00')
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000880)=@raw={'raw\x00', 0x3c1, 0x3, 0x2e8, 0x130, 0x2b8, 0x182, 0x0, 0x0, 0x220, 0x3a8, 0x3a8, 0x220, 0x3a8, 0x3, 0x0, {[{{@uncond, 0x0, 0xc8, 0x130, 0x0, {0x0, 0xe0ffff00000000}, [@common=@hl={{0x24}, {0x1, 0x7}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x1, 0x2, 0x6, 0x3, 'syz1\x00', 'syz0\x00', {0x6}}}}, {{@uncond, 0x0, 0xcc, 0xf0, 0x0, {}, [@common=@unspec=@addrtype1={{0x28}, {0x0, 0x920, 0xb}}]}, @common=@inet=@SYNPROXY={0x24, 'SYNPROXY\x00', 0x0, {0x8, 0x3, 0x8}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x344)

2.690554786s ago: executing program 5 (id=971):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
recvmmsg(r0, &(0x7f0000006480)=[{{0x0, 0x0, 0x0}, 0x7fff}], 0x1, 0x40010102, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x4290, 0x4)
sendto$inet(r0, &(0x7f0000000040)='\f\x00', 0xffeb, 0x0, &(0x7f0000000340), 0x10)

2.690415036s ago: executing program 0 (id=972):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r0, 0x700, 0x0)

2.690344676s ago: executing program 0 (id=973):
syz_emit_vhci(&(0x7f0000000080)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x22, 0x1, 0x2043}}}, 0x7)

2.61986775s ago: executing program 4 (id=974):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000440)="67d890", 0x3}], 0x1, 0x0, 0x0, 0x1}, 0x0)
close(r0)

2.566284703s ago: executing program 0 (id=975):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000100)={0x18, 0x56, 0x601, 0x1, 0x0, "", [@typed={0x8, 0x0, 0x0, 0x0, @fd=r0}]}, 0x18}], 0x1}, 0x0)

2.566079443s ago: executing program 4 (id=976):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x7, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r2, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x10)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
sendmsg$sock(r2, &(0x7f00000034c0)={0x0, 0x0, 0x0}, 0x0)

2.565907843s ago: executing program 0 (id=977):
r0 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r0, &(0x7f00000005c0)={0x2, 0x0, @remote}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240)=[{{0x0, 0xfffffdef, 0x0, 0x0, 0x0, 0x0, 0x10}, 0xfffffdef}], 0x4000095, 0x401eb94)

2.497964427s ago: executing program 0 (id=978):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x6, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000000), 0x6)

2.44380176s ago: executing program 1 (id=979):
r0 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0xa0002)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000100))
r1 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x88602, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r1, 0x80045017, 0x0)
r2 = syz_open_dev$sndpcmp(&(0x7f0000001200), 0x0, 0xa2c65)
write$snddsp(r2, &(0x7f0000000200)="a3", 0x1)

2.398199572s ago: executing program 0 (id=980):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x0, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x38, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r2 = syz_io_uring_setup(0x10d, 0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r3 = io_uring_setup(0x79ae, &(0x7f0000000340)={0x0, 0x1, 0x0, 0x0, 0x0, 0x0, r2})
r4 = socket$inet6(0xa, 0x40000080806, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="e80000006c00010029bd7000fcdbdf2500000000", @ANYRES32, @ANYBLOB="001000008000000008000f002000000014003500726f7365300000000000000000000000a40034801400350070696d367265673000000020000000001400350076657468305f6d614176746170000000140035006d61637674617030020000000000000014003500677265300000000000000000000000001400350076657468305f746f5f626174616476001400350001657468315f6d6163767461700000001400350067726530000000000000000000000000140035006261746164765f736c6176655f31000008000f"], 0xe8}}, 0x0)
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
bind$inet6(r4, &(0x7f000047b000)={0xa, 0x4e20, 0x4, @loopback}, 0x1c)
listen(r4, 0x20000005)
r7 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000001800), 0x80000, 0x0)
read$FUSE(r7, &(0x7f0000003380)={0x2020}, 0x2020)
getpeername$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, &(0x7f0000000480)=0x14)
sendmsg$nl_route_sched(r7, 0x0, 0x20000000)
r8 = socket$inet6(0xa, 0x6, 0x0)
setsockopt$SO_BINDTODEVICE(r8, 0x1, 0x19, &(0x7f0000000180)='wg0\x00', 0x10)
close_range(r3, 0xffffffffffffffff, 0x0)

2.333996476s ago: executing program 1 (id=981):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f00000015c0), r0)
sendmsg$NFC_CMD_ENABLE_SE(r0, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000ffdbdfa51100000008001500c000000008000100", @ANYBLOB="02e3e59e74d1"], 0x24}, 0x1, 0x0, 0x0, 0xb23344771e251ab2}, 0x4000080)

2.265341831s ago: executing program 1 (id=982):
r0 = syz_open_procfs(0x0, &(0x7f0000019340)='net/dev\x00')
pread64(r0, &(0x7f0000000080)=""/102356, 0x18fd4, 0xc2a)

2.194168565s ago: executing program 1 (id=983):
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000ac0), 0xffffffffffffffff)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
syz_open_dev$vim2m(0x0, 0x4, 0x2)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000001c0)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(0xffffffffffffffff, 0x0, 0x24008011)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000340)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000200)={0x2c, r7, 0x1, 0x0, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xc, 0x4, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x5, 0x1, [0x1b]}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x200440c0}, 0x4004)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x7101})
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0xb, &(0x7f0000000300)=ANY=[@ANYRESOCT=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r9, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7})
ioctl$sock_netdev_private(r9, 0x8949, &(0x7f0000000000))
socket$nl_route(0x10, 0x3, 0x0)

1.246407569s ago: executing program 5 (id=984):
r0 = syz_open_dev$video(&(0x7f0000000080), 0x7, 0x0)
ioctl$VIDIOC_S_CROP(r0, 0xc0405627, &(0x7f0000000040)={0x9, {0xffffff7f, 0xea, 0x9, 0x2}})

1.22360757s ago: executing program 1 (id=985):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000001c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x56)
ioctl$int_in(r0, 0x5421, &(0x7f0000000340)=0x4)
connect$unix(r0, &(0x7f0000000380)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
socket$packet(0x11, 0x3, 0x300)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r2, &(0x7f0000000140), 0x0, 0x0, &(0x7f0000000280)={0xa, 0x0, 0x0, @private2}, 0x1c)
getsockopt$inet_int(0xffffffffffffffff, 0x10d, 0xfa, 0x0, &(0x7f0000000280))
setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r2, 0x84, 0x1e, &(0x7f0000000000)=0x4, 0x4)
openat$random(0xffffffffffffff9c, &(0x7f0000000000), 0x101082, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
r5 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2a, &(0x7f0000000080)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2b, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2c, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r6=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r6], 0x20}}, 0x0)

1.090098348s ago: executing program 5 (id=986):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2b, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7b, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(0xffffffffffffffff, 0xc06864a2, &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "d20bddda7d1db9342de76eec7967fe97751f13a23aeaacb0565c1c2251560ed1"}})
ioctl$DRM_IOCTL_SET_CLIENT_CAP(0xffffffffffffffff, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="6c00000010001fff010000000000000000060000", @ANYRES32, @ANYBLOB="81ffffff00000000440012800b00010067656e6576650000340002800500090000000000050009000100000005000a000000000005000300f90000000500040040000000050004000800000008000a00", @ANYBLOB="b5"], 0x6c}}, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000180)=@o_path={&(0x7f0000000000)='./file1\x00', 0x0, 0x4010, r2}, 0x14)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f0000d84000)={0xa, 0x2, 0x200008, @loopback, 0x39}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f00000010c0)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}}, 0x0, 0x0, 0x1b, 0x0, "61a1ed8439cde8054f2ada6fcd5fe76b933e8bb0ac60081e33dffa150835f7519d5f73b4f5d80eb4881a5b98cb9fb96d225d602392f816d0bdcc09b5063087117502d8c24f1fe97f61fd27a06d6a38a7"}, 0xd8)
sendto$inet6(r4, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
setfsuid(0xee01)
write$cgroup_int(r5, &(0x7f0000000040)=0x1c9, 0x12)
r6 = memfd_create(&(0x7f0000000940)='\x00\x00\x04\x00\x1f\xd7\xdc1\x02{-3yE7\xb4\xa4\xc4\x85s\xedz\xef\x96\xe4:\xec>\xa2\x14\xb9\xa0\xfeA\x7f0\xee\xdeR\x94\x1f\xb8j\xc8;\x03\xfa):h\xffmkK\xef\x90\xfaC\f\x99\x18%\xaaa\b\xd8\f\xfb\xae\x0e\xb6\r\x04\x16\xb3\xdb\xf0\x97c\xddO\xceZD\xee/\xf7\xe3\xd5B\x88T\xc9\xf0\x8bJ\\\x1c\xa2&\f\xf7\x8eK\x9d\xe9\xca\x82\xd7\xa0b\xf4\xd2\xac&]\xe8&Knp\xd9\xe1\xe5F2\xf8\xa6+H\xc8\xa3\xe1[\xe3\xae\xcd\xd2\x89\xc1\x96<\xf0\xdf\xb8\xed\xa2\xb1\x9a\xf1vU9\xa9\xb9\x01\xc9\xf9\xcd\xf0]\x14I\xb4\x7f2\x84\xdb\xb7\x05\x8d\xa5\xf7{ww\xc8\xb8B\x90\xeci\x9bc{\xd0M\b%\x06\xd7\x17\xff\xc6\x8be\x9e\a\xe4\xb5 \xd9\x1c\xceM55\x99!\xcc\xac\\\b\xdc\x82\xf9\x87\x1em|\xc7\a,Fg4\x1d\xd9\xee\xd0|8\f\xcc\x7f\x15<8YW\x16zO9\xa7\x8a\xdd\xcc|\xbe\xda\x14\xf8\x8f\x94\xad\x90\xa51\xc6\xd0\xd7\x86\xb1\x15x\x12\xd2_?\xfa\xf8\xcd\xcf\xb7\x95\x1a\xd2Ue\xd5\xfb\\\x89\x11\xd0\xde\x04\x88L\x17Q\x94\x14\x0f\xc7\xdb\x86\x16|\xe9=\xee\x06U\x8a\xe8=\xe0\xf9\xce\xe4\xebM\a3\xba\x98\x9dv\xba\xfb\x7fk\xf0\x9a\xbf\x91KCC.B_:w\xff<z\xba\xbe\xaa\x1a\xde6\x8dz9]\xa3\xdbX\x1e\t\xb9\xa6N\xce\x1aH\x90\x01\xe1\xb4\x85\xf1\x8b\xe3$\a$\xb7\xc3\x9c\x06Tpe4\x80o\x87M\xc2\x18\xaa\x8c\x0f\x7f\x15p!\xa7\xe5\x82\x01O\x85\x8fx\xb9\xff\xd6qXX\x85\xd6\x00\x00\x00\x00\x00\x00\x00\x00', 0x1)
execveat(r6, 0x0, 0x0, 0x0, 0x1000)

1.080095838s ago: executing program 4 (id=987):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x20, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000140)=""/196, 0xc4}], 0x1, 0x200000, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000600)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000580)=0x1, 0x4)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=@newlink={0x38, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88adfda5}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @wireguard={{0xe}, {0x4}}}]}, 0x38}}, 0x0)
r5 = socket(0x840000000002, 0x3, 0xff)
setsockopt$inet_int(r5, 0x0, 0x16, 0x0, 0x0)
write$P9_RSTATu(r0, &(0x7f00000004c0)=ANY=[@ANYBLOB="930200007d00000005f0000000000000000000000000000000000000000000000000000000000000000000000000000000001f00206e6f6465767b6376666f7892ffffff8102000000000031ffcebc920000003800704a86cec602007dfa673effeb09b5351f5bde05f700000000187b8200b500003b595fcb14034354b9fd9ef196a51cd5157adc8106b494e11200cfc2001000000000000000000000f313f6005500f8f669fb716dcf315ecaf385409ac65b9408678c2c3b9e1d52c36cde7ba4a400b4b0b4f174a666a8529a451b3407dbdab2884baf050000000000000047ec21cabff20f9c1cbe36f4fd1a4cc280e8d489da649a37002c016f6465762d6eb17b2300f9daa5ee23266ecf85fea65e42d979a3fde5f475daf03b1172d97badc7095afd76fe4f0441f7f7741eac030000ecff0000dba0baf7f09ff53c7e4d1ad66e2d070198019f30118447aa9a74f51685f506ae894806878267d5a1298d792c4a37f2e1cbbd2482929a0d8972b5cf732ea5b0d723859d", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0], 0x232)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x8ef, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)

441.602555ms ago: executing program 3 (id=988):
openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
r0 = syz_io_uring_setup(0x24ad, &(0x7f0000000300)={0x0, 0x10077f4, 0x10100, 0x3, 0x5c}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x22}})
io_uring_enter(r0, 0x2def, 0x0, 0x0, 0x0, 0x0)

242.268936ms ago: executing program 1 (id=989):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000800)=ANY=[@ANYRES64=r2, @ANYRES64=r1, @ANYRES32=r2, @ANYRESDEC=r1], 0x7c}}, 0x0)
sendmsg$NFT_MSG_GETRULE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="6c000000190a010200000030000000000900010073797a30000000000900010073797a30000000002c000580080001400000600008000240000000020800024000000007080001400000005e080001400000000008000a40"], 0x6c}}, 0x0)

242.006697ms ago: executing program 3 (id=990):
r0 = syz_open_dev$sndctrl(&(0x7f0000000e00), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc1105511, &(0x7f00000000c0)={{0xc, 0x0, 0x0, 0x6040000, 'syz1\x00', 0xb6b}, 0x0, [0x0, 0x2, 0x7ffc, 0x0, 0x9, 0x100000000, 0x0, 0x4, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x8, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2002, 0x100000000, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffd, 0x4, 0x0, 0x0, 0x2, 0x0, 0x2, 0x0, 0x0, 0x0, 0x3, 0x20, 0x0, 0xffffffff, 0x11, 0x0, 0x9, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x3, 0xfffffffe, 0x0, 0x80000, 0xfffffdfffffffffe, 0xd237, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb, 0x0, 0x200000401, 0xffffffffffffffff, 0xff, 0x0, 0x0, 0x1, 0x0, 0x0, 0xd89, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xdf9cd90, 0x2, 0x6, 0x0, 0x7, 0x0, 0x0, 0xbb, 0xfffffffffffffffe, 0x7, 0x0, 0x0, 0x4000000000000, 0x7ffffffd, 0xffffffff, 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0xd, 0x0, 0x0, 0x0, 0xac1f, 0x0, 0x80000000, 0x8, 0x804, 0x0, 0x0, 0x3ff, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x3]})

238.333067ms ago: executing program 5 (id=991):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x10, &(0x7f0000000740)=ANY=[@ANYRES32], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f00000002c0)={0x2, 0xd, 0xd, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x38, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000100)={&(0x7f0000000a00)=ANY=[@ANYBLOB="48020000", @ANYRES16=r1, @ANYBLOB="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"], 0x248}, 0x1, 0x0, 0x0, 0x20000050}, 0x1)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_DEL(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000840)={0x1c, r4, 0x1, 0x0, 0x25dfdbfd, {0x54}, [@DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x3}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8010}, 0x8000)
syz_io_uring_setup(0x2dd0, 0x0, 0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x11c, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, &(0x7f0000000180)='wg0\x00', 0x10)
r5 = socket(0x15, 0x5, 0x0)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_SETSEL(r6, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0xa00, 0x0, 0x80, 0x100}})
getsockopt(r5, 0x200000000114, 0x2714, 0x0, &(0x7f0000000000))

0s ago: executing program 3 (id=992):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000240)=[@mss, @sack_perm, @timestamp, @mss={0x2, 0x1}, @window, @window={0x3, 0x0, 0xfffc}, @timestamp, @timestamp], 0x11)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='veno\x00', 0x5)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

435]  __should_failslab+0xbc/0x110
[26631.736881][ T6435]  should_failslab+0x10/0x28
[26631.738016][ T6435]  slab_pre_alloc_hook+0x64/0xe8
[26631.739309][ T6435]  __kmalloc+0xc0/0x4c8
[26631.740357][ T6435]  hfsplus_find_init+0x84/0x1bc
[26631.741596][ T6435]  hfsplus_lookup+0x17c/0x98c
[26631.742805][ T6435]  __lookup_slow+0x250/0x388
[26631.743947][ T6435]  lookup_slow+0x60/0x84
[26631.744923][ T6435]  walk_component+0x394/0x4cc
[26631.746031][ T6435]  path_lookupat+0x13c/0x3d0
[26631.747276][ T6435]  filename_lookup+0x1c4/0x4c8
[26631.748500][ T6435]  user_path_at_empty+0x5c/0x1a4
[26631.749815][ T6435]  path_setxattr+0xbc/0x258
[26631.750943][ T6435]  __arm64_sys_setxattr+0xbc/0xd8
[26631.752259][ T6435]  invoke_syscall+0x98/0x2b8
[26631.753452][ T6435]  el0_svc_common+0x138/0x258
[26631.754719][ T6435]  do_el0_svc+0x58/0x14c
[26631.755658][ T6435]  el0_svc+0x7c/0x1f0
[26631.756664][ T6435]  el0t_64_sync_handler+0x84/0xe4
[26631.758008][ T6435]  el0t_64_sync+0x1a0/0x1a4
[26631.854221][ T6454] netlink: 4 bytes leftover after parsing attributes in process `syz.3.227'.
[26631.912027][ T5562] hfsplus: b-tree write err: -5, ino 4
[26632.065852][ T6448] loop4: detected capacity change from 0 to 40427
[26632.155046][ T6467] 9pnet: Insufficient options for proto=fd
[26632.175056][ T6448] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[26632.182886][ T6448] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[26632.192683][ T6450] loop2: detected capacity change from 0 to 40427
[26632.196900][ T6467] netlink: 15 bytes leftover after parsing attributes in process `syz.1.230'.
[26632.226794][ T6448] F2FS-fs (loop4): Found nat_bits in checkpoint
[26632.234532][ T6450] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[26632.236503][ T6450] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[26632.276680][ T6450] F2FS-fs (loop2): Found nat_bits in checkpoint
[26632.288626][ T6448] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[26632.293856][ T6448] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[26632.329355][ T6450] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[26632.331167][ T6450] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[26632.646487][ T6454] loop3: detected capacity change from 0 to 32768
[26632.740163][ T6454] XFS (loop3): Mounting V5 Filesystem
[26632.942555][ T6477] loop1: detected capacity change from 0 to 32768
[26632.952607][ T6489] loop4: detected capacity change from 0 to 1024
[26632.964430][ T6454] XFS (loop3): Ending clean mount
[26632.989438][ T6450] attempt to access beyond end of device
[26632.989438][ T6450] loop2: rw=2049, want=45112, limit=40427
[26632.995528][ T6450] attempt to access beyond end of device
[26632.995528][ T6450] loop2: rw=2049, want=77880, limit=40427
[26633.028615][ T5503] XFS (loop3): Unmounting Filesystem
[26633.056526][ T6477] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode.
[26633.125761][ T6489] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[26633.151416][ T5496] ocfs2: Unmounting device (7,1) on (node local)
[26633.919990][ T6489] EXT4-fs (loop4): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,dioread_nolock,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback.
[26634.097095][ T6503] loop0: detected capacity change from 0 to 512
[26634.193898][ T6503] EXT4-fs error (device loop0): ext4_get_branch:178: inode #13: block 33619980: comm syz.0.240: invalid block
[26634.197250][ T6503] EXT4-fs (loop0): Remounting filesystem read-only
[26634.218645][ T6505] loop4: detected capacity change from 0 to 4096
[26634.223333][ T6503] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:476: comm syz.0.240: Invalid block bitmap block 0 in block_group 0
[26634.283606][ T6503] EXT4-fs (loop0): Remounting filesystem read-only
[26634.285392][ T6503] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6183: Corrupt filesystem
[26634.288267][ T6503] EXT4-fs (loop0): Remounting filesystem read-only
[26634.290643][ T6503] EXT4-fs error (device loop0): ext4_clear_blocks:883: inode #13: comm syz.0.240: attempt to clear invalid blocks 983261 len 1
[26634.294229][ T6503] EXT4-fs (loop0): Remounting filesystem read-only
[26634.295934][ T6503] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.240: invalid indirect mapped block 2683928664 (level 0)
[26634.300390][ T6503] EXT4-fs (loop0): Remounting filesystem read-only
[26634.301981][ T6503] EXT4-fs error (device loop0): __ext4_get_inode_loc:4320: comm syz.0.240: Invalid inode table block 0 in block_group 0
[26634.305625][ T6503] EXT4-fs (loop0): Remounting filesystem read-only
[26634.307349][ T6503] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5806: Corrupt filesystem
[26634.310334][ T6503] EXT4-fs (loop0): Remounting filesystem read-only
[26634.312025][ T6503] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[26634.314568][ T6503] EXT4-fs (loop0): Remounting filesystem read-only
[26634.316495][ T6503] EXT4-fs error (device loop0): __ext4_get_inode_loc:4320: comm syz.0.240: Invalid inode table block 0 in block_group 0
[26634.320523][ T6503] EXT4-fs (loop0): Remounting filesystem read-only
[26634.322291][ T6503] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5806: Corrupt filesystem
[26634.325075][ T6503] EXT4-fs (loop0): Remounting filesystem read-only
[26634.326989][ T6503] EXT4-fs error (device loop0): ext4_truncate:4272: inode #13: comm syz.0.240: mark_inode_dirty error
[26634.330712][ T6503] EXT4-fs (loop0): Remounting filesystem read-only
[26634.332393][ T6503] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[26634.334846][ T6503] EXT4-fs (loop0): Remounting filesystem read-only
[26634.336489][ T6503] EXT4-fs error (device loop0): __ext4_get_inode_loc:4320: comm syz.0.240: Invalid inode table block 0 in block_group 0
[26634.340805][ T6503] EXT4-fs (loop0): Remounting filesystem read-only
[26634.342755][ T6503] EXT4-fs (loop0): 1 truncate cleaned up
[26634.344126][ T6503] EXT4-fs (loop0): mounted filesystem without journal. Opts: noblock_validity,errors=remount-ro,. Quota mode: none.
[26634.348410][ T6503] FAULT_INJECTION: forcing a failure.
[26634.348410][ T6503] name failslab, interval 1, probability 0, space 0, times 0
[26634.352105][ T6503] CPU: 0 PID: 6503 Comm: syz.0.240 Not tainted 5.15.178-syzkaller #0
[26634.354167][ T6503] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[26634.356709][ T6503] Call trace:
[26634.357538][ T6503]  dump_backtrace+0x0/0x530
[26634.358682][ T6503]  show_stack+0x2c/0x3c
[26634.359751][ T6503]  dump_stack_lvl+0x108/0x170
[26634.360965][ T6503]  dump_stack+0x1c/0x58
[26634.362040][ T6503]  should_fail+0x3b8/0x514
[26634.363195][ T6503]  __should_failslab+0xbc/0x110
[26634.364520][ T6503]  should_failslab+0x10/0x28
[26634.365703][ T6503]  slab_pre_alloc_hook+0x64/0xe8
[26634.366908][ T6503]  kmem_cache_alloc+0x98/0x45c
[26634.368208][ T6503]  __es_insert_extent+0x538/0x12c0
[26634.369516][ T6503]  ext4_es_insert_extent+0x4fc/0x2a48
[26634.370837][ T6503]  ext4_map_blocks+0x490/0x1a44
[26634.372120][ T6503]  ext4_getblk+0x160/0x688
[26634.373270][ T6503]  ext4_bread_batch+0x84/0x448
[26634.374511][ T6503]  __ext4_find_entry+0xc8c/0x1620
[26634.375786][ T6503]  ext4_lookup+0x328/0x8c8
[26634.376909][ T6503]  path_openat+0xd9c/0x26cc
[26634.378047][ T6503]  do_filp_open+0x1a8/0x3b4
[26634.379156][ T6503]  do_sys_openat2+0x128/0x3e0
[26634.380142][ T6503]  __arm64_sys_openat+0x1f0/0x240
[26634.381407][ T6503]  invoke_syscall+0x98/0x2b8
[26634.382575][ T6503]  el0_svc_common+0x138/0x258
[26634.383800][ T6503]  do_el0_svc+0x58/0x14c
[26634.384919][ T6503]  el0_svc+0x7c/0x1f0
[26634.385941][ T6503]  el0t_64_sync_handler+0x84/0xe4
[26634.387216][ T6503]  el0t_64_sync+0x1a0/0x1a4
[26634.402084][ T6505] ntfs3: Unknown parameter 'nohid'
[26634.431330][ T6503] EXT4-fs error (device loop0): __ext4_get_inode_loc:4320: comm syz.0.240: Invalid inode table block 0 in block_group 0
[26634.435130][ T6503] EXT4-fs (loop0): Remounting filesystem read-only
[26634.673349][ T6510] loop1: detected capacity change from 0 to 128
[26635.230400][ T6513] loop3: detected capacity change from 0 to 1024
[26635.487614][ T6513] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[26636.449710][ T6513] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[26636.460282][ T6513] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 28
[26636.463496][ T6513] EXT4-fs (loop3): This should not happen!! Data will be lost
[26636.463496][ T6513] 
[26636.465658][ T6529] FAULT_INJECTION: forcing a failure.
[26636.465658][ T6529] name failslab, interval 1, probability 0, space 0, times 0
[26636.465902][ T6513] EXT4-fs (loop3): Total free blocks count 0
[26636.473653][ T6513] EXT4-fs (loop3): Free/Dirty block details
[26636.475122][ T6513] EXT4-fs (loop3): free_blocks=4293918720
[26636.476596][ T6513] EXT4-fs (loop3): dirty_blocks=16
[26636.477803][ T6513] EXT4-fs (loop3): Block reservation details
[26636.479264][ T6513] EXT4-fs (loop3): i_reserved_data_blocks=1
[26636.497808][ T6529] CPU: 1 PID: 6529 Comm: syz.2.246 Not tainted 5.15.178-syzkaller #0
[26636.500011][ T6529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[26636.502532][ T6529] Call trace:
[26636.503356][ T6529]  dump_backtrace+0x0/0x530
[26636.504475][ T6529]  show_stack+0x2c/0x3c
[26636.505554][ T6529]  dump_stack_lvl+0x108/0x170
[26636.506777][ T6529]  dump_stack+0x1c/0x58
[26636.507901][ T6529]  should_fail+0x3b8/0x514
[26636.508954][ T6529]  __should_failslab+0xbc/0x110
[26636.510135][ T6529]  should_failslab+0x10/0x28
[26636.511349][ T6529]  slab_pre_alloc_hook+0x64/0xe8
[26636.512737][ T6529]  kmem_cache_alloc+0x98/0x45c
[26636.513959][ T6529]  skb_clone+0x180/0x304
[26636.515060][ T6529]  nfnetlink_rcv+0x428/0x1dfc
[26636.516293][ T6529]  netlink_unicast+0x664/0x938
[26636.517547][ T6529]  netlink_sendmsg+0x844/0xb38
[26636.518632][ T6529]  ____sys_sendmsg+0x584/0x870
[26636.519873][ T6529]  ___sys_sendmsg+0x214/0x294
[26636.521020][ T6529]  __arm64_sys_sendmsg+0x1ac/0x25c
[26636.522300][ T6529]  invoke_syscall+0x98/0x2b8
[26636.523437][ T6529]  el0_svc_common+0x138/0x258
[26636.524570][ T6529]  do_el0_svc+0x58/0x14c
[26636.525748][ T6529]  el0_svc+0x7c/0x1f0
[26636.526807][ T6529]  el0t_64_sync_handler+0x84/0xe4
[26636.528011][ T6529]  el0t_64_sync+0x1a0/0x1a4
[26636.598199][ T6537] netlink: 4 bytes leftover after parsing attributes in process `syz.4.245'.
[26636.599234][ T6535] nftables ruleset with unbound set
[26636.604015][ T6522] loop0: detected capacity change from 0 to 8192
[26636.707677][ T6522] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[26636.711926][ T6522] REISERFS (device loop0): using ordered data mode
[26636.718114][ T6522] reiserfs: using flush barriers
[26636.734912][ T6522] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[26636.798764][ T6543] loop2: detected capacity change from 0 to 1024
[26636.815600][ T6522] REISERFS (device loop0): checking transaction log (loop0)
[26636.862208][ T6545] loop1: detected capacity change from 0 to 512
[26636.877864][ T6537] loop4: detected capacity change from 0 to 32768
[26636.901604][ T6543] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[26636.946520][ T6543] EXT4-fs (loop2): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,dioread_nolock,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback.
[26636.960590][ T6545] EXT4-fs error (device loop1): ext4_get_branch:178: inode #13: block 33619980: comm syz.1.250: invalid block
[26636.984765][ T6545] EXT4-fs (loop1): Remounting filesystem read-only
[26636.992041][ T6545] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:476: comm syz.1.250: Invalid block bitmap block 0 in block_group 0
[26637.004857][ T6545] EXT4-fs (loop1): Remounting filesystem read-only
[26637.006676][ T6545] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6183: Corrupt filesystem
[26637.010499][ T6545] EXT4-fs (loop1): Remounting filesystem read-only
[26637.013736][ T6537] XFS (loop4): Mounting V5 Filesystem
[26637.018659][ T6545] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.250: attempt to clear invalid blocks 983261 len 1
[26637.035647][ T6545] EXT4-fs (loop1): Remounting filesystem read-only
[26637.037561][ T6545] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.250: invalid indirect mapped block 2683928664 (level 0)
[26637.053030][ T6545] EXT4-fs (loop1): Remounting filesystem read-only
[26637.054798][ T6545] EXT4-fs error (device loop1): __ext4_get_inode_loc:4320: comm syz.1.250: Invalid inode table block 0 in block_group 0
[26637.090438][ T6545] EXT4-fs (loop1): Remounting filesystem read-only
[26637.092172][ T6545] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5806: Corrupt filesystem
[26637.098147][ T6545] EXT4-fs (loop1): Remounting filesystem read-only
[26637.100204][ T6545] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[26637.107904][ T6545] EXT4-fs (loop1): Remounting filesystem read-only
[26637.109716][ T6545] EXT4-fs error (device loop1): __ext4_get_inode_loc:4320: comm syz.1.250: Invalid inode table block 0 in block_group 0
[26637.114901][ T6545] EXT4-fs (loop1): Remounting filesystem read-only
[26637.116668][ T6545] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5806: Corrupt filesystem
[26637.135199][ T6545] EXT4-fs (loop1): Remounting filesystem read-only
[26637.136892][ T6545] EXT4-fs error (device loop1): ext4_truncate:4272: inode #13: comm syz.1.250: mark_inode_dirty error
[26637.140333][ T6545] EXT4-fs (loop1): Remounting filesystem read-only
[26637.142106][ T6545] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[26637.146852][ T6545] EXT4-fs (loop1): Remounting filesystem read-only
[26637.147747][ T6522] REISERFS (device loop0): Using tea hash to sort names
[26637.148605][ T6545] EXT4-fs error (device loop1): __ext4_get_inode_loc:4320: comm syz.1.250: Invalid inode table block 0 in block_group 0
[26637.157256][ T6545] EXT4-fs (loop1): Remounting filesystem read-only
[26637.159340][ T6545] EXT4-fs (loop1): 1 truncate cleaned up
[26637.160778][ T6545] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,errors=remount-ro,. Quota mode: none.
[26637.173326][ T6545] EXT4-fs error (device loop1): __ext4_get_inode_loc:4320: comm syz.1.250: Invalid inode table block 0 in block_group 0
[26637.185149][ T6522] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[26637.189824][ T6545] EXT4-fs (loop1): Remounting filesystem read-only
[26637.191340][ T6522] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[26637.226609][ T6537] XFS (loop4): Ending clean mount
[26637.249331][ T6522] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[26637.264817][ T6522] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[26637.322828][ T5497] XFS (loop4): Unmounting Filesystem
[26637.418043][ T6562] netlink: 12 bytes leftover after parsing attributes in process `syz.1.252'.
[26637.596805][ T6547] loop3: detected capacity change from 0 to 32768
[26638.064226][ T6572] capability: warning: `syz.3.256' uses 32-bit capabilities (legacy support in use)
[26638.221005][ T6575] loop4: detected capacity change from 0 to 128
[26638.348568][ T6582] loop1: detected capacity change from 0 to 512
[26638.490324][ T6582] EXT4-fs error (device loop1): ext4_get_branch:178: inode #13: block 2: comm syz.1.259: invalid block
[26638.496315][ T6582] EXT4-fs (loop1): Remounting filesystem read-only
[26638.498365][ T6582] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.259: invalid indirect mapped block 10 (level 1)
[26638.527037][ T6582] EXT4-fs (loop1): Remounting filesystem read-only
[26638.528978][ T6582] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.259: invalid indirect mapped block 8 (level 1)
[26638.532765][ T6582] EXT4-fs (loop1): Remounting filesystem read-only
[26638.534734][ T6582] EXT4-fs (loop1): 1 truncate cleaned up
[26638.536151][ T6582] EXT4-fs (loop1): mounted filesystem without journal. Opts: nodiscard,errors=remount-ro,. Quota mode: none.
[26638.542597][ T6590] loop2: detected capacity change from 0 to 128
[26638.581657][ T6592] loop0: detected capacity change from 0 to 4096
[26638.586668][ T6591] loop4: detected capacity change from 0 to 1024
[26638.594067][ T6590] EXT4-fs (loop2): Ignoring removed nobh option
[26638.615208][ T6590] EXT4-fs (loop2): mounted filesystem without journal. Opts: nobh,inode_readahead_blks=0x0000000000008000,,errors=continue. Quota mode: none.
[26638.637612][ T6582] EXT4-fs error (device loop1): ext4_lookup:1858: inode #12: comm syz.1.259: unexpected EA_INODE flag
[26638.645181][ T6591] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[26638.653662][ T6582] EXT4-fs (loop1): Remounting filesystem read-only
[26638.680740][ T6592] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000001,,errors=continue. Quota mode: writeback.
[26638.701747][ T6572] loop3: detected capacity change from 0 to 32768
[26638.709438][ T6591] EXT4-fs (loop4): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,dioread_nolock,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback.
[26638.771841][ T6572] 
[26638.771841][ T6572]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[26638.771841][ T6572] 
[26638.786452][ T6572] ERROR: (device loop3): diWrite: ixpxd invalid
[26638.786452][ T6572] 
[26638.794426][ T6572] ERROR: (device loop3): txAbort: 
[26638.794426][ T6572] 
[26638.796663][ T6572] imap: 000000005afc36a5: ffffffff 00000000 00000000 00000000
[26638.798737][ T6572] imap: 00000000f4c7c8ea: 00000004 00000002 00000000 00000000
[26638.805904][ T6572] ERROR: (device loop3): diFree: inum = 64, iagno = 0, nextiag = 0
[26638.805904][ T6572] 
[26638.894990][ T6597] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[26638.894990][ T6597] The task syz.3.256 (6597) triggered the difference, watch for misbehavior.
[26639.090904][ T5503] 
[26639.090904][ T5503]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[26639.090904][ T5503] 
[26639.093928][ T5503] 
[26639.093928][ T5503]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[26639.093928][ T5503] 
[26639.130824][ T6612] netlink: 4 bytes leftover after parsing attributes in process `syz.1.264'.
[26639.140967][ T6604] loop2: detected capacity change from 0 to 4096
[26639.235005][ T6604] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000001,,errors=continue. Quota mode: writeback.
[26639.240885][ T6604] FAULT_INJECTION: forcing a failure.
[26639.240885][ T6604] name fail_usercopy, interval 1, probability 0, space 0, times 0
[26639.248998][ T6604] CPU: 0 PID: 6604 Comm: syz.2.263 Not tainted 5.15.178-syzkaller #0
[26639.251026][ T6604] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[26639.253271][ T6604] Call trace:
[26639.254052][ T6604]  dump_backtrace+0x0/0x530
[26639.255255][ T6604]  show_stack+0x2c/0x3c
[26639.256308][ T6604]  dump_stack_lvl+0x108/0x170
[26639.257414][ T6604]  dump_stack+0x1c/0x58
[26639.258417][ T6604]  should_fail+0x3b8/0x514
[26639.259499][ T6604]  should_fail_usercopy+0x20/0x30
[26639.260708][ T6604]  simple_read_from_buffer+0xd8/0x26c
[26639.262073][ T6604]  proc_fail_nth_read+0x1a0/0x248
[26639.263347][ T6604]  vfs_read+0x278/0xb18
[26639.264358][ T6604]  ksys_read+0x15c/0x26c
[26639.265456][ T6604]  __arm64_sys_read+0x7c/0x90
[26639.266611][ T6604]  invoke_syscall+0x98/0x2b8
[26639.267724][ T6604]  el0_svc_common+0x138/0x258
[26639.268870][ T6604]  do_el0_svc+0x58/0x14c
[26639.269939][ T6604]  el0_svc+0x7c/0x1f0
[26639.270874][ T6604]  el0t_64_sync_handler+0x84/0xe4
[26639.271981][ T6604]  el0t_64_sync+0x1a0/0x1a4
[26639.455792][ T6618] loop3: detected capacity change from 0 to 4096
[26639.529397][ T5486] Bluetooth: hci4: command 0x0405 tx timeout
[26639.581633][ T6618] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000001,,errors=continue. Quota mode: writeback.
[26639.669238][ T6612] loop1: detected capacity change from 0 to 32768
[26639.738751][ T6179] af_packet: tpacket_rcv: packet too big, clamped from 24 to 4294967272. macoff=96
[26639.766281][ T6624] 9pnet: Insufficient options for proto=fd
[26639.794032][ T6612] XFS (loop1): Mounting V5 Filesystem
[26639.874462][ T6612] XFS (loop1): Ending clean mount
[26640.017046][ T5496] XFS (loop1): Unmounting Filesystem
[26640.112164][ T6644] loop0: detected capacity change from 0 to 64
[26640.133828][ T6643] loop3: detected capacity change from 0 to 128
[26640.191900][ T6644] Trying to free block not in datazone
[26640.203249][ T6643] ufs: Invalid option: "" or missing value
[26640.205145][ T6643] ufs: wrong mount options
[26640.309458][ T6643] netlink: 4 bytes leftover after parsing attributes in process `syz.3.276'.
[26640.510249][ T6650] loop3: detected capacity change from 0 to 736
[26640.536338][ T6649] loop0: detected capacity change from 0 to 512
[26640.627539][ T6649] bridge0: port 3(syz_tun) entered blocking state
[26640.636521][ T6650] Symlink component flag not implemented
[26640.638467][ T6650] Symlink component flag not implemented (122)
[26640.664807][ T6649] bridge0: port 3(syz_tun) entered disabled state
[26640.668634][ T6649] device syz_tun entered promiscuous mode
[26640.670931][ T6649] bridge0: port 3(syz_tun) entered blocking state
[26640.672774][ T6649] bridge0: port 3(syz_tun) entered forwarding state
[26640.726775][ T6650] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[26640.742705][ T6650] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[26640.757250][ T6653] loop2: detected capacity change from 0 to 4096
[26640.864997][ T6653] ntfs3: loop2: Failed to load $Extend.
[26642.069676][ T6675] netlink: 4 bytes leftover after parsing attributes in process `syz.4.285'.
[26642.104562][ T6664] loop2: detected capacity change from 0 to 512
[26642.209854][ T6664] FAT-fs (loop2): bogus logical sector size 2294
[26642.211474][ T6664] FAT-fs (loop2): Can't find a valid FAT filesystem
[26642.749709][ T6679] loop0: detected capacity change from 0 to 32768
[26643.202481][ T6697] FAULT_INJECTION: forcing a failure.
[26643.202481][ T6697] name fail_usercopy, interval 1, probability 0, space 0, times 0
[26643.206118][ T6697] CPU: 0 PID: 6697 Comm: syz.1.291 Not tainted 5.15.178-syzkaller #0
[26643.208146][ T6697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[26643.210671][ T6697] Call trace:
[26643.211507][ T6697]  dump_backtrace+0x0/0x530
[26643.212651][ T6697]  show_stack+0x2c/0x3c
[26643.213700][ T6697]  dump_stack_lvl+0x108/0x170
[26643.214911][ T6697]  dump_stack+0x1c/0x58
[26643.216000][ T6697]  should_fail+0x3b8/0x514
[26643.217164][ T6697]  should_fail_usercopy+0x20/0x30
[26643.218457][ T6697]  iovec_from_user+0xcc/0x630
[26643.219697][ T6697]  __import_iovec+0x80/0x414
[26643.220750][ T6697]  import_iovec+0x88/0xa4
[26643.221853][ T6697]  ___sys_sendmsg+0x1dc/0x294
[26643.223040][ T6697]  __sys_sendmmsg+0x23c/0x648
[26643.224269][ T6697]  __arm64_sys_sendmmsg+0xa0/0xbc
[26643.225500][ T6697]  invoke_syscall+0x98/0x2b8
[26643.226713][ T6697]  el0_svc_common+0x138/0x258
[26643.227946][ T6697]  do_el0_svc+0x58/0x14c
[26643.229085][ T6697]  el0_svc+0x7c/0x1f0
[26643.230103][ T6697]  el0t_64_sync_handler+0x84/0xe4
[26643.231417][ T6697]  el0t_64_sync+0x1a0/0x1a4
[26643.697545][ T6701] tmpfs: Bad value for 'mpol'
[26643.730699][ T6679] jfs: Unrecognized mount option "" or missing value
[26643.804001][ T6706] FAULT_INJECTION: forcing a failure.
[26643.804001][ T6706] name fail_usercopy, interval 1, probability 0, space 0, times 0
[26643.805143][ T6675] loop4: detected capacity change from 0 to 32768
[26643.812116][ T6706] CPU: 0 PID: 6706 Comm: syz.1.296 Not tainted 5.15.178-syzkaller #0
[26643.814301][ T6706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[26643.816969][ T6706] Call trace:
[26643.817825][ T6706]  dump_backtrace+0x0/0x530
[26643.819020][ T6706]  show_stack+0x2c/0x3c
[26643.820077][ T6706]  dump_stack_lvl+0x108/0x170
[26643.821290][ T6706]  dump_stack+0x1c/0x58
[26643.822432][ T6706]  should_fail+0x3b8/0x514
[26643.823642][ T6706]  should_fail_usercopy+0x20/0x30
[26643.824998][ T6706]  simple_read_from_buffer+0xd8/0x26c
[26643.826445][ T6706]  proc_fail_nth_read+0x1a0/0x248
[26643.827821][ T6706]  vfs_read+0x278/0xb18
[26643.828909][ T6706]  ksys_read+0x15c/0x26c
[26643.830055][ T6706]  __arm64_sys_read+0x7c/0x90
[26643.831326][ T6706]  invoke_syscall+0x98/0x2b8
[26643.832633][ T6706]  el0_svc_common+0x138/0x258
[26643.833870][ T6706]  do_el0_svc+0x58/0x14c
[26643.834985][ T6706]  el0_svc+0x7c/0x1f0
[26643.835987][ T6706]  el0t_64_sync_handler+0x84/0xe4
[26643.837326][ T6706]  el0t_64_sync+0x1a0/0x1a4
[26643.851913][ T6707] loop3: detected capacity change from 0 to 1024
[26643.909165][ T6675] XFS (loop4): Mounting V5 Filesystem
[26643.912054][ T6707] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[26643.915568][ T6715] loop2: detected capacity change from 0 to 2048
[26643.949120][ T6707] EXT4-fs (loop3): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,dioread_nolock,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback.
[26643.992075][ T6715] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[26643.999840][ T6675] XFS (loop4): Ending clean mount
[26644.179237][ T6730] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[26644.180166][ T6715] NILFS error (device loop2): nilfs_bmap_lookup_at_level: broken bmap (inode number=6)
[26644.225914][ T6715] Remounting filesystem read-only
[26644.241502][ T5497] XFS (loop4): Unmounting Filesystem
[26645.033929][ T6751] FAULT_INJECTION: forcing a failure.
[26645.033929][ T6751] name fail_usercopy, interval 1, probability 0, space 0, times 0
[26645.047631][ T6751] CPU: 1 PID: 6751 Comm: syz.1.307 Not tainted 5.15.178-syzkaller #0
[26645.049749][ T6751] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[26645.052581][ T6751] Call trace:
[26645.053455][ T6751]  dump_backtrace+0x0/0x530
[26645.054650][ T6751]  show_stack+0x2c/0x3c
[26645.055754][ T6751]  dump_stack_lvl+0x108/0x170
[26645.057001][ T6751]  dump_stack+0x1c/0x58
[26645.058119][ T6751]  should_fail+0x3b8/0x514
[26645.059270][ T6751]  should_fail_usercopy+0x20/0x30
[26645.060581][ T6751]  simple_read_from_buffer+0xd8/0x26c
[26645.062024][ T6751]  proc_fail_nth_read+0x1a0/0x248
[26645.063385][ T6751]  vfs_read+0x278/0xb18
[26645.064521][ T6751]  ksys_read+0x15c/0x26c
[26645.065627][ T6751]  __arm64_sys_read+0x7c/0x90
[26645.066859][ T6751]  invoke_syscall+0x98/0x2b8
[26645.068051][ T6751]  el0_svc_common+0x138/0x258
[26645.069349][ T6751]  do_el0_svc+0x58/0x14c
[26645.070477][ T6751]  el0_svc+0x7c/0x1f0
[26645.071564][ T6751]  el0t_64_sync_handler+0x84/0xe4
[26645.072873][ T6751]  el0t_64_sync+0x1a0/0x1a4
[26645.092688][ T6753] loop4: detected capacity change from 0 to 8
[26645.146110][ T6739] loop2: detected capacity change from 0 to 32768
[26645.184831][ T6755] loop1: detected capacity change from 0 to 2048
[26645.257078][ T6753] loop4: detected capacity change from 0 to 2048
[26645.265752][ T6739] XFS (loop2): Mounting V5 Filesystem
[26645.322732][ T5761]  loop1: p1 p2 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p2
[26645.323261][ T5761] loop1: p1 start 2130708737 is beyond EOD, 
[26645.351679][ T6739] XFS (loop2): Ending clean mount
[26645.370704][ T6739] XFS (loop2): Quotacheck needed: Please wait.
[26645.373245][ T6764] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[26645.449960][ T5761] truncated
[26645.457988][ T5761] loop1: p3 start 65535 is beyond EOD, truncated
[26645.520321][ T6739] XFS (loop2): Quotacheck: Done.
[26645.531899][ T5761] loop1: p4 size 8192 extends beyond EOD, truncated
[26645.568741][ T5761] loop1: p5 start 2130708737 is beyond EOD, truncated
[26645.571371][ T6739] XFS (loop2): User initiated shutdown received.
[26645.573085][ T6739] XFS (loop2): Log I/O Error (0x6) detected at xfs_fs_goingdown+0xe0/0x15c (fs/xfs/xfs_fsops.c:491).  Shutting down filesystem.
[26645.576620][ T6739] XFS (loop2): Please unmount the filesystem and rectify the problem(s)
[26645.582370][ T5761] loop1: p6 start 2130708737 is beyond EOD, truncated
[26645.628933][ T5761] loop1: p7 start 2130708737 is beyond EOD, truncated
[26645.631072][ T5761] loop1: p8 start 2130708737 is beyond EOD, truncated
[26645.633959][ T5761] loop1: p9 start 2130708737 is beyond EOD, truncated
[26645.640132][ T5761] loop1: p10 start 2130708737 is beyond EOD, truncated
[26645.644074][ T5761] loop1: p11 start 2130708737 is beyond EOD, truncated
[26645.656157][ T5761] loop1: p12 start 2130708737 is beyond EOD, truncated
[26645.679802][ T5761] loop1: p13 start 2130708737 is beyond EOD, truncated
[26645.718658][ T6769] netlink: 12 bytes leftover after parsing attributes in process `syz.1.309'.
[26645.729910][ T5761] loop1: p14 start 2130708737 is beyond EOD, truncated
[26645.748130][ T5761] loop1: p15 start 2130708737 is beyond EOD, truncated
[26645.750138][ T5761] loop1: p16 start 2130708737 is beyond EOD, truncated
[26645.752154][ T5761] loop1: p17 start 2130708737 is beyond EOD, truncated
[26645.754407][ T5761] loop1: p18 start 2130708737 is beyond EOD, truncated
[26645.756187][ T5761] loop1: p19 start 2130708737 is beyond EOD, truncated
[26645.757930][ T5761] loop1: p20 start 2130708737 is beyond EOD, truncated
[26645.759749][ T5761] loop1: p21 start 2130708737 is beyond EOD, truncated
[26645.761595][ T5761] loop1: p22 start 2130708737 is beyond EOD, truncated
[26645.763415][ T5761] loop1: p23 start 2130708737 is beyond EOD, truncated
[26645.765283][ T5761] loop1: p24 start 2130708737 is beyond EOD, truncated
[26645.767104][ T5761] loop1: p25 start 2130708737 is beyond EOD, truncated
[26645.769123][ T5761] loop1: p26 start 2130708737 is beyond EOD, truncated
[26645.770826][ T5761] loop1: p27 start 2130708737 is beyond EOD, truncated
[26645.772516][ T5761] loop1: p28 start 2130708737 is beyond EOD, truncated
[26645.774312][ T5761] loop1: p29 start 2130708737 is beyond EOD, truncated
[26645.776018][ T5761] loop1: p30 start 2130708737 is beyond EOD, truncated
[26645.777755][ T5761] loop1: p31 start 2130708737 is beyond EOD, truncated
[26645.779680][ T5761] loop1: p32 start 2130708737 is beyond EOD, truncated
[26645.781390][ T5761] loop1: p33 start 2130708737 is beyond EOD, truncated
[26645.783114][ T5761] loop1: p34 start 2130708737 is beyond EOD, truncated
[26645.784852][ T5761] loop1: p35 start 2130708737 is beyond EOD, truncated
[26645.786646][ T5761] loop1: p36 start 2130708737 is beyond EOD, truncated
[26645.788421][ T5761] loop1: p37 start 2130708737 is beyond EOD, truncated
[26645.790353][ T5761] loop1: p38 start 2130708737 is beyond EOD, truncated
[26645.792071][ T5761] loop1: p39 start 2130708737 is beyond EOD, truncated
[26645.793793][ T5761] loop1: p40 start 2130708737 is beyond EOD, truncated
[26645.795575][ T5761] loop1: p41 start 2130708737 is beyond EOD, truncated
[26645.797359][ T5761] loop1: p42 start 2130708737 is beyond EOD, truncated
[26645.799179][ T5761] loop1: p43 start 2130708737 is beyond EOD, truncated
[26645.800911][ T5761] loop1: p44 start 2130708737 is beyond EOD, truncated
[26645.802683][ T5761] loop1: p45 start 2130708737 is beyond EOD, truncated
[26645.804635][ T5761] loop1: p46 start 2130708737 is beyond EOD, truncated
[26645.806482][ T5761] loop1: p47 start 2130708737 is beyond EOD, truncated
[26645.808432][ T5761] loop1: p48 start 2130708737 is beyond EOD, truncated
[26646.338547][ T5761] loop1: p49 start 2130708737 is beyond EOD, truncated
[26646.353784][ T5761] loop1: p50 start 2130708737 is beyond EOD, truncated
[26646.356015][ T5761] loop1: p51 start 2130708737 is beyond EOD, truncated
[26646.357896][ T5761] loop1: p52 start 2130708737 is beyond EOD, truncated
[26646.367045][ T5761] loop1: p53 start 2130708737 is beyond EOD, truncated
[26646.370131][ T5761] loop1: p54 start 2130708737 is beyond EOD, truncated
[26646.371928][ T5761] loop1: p55 start 2130708737 is beyond EOD, truncated
[26646.373771][ T5761] loop1: p56 start 2130708737 is beyond EOD, truncated
[26646.375476][ T5761] loop1: p57 start 2130708737 is beyond EOD, truncated
[26646.505232][ T5761] loop1: p58 start 2130708737 is beyond EOD, truncated
[26646.507201][ T5761] loop1: p59 start 2130708737 is beyond EOD, truncated
[26646.509034][ T5761] loop1: p60 start 2130708737 is beyond EOD, truncated
[26646.510857][ T5761] loop1: p61 start 2130708737 is beyond EOD, truncated
[26646.512640][ T5761] loop1: p62 start 2130708737 is beyond EOD, truncated
[26646.514471][ T5761] loop1: p63 start 2130708737 is beyond EOD, truncated
[26646.516258][ T5761] loop1: p64 start 2130708737 is beyond EOD, truncated
[26646.517995][ T5761] loop1: p65 start 2130708737 is beyond EOD, truncated
[26646.528850][ T5761] loop1: p66 start 2130708737 is beyond EOD, truncated
[26646.530567][ T5761] loop1: p67 start 2130708737 is beyond EOD, truncated
[26646.532314][ T5761] loop1: p68 start 2130708737 is beyond EOD, truncated
[26646.534062][ T5761] loop1: p69 start 2130708737 is beyond EOD, truncated
[26646.535776][ T5761] loop1: p70 start 2130708737 is beyond EOD, truncated
[26646.536277][ T5509] XFS (loop2): Unmounting Filesystem
[26646.537515][ T5761] loop1: p71 start 2130708737 is beyond EOD, truncated
[26646.545295][ T5761] loop1: p72 start 2130708737 is beyond EOD, truncated
[26646.547569][ T5761] loop1: p73 start 2130708737 is beyond EOD, truncated
[26646.556695][ T5761] loop1: p74 start 2130708737 is beyond EOD, truncated
[26646.558419][ T5761] loop1: p75 start 2130708737 is beyond EOD, truncated
[26646.560342][ T5761] loop1: p76 start 2130708737 is beyond EOD, truncated
[26646.567218][ T5761] loop1: p77 start 2130708737 is beyond EOD, truncated
[26646.581424][ T5761] loop1: p78 start 2130708737 is beyond EOD, truncated
[26646.583158][ T5761] loop1: p79 start 2130708737 is beyond EOD, truncated
[26646.584871][ T5761] loop1: p80 start 2130708737 is beyond EOD, truncated
[26646.586599][ T5761] loop1: p81 start 2130708737 is beyond EOD, truncated
[26646.588356][ T5761] loop1: p82 start 2130708737 is beyond EOD, truncated
[26646.631765][ T6785] netlink: 4 bytes leftover after parsing attributes in process `syz.0.312'.
[26646.637803][ T5761] loop1: p83 start 2130708737 is beyond EOD, truncated
[26646.640158][ T5761] loop1: p84 start 2130708737 is beyond EOD, truncated
[26646.641930][ T5761] loop1: p85 start 2130708737 is beyond EOD, truncated
[26646.643693][ T5761] loop1: p86 start 2130708737 is beyond EOD, truncated
[26646.645562][ T5761] loop1: p87 start 2130708737 is beyond EOD, truncated
[26646.647538][ T5761] loop1: p88 start 2130708737 is beyond EOD, truncated
[26646.656786][ T5761] loop1: p89 start 2130708737 is beyond EOD, truncated
[26646.658764][ T5761] loop1: p90 start 2130708737 is beyond EOD, truncated
[26646.660584][ T5761] loop1: p91 start 2130708737 is beyond EOD, truncated
[26646.662362][ T5761] loop1: p92 start 2130708737 is beyond EOD, truncated
[26646.663340][ T6783] loop4: detected capacity change from 0 to 1024
[26646.664114][ T5761] loop1: p93 start 2130708737 is beyond EOD, truncated
[26646.667463][ T5761] loop1: p94 start 2130708737 is beyond EOD, truncated
[26646.675300][ T5761] loop1: p95 start 2130708737 is beyond EOD, truncated
[26646.677022][ T5761] loop1: p96 start 2130708737 is beyond EOD, truncated
[26646.682137][ T5761] loop1: p97 start 2130708737 is beyond EOD, truncated
[26646.683877][ T5761] loop1: p98 start 2130708737 is beyond EOD, truncated
[26646.685536][ T5761] loop1: p99 start 2130708737 is beyond EOD, truncated
[26646.687267][ T5761] loop1: p100 start 2130708737 is beyond EOD, truncated
[26646.689888][ T5761] loop1: p101 start 2130708737 is beyond EOD, truncated
[26646.691663][ T5761] loop1: p102 start 2130708737 is beyond EOD, truncated
[26646.693525][ T5761] loop1: p103 start 2130708737 is beyond EOD, truncated
[26646.695212][ T5761] loop1: p104 start 2130708737 is beyond EOD, truncated
[26646.697695][ T5761] loop1: p105 start 2130708737 is beyond EOD, truncated
[26646.726068][ T5761] loop1: p106 start 2130708737 is beyond EOD, truncated
[26646.727956][ T5761] loop1: p107 start 2130708737 is beyond EOD, truncated
[26646.745805][ T5761] loop1: p108 start 2130708737 is beyond EOD, truncated
[26646.747721][ T5761] loop1: p109 start 2130708737 is beyond EOD, truncated
[26646.762102][ T6783] hfsplus: unable to load nls mapping "iso88kL¤Ňx´ZA‡ź˙r59-4"
[26646.764044][ T6783] hfsplus: unable to parse mount options
[26646.767406][ T5761] loop1: p110 start 2130708737 is beyond EOD, truncated
[26646.778962][ T5761] loop1: p111 start 2130708737 is beyond EOD, truncated
[26646.789393][ T5761] loop1: p112 start 2130708737 is beyond EOD, truncated
[26646.799752][ T5761] loop1: p113 start 2130708737 is beyond EOD, truncated
[26646.929332][ T5761] loop1: p114 start 2130708737 is beyond EOD, truncated
[26646.931286][ T5761] loop1: p115 start 2130708737 is beyond EOD, truncated
[26646.954109][ T5761] loop1: p116 start 2130708737 is beyond EOD, truncated
[26646.956130][ T5761] loop1: p117 start 2130708737 is beyond EOD, truncated
[26646.958541][ T5761] loop1: p118 start 2130708737 is beyond EOD, truncated
[26646.960968][ T5761] loop1: p119 start 2130708737 is beyond EOD, truncated
[26646.963023][ T5761] loop1: p120 start 2130708737 is beyond EOD, truncated
[26647.006639][ T5761] loop1: p121 start 2130708737 is beyond EOD, truncated
[26647.008644][ T5761] loop1: p122 start 2130708737 is beyond EOD, truncated
[26647.025717][ T5761] loop1: p123 start 2130708737 is beyond EOD, truncated
[26647.027652][ T5761] loop1: p124 start 2130708737 is beyond EOD, truncated
[26647.029450][ T5761] loop1: p125 start 2130708737 is beyond EOD, truncated
[26647.031234][ T5761] loop1: p126 start 2130708737 is beyond EOD, truncated
[26647.033044][ T5761] loop1: p127 start 2130708737 is beyond EOD, truncated
[26647.034897][ T5761] loop1: p128 start 2130708737 is beyond EOD, truncated
[26647.036707][ T5761] loop1: p129 start 2130708737 is beyond EOD, truncated
[26647.038439][ T5761] loop1: p130 start 2130708737 is beyond EOD, truncated
[26647.040686][ T5761] loop1: p131 start 2130708737 is beyond EOD, truncated
[26647.042464][ T5761] loop1: p132 start 2130708737 is beyond EOD, truncated
[26647.044212][ T5761] loop1: p133 start 2130708737 is beyond EOD, truncated
[26647.045955][ T5761] loop1: p134 start 2130708737 is beyond EOD, truncated
[26647.047619][ T5761] loop1: p135 start 2130708737 is beyond EOD, truncated
[26647.049424][ T5761] loop1: p136 start 2130708737 is beyond EOD, truncated
[26647.051169][ T5761] loop1: p137 start 2130708737 is beyond EOD, truncated
[26647.052930][ T5761] loop1: p138 start 2130708737 is beyond EOD, truncated
[26647.054615][ T5761] loop1: p139 start 2130708737 is beyond EOD, truncated
[26647.056353][ T5761] loop1: p140 start 2130708737 is beyond EOD, truncated
[26647.058129][ T5761] loop1: p141 start 2130708737 is beyond EOD, truncated
[26647.061608][ T5761] loop1: p142 start 2130708737 is beyond EOD, truncated
[26647.066747][ T5761] loop1: p143 start 2130708737 is beyond EOD, truncated
[26647.068518][ T5761] loop1: p144 start 2130708737 is beyond EOD, truncated
[26647.070433][ T5761] loop1: p145 start 2130708737 is beyond EOD, truncated
[26647.072263][ T5761] loop1: p146 start 2130708737 is beyond EOD, truncated
[26647.073918][ T5761] loop1: p147 start 2130708737 is beyond EOD, truncated
[26647.075481][ T5761] loop1: p148 start 2130708737 is beyond EOD, truncated
[26647.076963][ T5761] loop1: p149 start 2130708737 is beyond EOD, truncated
[26647.078648][ T5761] loop1: p150 start 2130708737 is beyond EOD, truncated
[26647.081676][ T5761] loop1: p151 start 2130708737 is beyond EOD, truncated
[26647.083401][ T5761] loop1: p152 start 2130708737 is beyond EOD, truncated
[26647.085063][ T5761] loop1: p153 start 2130708737 is beyond EOD, truncated
[26647.086863][ T5761] loop1: p154 start 2130708737 is beyond EOD, truncated
[26647.088633][ T5761] loop1: p155 start 2130708737 is beyond EOD, truncated
[26647.090407][ T5761] loop1: p156 start 2130708737 is beyond EOD, truncated
[26647.092215][ T5761] loop1: p157 start 2130708737 is beyond EOD, truncated
[26647.093976][ T5761] loop1: p158 start 2130708737 is beyond EOD, truncated
[26647.095738][ T5761] loop1: p159 start 2130708737 is beyond EOD, truncated
[26647.097406][ T5761] loop1: p160 start 2130708737 is beyond EOD, truncated
[26647.099092][ T5761] loop1: p161 start 2130708737 is beyond EOD, truncated
[26647.100802][ T5761] loop1: p162 start 2130708737 is beyond EOD, truncated
[26647.102463][ T5761] loop1: p163 start 2130708737 is beyond EOD, truncated
[26647.104186][ T5761] loop1: p164 start 2130708737 is beyond EOD, truncated
[26647.105924][ T5761] loop1: p165 start 2130708737 is beyond EOD, truncated
[26647.107644][ T5761] loop1: p166 start 2130708737 is beyond EOD, truncated
[26647.109461][ T5761] loop1: p167 start 2130708737 is beyond EOD, truncated
[26647.111214][ T5761] loop1: p168 start 2130708737 is beyond EOD, truncated
[26647.113002][ T5761] loop1: p169 start 2130708737 is beyond EOD, truncated
[26647.114712][ T5761] loop1: p170 start 2130708737 is beyond EOD, truncated
[26647.116469][ T5761] loop1: p171 start 2130708737 is beyond EOD, truncated
[26647.118255][ T5761] loop1: p172 start 2130708737 is beyond EOD, truncated
[26647.126303][ T5761] loop1: p173 start 2130708737 is beyond EOD, truncated
[26647.128093][ T5761] loop1: p174 start 2130708737 is beyond EOD, truncated
[26647.130364][ T5761] loop1: p175 start 2130708737 is beyond EOD, truncated
[26647.132449][ T5761] loop1: p176 start 2130708737 is beyond EOD, truncated
[26647.134255][ T5761] loop1: p177 start 2130708737 is beyond EOD, truncated
[26647.136026][ T5761] loop1: p178 start 2130708737 is beyond EOD, truncated
[26647.137801][ T5761] loop1: p179 start 2130708737 is beyond EOD, truncated
[26647.139974][ T5761] loop1: p180 start 2130708737 is beyond EOD, truncated
[26647.148461][ T5761] loop1: p181 start 2130708737 is beyond EOD, truncated
[26647.148762][ T6797] netlink: 798 bytes leftover after parsing attributes in process `syz.3.318'.
[26647.170838][ T5761] loop1: p182 start 2130708737 is beyond EOD, truncated
[26647.172632][ T5761] loop1: p183 start 2130708737 is beyond EOD, truncated
[26647.174522][ T5761] loop1: p184 start 2130708737 is beyond EOD, truncated
[26647.176307][ T5761] loop1: p185 start 2130708737 is beyond EOD, truncated
[26647.178057][ T5761] loop1: p186 start 2130708737 is beyond EOD, truncated
[26647.238773][ T6799] netlink: 8 bytes leftover after parsing attributes in process `syz.4.319'.
[26647.271915][ T6802] loop3: detected capacity change from 0 to 1024
[26647.288838][ T5761] loop1: p187 start 2130708737 is beyond EOD, truncated
[26647.290994][ T5761] loop1: p188 start 2130708737 is beyond EOD, truncated
[26647.292831][ T5761] loop1: p189 start 2130708737 is beyond EOD, truncated
[26647.294631][ T5761] loop1: p190 start 2130708737 is beyond EOD, truncated
[26647.296413][ T5761] loop1: p191 start 2130708737 is beyond EOD, truncated
[26647.298159][ T5761] loop1: p192 start 2130708737 is beyond EOD, truncated
[26647.306102][ T6805] FAULT_INJECTION: forcing a failure.
[26647.306102][ T6805] name failslab, interval 1, probability 0, space 0, times 0
[26647.311011][ T6805] CPU: 0 PID: 6805 Comm: syz.2.321 Not tainted 5.15.178-syzkaller #0
[26647.313135][ T6805] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[26647.315759][ T6805] Call trace:
[26647.316622][ T6805]  dump_backtrace+0x0/0x530
[26647.317788][ T6805]  show_stack+0x2c/0x3c
[26647.318846][ T6805]  dump_stack_lvl+0x108/0x170
[26647.320025][ T6805]  dump_stack+0x1c/0x58
[26647.321148][ T6805]  should_fail+0x3b8/0x514
[26647.322260][ T6805]  __should_failslab+0xbc/0x110
[26647.323511][ T6805]  should_failslab+0x10/0x28
[26647.324716][ T6805]  slab_pre_alloc_hook+0x64/0xe8
[26647.325985][ T6805]  __kmalloc+0xc0/0x4c8
[26647.327053][ T6805]  tomoyo_encode+0x270/0x4b0
[26647.328231][ T6805]  tomoyo_mount_permission+0x288/0x8b4
[26647.329695][ T6805]  tomoyo_sb_mount+0x48/0x60
[26647.330915][ T6805]  security_sb_mount+0x94/0xd4
[26647.332046][ T6805]  path_mount+0xb8/0x101c
[26647.333215][ T6805]  __arm64_sys_mount+0x510/0x5e0
[26647.334530][ T6805]  invoke_syscall+0x98/0x2b8
[26647.335771][ T6805]  el0_svc_common+0x138/0x258
[26647.337020][ T6805]  do_el0_svc+0x58/0x14c
[26647.338086][ T6805]  el0_svc+0x7c/0x1f0
[26647.339009][ T6805]  el0t_64_sync_handler+0x84/0xe4
[26647.340158][ T6805]  el0t_64_sync+0x1a0/0x1a4
[26647.344673][ T5761] loop1: p193 start 2130708737 is beyond EOD, truncated
[26647.346447][ T5761] loop1: p194 start 2130708737 is beyond EOD, truncated
[26647.348255][ T5761] loop1: p195 start 2130708737 is beyond EOD, truncated
[26647.350602][ T5761] loop1: p196 start 2130708737 is beyond EOD, truncated
[26647.352323][ T5761] loop1: p197 start 2130708737 is beyond EOD, truncated
[26647.354291][ T5761] loop1: p198 start 2130708737 is beyond EOD, truncated
[26647.356056][ T5761] loop1: p199 start 2130708737 is beyond EOD, truncated
[26647.357775][ T5761] loop1: p200 start 2130708737 is beyond EOD, truncated
[26647.363107][ T6802] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[26647.386890][ T6799] loop4: detected capacity change from 0 to 4096
[26647.393755][ T5761] loop1: p201 start 2130708737 is beyond EOD, truncated
[26647.395317][ T6802] EXT4-fs (loop3): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,dioread_nolock,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback.
[26647.395550][ T5761] loop1: p202 start 2130708737 is beyond EOD, truncated
[26647.403652][ T5761] loop1: p203 start 2130708737 is beyond EOD, truncated
[26647.405455][ T5761] loop1: p204 start 2130708737 is beyond EOD, truncated
[26647.407270][ T5761] loop1: p205 start 2130708737 is beyond EOD, truncated
[26647.409459][ T5761] loop1: p206 start 2130708737 is beyond EOD, truncated
[26647.411324][ T5761] loop1: p207 start 2130708737 is beyond EOD, truncated
[26647.413344][ T5761] loop1: p208 start 2130708737 is beyond EOD, truncated
[26647.415089][ T5761] loop1: p209 start 2130708737 is beyond EOD, truncated
[26647.416828][ T5761] loop1: p210 start 2130708737 is beyond EOD, truncated
[26647.418651][ T5761] loop1: p211 start 2130708737 is beyond EOD, truncated
[26647.420610][ T5761] loop1: p212 start 2130708737 is beyond EOD, truncated
[26647.422390][ T5761] loop1: p213 start 2130708737 is beyond EOD, truncated
[26647.424174][ T5761] loop1: p214 start 2130708737 is beyond EOD, truncated
[26647.425851][ T5761] loop1: p215 start 2130708737 is beyond EOD, truncated
[26647.427466][ T5761] loop1: p216 start 2130708737 is beyond EOD, truncated
[26647.429594][ T5761] loop1: p217 start 2130708737 is beyond EOD, truncated
[26647.430170][ T6799] ntfs3: Unknown parameter '0x000000000000000800000000000000000000010'
[26647.431396][ T5761] loop1: p218 start 2130708737 is beyond EOD, truncated
[26647.435426][ T5761] loop1: p219 start 2130708737 is beyond EOD, truncated
[26647.437240][ T5761] loop1: p220 start 2130708737 is beyond EOD, truncated
[26647.439218][ T5761] loop1: p221 start 2130708737 is beyond EOD, truncated
[26647.440982][ T5761] loop1: p222 start 2130708737 is beyond EOD, truncated
[26647.442782][ T5761] loop1: p223 start 2130708737 is beyond EOD, truncated
[26647.444571][ T5761] loop1: p224 start 2130708737 is beyond EOD, truncated
[26647.447014][ T5761] loop1: p225 start 2130708737 is beyond EOD, truncated
[26647.449509][ T5761] loop1: p226 start 2130708737 is beyond EOD, truncated
[26647.451254][ T5761] loop1: p227 start 2130708737 is beyond EOD, truncated
[26647.452775][ T5761] loop1: p228 start 2130708737 is beyond EOD, truncated
[26647.454306][ T5761] loop1: p229 start 2130708737 is beyond EOD, truncated
[26647.455783][ T5761] loop1: p230 start 2130708737 is beyond EOD, truncated
[26647.457246][ T5761] loop1: p231 start 2130708737 is beyond EOD, truncated
[26647.458873][ T5761] loop1: p232 start 2130708737 is beyond EOD, truncated
[26647.460444][ T5761] loop1: p233 start 2130708737 is beyond EOD, truncated
[26647.462076][ T5761] loop1: p234 start 2130708737 is beyond EOD, truncated
[26647.463850][ T5761] loop1: p235 start 2130708737 is beyond EOD, truncated
[26647.465614][ T5761] loop1: p236 start 2130708737 is beyond EOD, truncated
[26647.467380][ T5761] loop1: p237 start 2130708737 is beyond EOD, truncated
[26647.469664][ T5761] loop1: p238 start 2130708737 is beyond EOD, truncated
[26647.471422][ T5761] loop1: p239 start 2130708737 is beyond EOD, truncated
[26647.473181][ T5761] loop1: p240 start 2130708737 is beyond EOD, truncated
[26647.474868][ T5761] loop1: p241 start 2130708737 is beyond EOD, truncated
[26647.476352][ T5761] loop1: p242 start 2130708737 is beyond EOD, truncated
[26647.478116][ T5761] loop1: p243 start 2130708737 is beyond EOD, truncated
[26647.479985][ T5761] loop1: p244 start 2130708737 is beyond EOD, truncated
[26647.481768][ T5761] loop1: p245 start 2130708737 is beyond EOD, truncated
[26647.483559][ T5761] loop1: p246 start 2130708737 is beyond EOD, truncated
[26647.485384][ T5761] loop1: p247 start 2130708737 is beyond EOD, truncated
[26647.487279][ T5761] loop1: p248 start 2130708737 is beyond EOD, truncated
[26647.489110][ T5761] loop1: p249 start 2130708737 is beyond EOD, truncated
[26647.490839][ T5761] loop1: p250 start 2130708737 is beyond EOD, truncated
[26647.492666][ T5761] loop1: p251 start 2130708737 is beyond EOD, truncated
[26647.494486][ T5761] loop1: p252 start 2130708737 is beyond EOD, truncated
[26647.496212][ T5761] loop1: p253 start 2130708737 is beyond EOD, truncated
[26647.497988][ T5761] loop1: p254 start 2130708737 is beyond EOD, truncated
[26647.501051][ T5761] loop1: p255 start 2130708737 is beyond EOD, truncated
[26647.563960][ T6785] loop0: detected capacity change from 0 to 32768
[26647.632343][ T6755]  loop1: p1 p2 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p2
[26647.632556][ T6755] loop1: p1 start 2130708737 is beyond EOD, 
[26647.702075][ T6815] loop2: detected capacity change from 0 to 8
[26647.717087][ T6755] truncated
[26647.749593][ T6815] squashfs image failed sanity check
[26647.751526][ T6755] loop1: p3 start 65535 is beyond EOD, truncated
[26647.753129][ T6755] loop1: p4 size 8192 extends beyond EOD, truncated
[26647.762126][ T6755] loop1: p5 start 2130708737 is beyond EOD, truncated
[26647.764070][ T6755] loop1: p6 start 2130708737 is beyond EOD, truncated
[26647.764157][ T6785] XFS (loop0): Mounting V5 Filesystem
[26647.765835][ T6755] loop1: p7 start 2130708737 is beyond EOD, truncated
[26647.765863][ T6755] loop1: p8 start 2130708737 is beyond EOD, truncated
[26647.781835][ T6755] loop1: p9 start 2130708737 is beyond EOD, truncated
[26647.786106][ T6755] loop1: p10 start 2130708737 is beyond EOD, truncated
[26647.789923][ T6755] loop1: p11 start 2130708737 is beyond EOD, truncated
[26647.795689][ T6755] loop1: p12 start 2130708737 is beyond EOD, truncated
[26647.810293][ T6755] loop1: p13 start 2130708737 is beyond EOD, truncated
[26647.815924][ T6755] loop1: p14 start 2130708737 is beyond EOD, truncated
[26647.817666][ T6755] loop1: p15 start 2130708737 is beyond EOD, truncated
[26647.828604][ T6755] loop1: p16 start 2130708737 is beyond EOD, truncated
[26647.832850][ T6755] loop1: p17 start 2130708737 is beyond EOD, truncated
[26647.837436][ T6755] loop1: p18 start 2130708737 is beyond EOD, truncated
[26647.858291][ T6755] loop1: p19 start 2130708737 is beyond EOD, truncated
[26647.885435][ T6755] loop1: p20 start 2130708737 is beyond EOD, truncated
[26647.889238][ T6755] loop1: p21 start 2130708737 is beyond EOD, truncated
[26647.891070][ T6755] loop1: p22 start 2130708737 is beyond EOD, truncated
[26647.892739][ T6755] loop1: p23 start 2130708737 is beyond EOD, truncated
[26647.894480][ T6755] loop1: p24 start 2130708737 is beyond EOD, truncated
[26647.916787][ T6799] loop4: detected capacity change from 0 to 32768
[26647.918623][ T6755] loop1: p25 start 2130708737 is beyond EOD, truncated
[26647.920585][ T6755] loop1: p26 start 2130708737 is beyond EOD, truncated
[26647.922305][ T6755] loop1: p27 start 2130708737 is beyond EOD, truncated
[26647.923962][ T6755] loop1: p28 start 2130708737 is beyond EOD, truncated
[26647.929427][ T6755] loop1: p29 start 2130708737 is beyond EOD, truncated
[26647.931327][ T6755] loop1: p30 start 2130708737 is beyond EOD, truncated
[26647.933084][ T6755] loop1: p31 start 2130708737 is beyond EOD, truncated
[26647.934867][ T6755] loop1: p32 start 2130708737 is beyond EOD, truncated
[26647.937779][ T6785] XFS (loop0): Ending clean mount
[26647.959737][ T6799] (syz.4.319,6799,1):ocfs2_parse_options:1459 ERROR: Invalid heartbeat mount options
[26647.962176][ T6799] (syz.4.319,6799,1):ocfs2_fill_super:1177 ERROR: status = -22
[26647.989074][ T6755] loop1: p33 start 2130708737 is beyond EOD, truncated
[26647.996549][ T6755] loop1: p34 start 2130708737 is beyond EOD, truncated
[26648.006344][ T6755] loop1: p35 start 2130708737 is beyond EOD, truncated
[26648.029060][ T6755] loop1: p36 start 2130708737 is beyond EOD, truncated
[26648.032121][ T5507] XFS (loop0): Unmounting Filesystem
[26648.045953][ T6755] loop1: p37 start 2130708737 is beyond EOD, truncated
[26648.065100][ T6755] loop1: p38 start 2130708737 is beyond EOD, truncated
[26648.075263][ T6755] loop1: p39 start 2130708737 is beyond EOD, truncated
[26648.077107][ T6755] loop1: p40 start 2130708737 is beyond EOD, truncated
[26648.096778][ T6815] loop2: detected capacity change from 0 to 1024
[26648.099182][ T6755] loop1: p41 start 2130708737 is beyond EOD, truncated
[26648.100951][ T6755] loop1: p42 start 2130708737 is beyond EOD, truncated
[26648.102726][ T6755] loop1: p43 start 2130708737 is beyond EOD, truncated
[26648.104250][ T6755] loop1: p44 start 2130708737 is beyond EOD, truncated
[26648.105711][ T6755] loop1: p45 start 2130708737 is beyond EOD, truncated
[26648.129724][ T6755] loop1: p46 start 2130708737 is beyond EOD, truncated
[26648.131464][ T6755] loop1: p47 start 2130708737 is beyond EOD, truncated
[26648.133187][ T6755] loop1: p48 start 2130708737 is beyond EOD, truncated
[26648.134927][ T6755] loop1: p49 start 2130708737 is beyond EOD, truncated
[26648.136685][ T6755] loop1: p50 start 2130708737 is beyond EOD, truncated
[26648.138662][ T6755] loop1: p51 start 2130708737 is beyond EOD, truncated
[26648.147129][ T6755] loop1: p52 start 2130708737 is beyond EOD, truncated
[26648.157048][ T6755] loop1: p53 start 2130708737 is beyond EOD, truncated
[26648.165452][ T6755] loop1: p54 start 2130708737 is beyond EOD, truncated
[26648.167270][ T6755] loop1: p55 start 2130708737 is beyond EOD, truncated
[26648.174081][ T6755] loop1: p56 start 2130708737 is beyond EOD, truncated
[26648.176112][ T6755] loop1: p57 start 2130708737 is beyond EOD, truncated
[26648.177890][ T6755] loop1: p58 start 2130708737 is beyond EOD, truncated
[26648.219096][ T6755] loop1: p59 start 2130708737 is beyond EOD, truncated
[26648.221099][ T6755] loop1: p60 start 2130708737 is beyond EOD, truncated
[26648.228916][ T6755] loop1: p61 start 2130708737 is beyond EOD, truncated
[26648.231056][ T6755] loop1: p62 start 2130708737 is beyond EOD, truncated
[26648.232981][ T6755] loop1: p63 start 2130708737 is beyond EOD, truncated
[26648.243118][ T6755] loop1: p64 start 2130708737 is beyond EOD, truncated
[26648.245107][ T6755] loop1: p65 start 2130708737 is beyond EOD, truncated
[26648.269284][ T6755] loop1: p66 start 2130708737 is beyond EOD, truncated
[26648.272080][ T6755] loop1: p67 start 2130708737 is beyond EOD, truncated
[26648.272108][ T6755] loop1: p68 start 2130708737 is beyond EOD, truncated
[26648.272128][ T6755] loop1: p69 start 2130708737 is beyond EOD, truncated
[26648.272148][ T6755] loop1: p70 start 2130708737 is beyond EOD, truncated
[26648.272168][ T6755] loop1: p71 start 2130708737 is beyond EOD, truncated
[26648.272188][ T6755] loop1: p72 start 2130708737 is beyond EOD, truncated
[26648.272242][ T6755] loop1: p73 start 2130708737 is beyond EOD, truncated
[26648.272262][ T6755] loop1: p74 start 2130708737 is beyond EOD, truncated
[26648.272282][ T6755] loop1: p75 start 2130708737 is beyond EOD, truncated
[26648.272302][ T6755] loop1: p76 start 2130708737 is beyond EOD, truncated
[26648.272322][ T6755] loop1: p77 start 2130708737 is beyond EOD, truncated
[26648.272342][ T6755] loop1: p78 start 2130708737 is beyond EOD, truncated
[26648.272362][ T6755] loop1: p79 start 2130708737 is beyond EOD, truncated
[26648.272382][ T6755] loop1: p80 start 2130708737 is beyond EOD, truncated
[26648.272402][ T6755] loop1: p81 start 2130708737 is beyond EOD, truncated
[26648.272422][ T6755] loop1: p82 start 2130708737 is beyond EOD, truncated
[26648.272442][ T6755] loop1: p83 start 2130708737 is beyond EOD, truncated
[26648.272462][ T6755] loop1: p84 start 2130708737 is beyond EOD, truncated
[26648.272482][ T6755] loop1: p85 start 2130708737 is beyond EOD, truncated
[26648.272502][ T6755] loop1: p86 start 2130708737 is beyond EOD, truncated
[26648.272522][ T6755] loop1: p87 start 2130708737 is beyond EOD, truncated
[26648.272542][ T6755] loop1: p88 start 2130708737 is beyond EOD, truncated
[26648.272562][ T6755] loop1: p89 start 2130708737 is beyond EOD, truncated
[26648.272582][ T6755] loop1: p90 start 2130708737 is beyond EOD, truncated
[26648.272602][ T6755] loop1: p91 start 2130708737 is beyond EOD, truncated
[26648.272621][ T6755] loop1: p92 start 2130708737 is beyond EOD, truncated
[26648.272641][ T6755] loop1: p93 start 2130708737 is beyond EOD, truncated
[26648.272661][ T6755] loop1: p94 start 2130708737 is beyond EOD, truncated
[26648.272681][ T6755] loop1: p95 start 2130708737 is beyond EOD, truncated
[26648.272701][ T6755] loop1: p96 start 2130708737 is beyond EOD, truncated
[26648.272721][ T6755] loop1: p97 start 2130708737 is beyond EOD, truncated
[26648.272741][ T6755] loop1: p98 start 2130708737 is beyond EOD, truncated
[26648.272761][ T6755] loop1: p99 start 2130708737 is beyond EOD, truncated
[26648.272781][ T6755] loop1: p100 start 2130708737 is beyond EOD, truncated
[26648.272801][ T6755] loop1: p101 start 2130708737 is beyond EOD, truncated
[26648.272821][ T6755] loop1: p102 start 2130708737 is beyond EOD, truncated
[26648.272841][ T6755] loop1: p103 start 2130708737 is beyond EOD, truncated
[26648.272861][ T6755] loop1: p104 start 2130708737 is beyond EOD, truncated
[26648.272881][ T6755] loop1: p105 start 2130708737 is beyond EOD, truncated
[26648.272901][ T6755] loop1: p106 start 2130708737 is beyond EOD, truncated
[26648.272921][ T6755] loop1: p107 start 2130708737 is beyond EOD, truncated
[26648.272941][ T6755] loop1: p108 start 2130708737 is beyond EOD, truncated
[26648.272961][ T6755] loop1: p109 start 2130708737 is beyond EOD, truncated
[26648.272981][ T6755] loop1: p110 start 2130708737 is beyond EOD, truncated
[26648.273001][ T6755] loop1: p111 start 2130708737 is beyond EOD, truncated
[26648.273021][ T6755] loop1: p112 start 2130708737 is beyond EOD, truncated
[26648.273041][ T6755] loop1: p113 start 2130708737 is beyond EOD, truncated
[26648.273061][ T6755] loop1: p114 start 2130708737 is beyond EOD, truncated
[26648.273081][ T6755] loop1: p115 start 2130708737 is beyond EOD, truncated
[26648.273101][ T6755] loop1: p116 start 2130708737 is beyond EOD, truncated
[26648.278519][ T6755] loop1: p117 start 2130708737 is beyond EOD, truncated
[26648.278541][ T6755] loop1: p118 start 2130708737 is beyond EOD, truncated
[26648.278561][ T6755] loop1: p119 start 2130708737 is beyond EOD, truncated
[26648.278581][ T6755] loop1: p120 start 2130708737 is beyond EOD, truncated
[26648.278602][ T6755] loop1: p121 start 2130708737 is beyond EOD, truncated
[26648.278622][ T6755] loop1: p122 start 2130708737 is beyond EOD, truncated
[26648.278642][ T6755] loop1: p123 start 2130708737 is beyond EOD, truncated
[26648.278662][ T6755] loop1: p124 start 2130708737 is beyond EOD, truncated
[26648.278682][ T6755] loop1: p125 start 2130708737 is beyond EOD, truncated
[26648.278702][ T6755] loop1: p126 start 2130708737 is beyond EOD, truncated
[26648.278722][ T6755] loop1: p127 start 2130708737 is beyond EOD, truncated
[26648.278742][ T6755] loop1: p128 start 2130708737 is beyond EOD, truncated
[26648.278762][ T6755] loop1: p129 start 2130708737 is beyond EOD, truncated
[26648.291705][ T6755] loop1: p130 start 2130708737 is beyond EOD, 
[26648.312036][ T6828] FAULT_INJECTION: forcing a failure.
[26648.312036][ T6828] name failslab, interval 1, probability 0, space 0, times 0
[26648.384734][ T6755] truncated
[26648.391093][ T6828] CPU: 0 PID: 6828 Comm: syz.2.325 Not tainted 5.15.178-syzkaller #0
[26648.409111][ T6828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[26648.409126][ T6828] Call trace:
[26648.409129][ T6828]  dump_backtrace+0x0/0x530
[26648.409146][ T6828]  show_stack+0x2c/0x3c
[26648.409154][ T6828]  dump_stack_lvl+0x108/0x170
[26648.409165][ T6828]  dump_stack+0x1c/0x58
[26648.409173][ T6828]  should_fail+0x3b8/0x514
[26648.409184][ T6828]  __should_failslab+0xbc/0x110
[26648.409211][ T6828]  should_failslab+0x10/0x28
[26648.409221][ T6828]  slab_pre_alloc_hook+0x64/0xe8
[26648.409230][ T6828]  __kmalloc_node_track_caller+0x74/0x448
[26648.409240][ T6828]  kmalloc_reserve+0xe8/0x270
[26648.409251][ T6828]  __alloc_skb+0x1a4/0x584
[26648.409271][ T6828]  netlink_sendmsg+0x644/0xb38
[26648.409282][ T6828]  ____sys_sendmsg+0x584/0x870
[26648.409292][ T6828]  ___sys_sendmsg+0x214/0x294
[26648.409302][ T6828]  __arm64_sys_sendmsg+0x1ac/0x25c
[26648.409312][ T6828]  invoke_syscall+0x98/0x2b8
[26648.409323][ T6828]  el0_svc_common+0x138/0x258
[26648.409333][ T6828]  do_el0_svc+0x58/0x14c
[26648.409342][ T6828]  el0_svc+0x7c/0x1f0
[26648.409351][ T6828]  el0t_64_sync_handler+0x84/0xe4
[26648.409361][ T6828]  el0t_64_sync+0x1a0/0x1a4
[26648.440760][ T6755] loop1: p131 start 2130708737 is beyond EOD, truncated
[26648.440791][ T6755] loop1: p132 start 2130708737 is beyond EOD, truncated
[26648.440811][ T6755] loop1: p133 start 2130708737 is beyond EOD, truncated
[26648.440832][ T6755] loop1: p134 start 2130708737 is beyond EOD, truncated
[26648.440853][ T6755] loop1: p135 start 2130708737 is beyond EOD, truncated
[26648.440873][ T6755] loop1: p136 start 2130708737 is beyond EOD, truncated
[26648.440893][ T6755] loop1: p137 start 2130708737 is beyond EOD, truncated
[26648.440913][ T6755] loop1: p138 start 2130708737 is beyond EOD, truncated
[26648.440933][ T6755] loop1: p139 start 2130708737 is beyond EOD, truncated
[26648.440953][ T6755] loop1: p140 start 2130708737 is beyond EOD, truncated
[26648.440974][ T6755] loop1: p141 start 2130708737 is beyond EOD, truncated
[26648.440994][ T6755] loop1: p142 start 2130708737 is beyond EOD, truncated
[26648.441014][ T6755] loop1: p143 start 2130708737 is beyond EOD, truncated
[26648.441034][ T6755] loop1: p144 start 2130708737 is beyond EOD, truncated
[26648.441054][ T6755] loop1: p145 start 2130708737 is beyond EOD, truncated
[26648.441075][ T6755] loop1: p146 start 2130708737 is beyond EOD, truncated
[26648.441095][ T6755] loop1: p147 start 2130708737 is beyond EOD, truncated
[26648.441115][ T6755] loop1: p148 start 2130708737 is beyond EOD, truncated
[26648.441135][ T6755] loop1: p149 start 2130708737 is beyond EOD, truncated
[26648.441156][ T6755] loop1: p150 start 2130708737 is beyond EOD, truncated
[26648.441176][ T6755] loop1: p151 start 2130708737 is beyond EOD, truncated
[26648.441204][ T6755] loop1: p152 start 2130708737 is beyond EOD, truncated
[26648.441230][ T6755] loop1: p153 start 2130708737 is beyond EOD, truncated
[26648.441251][ T6755] loop1: p154 start 2130708737 is beyond EOD, truncated
[26648.441271][ T6755] loop1: p155 start 2130708737 is beyond EOD, truncated
[26648.441291][ T6755] loop1: p156 start 2130708737 is beyond EOD, truncated
[26648.441311][ T6755] loop1: p157 start 2130708737 is beyond EOD, truncated
[26648.441331][ T6755] loop1: p158 start 2130708737 is beyond EOD, truncated
[26648.441352][ T6755] loop1: p159 start 2130708737 is beyond EOD, truncated
[26648.441372][ T6755] loop1: p160 start 2130708737 is beyond EOD, truncated
[26648.441392][ T6755] loop1: p161 start 2130708737 is beyond EOD, truncated
[26648.441411][ T6755] loop1: p162 start 2130708737 is beyond EOD, truncated
[26648.441431][ T6755] loop1: p163 start 2130708737 is beyond EOD, truncated
[26648.441451][ T6755] loop1: p164 start 2130708737 is beyond EOD, truncated
[26648.441471][ T6755] loop1: p165 start 2130708737 is beyond EOD, truncated
[26648.441491][ T6755] loop1: p166 start 2130708737 is beyond EOD, truncated
[26648.441511][ T6755] loop1: p167 start 2130708737 is beyond EOD, truncated
[26648.441531][ T6755] loop1: p168 start 2130708737 is beyond EOD, truncated
[26648.441551][ T6755] loop1: p169 start 2130708737 is beyond EOD, truncated
[26648.441571][ T6755] loop1: p170 start 2130708737 is beyond EOD, truncated
[26648.441591][ T6755] loop1: p171 start 2130708737 is beyond EOD, truncated
[26648.441611][ T6755] loop1: p172 start 2130708737 is beyond EOD, truncated
[26648.441631][ T6755] loop1: p173 start 2130708737 is beyond EOD, truncated
[26648.441651][ T6755] loop1: p174 start 2130708737 is beyond EOD, truncated
[26648.441671][ T6755] loop1: p175 start 2130708737 is beyond EOD, truncated
[26648.441691][ T6755] loop1: p176 start 2130708737 is beyond EOD, truncated
[26648.441711][ T6755] loop1: p177 start 2130708737 is beyond EOD, truncated
[26648.441731][ T6755] loop1: p178 start 2130708737 is beyond EOD, truncated
[26648.441751][ T6755] loop1: p179 start 2130708737 is beyond EOD, truncated
[26648.441771][ T6755] loop1: p180 start 2130708737 is beyond EOD, truncated
[26648.441791][ T6755] loop1: p181 start 2130708737 is beyond EOD, truncated
[26648.441811][ T6755] loop1: p182 start 2130708737 is beyond EOD, truncated
[26648.441831][ T6755] loop1: p183 start 2130708737 is beyond EOD, truncated
[26648.441851][ T6755] loop1: p184 start 2130708737 is beyond EOD, truncated
[26648.441871][ T6755] loop1: p185 start 2130708737 is beyond EOD, truncated
[26648.441891][ T6755] loop1: p186 start 2130708737 is beyond EOD, truncated
[26648.441911][ T6755] loop1: p187 start 2130708737 is beyond EOD, truncated
[26648.441932][ T6755] loop1: p188 start 2130708737 is beyond EOD, truncated
[26648.441952][ T6755] loop1: p189 start 2130708737 is beyond EOD, truncated
[26648.441971][ T6755] loop1: p190 start 2130708737 is beyond EOD, truncated
[26648.441992][ T6755] loop1: p191 start 2130708737 is beyond EOD, truncated
[26648.442012][ T6755] loop1: p192 start 2130708737 is beyond EOD, truncated
[26648.442032][ T6755] loop1: p193 start 2130708737 is beyond EOD, truncated
[26648.442051][ T6755] loop1: p194 start 2130708737 is beyond EOD, truncated
[26648.442071][ T6755] loop1: p195 start 2130708737 is beyond EOD, truncated
[26648.442091][ T6755] loop1: p196 start 2130708737 is beyond EOD, truncated
[26648.442111][ T6755] loop1: p197 start 2130708737 is beyond EOD, truncated
[26648.442131][ T6755] loop1: p198 start 2130708737 is beyond EOD, truncated
[26648.442151][ T6755] loop1: p199 start 2130708737 is beyond EOD, truncated
[26648.442171][ T6755] loop1: p200 start 2130708737 is beyond EOD, truncated
[26648.442195][ T6755] loop1: p201 start 2130708737 is beyond EOD, truncated
[26648.442216][ T6755] loop1: p202 start 2130708737 is beyond EOD, truncated
[26648.442239][ T6755] loop1: p203 start 2130708737 is beyond EOD, truncated
[26648.442260][ T6755] loop1: p204 start 2130708737 is beyond EOD, truncated
[26648.442280][ T6755] loop1: p205 start 2130708737 is beyond EOD, truncated
[26648.442300][ T6755] loop1: p206 start 2130708737 is beyond EOD, truncated
[26648.442320][ T6755] loop1: p207 start 2130708737 is beyond EOD, truncated
[26648.442341][ T6755] loop1: p208 start 2130708737 is beyond EOD, truncated
[26648.442361][ T6755] loop1: p209 start 2130708737 is beyond EOD, truncated
[26648.442381][ T6755] loop1: p210 start 2130708737 is beyond EOD, truncated
[26648.442401][ T6755] loop1: p211 start 2130708737 is beyond EOD, truncated
[26648.442421][ T6755] loop1: p212 start 2130708737 is beyond EOD, truncated
[26648.442441][ T6755] loop1: p213 start 2130708737 is beyond EOD, truncated
[26648.442461][ T6755] loop1: p214 start 2130708737 is beyond EOD, truncated
[26648.442481][ T6755] loop1: p215 start 2130708737 is beyond EOD, truncated
[26648.442502][ T6755] loop1: p216 start 2130708737 is beyond EOD, truncated
[26648.442522][ T6755] loop1: p217 start 2130708737 is beyond EOD, truncated
[26648.442541][ T6755] loop1: p218 start 2130708737 is beyond EOD, truncated
[26648.442561][ T6755] loop1: p219 start 2130708737 is beyond EOD, truncated
[26648.442582][ T6755] loop1: p220 start 2130708737 is beyond EOD, truncated
[26648.442602][ T6755] loop1: p221 start 2130708737 is beyond EOD, truncated
[26648.442622][ T6755] loop1: p222 start 2130708737 is beyond EOD, truncated
[26648.442642][ T6755] loop1: p223 start 2130708737 is beyond EOD, truncated
[26648.442662][ T6755] loop1: p224 start 2130708737 is beyond EOD, truncated
[26648.442682][ T6755] loop1: p225 start 2130708737 is beyond EOD, truncated
[26648.442703][ T6755] loop1: p226 start 2130708737 is beyond EOD, truncated
[26648.442723][ T6755] loop1: p227 start 2130708737 is beyond EOD, truncated
[26648.442743][ T6755] loop1: p228 start 2130708737 is beyond EOD, truncated
[26648.442764][ T6755] loop1: p229 start 2130708737 is beyond EOD, truncated
[26648.442808][ T6755] loop1: p230 start 2130708737 is beyond EOD, truncated
[26648.442831][ T6755] loop1: p231 start 2130708737 is beyond EOD, truncated
[26648.442852][ T6755] loop1: p232 start 2130708737 is beyond EOD, truncated
[26648.442872][ T6755] loop1: p233 start 2130708737 is beyond EOD, truncated
[26648.442892][ T6755] loop1: p234 start 2130708737 is beyond EOD, truncated
[26648.442912][ T6755] loop1: p235 start 2130708737 is beyond EOD, truncated
[26648.442938][ T6755] loop1: p236 start 2130708737 is beyond EOD, truncated
[26648.442960][ T6755] loop1: p237 start 2130708737 is beyond EOD, truncated
[26648.442980][ T6755] loop1: p238 start 2130708737 is beyond EOD, truncated
[26648.443000][ T6755] loop1: p239 start 2130708737 is beyond EOD, truncated
[26648.443021][ T6755] loop1: p240 start 2130708737 is beyond EOD, truncated
[26648.443041][ T6755] loop1: p241 start 2130708737 is beyond EOD, truncated
[26648.443061][ T6755] loop1: p242 start 2130708737 is beyond EOD, truncated
[26648.443081][ T6755] loop1: p243 start 2130708737 is beyond EOD, truncated
[26648.443101][ T6755] loop1: p244 start 2130708737 is beyond EOD, truncated
[26648.443121][ T6755] loop1: p245 start 2130708737 is beyond EOD, truncated
[26648.443141][ T6755] loop1: p246 start 2130708737 is beyond EOD, truncated
[26648.443162][ T6755] loop1: p247 start 2130708737 is beyond EOD, truncated
[26648.443182][ T6755] loop1: p248 start 2130708737 is beyond EOD, truncated
[26648.443208][ T6755] loop1: p249 start 2130708737 is beyond EOD, truncated
[26648.443232][ T6755] loop1: p250 start 2130708737 is beyond EOD, truncated
[26648.443252][ T6755] loop1: p251 start 2130708737 is beyond EOD, truncated
[26648.443273][ T6755] loop1: p252 start 2130708737 is beyond EOD, truncated
[26648.443293][ T6755] loop1: p253 start 2130708737 is beyond EOD, truncated
[26648.443313][ T6755] loop1: p254 start 2130708737 is beyond EOD, truncated
[26648.443334][ T6755] loop1: p255 start 2130708737 is beyond EOD, truncated
[26648.496817][ T6829] netlink: 'syz.4.326': attribute type 2 has an invalid length.
[26648.786034][ T6840] netlink: 4 bytes leftover after parsing attributes in process `syz.0.324'.
[26648.849471][ T6842] loop2: detected capacity change from 0 to 256
[26648.995553][ T6840] device erspan0 entered promiscuous mode
[26648.996505][ T6840] device macvtap1 entered promiscuous mode
[26649.005750][ T6845] loop1: detected capacity change from 0 to 1024
[26649.016848][ T6843] netlink: 4 bytes leftover after parsing attributes in process `syz.0.324'.
[26649.016877][ T6843] device macvtap1 left promiscuous mode
[26649.127138][ T6842] FAT-fs (loop2): Directory bread(block 64) failed
[26649.139283][ T5761] udevd[5761]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[26649.147085][ T5490] udevd[5490]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[26649.149066][ T6842] FAT-fs (loop2): Directory bread(block 65) failed
[26649.151398][ T6842] FAT-fs (loop2): Directory bread(block 66) failed
[26649.153121][ T6842] FAT-fs (loop2): Directory bread(block 67) failed
[26649.155151][ T6842] FAT-fs (loop2): Directory bread(block 68) failed
[26649.156909][ T6842] FAT-fs (loop2): Directory bread(block 69) failed
[26649.158667][ T6842] FAT-fs (loop2): Directory bread(block 70) failed
[26649.170887][ T6842] FAT-fs (loop2): Directory bread(block 71) failed
[26649.172699][ T6842] FAT-fs (loop2): Directory bread(block 72) failed
[26649.174362][ T6842] FAT-fs (loop2): Directory bread(block 73) failed
[26649.324836][ T6845] EXT4-fs (loop1): Test dummy encryption mode enabled
[26649.326683][ T6845] EXT4-fs (loop1): DAX enabled. Warning: EXPERIMENTAL, use at your own risk
[26649.331235][ T6845] EXT4-fs (loop1): Cannot use DAX on a filesystem that may contain inline data
[26650.159335][ T5509] FAT-fs (loop2): error, corrupted directory (invalid entries)
[26650.161565][ T5509] FAT-fs (loop2): Filesystem has been set read-only
[26650.277911][ T5779] udevd[5779]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[26650.308627][ T6868] netlink: 4 bytes leftover after parsing attributes in process `syz.0.335'.
[26650.308743][ T5761] udevd[5761]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[26650.496756][ T6872] loop1: detected capacity change from 0 to 8192
[26650.512787][ T6872] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal
[26650.515306][ T6872] REISERFS (device loop1): using ordered data mode
[26650.525928][ T6872] reiserfs: using flush barriers
[26650.577053][ T6872] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[26650.581837][ T6872] REISERFS (device loop1): checking transaction log (loop1)
[26650.742991][ T6872] REISERFS (device loop1): Using tea hash to sort names
[26650.745840][ T6872] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage.
[26650.776064][ T6868] loop0: detected capacity change from 0 to 32768
[26650.914306][ T6868] XFS (loop0): Mounting V5 Filesystem
[26651.064999][ T6868] XFS (loop0): Ending clean mount
[26651.106001][ T6889] loop1: detected capacity change from 0 to 256
[26651.111048][ T6698] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[26651.130714][ T6889] exfat: Unknown parameter 'zero_size_dir'
[26651.135118][ T5507] XFS (loop0): Unmounting Filesystem
[26651.319302][ T6698] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[26651.357902][ T6871] loop4: detected capacity change from 0 to 32768
[26651.375918][ T6698] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[26651.403049][ T6871] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[26651.406163][ T6871] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[26651.423797][ T6871] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[26651.431556][ T6698] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[26651.431803][ T5547] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[26651.436883][ T5547] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[26651.537352][ T5547] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 100ms
[26651.544442][ T5547] gfs2: fsid=syz:syz.0: jid=0: Done
[26651.547734][ T6871] gfs2: fsid=syz:syz.0: first mount done, others may mount
[26651.675668][ T6904] FAULT_INJECTION: forcing a failure.
[26651.675668][ T6904] name failslab, interval 1, probability 0, space 0, times 0
[26651.689482][ T6904] CPU: 0 PID: 6904 Comm: syz.3.346 Not tainted 5.15.178-syzkaller #0
[26651.691663][ T6904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[26651.694278][ T6904] Call trace:
[26651.695067][ T6904]  dump_backtrace+0x0/0x530
[26651.696158][ T6904]  show_stack+0x2c/0x3c
[26651.697249][ T6904]  dump_stack_lvl+0x108/0x170
[26651.698454][ T6904]  dump_stack+0x1c/0x58
[26651.699503][ T6904]  should_fail+0x3b8/0x514
[26651.700718][ T6904]  __should_failslab+0xbc/0x110
[26651.701976][ T6904]  should_failslab+0x10/0x28
[26651.703146][ T6904]  slab_pre_alloc_hook+0x64/0xe8
[26651.704367][ T6904]  __kmalloc+0xc0/0x4c8
[26651.705410][ T6904]  genl_family_rcv_msg_attrs_parse+0xac/0x240
[26651.707010][ T6904]  genl_rcv_msg+0x934/0x1018
[26651.708186][ T6904]  netlink_rcv_skb+0x20c/0x3b8
[26651.709432][ T6904]  genl_rcv+0x38/0x50
[26651.710376][ T6904]  netlink_unicast+0x664/0x938
[26651.711652][ T6904]  netlink_sendmsg+0x844/0xb38
[26651.712883][ T6904]  ____sys_sendmsg+0x584/0x870
[26651.714078][ T6904]  ___sys_sendmsg+0x214/0x294
[26651.715159][ T6904]  __arm64_sys_sendmsg+0x1ac/0x25c
[26651.716442][ T6904]  invoke_syscall+0x98/0x2b8
[26651.717655][ T6904]  el0_svc_common+0x138/0x258
[26651.718863][ T6904]  do_el0_svc+0x58/0x14c
[26651.719887][ T6904]  el0_svc+0x7c/0x1f0
[26651.720904][ T6904]  el0t_64_sync_handler+0x84/0xe4
[26651.722187][ T6904]  el0t_64_sync+0x1a0/0x1a4
[26651.727130][ T6871] netlink: 24 bytes leftover after parsing attributes in process `syz.4.337'.
[26651.730684][ T6871] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[26651.733918][ T6871] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[26651.733918][ T6871]   inode = 12 2341
[26651.733918][ T6871]   function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602
[26651.775031][ T6871] gfs2: fsid=syz:syz.0: about to withdraw this file system
[26651.787868][ T6871] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[26651.805248][ T6871] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[26651.810592][ T6871] gfs2: fsid=syz:syz.0: File system withdrawn
[26651.821153][ T6871] CPU: 0 PID: 6871 Comm: syz.4.337 Not tainted 5.15.178-syzkaller #0
[26651.823302][ T6871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[26651.825991][ T6871] Call trace:
[26651.826877][ T6871]  dump_backtrace+0x0/0x530
[26651.828065][ T6871]  show_stack+0x2c/0x3c
[26651.829180][ T6871]  dump_stack_lvl+0x108/0x170
[26651.830443][ T6871]  dump_stack+0x1c/0x58
[26651.831552][ T6871]  gfs2_withdraw+0xeac/0x12a4
[26651.832716][ T6871]  gfs2_consist_inode_i+0xcc/0xe8
[26651.834076][ T6871]  gfs2_dirent_scan+0x458/0x584
[26651.835376][ T6871]  gfs2_dir_read+0x6c8/0x1638
[26651.836589][ T6871]  gfs2_readdir+0x138/0x198
[26651.837731][ T6871]  iterate_dir+0x1f4/0x4ec
[26651.838877][ T6871]  __arm64_sys_getdents64+0x1c4/0x4c4
[26651.840317][ T6871]  invoke_syscall+0x98/0x2b8
[26651.841535][ T6871]  el0_svc_common+0x138/0x258
[26651.842752][ T6871]  do_el0_svc+0x58/0x14c
[26651.843855][ T6871]  el0_svc+0x7c/0x1f0
[26651.844900][ T6871]  el0t_64_sync_handler+0x84/0xe4
[26651.846148][ T6871]  el0t_64_sync+0x1a0/0x1a4
[26651.946775][ T6901] loop0: detected capacity change from 0 to 40427
[26651.955509][ T6909] loop1: detected capacity change from 0 to 2048
[26652.025729][ T6890] chnl_net:caif_netlink_parms(): no params data found
[26652.083362][ T6909] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[26652.133287][ T6901] F2FS-fs (loop0): invalid crc value
[26652.157041][ T6916] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[26652.157272][ T6909] attempt to access beyond end of device
[26652.157272][ T6909] loop1: rw=524288, want=33554432, limit=2048
[26652.169776][ T6901] F2FS-fs (loop0): Found nat_bits in checkpoint
[26652.358957][ T6901] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[26652.425391][ T6890] bridge0: port 1(bridge_slave_0) entered blocking state
[26652.427504][ T6890] bridge0: port 1(bridge_slave_0) entered disabled state
[26652.431367][ T6890] device bridge_slave_0 entered promiscuous mode
[26652.435132][ T6929] loop1: detected capacity change from 0 to 2048
[26652.442633][ T6890] bridge0: port 2(bridge_slave_1) entered blocking state
[26652.452665][ T6890] bridge0: port 2(bridge_slave_1) entered disabled state
[26652.457815][ T6929] EXT4-fs (loop1): Mount option "noacl" will be removed by 3.5
[26652.457815][ T6929] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[26652.457815][ T6929] 
[26652.464454][ T6890] device bridge_slave_1 entered promiscuous mode
[26652.525905][ T6890] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[26652.561218][ T6929] EXT4-fs (loop1): mounted filesystem without journal. Opts: noacl,mb_optimize_scan=0x0000000000000001,noblock_validity,,errors=continue. Quota mode: none.
[26652.579707][ T6929] ucma_write: process 190 (syz.1.350) changed security contexts after opening file descriptor, this is not allowed.
[26652.608524][ T6929] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[26652.621481][ T6901] attempt to access beyond end of device
[26652.621481][ T6901] loop0: rw=2049, want=53504, limit=40427
[26652.628624][ T6929] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 34 with error 28
[26652.630407][ T6890] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[26652.632174][ T6929] EXT4-fs (loop1): This should not happen!! Data will be lost
[26652.632174][ T6929] 
[26652.636649][ T6929] EXT4-fs (loop1): Total free blocks count 0
[26652.638599][ T6929] EXT4-fs (loop1): Free/Dirty block details
[26652.640607][ T6929] EXT4-fs (loop1): free_blocks=66060288
[26652.642083][ T6929] EXT4-fs (loop1): dirty_blocks=48
[26652.643461][ T6929] EXT4-fs (loop1): Block reservation details
[26652.645011][ T6929] EXT4-fs (loop1): i_reserved_data_blocks=3
[26652.735689][ T6929] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 65793 with max blocks 1 with error 28
[26652.748903][ T6929] EXT4-fs (loop1): This should not happen!! Data will be lost
[26652.748903][ T6929] 
[26652.801896][ T6940] loop3: detected capacity change from 0 to 1024
[26652.812027][ T6890] team0: Port device team_slave_0 added
[26652.822020][ T6890] team0: Port device team_slave_1 added
[26652.831890][ T6940] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[26652.866384][ T6940] EXT4-fs (loop3): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,dioread_nolock,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback.
[26652.883016][ T6943] netlink: 16 bytes leftover after parsing attributes in process `syz.1.350'.
[26652.997027][ T6890] batman_adv: batadv0: Adding interface: batadv_slave_0
[26653.005013][ T6890] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[26653.028985][ T6890] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[26653.077833][ T6890] batman_adv: batadv0: Adding interface: batadv_slave_1
[26654.069797][ T6890] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[26654.076311][ T6890] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[26654.088905][ T5548] Bluetooth: hci4: command 0x0409 tx timeout
[26654.519331][ T6890] device hsr_slave_0 entered promiscuous mode
[26654.564797][ T6890] device hsr_slave_1 entered promiscuous mode
[26654.630687][ T6977] binder: 6975:6977 ioctl c0306201 4000000003c0 returned -14
[26654.642601][ T6890] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[26654.644641][ T6890] Cannot create hsr debugfs directory
[26654.646228][ T6960] netlink: 4 bytes leftover after parsing attributes in process `syz.4.355'.
[26654.862810][ T6986] loop4: detected capacity change from 0 to 8192
[26654.993716][ T6986] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal
[26654.996500][ T6986] REISERFS (device loop4): using ordered data mode
[26654.998200][ T6986] reiserfs: using flush barriers
[26655.024820][ T6986] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[26655.035449][ T6890] netdevsim netdevsim5 netdevsim0: renamed from eth0
[26655.050050][ T6986] REISERFS (device loop4): checking transaction log (loop4)
[26655.131181][ T6890] netdevsim netdevsim5 netdevsim1: renamed from eth1
[26655.181008][ T6890] netdevsim netdevsim5 netdevsim2: renamed from eth2
[26655.225303][ T6890] netdevsim netdevsim5 netdevsim3: renamed from eth3
[26655.304108][ T7011] loop0: detected capacity change from 0 to 164
[26655.341052][ T6986] REISERFS (device loop4): Using tea hash to sort names
[26655.343343][ T6986] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[26655.403448][ T6988] loop1: detected capacity change from 0 to 32768
[26655.556630][ T6988] XFS (loop1): Mounting V5 Filesystem
[26655.708867][ T6988] XFS (loop1): Ending clean mount
[26655.754957][ T5496] XFS (loop1): Unmounting Filesystem
[26655.837650][   T26] kauditd_printk_skb: 19 callbacks suppressed
[26655.837666][   T26] audit: type=1326 audit(26655.808:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7038 comm="syz.3.365" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffb8aedce8 code=0x0
[26655.849351][ T5623] usb 1-1: new low-speed USB device number 2 using dummy_hcd
[26655.866846][ T6890] 8021q: adding VLAN 0 to HW filter on device bond0
[26655.945000][ T6890] 8021q: adding VLAN 0 to HW filter on device team0
[26655.980637][ T5455] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[26655.991267][ T5455] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[26655.993909][ T5455] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[26655.996512][ T5455] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[26656.000199][ T5455] bridge0: port 1(bridge_slave_0) entered blocking state
[26656.002209][ T5455] bridge0: port 1(bridge_slave_0) entered forwarding state
[26656.004569][ T5455] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[26656.007101][ T5455] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[26656.011850][ T5455] bridge0: port 2(bridge_slave_1) entered blocking state
[26656.013749][ T5455] bridge0: port 2(bridge_slave_1) entered forwarding state
[26656.035550][ T6698] device hsr_slave_0 left promiscuous mode
[26656.069572][ T6698] device hsr_slave_1 left promiscuous mode
[26656.122044][ T6698] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[26656.124138][ T6698] batman_adv: batadv0: Removing interface: batadv_slave_0
[26656.144117][ T6698] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[26656.146218][ T6698] batman_adv: batadv0: Removing interface: batadv_slave_1
[26656.161497][ T6698] device bridge_slave_1 left promiscuous mode
[26656.163411][ T6698] bridge0: port 2(bridge_slave_1) entered disabled state
[26656.169183][ T5548] Bluetooth: hci4: command 0x041b tx timeout
[26656.229202][ T5623] usb 1-1: config 1 has an invalid descriptor of length 165, skipping remainder of the config
[26656.233090][ T5623] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[26656.236465][ T6698] device bridge_slave_0 left promiscuous mode
[26656.238211][ T6698] bridge0: port 1(bridge_slave_0) entered disabled state
[26656.393776][ T7042] loop4: detected capacity change from 0 to 32768
[26656.449539][ T6698] device veth1_macvtap left promiscuous mode
[26656.451854][ T6698] device veth0_macvtap left promiscuous mode
[26656.453524][ T6698] device veth1_vlan left promiscuous mode
[26656.459665][ T7042] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz.4.363 (7042)
[26656.468760][ T6698] device veth0_vlan left promiscuous mode
[26656.469517][ T5623] usb 1-1: string descriptor 0 read error: -22
[26656.471974][ T5623] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[26656.479319][ T5623] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[26656.550324][ T7042] BTRFS info (device loop4): using sha256 (sha256-ce) checksum algorithm
[26656.556346][ T7042] BTRFS info (device loop4): enabling auto defrag
[26656.558376][ T7042] BTRFS info (device loop4): doing ref verification
[26656.564842][ T7042] BTRFS info (device loop4): use no compression
[26656.566705][ T7042] BTRFS info (device loop4): force clearing of disk cache
[26656.568592][ T7042] BTRFS info (device loop4): max_inline at 4096
[26656.589114][ T7042] BTRFS info (device loop4): disabling free space tree
[26656.593099][ T5623] usb 1-1: 0:191 : does not exist
[26656.596007][ T7042] BTRFS info (device loop4): has skinny extents
[26656.599496][ T5623] usb 1-1: 0:53 : does not exist
[26656.734846][ T7078] loop3: detected capacity change from 0 to 1024
[26656.802023][ T7042] BTRFS info (device loop4): enabling ssd optimizations
[26656.824783][ T7078] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[26656.830541][ T7042] BTRFS info (device loop4): clearing free space tree
[26656.832898][ T7042] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[26656.835690][ T7042] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[26656.870427][ T5544] usb 1-1: USB disconnect, device number 2
[26656.901715][ T7078] EXT4-fs (loop3): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,dioread_nolock,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback.
[26656.918341][ T7063] loop1: detected capacity change from 0 to 32768
[26657.108243][ T7063] XFS (loop1): Mounting V5 Filesystem
[26657.800004][ T7063] XFS (loop1): Ending clean mount
[26657.894454][ T5490] udevd[5490]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[26657.960953][ T6698] team0 (unregistering): Port device team_slave_1 removed
[26657.998363][ T6698] team0 (unregistering): Port device team_slave_0 removed
[26658.004633][ T7106] loop3: detected capacity change from 0 to 256
[26658.087131][ T6698] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[26658.187932][ T6698] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[26658.249413][ T5548] Bluetooth: hci4: command 0x040f tx timeout
[26659.167614][ T6698] bond0 (unregistering): Released all slaves
[26659.273406][ T5455] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[26659.276227][ T5455] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[26659.284129][ T5455] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[26659.287324][ T5455] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[26659.292084][ T5455] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[26659.295287][ T5455] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[26659.298364][ T7052] netlink: 4 bytes leftover after parsing attributes in process `syz.1.366'.
[26659.308562][ T7116] netlink: 64 bytes leftover after parsing attributes in process `syz.0.372'.
[26659.325372][ T5455] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[26659.335819][ T5455] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[26659.378522][ T5496] XFS (loop1): Unmounting Filesystem
[26659.398388][ T5455] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[26659.401407][ T5455] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[26659.406325][ T5455] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[26659.422999][ T7124] loop0: detected capacity change from 0 to 1024
[26659.426531][ T5455] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[26659.448732][ T6890] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[26659.514739][ T7124] EXT4-fs (loop0): Test dummy encryption mode enabled
[26659.589807][ T7124] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,noblock_validity,noinit_itable,barrier=0x0000000000000005,max_batch_time=0x0000000000000004,data_err=abort,,errors=continue. Quota mode: writeback.
[26659.665466][ T7124] EXT4-fs (loop0): shut down requested (2)
[26659.755359][ T7131] loop3: detected capacity change from 0 to 128
[26659.794353][ T7131] affs: No valid root block on device loop3
[26659.911292][ T7131] IPVS: set_ctl: invalid protocol: 108 172.20.20.19:20003
[26659.922338][ T5392] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[26659.929977][ T5392] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[26659.961175][ T6890] 8021q: adding VLAN 0 to HW filter on device batadv0
[26660.049263][ T7148] mmap: syz.1.378 (7148): VmData 175906816 exceed data ulimit 1023. Update limits or use boot option ignore_rlimit_data.
[26660.158045][ T7153] loop1: detected capacity change from 0 to 1024
[26660.196147][ T7153] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[26660.258724][ T7153] EXT4-fs (loop1): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,dioread_nolock,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback.
[26660.329296][ T5549] Bluetooth: hci4: command 0x0419 tx timeout
[26661.100839][ T5562] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[26661.103635][ T5562] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[26661.163727][ T7171] loop4: detected capacity change from 0 to 64
[26661.191595][ T5578] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[26661.194254][ T5578] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[26661.197117][ T5578] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[26661.223562][ T5578] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[26661.228124][ T6890] device veth0_vlan entered promiscuous mode
[26661.252948][ T6890] device veth1_vlan entered promiscuous mode
[26661.279023][ T5578] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[26661.281640][ T5578] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[26661.296297][ T5578] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[26661.314535][ T5578] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[26661.326389][ T6890] device veth0_macvtap entered promiscuous mode
[26661.340053][ T6890] device veth1_macvtap entered promiscuous mode
[26661.363820][ T6890] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[26661.366678][ T6890] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[26661.371791][ T6890] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[26661.374664][ T6890] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[26661.388830][ T6890] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[26661.399211][ T6890] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[26661.401487][ T6890] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[26661.414530][ T6890] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[26661.424391][ T6890] batman_adv: batadv0: Interface activated: batadv_slave_0
[26661.437051][ T5562] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[26661.440047][ T5562] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[26661.443462][ T5562] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[26661.460023][ T6890] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[26661.462573][ T6890] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[26661.465057][ T6890] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[26661.485893][ T6890] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[26661.488530][ T6890] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[26661.498437][ T6890] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[26661.503860][ T6890] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[26661.513308][ T6890] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[26661.526805][ T6890] batman_adv: batadv0: Interface activated: batadv_slave_1
[26661.546763][ T5562] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[26661.577213][ T5562] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[26661.595040][ T6890] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[26661.597387][ T6890] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[26661.612890][ T6890] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[26661.615347][ T6890] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[26661.815646][ T5562] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[26661.817882][ T5562] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[26661.830280][ T5578] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[26661.925298][ T5562] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[26661.937172][ T5562] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[26661.961923][ T5392] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[26662.581759][ T7194] loop4: detected capacity change from 0 to 131072
[26662.586509][ T7210] netlink: 4 bytes leftover after parsing attributes in process `syz.1.388'.
[26662.641039][ T7194] F2FS-fs (loop4): Found nat_bits in checkpoint
[26662.937452][ T7223] FAULT_INJECTION: forcing a failure.
[26662.937452][ T7223] name fail_usercopy, interval 1, probability 0, space 0, times 0
[26662.941041][ T7223] CPU: 1 PID: 7223 Comm: syz.5.344 Not tainted 5.15.178-syzkaller #0
[26662.943327][ T7223] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[26662.945942][ T7223] Call trace:
[26662.946795][ T7223]  dump_backtrace+0x0/0x530
[26662.947932][ T7223]  show_stack+0x2c/0x3c
[26662.949048][ T7223]  dump_stack_lvl+0x108/0x170
[26662.950284][ T7223]  dump_stack+0x1c/0x58
[26662.951533][ T7223]  should_fail+0x3b8/0x514
[26662.952750][ T7223]  should_fail_usercopy+0x20/0x30
[26662.954025][ T7223]  iovec_from_user+0xcc/0x630
[26662.955352][ T7223]  __import_iovec+0x80/0x414
[26662.956578][ T7223]  import_iovec+0x88/0xa4
[26662.957734][ T7223]  ___sys_sendmsg+0x1dc/0x294
[26662.958945][ T7223]  __sys_sendmmsg+0x23c/0x648
[26662.960208][ T7223]  __arm64_sys_sendmmsg+0xa0/0xbc
[26662.961460][ T7223]  invoke_syscall+0x98/0x2b8
[26662.962727][ T7223]  el0_svc_common+0x138/0x258
[26662.963807][ T7223]  do_el0_svc+0x58/0x14c
[26662.964881][ T7223]  el0_svc+0x7c/0x1f0
[26662.965883][ T7223]  el0t_64_sync_handler+0x84/0xe4
[26662.967184][ T7223]  el0t_64_sync+0x1a0/0x1a4
[26663.650280][ T7229] loop0: detected capacity change from 0 to 1024
[26663.735297][ T7229] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[26663.861085][ T7229] EXT4-fs (loop0): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,dioread_nolock,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback.
[26663.949686][ T7237] loop5: detected capacity change from 0 to 256
[26664.130631][ T7237] FAT-fs (loop5): Directory bread(block 64) failed
[26664.132514][ T7237] FAT-fs (loop5): Directory bread(block 65) failed
[26664.134275][ T7237] FAT-fs (loop5): Directory bread(block 66) failed
[26664.155096][ T7237] FAT-fs (loop5): Directory bread(block 67) failed
[26664.157020][ T7237] FAT-fs (loop5): Directory bread(block 68) failed
[26664.158738][ T7237] FAT-fs (loop5): Directory bread(block 69) failed
[26664.209207][ T7237] FAT-fs (loop5): Directory bread(block 70) failed
[26664.211074][ T7237] FAT-fs (loop5): Directory bread(block 71) failed
[26664.212875][ T7237] FAT-fs (loop5): Directory bread(block 72) failed
[26664.214524][ T7237] FAT-fs (loop5): Directory bread(block 73) failed
[26664.235664][ T7210] loop1: detected capacity change from 0 to 32768
[26664.332572][ T7259] netlink: 20 bytes leftover after parsing attributes in process `syz.4.391'.
[26664.336402][ T7259] netlink: 20 bytes leftover after parsing attributes in process `syz.4.391'.
[26664.390247][ T7210] XFS (loop1): Mounting V5 Filesystem
[26664.597241][ T7210] XFS (loop1): Ending clean mount
[26664.641828][ T7270] loop4: detected capacity change from 0 to 64
[26664.647639][ T5496] XFS (loop1): Unmounting Filesystem
[26664.908392][ T5497] hfs: node 4:3 still has 1 user(s)!
[26665.848560][ T7272] loop5: detected capacity change from 0 to 40427
[26665.889933][ T7272] F2FS-fs (loop5): invalid crc value
[26665.901909][ T7272] F2FS-fs (loop5): Found nat_bits in checkpoint
[26665.953288][ T7272] F2FS-fs (loop5): Start checkpoint disabled!
[26666.112761][ T7272] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[26666.180935][ T5578] attempt to access beyond end of device
[26666.180935][ T5578] loop5: rw=2049, want=45104, limit=40427
[26666.211990][ T7295] loop3: detected capacity change from 0 to 32768
[26666.218693][ T7305] loop4: detected capacity change from 0 to 4096
[26666.259432][ T7305] ntfs3: Unknown parameter 's~abse'
[26666.319978][ T7303] loop4: detected capacity change from 0 to 1024
[26666.324866][ T7303] EXT4-fs (loop4): Mount option "nouser_xattr" will be removed by 3.5
[26666.324866][ T7303] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[26666.324866][ T7303] 
[26666.337882][ T7295] ocfs2: Slot 0 on device (7,3) was already allocated to this node!
[26666.353352][ T7295] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[26666.398692][ T7303] EXT4-fs (loop4): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,errors=continue,norecovery,debug_want_extra_isize=0x0000000000000004,resgid=0x0000000000000000,nodelalloc,init_itable,nouser_xattr,,errors=continue. Quota mode: none.
[26666.491776][ T5503] ocfs2: Unmounting device (7,3) on (node local)
[26666.756130][ T7320] netlink: 8 bytes leftover after parsing attributes in process `syz.4.414'.
[26666.869945][ T7322] netlink: 4 bytes leftover after parsing attributes in process `syz.3.411'.
[26667.034063][ T7344] loop1: detected capacity change from 0 to 128
[26667.077755][ T7349] loop4: detected capacity change from 0 to 1024
[26667.326344][ T7349] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[26668.163493][ T7349] EXT4-fs (loop4): mounted filesystem without journal. Opts: user_xattr,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,dioread_nolock,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue. Quota mode: writeback.
[26668.627439][ T7378] netlink: 'syz.1.423': attribute type 21 has an invalid length.
[26668.668215][ T7378] netlink: 128 bytes leftover after parsing attributes in process `syz.1.423'.
[26668.690163][ T7378] netlink: 'syz.1.423': attribute type 5 has an invalid length.
[26668.703342][ T7378] netlink: 3 bytes leftover after parsing attributes in process `syz.1.423'.
[26668.835516][ T7322] loop3: detected capacity change from 0 to 32768
[26669.547985][ T7322] XFS (loop3): Mounting V5 Filesystem
[26669.601587][ T7391] Soft offlining pfn 0x135566 at process virtual address 0x400000566000
[26669.684874][ T7322] XFS (loop3): Ending clean mount
[26669.735877][ T7322] XFS (loop3): Metadata CRC error detected at xfs_rmapbt_read_verify+0x54/0x434, xfs_rmapbt block 0x14 
[26669.752387][ T7322] XFS (loop3): Unmount and run xfs_repair
[26669.768437][ T7322] XFS (loop3): First 128 bytes of corrupted metadata buffer:
[26669.783312][ T7322] 00000000: 52 4d 42 33 00 00 00 0c ff ff ff ff ff ff ff ff  RMB3............
[26669.795521][ T7322] 00000010: 00 00 00 00 00 00 00 14 00 00 00 01 00 00 00 80  ................
[26669.806942][ T7322] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91  ..G...N..b..1...
[26669.817466][ T7322] 00000030: 00 00 00 00 5b af 3b 1d 00 00 00 00 00 00 00 01  ....[.;.........
[26669.829032][ T7322] 00000040: ff ff ff ff ff ff ff fd 00 00 00 00 00 00 00 00  ................
[26669.844565][ T7322] 00000050: 00 00 00 01 00 00 00 02 ff ff ff ff ff ff ff fb  ................
[26669.846923][ T7322] 00000060: 00 00 00 00 00 00 00 00 00 00 00 03 00 00 00 02  ................
[26669.849464][ T7322] 00000070: ff ff ff ff ff ff ff fa 00 00 00 00 05 00 00 00  ................
[26669.851787][ T7322] XFS (loop3): metadata I/O error in "xfs_btree_read_buf_block+0x1f4/0x2f8" at daddr 0x14 len 4 error 74
[26669.853317][ T7391] Memory failure: 0x135566: unhandlable page.
[26669.872069][ T7322] XFS (loop3): Corruption of in-memory data (0x8) detected at xfs_defer_finish_noroll+0x164c/0x1f34 (fs/xfs/libxfs/xfs_defer.c:504).  Shutting down filesystem.
[26669.876392][ T7322] XFS (loop3): Please unmount the filesystem and rectify the problem(s)
[26669.901295][ T7399] input: syz1 as /devices/virtual/input/input6
[26669.924455][ T7396] loop5: detected capacity change from 0 to 8192
[26669.937793][ T7401] loop1: detected capacity change from 0 to 256
[26669.959545][ T5503] XFS (loop3): Unmounting Filesystem
[26669.978387][ T7401] FAT-fs (loop1): Unrecognized mount option "0xffffffffffffffff˙˙" or missing value
[26670.003068][ T7396] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal
[26670.005906][ T7396] REISERFS (device loop5): using ordered data mode
[26670.013774][ T7396] reiserfs: using flush barriers
[26670.026500][ T7396] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[26670.036507][ T7396] REISERFS (device loop5): checking transaction log (loop5)
[26670.071387][ T7396] REISERFS (device loop5): Using r5 hash to sort names
[26670.097336][ T7396] REISERFS warning (device loop5): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[26670.116529][ T7396] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage.
[26670.180037][ T7396] REISERFS warning (device loop5): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[26671.715987][ T7481] netlink: 8 bytes leftover after parsing attributes in process `syz.1.462'.
[26671.718694][ T7481] netlink: 12 bytes leftover after parsing attributes in process `syz.1.462'.
[26672.061093][ T7503] netlink: 'syz.0.471': attribute type 1 has an invalid length.
[26672.074222][ T7506] udc-core: couldn't find an available UDC or it's busy
[26672.077515][ T7506] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[26672.091548][ T7503] device bond1 entered promiscuous mode
[26672.123078][ T7506] udc-core: couldn't find an available UDC or it's busy
[26672.145054][ T7503] bond1: (slave geneve2): making interface the new active one
[26672.151484][ T7506] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[26672.157938][ T7503] device geneve2 entered promiscuous mode
[26672.163747][ T7503] bond1: (slave geneve2): Enslaving as an active interface with an up link
[26672.366713][ T7506] udc-core: couldn't find an available UDC or it's busy
[26672.372886][ T7506] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[26672.442358][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.449050][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.451885][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.453933][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.457136][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.465770][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.468477][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.471126][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.475055][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.477459][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.486199][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.496622][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.498000][ T7530] netlink: 'syz.5.484': attribute type 12 has an invalid length.
[26672.502027][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.507464][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.511986][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.514214][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.516169][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.518190][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.524263][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.526277][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.528343][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.531182][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.533273][ T7528] dccp_close: ABORT with 84 bytes unread
[26672.533462][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.536922][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.538633][ T5486] hid-generic 0008:000F:0002.0001: unknown main item tag 0x0
[26672.547032][ T5486] hid-generic 0008:000F:0002.0001: hidraw0: <UNKNOWN> HID v0.0c Device [syz1] on syz1
[26672.570234][ T7535] netlink: 4 bytes leftover after parsing attributes in process `syz.1.485'.
[26672.574304][ T7535] netlink: 12 bytes leftover after parsing attributes in process `syz.1.485'.
[26672.699079][ T5486] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[26673.003617][ T7561] netlink: 8 bytes leftover after parsing attributes in process `syz.4.497'.
[26673.007200][ T7561] netlink: 12 bytes leftover after parsing attributes in process `syz.4.497'.
[26673.016213][ T7561] netlink: 'syz.4.497': attribute type 20 has an invalid length.
[26673.059430][ T5486] usb 1-1: config 0 has no interfaces?
[26673.060800][ T5486] usb 1-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[26673.063155][ T5486] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[26673.075937][ T5486] usb 1-1: config 0 descriptor??
[26673.130467][ T2056] ieee802154 phy0 wpan0: encryption failed: -22
[26673.132259][ T2056] ieee802154 phy1 wpan1: encryption failed: -22
[26673.332278][ T5486] usb 1-1: USB disconnect, device number 3
[26673.940968][ T7625] netlink: 72 bytes leftover after parsing attributes in process `syz.4.515'.
[26674.338383][   T26] audit: type=1326 audit(26674.308:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7661 comm="syz.4.529" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3fa7ce8 code=0x0
[26674.395169][ T7672] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[26674.514148][ T7684] netlink: 64 bytes leftover after parsing attributes in process `syz.3.537'.
[26674.594719][ T7688] 9pnet_virtio: no channels available for device syz
[26674.690395][ T7693] netlink: 24 bytes leftover after parsing attributes in process `syz.3.542'.
[26674.822380][ T7703] udc-core: couldn't find an available UDC or it's busy
[26674.842985][ T7703] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[26674.947943][ T7706] bond2 (unregistering): Released all slaves
[26675.075070][ T7723] dccp_close: ABORT with 20 bytes unread
[26675.455039][ T7757] udc-core: couldn't find an available UDC or it's busy
[26675.456985][ T7757] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[26675.517578][ T7763] netlink: 'syz.5.564': attribute type 1 has an invalid length.
[26675.708763][ T7769] bond1: (slave vcan1): The slave device specified does not support setting the MAC address
[26675.741725][ T7769] bond1: (slave vcan1): Setting fail_over_mac to active for active-backup mode
[26675.744887][ T7769] bond1: (slave vcan1): Error -22 calling dev_set_mtu
[26675.800565][ T7768] 8021q: adding VLAN 0 to HW filter on device bond0
[26675.806178][ T7768] bond0: (slave rose0): Enslaving as an active interface with an up link
[26675.808376][ T5624] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[26676.158910][ T5547] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[26676.399094][ T5547] usb 1-1: Using ep0 maxpacket: 16
[26676.516012][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.519073][ T5547] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[26676.522148][ T5547] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[26676.524645][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.527772][ T5547] usb 1-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[26676.534212][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.537104][ T7826] udc-core: couldn't find an available UDC or it's busy
[26676.542463][ T5547] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[26676.547034][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.549133][ T7826] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[26676.561631][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.564677][ T5547] usb 1-1: config 0 descriptor??
[26676.567830][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.574451][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.578764][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.583546][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.587897][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.592826][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.597678][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.602043][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.606307][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.617338][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.623316][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.627791][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.632323][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.636615][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.640893][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.645287][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.648674][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.655886][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.667054][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.672815][ T5549] hid-generic 0008:000F:0002.0002: unknown main item tag 0x0
[26676.693297][ T5549] hid-generic 0008:000F:0002.0002: hidraw0: <UNKNOWN> HID v0.0c Device [syz1] on syz1
[26676.729579][ T7839] md: md2 stopped.
[26676.851242][ T7847] netlink: set zone limit has 8 unknown bytes
[26677.016705][ T7861] netlink: 20 bytes leftover after parsing attributes in process `syz.3.593'.
[26677.065457][ T7869] fuse: Bad value for 'fd'
[26677.075091][ T5547] input: HID 05ac:8241 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:8241.0003/input/input8
[26677.192551][ T5547] appleir 0003:05AC:8241.0003: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 05ac:8241] on usb-dummy_hcd.0-1/input0
[26677.443371][ T7896] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[26677.445744][ T7896] IPv6: NLM_F_CREATE should be set when creating new route
[26677.978938][ T7896] bridge0: port 2(bridge_slave_1) entered disabled state
[26677.982026][ T7896] bridge0: port 1(bridge_slave_0) entered disabled state
[26678.610708][ T7896] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[26678.645718][ T7896] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[26679.152631][ T2356] usb 1-1: USB disconnect, device number 4
[26679.517311][ T7896] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[26679.521745][ T7896] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[26679.525086][ T7896] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[26679.531392][ T7896] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[26679.961976][ T7947] fuse: Bad value for 'fd'
[26680.177386][ T7967] ubi31: attaching mtd0
[26680.178761][ T7967] ubi31 error: ubi_attach_mtd_dev: bad VID header (2) or data offsets (66)
[26680.272031][ T7939] device wg2 entered promiscuous mode
[26680.653009][ T8005] device syzkaller1 entered promiscuous mode
[26680.877775][ T8030] netlink: 12 bytes leftover after parsing attributes in process `syz.3.640'.
[26681.005416][ T8042] netlink: 60 bytes leftover after parsing attributes in process `syz.4.642'.
[26681.133330][ T8053] netlink: 12 bytes leftover after parsing attributes in process `syz.4.645'.
[26681.300370][ T8066] process 'syz.5.649' launched '/dev/fd/6' with NULL argv: empty string added
[26681.600289][ T8098] xt_hashlimit: size too large, truncated to 1048576
[26681.630861][ T8101] 9pnet_virtio: no channels available for device syz
[26682.005366][ T8121] udc-core: couldn't find an available UDC or it's busy
[26682.007424][ T8121] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[26684.951555][ T8258] netlink: 'syz.3.694': attribute type 1 has an invalid length.
[26685.010705][ T8258] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link
[26685.017891][ T5578] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[26685.030942][ T8258] 8021q: adding VLAN 0 to HW filter on device bond1
[26685.033364][ T5624] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[26685.038554][ T8264] udc-core: couldn't find an available UDC or it's busy
[26685.064177][ T8264] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[26685.143076][ T5624] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[26686.080681][ T8295] udc-core: couldn't find an available UDC or it's busy
[26686.082655][ T8295] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[26687.573374][ T8328] dccp_close: ABORT with 84 bytes unread
[26687.739898][ T8341] netlink: 104 bytes leftover after parsing attributes in process `syz.5.717'.
[26688.035896][ T8350] netlink: 4 bytes leftover after parsing attributes in process `syz.5.721'.
[26689.034968][ T8399] udc-core: couldn't find an available UDC or it's busy
[26689.039335][ T8399] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[26689.594441][ T8430] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[26689.596510][ T8430] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[26689.604670][ T8430] device bridge_slave_0 left promiscuous mode
[26689.608190][ T8430] bridge0: port 1(bridge_slave_0) entered disabled state
[26689.644926][ T8430] device bridge_slave_1 left promiscuous mode
[26689.647004][ T8430] bridge0: port 2(bridge_slave_1) entered disabled state
[26689.726235][ T8430] bond0: (slave bond_slave_0): Releasing backup interface
[26689.798261][ T8430] bond0: (slave bond_slave_1): Releasing backup interface
[26689.902744][ T8430] team0: Port device team_slave_0 removed
[26689.917607][ T8430] team0: Port device team_slave_1 removed
[26689.920113][ T8430] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[26689.922379][ T8430] batman_adv: batadv0: Removing interface: batadv_slave_0
[26689.926021][ T8430] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[26689.928284][ T8430] batman_adv: batadv0: Removing interface: batadv_slave_1
[26689.940958][ T8432] netlink: 24 bytes leftover after parsing attributes in process `syz.5.746'.
[26689.960447][ T8435] device vlan0 entered promiscuous mode
[26690.003816][ T8435] team0: Port device vlan0 added
[26690.024425][ T8444] netlink: 4 bytes leftover after parsing attributes in process `syz.5.746'.
[26690.164223][ T8448] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[26690.537423][ T8456] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[26690.539422][ T8456] IPv6: NLM_F_CREATE should be set when creating new route
[26690.591717][ T8460] udc-core: couldn't find an available UDC or it's busy
[26690.593711][ T8460] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[26690.664210][ T8465] netlink: 224 bytes leftover after parsing attributes in process `syz.4.759'.
[26690.666597][ T8465] netlink: 16 bytes leftover after parsing attributes in process `syz.4.759'.
[26690.880856][ T8482] udc-core: couldn't find an available UDC or it's busy
[26690.882700][ T8482] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[26691.096134][ T8482] udc-core: couldn't find an available UDC or it's busy
[26691.097929][ T8482] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[26691.356059][ T8516] netlink: 8 bytes leftover after parsing attributes in process `syz.1.777'.
[26691.358362][ T8516] netlink: 12 bytes leftover after parsing attributes in process `syz.1.777'.
[26691.362042][ T8516] netlink: 'syz.1.777': attribute type 20 has an invalid length.
[26692.520182][ T8549] md2: error: bitmap file must be a regular file
[26692.633760][ T8563] udc-core: couldn't find an available UDC or it's busy
[26692.635666][ T8563] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[26693.165600][ T8592] 9pnet_virtio: no channels available for device syz
[26693.312455][ T8604] netlink: 'syz.4.813': attribute type 4 has an invalid length.
[26693.619746][ T8629] device wg2 entered promiscuous mode
[26693.711979][ T8633] 9pnet_virtio: no channels available for device syz
[26693.771752][ T8639] netlink: 8 bytes leftover after parsing attributes in process `syz.1.829'.
[26694.051438][  T144] Bluetooth: unknown link type 108
[26694.196142][ T8673] udc-core: couldn't find an available UDC or it's busy
[26694.206792][ T8673] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[26694.241652][ T8676] netlink: 24 bytes leftover after parsing attributes in process `syz.3.845'.
[26694.725782][ T8706] 9pnet_virtio: no channels available for device syz
[26694.817894][ T8711] netlink: 8 bytes leftover after parsing attributes in process `syz.4.860'.
[26695.104230][ T8729] device bond0 entered promiscuous mode
[26695.109505][ T8729] device bond_slave_0 entered promiscuous mode
[26695.111270][ T8729] device bond_slave_1 entered promiscuous mode
[26695.446008][ T8749] netlink: 4120 bytes leftover after parsing attributes in process `syz.5.876'.
[26695.565996][ T8755] device syzkaller1 entered promiscuous mode
[26695.615229][ T8761] IPv6: NLM_F_REPLACE set, but no existing node found!
[26695.806123][ T8775] device bond2 entered promiscuous mode
[26695.956455][  T144] Bluetooth: Wrong link type (-22)
[26695.993616][ T8790] udc-core: couldn't find an available UDC or it's busy
[26695.995658][ T8790] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[26697.309845][ T8853] netlink: 4 bytes leftover after parsing attributes in process `syz.1.912'.
[26697.788374][  T144] Bluetooth: hci4: link tx timeout
[26697.790835][  T144] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[26697.795928][ T8878] 9pnet_virtio: no channels available for device syz
[26697.920279][ T8884] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[26697.999105][ T8888] netlink: 52 bytes leftover after parsing attributes in process `syz.4.924'.
[26698.095403][ T8895] udc-core: couldn't find an available UDC or it's busy
[26698.097158][ T8895] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[26698.443620][ T8913] device syzkaller1 entered promiscuous mode
[26698.699668][ T8925] netlink: 'syz.1.939': attribute type 1 has an invalid length.
[26698.702027][ T8925] netlink: 'syz.1.939': attribute type 4 has an invalid length.
[26698.704259][ T8925] netlink: 9462 bytes leftover after parsing attributes in process `syz.1.939'.
[26699.362834][ T8974] netlink: 24 bytes leftover after parsing attributes in process `syz.4.953'.
[26699.851742][ T5579] Bluetooth: hci4: command 0x0406 tx timeout
[26700.570277][ T5579] Bluetooth: hci3: command 0x0406 tx timeout
[26703.135064][ T5579] Bluetooth: hci0: command 0x0406 tx timeout
[26703.279633][ T9089] device wireguard0 entered promiscuous mode
[26703.853291][ T5498] ------------[ cut here ]------------
[26703.855096][ T5498] WARNING: CPU: 0 PID: 5498 at net/bluetooth/hci_conn.c:443 hci_conn_timeout+0x208/0x428
[26703.857564][ T5498] Modules linked in:
[26703.858551][ T5498] CPU: 0 PID: 5498 Comm: kworker/u5:1 Not tainted 5.15.178-syzkaller #0
[26703.860633][ T5498] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[26703.864272][ T5498] Workqueue: hci3 hci_conn_timeout
[26703.865603][ T5498] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[26703.867556][ T5498] pc : hci_conn_timeout+0x208/0x428
[26703.868861][ T5498] lr : hci_conn_timeout+0x208/0x428
[26703.870147][ T5498] sp : ffff80001fae7b30
[26703.871162][ T5498] x29: ffff80001fae7b30 x28: ffff0000c5472000 x27: ffff0000c0877618
[26703.873124][ T5498] x26: ffff0000e4e4e138 x25: ffff0000d37b5c00 x24: dfff800000000000
[26703.875157][ T5498] x23: 1fffe0001c9c9c27 x22: dfff800000000000 x21: 00000000ffffffff
[26703.877164][ T5498] x20: ffff0000e4e4e000 x19: ffff0000e4e4e138 x18: ffff80001fae7880
[26703.879201][ T5498] x17: 1fffe0003682eb8e x16: ffff8000084c44a8 x15: 000000000004033b
[26703.881186][ T5498] x14: 000000000bcf02e2 x13: dfff800000000000 x12: 0000000000000001
[26703.883178][ T5498] x11: 0000000000000000 x10: 0000000000000000 x9 : ffff0000d5431b40
[26703.885167][ T5498] x8 : ffff800010e4092c x7 : 0000000000000000 x6 : 0000000000000000
[26703.887211][ T5498] x5 : ffff800017742bd0 x4 : 0000000000000008 x3 : ffff800010e4075c
[26703.889188][ T5498] x2 : 0000000000000000 x1 : 00000000ffffffff x0 : 0000000000000000
[26703.891156][ T5498] Call trace:
[26703.891973][ T5498]  hci_conn_timeout+0x208/0x428
[26703.893157][ T5498]  process_one_work+0x790/0x11b8
[26703.894390][ T5498]  worker_thread+0x910/0x1034
[26703.895548][ T5498]  kthread+0x37c/0x45c
[26703.896548][ T5498]  ret_from_fork+0x10/0x20
[26703.897660][ T5498] irq event stamp: 2704
[26703.898722][ T5498] hardirqs last  enabled at (2703): [<ffff800011c255e8>] _raw_spin_unlock_irq+0x9c/0x134
[26703.901182][ T5498] hardirqs last disabled at (2704): [<ffff800011b49ab0>] el1_dbg+0x24/0x80
[26703.903308][ T5498] softirqs last  enabled at (2536): [<ffff8000081b6920>] handle_softirqs+0xb88/0xdbc
[26703.905289][ T5498] softirqs last disabled at (2519): [<ffff8000081b6fb8>] __irq_exit_rcu+0x268/0x4d8
[26703.907675][ T5498] ---[ end trace 4bffc559146786cb ]---
[26705.928883][ T5548] Bluetooth: hci2: command 0x0406 tx timeout
[26705.938885][ T2356] Bluetooth: hci1: command 0x0406 tx timeout
[26705.941075][ T2356] Bluetooth: hci0: command 0x0406 tx timeout
[26706.820826][ T5502] Bluetooth: hci4: link tx timeout
[26706.822252][ T5502] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa