last executing test programs:

13.761155769s ago: executing program 1 (id=677):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x9)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@uuid_off}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
timerfd_settime(0xffffffffffffffff, 0x0, &(0x7f0000000040)={{0x77359400}, {0x0, 0x989680}}, 0x0)
r3 = openat$btrfs_control(0xffffffffffffff9c, &(0x7f0000000380), 0x1002, 0x0)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000480)={<r4=>0x0}, &(0x7f00000004c0)=0xc)
ioctl$SNDRV_CTL_IOCTL_ELEM_REPLACE(r3, 0xc1105518, &(0x7f0000000780)={{0x9, 0x3, 0x1, 0x5, 'syz0\x00', 0x3}, 0x4, 0x400, 0x8, r4, 0x4, 0x1, 'syz0\x00', &(0x7f0000000500)=['^*)\xec\x00', 'upperdir', 'lowerdir', 'wlan1\x00'], 0x1b})
r5 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r6, 0x40bc5311, &(0x7f0000000000)={0x80, 0x1})
bind$bt_hci(r5, &(0x7f0000000000)={0x27}, 0x74)
sendmmsg$unix(r5, &(0x7f0000000b00)=[{{&(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e, 0x0}}, {{&(0x7f0000000e80)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000740)=[{&(0x7f0000001dc0)="bb", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000600)='z', 0x1}], 0x1}}], 0x3, 0x0)
r7 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r7, &(0x7f0000000000)='./file1\x00', 0xc000, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f00000001c0)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_GET_KEY(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f0000000400)={0x44, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r8}, @val={0xc, 0x99, {0x0, 0x39}}}}, [@NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac01}, @NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x1}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "d0ca8315dc"}]}, 0x44}, 0x1, 0x0, 0x0, 0x24000000}, 0x4001)
chdir(&(0x7f00000003c0)='./bus\x00')
linkat(r7, &(0x7f0000000100)='./file1\x00', r7, &(0x7f0000000240)='./file0\x00', 0x0)

12.517122107s ago: executing program 1 (id=679):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket(0x11, 0x800000003, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000002000d77a18001000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x1400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000600)={'team0\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000640)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r3, {0x0, 0x2}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x1], 0x0, [0x8, 0x4, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80], [0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x400]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000001}]}]}]}}]}, 0xa4}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmmsg$inet_sctp(r0, &(0x7f0000003f40)=[{&(0x7f0000000000)=@in={0x2, 0x4e22, @remote}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000040)="1c", 0x1}], 0x1, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000000084"], 0x18, 0x48060}], 0x1, 0x200000d0)
r5 = dup2(r0, r0)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000240)={<r6=>0x0, 0xff8, "be36537e4815190ba89bb944821c666cf97cb615aef0e55771575b36fc32243aeb958ed1c0032df4599629d07cdd737b48b51e61aab2b3f12aca8962abaaa65e0bdff0f46436f6ab40955dc02b6bdbfcc5bb165f2dc08f95d34ccb4087cd807d893e570ef9fc1ea5691885895c60fb4acc4349db3966b84e3fdcd2dd6b1ff822792a05ce2e1f34f6643764f7f63bc6810626ebaa28ba3b50495b808df1f32977daf10c6f02ce17a1deeece5cf2ddf651ba934ddcbaa0694a98b75c2a1b4df6e7158e46857f55587670dfa32cec88f6a51c048c736a0bc5837c8b457bb7f5299968ffde495d63dc31fd8c85ffdcdac68e49c706a3db9c953cdeaadce6fb4802a590011dde9431fd08549e3d77613590294721d27d17ca487a0c1d5700aada59bfb9b4d7ab204bf2829c9f43844b5d50916cc5054abac2d5996d87c1e05652290ff00ee3d052c267f7baef1cd906b8be9372ea0de188d14414e8aaf35260d221a29b6d1229c8d4d94647584ccf778df8cdee50cc932367f650e2f96d6606f6f702bec2d5e15f926b926fede1e289be077486b7616fd76248955ce87be9fe332487f821f9b1cedf1fdcffdaf2d33883d18d833846987515ffe0efe2bb81d6c6b52aa34a04dce85fbf85efad100f971ff716b2e8fd677058d3c4cc393398c08f292fab89cf62e6629bc3f24d30f9ad11f2f43b0a9907e0a5bf63f7f5f0e2f8c24052ca4c940b88e838ee7a4ff6fa703bd49e85a7e42119046216dab62948605079e6d8824c4af47f54af963d89096580bebe769595ac9edcc4fc8c766497859647166fc325fff1dfeaa909223dd176021dd002e63d6f309ca6b997878c59bb76f17dcac56855f7a2dcedb0a2ee756ec73f1b1f5282c01aad2c4a9ea38e49019cc7e4637d218c96505b4fe60bcae9437a723fb8dc2380941384965cf94f8d8c301c135477abc6a6cd0d892abaa9a754d930e9420e8026715e75f329ca1a79a0b9005acbda46409493bb68f9746c17e1d211826dec263e43a0aefe62c28a7b2e8f417040b8b62b87a54e38fb313129d3871130569734f71c21b3e51f72da22ecd689cce6487a9bd6f7479d52c551e3c0ee13fae618294facf132d0a6d67a11486723ea2dcc2c6477717ad3f67de216d156f596ea65f5b756b902d13bdcb841fe8e1927bd54dff30f7b0ec289127540714b2491dd7667019c861cc853e608381978a7aed220c4d2a12ea5fb58d5feed8f4ca0389e9c4380203f1ce90a08a2994fc887f8cff6fda30c0c30c8e9e227daa6522d33a968c8dc4e6ceac9d7a8eb203b6d89634e9bad7542fb0a3e8679d256454bc38efe62593497ebe2f6331e0c0a79767ccc57553749fa4aa5bc4b759992079986efaa986d6aa88ae39d6266db730ed8d5cf4443ce86d0af331eeb44a4143a3504c828a2288e8ecf3aab21771a2f5df70e09524f4902d73cfeb2bf124513a5be630c052de0efb1d6d836800d4728aa7518b644ebf511af6b77227eb6e51230407dd5d22a349dbd4a36470c2915a3a6fb85a11fbac8dc19f27cf41e6cd56552f1835531565cc098cfde05b77af46d03b19eefdd7281efe9d475961849e17974ee172d56b641ded704457fb2821e5f3d093278baebe637ff75efb3269311071a0e86fd8e64a39c7fd009bc3f4e79ad70ee699df7cf68b9bb3815f4eb14796223593d8c498c0bdd12e9b4a2c612d38dcd36c98d5467b750d673d8929822937ad2b9929b1eda1652f726954360d9bf9b2fce7de96dcc2404bb03dacaa92c4f1eed80188dab68c3629954468f173bd1314556495840d368ce5b9c596565ca1e6f098de15118d375ba614c2f277cda8be6cca6182fe64c6d75836d3ed1abed2429fbbbf886a36a2a39b25e6adae4093213a172b0be8d8956bb420c8332783d53e92ab72bdc3953b1e5fecdd79c67f98fc23cdbbd6a9eacf232b7df6d30cb095db45b16ab850707c12de11ca41c6d925b29e097d945fa821bb85052d73cfd9598efb533a01ddeafa23df001462b8fded40f96343544516d57b3178d9292cfb58febf9958046145ed1043fd70168dbf44d93dacb080fac0d5fad0cb7e50d77c4ff63da6d6e672a97e7d890f35ce29a3abce24359b161921c7d235e27ef7f2687b465ee5c02275135a87370a6cdb172944d8b8c77e3672958de065da393cc09e992177d09e547ba990800b93e928c8371d598e6855939a7501c700506097a9d166d937f5296c3c754b71600660aa03786603202d18a3cca71f0fbe9e57c561e891d6c49a63ad860b517e48b7db7a4a9936db0e139c17e2b82568821fc7f97aead0d34809fe7c3977e9ba3088f16ed3d1232072a74cdf071fd187198593e22d352a48b695d6dab6f2e1fd9038699e46513383fea3bd5bfd7a78cbc2f6df66597644426001989679aae2ef082f5924a0cc422929c98845eb9954ebad8b56e19b2bc6dc182f2f85ec6eeeb36b15137978f96243d6c0ce6295311cee74d80a68375ab41d6f0c9573fc635b8fcf367e42fcd9f35245357fafaf6baee64ac859ab8c5ecf670e5ca032cf33536f0f012455adedd77604d469739ae72eade7391d02aaf17eca75178217813bea214979a4a69545cb29c62fd3b038fec587219da31b3cd87a54eb31a5f36a58ed489502f749391efba63c392ff7aacc9847381e4e31c6fc803763ec38ad951a13cb7d55024fc713a93d9db98cfce0f05f41e114761c1db623c2dc322fb715b9c36cacf0333232c056646fd1a1cfb35c6ea62e587b81222b8fc63f716170e13898c8a8a060a5e5e26268002be8427138de0e5d0ef265e536a787ea9481e8c657bc330d67dd1dbab0de54e595b37f2e0e2a73b88898d342c2886d9710c29c5d8f64ebfe994ab35614abbd80a260da9ad1ee8cf8a86fab3e45c8b2fb9d39e0e59c7be2e3cadee75ad1380d13bedd9b03a52e242a8d51fbd1fde4051cdbcaec1d0964b7bd2d0746b646bf92f0103dab39490e1013c871a70f108c2a0f964248d383860c918e68ba4481a1331c59681898e8395312de4fb7e7c2406376ca8daba13b4c93eb11371668e4461eafc97fc322a6e1142bedecbc213dfcd132c715c9722c61bf4851be899483b953eff4d5fc6e24b971faf4b5951ac4972b0ed38f37cb04cab75df9c2b62a68f68dd9db89442916a12ad86099db80b6b5ba620ea811ba6af31e975e6dd64708571a3f376398f897dec5c8915a0a42e50994facc607a72100bbaac2226ef3476567701546cc016c64b37d2ddff9439aa671bbf1948da857db0e6bc51cd0077707ee27c73e3257a4a78297e4aac6a1321bd502c4344ba09e25889494df6daf54431bad5eb4e502d29f7d99fb7853ea17a642eaf95843a0e94c8dd56920b6e710262d16f8f45e1b48279c0c4fb39f51903f8af8fbc9c275bec5748544733eda5bf484547d03e1892dfe933dd0823d217e7becb3621d1010f0cc82a9dc0848201ec57b2f106875ec847b3935ceb7cfb521ee8948585e840454b6d5e84f24deeb4167ad3543ecb2a04635c02c5ac2b99b2baa06a6a02892e6e4cd22e7feab060ff29f45363ff0b891219acd4231d7a8b8c6acb335c6efe7942cc048bb5fbd39ccaa9496976ac8c13c6d0b63a1327b3590ac43c95e872c55e08af8ef3d84373e5769c027737a76bca13537c1de5bec7b2471f0869770e5ca97d267d85915b58672af18692f5dfc272c834661111e22149ad7da1c8cba8879bef8205e662da7aeb534d27e4d110601f0bed21c175c63d49a449b55e7e99602b8e30656d9ba3d294d641011c6e5d579fcc7a0081c5b64315db99c4552112cc5b21f7879650e44eda28c78abedb73dd1a4a1d2cdbe30f6793929e166759434f6ae24e444521c595b18d0341f4fdedae71388e9e803cc4aa35b0f489e19de1da6c6551073713fcc2948e08d94023e9d5abd54f60fe0c6ca6d19efc0b371a89c87db583c8f535d1970f1f45ceab28226b5cae0c3dff807b80ee5161d4483cf5d4572891981423d5ddedb20152166171b6fe64a9ca6754722ef4ac3c567485efb916350662136c53850eba9e294790eaa755415bfc3616eb55ab4c2486716f564a3482c3ef124338c165c003e4a31d38689e523ab9e8b4626ea485ca68e70e19faf58cccd3de2342c6a4ca233c31d261ceda65f659e3a8480df5b683a12d5fa3076182250359dfcc81385a0d449a406f62e97519d1275de622e0549cf62a445faddbbf12ea736dfe7de896057f75e69f3503ed5c1f19305bcabeb585b2d1b18a14fa5d8fc6e2d760a25ff50939c1c1dbfa6d4c4e94d43f37deda8c3cc40f7204fad4b89d79fece90eeb8cdf6af0c3da1d880c5691715d0a2dcf91df7ea44311072a0980b6ac2e1de6a3504cc353887082fe8ba84945db05f7f9098627bcc28faa0253b46d84a4214d31e2e909fca738168db2fe1ea8520d6ef117985c175b68f63ea1145d7a231ea781054959dfd2deb7a111548fe0239f681cc2a0c99cd25e286714dd12e922c3857e5409831a09e69e40e4908dac99ceaf50db3d28cb3402f0b3c00e37beb3f00af38e73d26970d1215cf95f846253bf1063ea5fbd61032c7fb426b8af043f1c8c1863d7c71c74ab47eb9c8d0d46039ab4822225b63ee1f56cab33442b9babd12f090ffc692112f1929d1746e119ca91a767de9b96e6ad48e371c64d3e4f5c88e1207a206ebaf734f1f34f1d5796d0e36248146d46e084f8d0cbacf09be48db765469fc6ffcd831ef81ab2f369b97879c041b298ebdd31a51748539b1bba85a72f3fd9971a29fb5fe967564ac34e4a6f8f6721a39d7ba443c0f1e5ef8d72066c7e5fe673830f9a811ec01e65f45582db2d8d98228dddaf2f232a2a2ad5d21d817e443dd7c130b3edcd0fb2b083883045b3cf411970cc78047801914bb1c471d21e9bfabed2a2d9de7845c87fd2992d684abeb5d6dbe85fd57569893850a995e0d56d6329a9ee358ab564d8d2573b4b6507d574096638fd135a9fb769cbef7a3004012456e8d364fde3120b98e2651f2cb18b724a0f3f1b4368abc0687c7e1593a52c08b3e43aeca4777ac3635fb32dbfb7e66949831300f212ade47dc48e76b7c1eca96b64a44977480ea16ee22fea4962519efaf31be6246e9ef3af629630839fbf92463508fbf14ceb0d3ce95fae0395d703a6d7124a4a0d34f02ee9b037595a1b478b936055c2cbcd487761ea7d343b103f6418c720a2ac2741d5122272687e7eda5b75164d312eafd27470b1d8157a87ca649384bf5ef021c31f3528a97e7795b94b1518058e922bffaff304d2e0c4353457d62d0ad01c1a5925faf5b8d4ea50080fb6aec7177687be19187349fefd980d2dc57b4d5ef1ca42eabb79ffd0e45bdef8236f1f9c533f30441565be2981e03f4c211dd655b0a32143579656291f3fff45b37f113ca0610a45cad03e26f6908bc515e7666b599d3373689fcfbad71abe3165f7be47ddae3bf2c3c8282b39e4125faa459ab5237b53cd098e011953724d081c060c79c285e5d4c82c28d8ea7e5a282ce351de6312384b8b46e890230ff87260cf463c3e5c5248c4ba939aa16e898d6c1759258e78bde35ceea2e27adbd63e329be618bc5e1aaa8f8a9c33aa3116c539a7bb6479814aee2ef5590855541fe58e8fe3a9c5466b876e7f9738e5983956c6ba5bc580781a8c22fa715040aaa9b76671ae28903b804d7b7cd0e561827396ec66ddea41a1b193ec36f4c7433a70ce5e79691b6da47ac572ecbeb2a026754fc59b74979de48ae2098737dcc57b9f"}, &(0x7f0000000080)=0x1000)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x6002, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r5, 0x84, 0x17, &(0x7f0000001280)={r6, 0x5, 0xd5, "16db2e125487a62a9a5bee60b014935ab935b44a721ccf31708aafb305d6904c24246a630a19e7941806e13ef82d2c5d3afb330e427dc82e14363328bab2a4c6bc5c47374a742583ee6252ddbfce04f3313f621988c858267698feb9059f768d587b8660c159e922da17d63a7155874adaed32b58fa23430e7a0124638053419d6ca5919c054b7af0e7c41bf0d3bf33c784ccd3498085087be344eddf9eee058faf6f7d8d9f1deb5745537a5d8f1542d24ccb71b7c2792c8f07b779f2ead607f0fc17f86135a50d2119270eee54f633cdee9ac3a97"}, 0xdd)
socket$nl_generic(0x10, 0x3, 0x10)

11.161274694s ago: executing program 0 (id=683):
r0 = socket$inet6(0xa, 0x3, 0xd)
setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f0000000100)=0x4, 0x4)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000040)={0x2, 0xe24, @multicast2}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4000000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket$inet_udp(0x2, 0x2, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x0)
r3 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000000))
r4 = dup2(r3, r2)
r5 = getpid()
sched_setscheduler(r5, 0x0, &(0x7f0000000200)=0x9)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff})
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000400), 0x0, 0x0, 0x0})
r8 = dup3(r4, 0xffffffffffffffff, 0x80000)
ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0xb, 0x0, 0x0})
io_submit(0x0, 0x1, &(0x7f0000000300)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x5, 0x88, r6, &(0x7f0000000240)="ddeb2826131c5fe5da54ceb843ab3249836ea816b9175a563f631c0a1fa931561e8093790be721130eb1193d19a7f61cd4371e442ca5bf8fa68c16853366844ec7e30934e33f807719bda7a2b77eb0846482ef8257e2b4e8d2e40026b6e4da89cf8d31e47874b1228bc031a9262331f54d87442e5321005a76670926e385c269ed4a9f21802a0c8bbbfb6aa08e3d0d7223", 0x91, 0xc000000, 0x0, 0x1, r1}])
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000380), 0x0, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$ttyprintk(0xffffffffffffff9c, 0x0, 0xc0c80, 0x0)
socket(0x2, 0x80805, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
r9 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r9, &(0x7f0000001a40)={0x1f, 0xffff, 0x3}, 0x6)
write(r9, &(0x7f0000000000)="2e000300010000", 0x7)

10.62448654s ago: executing program 1 (id=687):
syz_open_dev$sndctrl(0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000000), 0x6ffffffffffffffe, 0x0)
read$msr(r0, &(0x7f0000034000)=""/102395, 0x18ffb)
open_tree(0xffffffffffffff9c, 0x0, 0x0)
mkdir(&(0x7f00000009c0)='./file0\x00', 0x0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x8080, 0x81)
ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000140)={0x10})
prctl$PR_SCHED_CORE(0x3e, 0x2, 0x0, 0x1, 0x0)
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
socket$inet6(0xa, 0x3, 0xff)
r4 = syz_open_procfs(0x0, &(0x7f0000000040)='net/raw6\x00')
preadv(r4, &(0x7f0000000000)=[{&(0x7f0000001080)=""/4096, 0x1000}], 0x1, 0x9, 0x0)
r5 = socket(0x2a, 0x2, 0x5)
sendto(r5, 0x0, 0x0, 0x0, &(0x7f0000000040)=@qipcrtr, 0x80)
read$qrtrtun(r3, 0x0, 0xeffd)
dup2(r3, r5)
write$bt_hci(r2, &(0x7f0000000580)=ANY=[], 0x8)
mmap(&(0x7f000056d000/0x2000)=nil, 0x2000, 0x1000003, 0x4c831, 0xffffffffffffffff, 0xffffd000)
socket$inet6_sctp(0xa, 0x1, 0x84)

9.081145193s ago: executing program 1 (id=690):
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000100)={0x3, 0x2, 0x1})
r1 = dup(r0)
mmap(&(0x7f0000fed000/0x12000)=nil, 0x12000, 0x2, 0x11, r1, 0x0)
r2 = syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000080)='./file1\x00', 0x2608c8, &(0x7f0000000600)=ANY=[@ANYRESDEC=r1], 0x3, 0x4448, &(0x7f000000cd00)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x20642, 0x0)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r4, 0x1, 0x28, 0x0, 0x0)
pwrite64(r3, &(0x7f0000000140)='2', 0x1, 0x8000c61)
ioctl$PIO_FONTX(r3, 0x4b6c, &(0x7f00000000c0)={0x10, 0x12, &(0x7f0000000180)="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"})
fallocate(r2, 0x8, 0x5000000, 0xd)

8.496490236s ago: executing program 0 (id=694):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = getpid()
timer_create(0x2, &(0x7f0000000080)={0x0, 0x21, 0x4, @tid=r2}, &(0x7f0000000100))
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={[0x7fffffffffffffff]}, 0x8, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000140)=ANY=[@ANYBLOB="4c0000002000010000000000000000080a800000000000011800010014000100fc010000271a91f81a6a260d810f4b34dd100008000f00ffffffff140003006c010000000053467c5afb57e5cb4331598c636f36ce4848c3af880e77f0f95a0cb507c2f8caff4c8847f23c4e1025c420d5792533164779aec7761aee36c19f5734a2e8cc6a980374908ff27ce7e2dbd12ecc85c9c4ce7374a916871b53be8e44b6cad34c67e16aebe77fbf94af79c582cd148b0fcf5c1f28a83f1d974a29c0ac2e058a391d248f551d15977add87c038fba3533c7ff03f1f37089defa0b60b81dd9ba90d35dac5c65c3cebc2a1ca024972cd1c"], 0x4c}}, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r2, 0x0, 0x4004)
readv(r3, &(0x7f0000000340)=[{&(0x7f0000000280)=""/182, 0xb6}], 0x1)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f00000000c0), 0x2, 0xbb8, &(0x7f00000017c0)="$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")
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000240), 0x2, 0x564, &(0x7f0000000980)="$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")
listxattr(&(0x7f0000000080)='./file1\x00', 0x0, 0x0)
r5 = dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1, 0x3, 0x10000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r5, r0, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, 0x0}], 0x1, 0xa, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x0, &(0x7f00000018c0)=ANY=[], 0xfd, 0x1501, &(0x7f00000002c0)="$eJzs3Am4T1X3OPC19t6H62b4JpnP2uvwTYZNkoSSZEiSJCRzQpIkSZK4ZEpCEjLeJHPInG665nnInHTzSpIkJCTZ/+c2/P16h5/3fX/9/vq/d32e5zz2cs7aZ+27nu89w/Pc79ddh1VvVKNKfWaGf4f+bYC//JMEAAkAMBAAcgBAAABlc5bNmb4/i8akf+sk4n9JgxlXugJxJUn/Mzbpf8Ym/c/YpP8Zm/Q/Y5P+Z2zS/4xN+i9EhjYr39WyZdxN3v//f079T5Ll+p8h4D/aIf3/T6P/paOl/xmb9D9jk/5nbNL/jCy40gWIK0w+/xmb9F+IDO0Pf6e84dyVfqct27+wCSGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQ/w+c85cYAPhtfKXrEkIIIYQQQgghxB/Hv3ulKxBCCCGEEEIIIcT/PgQFGgwEkAkyQwJkgUS4CrJCNsgOOSAGV0NOuAZywbWQG/JAXsgH+aEAFIQQCCwwRFAICkMcroMicD0UhWJQHEqAg5JQCm6A0nAjlIGboCzcDOXgFigPFX4+Z7rboTLcAVXgTqgK1aA61IC7oCbcDbXgHqgN90IduA/qwv1QDx6A+tAAGsKD0AgegsbQBJpCM2gOLaDlZfKTc/y9/OehB7wAPaEXJEFv6AMvQl/oB/1hAAyEl2AQvAyD4RUYAkNhGLwKw+E1GAGvw0gYBaPhDRgDY2EcjIcJMBGS4U2YBG/BZHj7oWwwFabBdJgBM2EWvAOzYQ7MhXdhHsyHBZCcZREshiXwHiyF9yEFPoBl8CGkwnJYASthFayGNbAW1sF62AAbYRNshi2wFbbBR7AddsBO2AW7YQ/shY9hH3wC++FTSMPP/sX8s7/Ph24ICKhQoUGDmTATJmACJmIiZsWsmB2zYwxjmBNzYi7MhbkxN+bFvJiE+bEgFkRCQkbGQlgI4xjHIlgEi2JRLI7F0aHDUlgKS+ONWAbLYFksi+WwHJbHClgBb8VbsRJWwspYGatgFayKVbE6Vse78C68G2thLayNtbEO1sG6WBfrYT2sj/WxITbERtgIG2NjbIpNsTk2x5bYElthK2yNrbEttsV22A7bY3vsgB2wI3bETtgJO2Nn7IJdsCt2xW74HD6Hz+Pz+AK+gL2wquqNfbAP9sW+2B8H4AB8CQfhy/gyvoJDcCgOw1fxVXwNR+AZHImjcDSOxkpqLI7D8chqIiZjMmaGSTgZJ+MUnIpTcTrOwJk4C2fhbJyDc/BdnIfzcT4uxIW4GJfgElyK72MKpuAyPIupuBxX4EpchatxFa7FdbgWN+BG3ICbcTNuxa34EX6EO3AH7sJduAf34Mf4MX6Cn+AQTMM0PIAH8CAexEN4CA/jYTyCR/AoHsVjeAyP43E8gSfxFJ7E03gaz+BZPAcA5/E8XsALeBEvpn/4VTqjjMqkMqkElaASVaLKqrKq7Cq7iqmYyqlyqlwql8qtcqu8Kq/Kr/KrgqqgIkWKVaQKqUIqruKqiCqiiqqiqrgqrpxyqpQqpUqr0qqMKqPKqptVOXWLKq8qqDbuVnWrqqTausrqDlVFVVFVVTVVXdVQNVRNVVPVUrVUbVVb1VF1VF11v6qnemN/bKDSO9NIDcXGahg2Vc1Uc9VCvYYPq1ZqBLZWbVRb9agahSOxvWrlOqgnVEc1Djupp9R4fFp1UROxq3pWdVPPqe7qedVDtXY9VS81BXurPmo69lX9VH81QM3Gaiq9Y9XVK+r5zEPVMPWqWoyvqRHqdTVSjVKj1RtqjBqrxqnxaoKaqJLVm2qSektNVm+rKWqqmqamqxlqppql3lGz1Rw1V72r5qn5aoFaqBapxWqJek8tVe+rFPWBWqY+VKlquVqhVqpVarVao9aqdWq92qA2qk1qs9qitqpt6iO1Xe1QO9UutVvtUXvVx2qf+kTtV5+qNPWZOqD+og6qz9Uh9YU6rL5UR9RX6qj6Wh1T36jj6lt1Qp1Up9R36rT6Xp1RZ9U59YM6r35UF9RP6qLyCjRqpbU2OtCZdGadoLPoRH2Vzqqz6ew6h47pq3VOfY3Opa/VuXUendfk0/l1AV1Qh5q01awjXUgX1nF9nS6ir9dFdTFdXJfQTpfUpfQNurS+UZfRN+my+mZdTt+iy+sKuqIHfZuupG/XlfUduoq+U1fV1XR1XUPfpWvqu3UtfY+ure/VdfR9uq6+X9fTD+j6uoFuqB/UjfRDurFuopvqZrq5bqFb6od1K/2Ibq3b6Lb6Ud1OP6bb68d1B/2E7qif1J30U7qzflp30c/orvpZ3U0/p7vrn/RF7XVP3Usn6d66j35R99X9dH89QA/UL+lB+mU9WL+ih+iheph+VQ/Xr+kR+nU9Uo/So/Ubeoweq8fp8XqCnqiT9Zt6kn5LT9Zv6yl6qp6mp+sZeqbu/+tMc/+J/Lf+Tv7gn8++VW/TH+nteofeqXfp3XqP3qv36n16n96v9+s0naYP6AP6oD6oD+lD+rA+rI/oI/qoPqqP6WP6uD6uT+iT+gf9nT6tv9dn9Fl9Vv+gz+vz+sKvPwMwaJTRxpjAZDKZTYLJYhLNVSaryWaymxwmZq42Oc01Jpe51uQ2eUxek8/kNwVMQRMaMtawiUwhU9jEzXWmiLneFDXFTHFTwjhT0pQyN/yP8y9XX0vT0rQyrUxr09q0NW1NO9POtDftTQfTwXQ0HU0n08l0Np1NF9PFdDVdTTfTzXQ33U0P08P0ND1NkkkyfcyLpq/pZ/qbAWageckMMoPMYDPYDDFDzDAzzAw3w80IM8KMNCPNaDPajDFjzDgzzkwwE0yyz2EmmUlmsplsppgpZtrAHGaGmWFmmVlmtplt5pq5Zp6ZZxaYBWaRWWSWmCVmqVlqUkyKWWaWmVSz3Cw3K81Ks9qsNmvNWrPerDcbzUaz2Ww2qWab2Wa2m+1mp9lpdpvdZq/Za/aZfWa/2W/STJo5YA6Yg+agOWQOmcPmsDlijpij5qg5Zo6Z4+a4OWFOmFPmlDltTpsz5ow5Z86Z8+a8uWAumIvmYvptX6ACFZjABJmCTEFCkBAkBolB1iBrkD3IHsSCWJAzyBnkCq4Ncgd5grxBviB/UCAoGIQBBTbgIAoKBYWDeHBdUCS4PigaFAuKByUCF5QMSgU3BKWDG4MywU1B2eDmoFxwS1A+qBBUDG4NbgsqBbcHlYM7girBnUHVoFpQPagR3BXUDO4OagX3BLWDe4M6wX1B3eD+oF7wQFA/aBA0DB4MGgUPBY2DJkHToFnQPGgRtPxD5/f+TJ5HXM+wV5gU9g77hC+GfcN+Yf9wQDgwfCkcFL4cDg5fCYeEQ8Nh4avh8PC1cET4ejgyHBWODt8Ix4Rjw3Hh+HBCODFMDt8MJ4VvhZPDt8Mp4dRwWjA9nBHODGeF74Szwznh3PDdcF44P1wQLgwXhYtD/OWWGFLCD8Jl4Ydharg8XBGuDFeFq8M14dpwXbg+3BBuDDeFm8sO+uXQcHu4I9wZ7gp3h3vCveHH4b7wk3B/+GmYFn4WHgj/Eh4MPw8PhV+Eh8MvwyPhV+HR8OvwWPhNeDz8NjwRngxPhd+Fp8PvwzPh2fBc+EN4PvwxvBD+FF4MffrNffrlnQwZykSZKIESKJESKStlpeyUnWIUo5yUk3JRLspNuSkv5aX8lJ8KUkFKx8RUiApRnOJUhIpQUSpKxak4OXJUikpRaSpNZagMlaWyVI7KUXkqTxWpIt1Gt9HtdDvdQXfQnXQnVaNqVINqUE2qSbWoFtWm2lSH6lBdqkv1qB7Vp/rUkBpSI2pEjakxNaWm1JyaU0tqSa2oFbWm1tSW2lI7akftqT11oA7UkTpSJ+pEnakzdaEu1JW6UjfqRt2pO/WgHtSTelISJVEf6kN9qS/1p/40kAbSIBpEg2kwDaEhNIyG0XAaTiNoBI2kUTSa3qAxNJbG0XiaQBMpmZJpEk2iyTSZptAUmkbTaAbNoFk0i2bTbJpLc2kezaMFtIAW0SJaQktoKS2lFEqhZbSMUimVVtAKWkWraA2toXW0jjbQBtpEm2gLbaFttI2203baSTtpN+2mvbSX9tE+2k/7KY3S6AAdoIN0kA7RITpMh+kIHaGjdJSO0TE6TsfpBJ2gU3SKTtNpOkNn6Bydo/P0I12gn+gieUqwWWyivcpmtdlsdpvD/nWc1+az+W0BW9CGNrfN87uYrLVFbTFb3Jawzpa0pewNfxOXtxVsRXurvc1Wsrfbyra8zQL/Na5p77a17D22tr3X1rB3/S6uY++zde1Dtp5tYuvbZrahbWEb2YdsY9vENrXNbHPbwrazj9n29nHbwT5hO9on/yZeat+36+x6u8FutPvsJ/ac/cEetV/b8/ZH29P2sgPtS3aQfdkOtq/YIXbo72MAO9q+YcfYsXacHW8n2Il/E0+z0+0MO9POsu/Y2XbO38RL7Ht2nk2xC+xCu8gu/jlOrynFfmCX2Q9tql1uV9iVdpVdbdfYtf+31pV2s91it9q99mO73e6wO+0uu9vu+TlOX8d++6lNs5/ZI/Yre9B+bg/ZY/aw/fLnOH19x+w39rj91p6wJ+0p+509bb+3Z+zZn9efvvbv7E/2ovUWGFmxZsMBZ+LMnMBZOJGv4qycjbNzDo7x1ZyTr+FcfC3n5jycl/Nxfi7ABTlkYsvMERfiwhzn67gIX89FuRgX5xLsuCSX4hu4NN/IZfgmLss3czm+hctzBa7It/JtXIlv58p8B1fhO7kqV+PqXIPv4pp8N9fie7g238t1+D6uy/dzPX6A63MDbsgPciN+iBtzE27Kzbg5t+CW/DC34ke4Nbfhtvwot+PHuD0/zh34Ce7IT3Infoo789PchZ/hrvwsd+PnuDs/zz34Be7JvTiJe3MffpH7cj/uzwN4IL/Eg/hlHsyv8BAeysP4VR7Or/EIfp1H8igezW/wGB7L43g8T+CJnMxv8iR+iyfz2zyFp/I0ns4zeCbP4nd4Ns/hufwuz+P5vIAX8iJezEv4PV7K73MKf8DL+ENO5eW8glfyKl7Na3gtr+P1vIE38ibezFt4K2/jj3g77+CdvIt38x7eyx/zPv6E9/OnnMaf8QH+Cx/kz/kQf8GH+Us+wl/xUf6aj/E3fJy/5RN8kk/xd3yav+czfJbP8Q98nn/kC/wTX2TPEGGkIh2ZKIgyRZmjhChLlBhdFWWNskXZoxxRLLo6yhldE+WKro1yR3mivFG+KH9UICoYhRFFNuIoigpFhaN4dF1UJLo+KhoVi4pHJSIXlYxKRTdEpaMbozLRTVHZ6OaoXHRLVD6qEFWMbo1uiypFt0eVozuiKtGdUdWoWlQ9qhHdFdWM7o5qRfdEtaN7ozLRfVHd6P6oXvRAVD9qEDWMHowaRQ9FjaMmUdOoWdQ8ahG1jB6OWkWPRK2jNlHb6NGoXfRY1D56POoQPRF1jJ68tL9Y8MvV9K/2J0W9I/3rG7J79KL44viS+HvxpfH34ynxD+LL4h/GU+PL4yviK+Or4qvja+Jr4+vi6+Mb4hvjm+Kb41viW+Pe18gMDtMfhMG4wGVymV2Cy+IS3VUuq8vmsrscLuaudjndNS6Xu9bldnlcXpfP5XcFXEEXOnLWsYtcIVfYxd11roi73hV1xVxxV8I5V9KVci1cS9fStXKPuNaujWvrHnWPusfcY+7xhF8Ld53cU66ze9p1cc+4Z9yzrpt7znV3z7se7gXX0/VySS7J9XF9XF/X1/V3/d1AN9ANcoPcYDfYDXFD3DA3zA13w90IN8KNdCPdaDfajXFj3Dg3zk1wE1yyS3aT3CQ32U12U9wUN81NczPcDDfLzXKz3Ww3181189w8t8AtcIvcIrfELXFL3VKX4lLcMrfMpbpUt8KtcKvcKrfGrXHr3Dq3wW1wm9wmt8VtcdvcNrfdbXc73U632+12e91et8/tc/vdfpfm0twBd8AddAfdIfeFO+y+dEfcV+6o+9odc9+44+5bd8KddKec16fd9+6MO+vOuR/cefeju+B+chedd8mxN2OTYm/FJsfejk2JTY1Ni02PzYjNjM2KvRObHZsTmxt7NzYvNj+2ILYwtii2OLYk9l5saez9WErsg9iy2Iex1Njy2IrYytiq2OqY9wW2R76QL+zj/jpfxF/vi/pivrgv4Z0v6Uv5G3xpf6Mv42/yZf3Nvpy/xZf3FXxF38Q39c18c9/Ct/QP+1b+Ed/at/Ft/aO+nX/Mt/eP+w7+Cd/RP+k7+ad8Z/+07+Kf8V39s/N/7bLv4V/wPX0vn+R7+z7+Rd/X9/P9/QA/0L/kB/mX/WD/ih/ih/ph/lU/3L/mR/jX/Ug/yo/2b/gxfqwf58f7CX6iT/Zv+kn+LT/Zv+2n+Kl+mp/uZ/iZfpZ/x8/2c/xc/66f5+f7BX6hX+QX+yX+Pb/Uv+9T/Ad+mf/Qp/rlfoVf6Vf51X6NX+vX+fV+g9/oN/nNfovf6rf5j/x2v8Pv9Lv8br/H7/Uf+33+E7/ff+rT/Gf+gP+LP+g/94f8F/6w/9If8V/5o/5rf8x/44/7b/0Jf9Kf8t/50/57f8af9ef8D/68/9Ff8D/5i/I3a0IIIYQQ/xR9mf29/87/qV+3dH0AINuOfIf/es5NuX8Z91P7OsYA4IleXRv8tjVokJSU9OuxqRqCwgsBIHYp/+fvH/g1Xg5t4THoAG2g9N+tr5+q+PN93383f/xmgESALL/lpD8eJcJfz3/jP5i/yXt8ufkXAhQtfCkn/US/xZfmL/MP5t/T7jLzZ/k8GaD1f8nJCpfiS/OXgkfgSejwuyOFEEIIIYQQQohf9FPnu13u+Tb9+Ty/uZSTGS7Fl3s+v4zKf8QahBBCCCGEEEII8d97+rnujz/coUObzv/Jg8x/jjL+BAMEgD9BGTL48w+u9G8mIYQQQgghxB/t0k3/la5ECCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYTIuP79bwhT//TBV3qNQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghxJX2fwIAAP//5g1V0w==")
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CHECK_EXTENSION(r7, 0xae03, 0xec)
timerfd_settime(0xffffffffffffffff, 0x3, 0x0, 0x0)
mount$nfs(&(0x7f0000000100)='<..', 0x0, 0x0, 0x4, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
ioctl$KVM_X86_SETUP_MCE(r3, 0x4008ae9c, &(0x7f0000002380)={0x1e, 0x5, 0x1})

7.225427494s ago: executing program 2 (id=695):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x3d, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x2, 0x0, 0x7ffffdbd}]})
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x8020000)
syz_clone3(&(0x7f0000000300)={0x136820120, 0x0, 0x0, 0x0, {0x2c}, 0x0, 0x0, 0x0, 0x0}, 0x58)

7.151319513s ago: executing program 4 (id=696):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000ac0), r0)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f00000003c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="0501000080f46b69488f13"], 0x14}}, 0x2000c094)
r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x8400, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$kcm(0x2, 0x5, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400010bce)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00'}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r5=>0xffffffffffffffff})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="120000002f0000000400000002"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000780)={{r6, <r7=>0xffffffffffffffff}, &(0x7f0000000700), &(0x7f0000000740)=r5}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000040)={r7, &(0x7f0000000300), 0x0}, 0x20)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f00000007c0)={0x7, &(0x7f0000000780)=[{0x100, 0xe, 0x7, 0x6}, {0x68, 0x6, 0x4c, 0x1000}, {0x10, 0x6, 0x2, 0x4}, {0xb0, 0x10, 0x48, 0x4}, {0x9, 0x6, 0x60, 0x6}, {0x77, 0x2, 0x5, 0xb}, {0x6, 0x4b, 0x2, 0x200}]}, 0x10)
r8 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000340)={'syztnl1\x00', &(0x7f0000000240)={'syztnl0\x00', <r9=>0x0, 0x4, 0x5, 0x9, 0x6, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @empty, 0x7, 0x20, 0x6b73, 0x2}})
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r2, 0x89f2, &(0x7f0000000540)={'syztnl2\x00', &(0x7f0000000380)={'syztnl1\x00', <r10=>0x0, 0x7, 0x40, 0xd, 0x696, {{0x1a, 0x4, 0x2, 0x1, 0x68, 0x68, 0x0, 0x6, 0x29, 0x0, @local, @dev={0xac, 0x14, 0x14, 0xd}, {[@noop, @ssrr={0x89, 0x13, 0x69, [@local, @broadcast, @multicast2, @multicast1]}, @noop, @timestamp_prespec={0x44, 0x3c, 0xce, 0x3, 0x7, [{@private=0xa010102, 0x4}, {@broadcast, 0x18000000}, {@local, 0x1}, {@private=0xa010100}, {@dev={0xac, 0x14, 0x14, 0x3d}, 0x8}, {@remote, 0x7fffffff}, {@empty, 0x2}]}]}}}}})
sendmsg$nl_route(r2, &(0x7f0000000740)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000700)={&(0x7f0000000600)=ANY=[@ANYBLOB="d40000001a0001fc29bd70000002df251c1414050003fd0a002c00001400120023000d7e95989e52b851b462847f48620c000900020002f4", @ANYRES32=r9, @ANYBLOB="080001000000000084001300000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000001000000000000000f000000000000000000000f0f00000000000000000000000000000000000000000000000f0000000000000000000000000000000000000000000000000000000100000000000c000900ff7f2406", @ANYRES32=r10, @ANYBLOB], 0xd4}, 0x1, 0x0, 0x0, 0x8001}, 0x800)
read$msr(r8, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$sock_attach_bpf(r4, 0x1, 0x3e, 0x0, 0x0)
sendmsg$inet(r4, &(0x7f0000000040)={0x0, 0xeafbff3, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0xfffffdef}], 0x1, 0x0, 0x0, 0x10000000}, 0x52cc)
sendmsg$IPSET_CMD_HEADER(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x90)
ioctl$FS_IOC_SETFLAGS(r2, 0x40186f40, &(0x7f0000000440)=0x1f)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000800), 0x2, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(0xffffffffffffffff, 0xc0305710, &(0x7f0000000040)={0x1, 0x7f, 0x1f, 0x0, 0x83})
openat$sequencer2(0xffffffffffffff9c, 0x0, 0x80383, 0x0)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r11, &(0x7f0000003e00)={0x0, 0x0, &(0x7f0000003dc0)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000090000000a20000000000a05140000000000000000010000000900010073797a300000000058000000160a09000900000000000000010000000900010073797a30000000000900020073797a32000000002c00038018000380140001006d6163736563300000000000000000000800024000000000080001400000000014000000110001"], 0xa0}}, 0x0)

7.008312963s ago: executing program 3 (id=697):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket(0x11, 0x800000003, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000002000d77a18001000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x1400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000600)={'team0\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000640)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r3, {0x0, 0x2}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x1], 0x0, [0x8, 0x4, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80], [0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x400]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000001}]}]}]}}]}, 0xa4}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmmsg$inet_sctp(r0, &(0x7f0000003f40)=[{&(0x7f0000000000)=@in={0x2, 0x4e22, @remote}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000040)="1c", 0x1}], 0x1, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000000084"], 0x18, 0x48060}], 0x1, 0x200000d0)
r5 = dup2(r0, r0)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000240)={<r6=>0x0, 0xff8, "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"}, &(0x7f0000000080)=0x1000)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x6002, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r5, 0x84, 0x17, &(0x7f0000001280)={r6, 0x5, 0xd5, "16db2e125487a62a9a5bee60b014935ab935b44a721ccf31708aafb305d6904c24246a630a19e7941806e13ef82d2c5d3afb330e427dc82e14363328bab2a4c6bc5c47374a742583ee6252ddbfce04f3313f621988c858267698feb9059f768d587b8660c159e922da17d63a7155874adaed32b58fa23430e7a0124638053419d6ca5919c054b7af0e7c41bf0d3bf33c784ccd3498085087be344eddf9eee058faf6f7d8d9f1deb5745537a5d8f1542d24ccb71b7c2792c8f07b779f2ead607f0fc17f86135a50d2119270eee54f633cdee9ac3a97"}, 0xdd)
socket$nl_generic(0x10, 0x3, 0x10)

6.617247744s ago: executing program 2 (id=698):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r0, 0xffffffff80000800, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x2, 0x3, 0x0, 0x6, 0x7fffffff})
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x40, &(0x7f0000000100), 0x1, 0x584, &(0x7f0000001540)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x105042, 0x0)

5.465835673s ago: executing program 4 (id=699):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x19, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r0}, 0x69)

5.287331225s ago: executing program 4 (id=700):
r0 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000040)={{0x3}})
ioctl$SNDRV_TIMER_IOCTL_STATUS32(r0, 0x80585414, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x512, &(0x7f0000000c40)="$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")
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', 0x0, 0x20, 0x0)

5.255948651s ago: executing program 2 (id=701):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0xea100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0x1, 0x100000001, 0x800000000, 0x3b, 0x0, 0x7, 0x2004cc, 0x5, 0x5b, 0x0, 0xcc2f117, 0x3, 0x0, 0x9, 0x4000000000000004, 0x767], 0xeeef0000, 0xc0086})
ioctl$KVM_RUN(r2, 0xae80, 0x7000000)

5.115577944s ago: executing program 1 (id=702):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$nvram(0xffffffffffffff9c, 0x0, 0x40, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_CONNECT(r0, &(0x7f0000000200)={0x6, 0x118, 0xfa00, {{0xfffffff7, 0x40, "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", 0x4, 0x3, 0x3, 0x5, 0x8, 0x1, 0xff, 0x1}, r1}}, 0x120)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x84, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r3, 0x40045542, &(0x7f00000001c0))
syz_open_dev$dmmidi(&(0x7f0000000080), 0x200, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r4 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r4, 0xc0285700, &(0x7f0000000000)={0x0, "fe79ca3351f25129c1ca0c4beb19855c55392fde21c7d98aef39b2c985c9c778"})
ioctl$SYNC_IOC_FILE_INFO(r0, 0xc0383e04, &(0x7f0000000800)={""/32, 0x0, 0x0, 0x1, 0x0, &(0x7f00000005c0)=[{}]})
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000540)=ANY=[@ANYRES32=0x1, @ANYRES32, @ANYBLOB="090000000800000004000000ab2dfe315c1e1ef3623730bb1602d9f9914f16198e74d51fb61226300c7edde339e87a22b60123a2ec023d41e328936a48133ec3cae304a9dc91f989f6d5f701d0de3ea645c25503605e6271fbb588b6739785554762", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20)
r6 = syz_mount_image$f2fs(&(0x7f00000002c0), &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="6e6f646973636172642c6163746976655f6c6f67733d362c646973636172645f756e69743d73656374696f6e2c616c6c6f635f6d6f64653d72657573652c696e6c696e655f78617474722c6661756c745f747970653d30303030303030303030303030303030303030372c6261636b67726f756e645f67633d6f6e2c6e6f757365725f78617474722c636865636b706f696e743d64697361626c652c757365725f78617474722c626172726965722c6167655f657874656e745f63616368652c757365725f78617474722c71756f74612c0089e5afa1e5917778089d53bf1e7976b8101ed131cec59926dc45294c5c18206d0a669306b1d0cc8e4f7753c03396a2734f10a3d75d435a08eff937580007aaad0ec81f842b74c22ac48ca4fbfd6fc3a509f51ebd287101d13d198d9a644e3d8216f29bc51a3a607656666d4d54e20072d115c3f57de32b7eb4964b4a45b355bb9d1a8cb6259ad2a4a5ef3e291451b10aa82b7e7964398a2d7a8a8d2b9e2ada5657232fa690dcb7ad0bc150e800d2d247bc64c70e9a55a2e0cb4e816a0fb53e683a1c564f208c27a1f79f82084cff58331f2c056d8d76428f04d180662ecc9711e683327e9095d22da0f3dab88a0cd5663d4b13944cfebc6d8698d65b34bf312dbf8bc035e64f70387f9e24c62bb291db1d215667c96e8e36c6340c6c07bc35481fe45820aa91a4fb82dc28b3b11203ac3a49aa93b0320afe7e05"], 0x41, 0x5510, &(0x7f0000009680)="$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")
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r7 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
sendfile(r6, r7, 0x0, 0xa4000)
ioctl$F2FS_IOC_SET_PIN_FILE(r7, 0xf519, 0x0)
read$msr(r5, &(0x7f0000002700)=""/102392, 0x18ff8)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r7, 0x81f8943c, &(0x7f00000009c0))
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r8 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r8, &(0x7f00000001c0)={0x2, 0x4e24, @loopback}, 0x10)

5.113291492s ago: executing program 0 (id=703):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000001d00)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x8, &(0x7f0000000300), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0x300f000, 0xe, 0x0, &(0x7f0000000080)="0069c2704ad628eddb0000200000", 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50)
r1 = socket(0x2, 0x2, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = openat$fb0(0xffffffffffffff9c, &(0x7f00000000c0), 0x12b900, 0x0)
ioctl$FBIOBLANK(r5, 0x4611, 0x4)
getsockname$packet(r1, &(0x7f0000000440)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4000)
socket(0x10, 0x3, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r7, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, 0x0, 0x0)
ioctl$F2FS_IOC_WRITE_CHECKPOINT(r8, 0xf507, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x15, 0x10, 0x2, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000700)={{r9}, &(0x7f0000000180), &(0x7f00000006c0)}, 0x20)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000640)='/sys/power/pm_test', 0x42, 0x0)

5.085834228s ago: executing program 3 (id=704):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000040)={@dev}, 0x14)
syz_emit_ethernet(0x4e, &(0x7f0000000200)={@multicast, @empty, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "e90e5b", 0x18, 0x11, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @remote, {[], {0x0, 0x0, 0x18, 0x0, @wg=@data={0x4, 0xe3, 0x8000}}}}}}}, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000280)={'wlan1\x00', <r3=>0x0})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000980), r2)
r5 = socket$nl_route(0x10, 0x3, 0x0)
openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r6)
r7 = syz_clone(0x22180, 0x0, 0xa42f, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r8 = syz_open_procfs(r7, &(0x7f0000000040)='stat\x00')
pread64(r8, &(0x7f0000000140)=""/15, 0xf, 0x4)
r9 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
r10 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000380)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000640)={'trans=fd,', {'rfdno', 0x3d, r10}, 0x2c, {'wfdno', 0x3d, r9}})
r11 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$IPT_SO_SET_REPLACE(r11, 0x8000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x2, 0x3, 0x211, 0x0, 0x0, 0xd8, 0xd8, 0xd8, 0x1a8, 0x1a8, 0x1a8, 0x1a8, 0x1a8, 0x3, 0x0, {[{{@ip={@broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'gre0\x00'}, 0x0, 0xb8, 0xd8, 0x0, {}, [@common=@inet=@ecn={{0x28}}, @common=@socket0={{0x20}}]}, @unspec=@NOTRACK={0x20}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @remote}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2a0)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="4400000010003b15000000007e00000000000000", @ANYRES32=0x0, @ANYBLOB="9a007d0c000000002400128009000100626f6e64000000001400028008000a00ff"], 0x44}}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f00000003c0)={0x30, r4, 0x200, 0x70bd26, 0x25dfdbff, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0x14, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_RANN_INTERVAL={0x6, 0x10, 0x6}, @NL80211_MESHCONF_GATE_ANNOUNCEMENTS={0x5, 0x11, 0x1}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x8014}, 0x800)

3.158288884s ago: executing program 0 (id=705):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000600)={0x14, r1, 0x65283e1aaa2ddbb1, 0x0, 0xec0}, 0x14}}, 0x0)

3.073487729s ago: executing program 2 (id=706):
syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x822b01)
r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r0, &(0x7f0000000040)={0x40000000})
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000c40)={0x2000000b})

3.067574516s ago: executing program 1 (id=707):
socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0xb, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_open_dev$video(&(0x7f0000000000), 0x7ff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)=ANY=[@ANYBLOB="3c0000fb", @ANYRES16=r1, @ANYBLOB="010800000000030000000b00000008000300", @ANYRES32=r3, @ANYBLOB="200050800500020000000000080003000dac0f00090001007ee5d52ffd000000"], 0x3c}}, 0x0)
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000000)={0x1, 0x0, 0x1})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0bffffffff013dd2caf44cb2e4820000000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x80000001, r4}, 0x38)
r5 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x55, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0xb8}, [@initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r6 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000001c0)={'bridge0\x00', <r7=>0x0})
setsockopt$packet_int(r6, 0x107, 0x9, 0x0, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x5, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0xfffffffe, 0x20000000, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r8}, 0x0, &(0x7f0000000040)=r5}, 0x20)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r9}, 0x10)
sendto$packet(r6, 0x0, 0x0, 0x1, &(0x7f0000000040)={0xc9, 0x8100, r7, 0x1, 0x1, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}, 0x14)
r10 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r10, &(0x7f0000000940)={0x0, 0xa, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000580081044e81f782db44b904021d080009000200e8fe55a1180015000600142603600e120900210000000401a80016000a00014006000000036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0)

3.059764292s ago: executing program 3 (id=708):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = socket(0x1, 0x1, 0x0)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
ioctl$sock_ifreq(r3, 0x89f2, &(0x7f0000000040)={'bond0\x00', @ifru_names='veth0\x00'})
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000100)='affs\x00', 0x200000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
r4 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
close(r4)
fcntl$setstatus(r4, 0x4, 0x2c00)
fcntl$setsig(0xffffffffffffffff, 0xa, 0xe)
rt_sigtimedwait(&(0x7f0000000040)={[0xffffffffffff7ff8]}, 0x0, 0x0, 0x8)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000180)='./control\x00', 0xa4000960)

2.953157555s ago: executing program 4 (id=709):
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
close(0xffffffffffffffff)
socket(0x10, 0x3, 0x0)
r0 = io_uring_setup(0x5f20, &(0x7f0000000000)={0x0, 0xb686, 0x4000, 0x3, 0x208})
mmap$IORING_OFF_SQ_RING(&(0x7f000097c000/0x3000)=nil, 0x3000, 0x300000d, 0x32011, r0, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000100))
r2 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x88602, 0x0)
ioctl$SNDCTL_DSP_GETODELAY(r2, 0x80045017, 0x0)
r3 = syz_open_dev$sndpcmp(&(0x7f0000001200), 0x0, 0xa2c65)
write$snddsp(r3, &(0x7f0000000400)="a38d1ebaa67401aa83cea1a04052671e5687f8e3516041a71afa8e21b1b77d7f00764f0000604e03c30ab9948dd0f840e98c69febbcf358320ab61770c480fdf791feb9259ac97428ab35a663658a6c7be0250e82302c3a49ef7f584cd219f0062bd3c7429168c2ada56720bc3994c03d68d4d94ef5dde7b1dce376d47514d785fd513cb9695ead24de25f4dd027c5ff024add6679b6b25c22b79047f328d64f947d086f5f09490b56530093099f506efa155f65bbdcb8cb948eb23536c90ca6a399497977939d285c1eabcb70906b41c9affd7aa7761841d66a8b43e437b5000000000000", 0xe5)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r4, 0x89f1, &(0x7f0000001040)={'sit0\x00', 0x0})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xb)
pselect6(0x0, 0x0, 0x0, &(0x7f0000000680)={0xff}, 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_REWIND(r3, 0x40084146, &(0x7f00000003c0)=0x2)

2.81566413s ago: executing program 0 (id=710):
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x802, &(0x7f0000000100)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c756e695f786c6174653d312c696f636861727365743d63703836352c73686f72746e616d653d77696e39352c636f6465706167653d3836312c73686f72746e616d653d6d697865642c616c6c6f775f7574696d653d30303030303030303030303030303030303137373737372c73686f72746e616d653d6d697865642c757466383d312c636865636b3d7374726963742c6e6f6e756d7461696c3d302c6e6f6e756d7461696c3d302c0074c3d84072de322569bdaf85"], 0x29, 0x34c, &(0x7f0000001740)="$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")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x104)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000200)='./bus\x00', 0x0, 0x0)
ioctl$BLKROSET(r1, 0x125d, &(0x7f0000000080)=0x3f)
write$FUSE_IOCTL(r0, &(0x7f0000000000)={0x20, 0x0, 0x0, {0x3, 0x0, 0x9, 0x82}}, 0x20)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000240)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0xfffffffffffffd0e, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r3, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, r3, 0x0, 0x0, 0x0}, 0x30)
sendto$phonet(r3, &(0x7f0000000340)="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", 0x1000, 0x10, 0x0, 0x0)

2.576344393s ago: executing program 2 (id=711):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x19, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r0}, 0x69)

2.336976919s ago: executing program 2 (id=712):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_SET_UNIQUE(r0, 0x40106410, &(0x7f0000000040)={0x0, 0x0})
ioprio_set$uid(0x3, 0x0, 0x4004)
mmap(&(0x7f0000200000/0x4000)=nil, 0x4000, 0x4, 0x200000006c832, 0xffffffffffffffff, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
socketpair$tipc(0x1e, 0x0, 0x0, &(0x7f00000000c0))
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=@newtaction={0x80, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0x6c, 0x1, [@m_ctinfo={0x68, 0x1, 0x0, 0x0, {{0xb}, {0x3c, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18}, @TCA_CTINFO_ACT={0x18, 0x3, {0x6, 0x0, 0x4, 0x2}}, @TCA_CTINFO_PARMS_DSCP_STATEMASK={0x8, 0x6, 0xfffffffe}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x80}}, 0x4000)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10)
setsockopt$SO_BINDTODEVICE_wg(r3, 0x1, 0x19, &(0x7f0000000080)='wg1\x00', 0x4)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x4e24, @loopback}, 0x10)
setsockopt$sock_int(r5, 0x1, 0x21, &(0x7f0000000040), 0x4)
fcntl$addseals(r5, 0x409, 0x9)
sendto$inet(r3, &(0x7f0000000040)="e5", 0xffffffe4, 0x0, 0x0, 0x0)

1.662856499s ago: executing program 3 (id=713):
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000100), 0x101000, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0xf, 0xf, &(0x7f0000002240)=ANY=[@ANYBLOB="18000000ffff000000000000c8a00000181100008661058ec72dec00000000db499c0314cd252f732a398532cfc8a7cf420c01fe0be98fa895d05b18c7446063d55ee2c7f43e011ffe4a204688ad5113a1a44dd1173be680bdb44c4b7d61edf03b3c9942bee4fe99b245acfa3fbecdca7dd841388b9fadd6a6b366c2e95866f9a707fa7d23aa36d3eee778c5d91828d81bd227c53f7095bcb8c0cf8f98de80428577a64cbe081cafd5c610885b661aa9", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x30, '\x00', 0x0, 0x24, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x10, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x24)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@redirect_dir_follow}]})
chdir(&(0x7f0000000040)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$fuseblk(&(0x7f0000002440), &(0x7f0000002a00)='./file0\x00', &(0x7f0000002a40), 0x10080, &(0x7f0000002480)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB="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", @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',allow_other,\x00'])
r2 = syz_open_procfs(0x0, &(0x7f00000042c0)='mounts\x00')
read$FUSE(r2, &(0x7f0000000200)={0x2020}, 0x2020)

1.376761832s ago: executing program 3 (id=714):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket(0x11, 0x800000003, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000002000d77a18001000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x1400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000600)={'team0\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000640)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r3, {0x0, 0x2}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x1], 0x0, [0x8, 0x4, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80], [0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x400]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000001}]}]}]}}]}, 0xa4}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmmsg$inet_sctp(r0, &(0x7f0000003f40)=[{&(0x7f0000000000)=@in={0x2, 0x4e22, @remote}, 0x10, &(0x7f0000000140)=[{&(0x7f0000000040)="1c", 0x1}], 0x1, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000000000084"], 0x18, 0x48060}], 0x1, 0x200000d0)
r5 = dup2(r0, r0)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000000240)={<r6=>0x0, 0xffc, "be36537e4815190ba89bb944821c666cf97cb615aef0e55771575b36fc32243aeb958ed1c0032df4599629d07cdd737b48b51e61aab2b3f12aca8962abaaa65e0bdff0f46436f6ab40955dc02b6bdbfcc5bb165f2dc08f95d34ccb4087cd807d893e570ef9fc1ea5691885895c60fb4acc4349db3966b84e3fdcd2dd6b1ff822792a05ce2e1f34f6643764f7f63bc6810626ebaa28ba3b50495b808df1f32977daf10c6f02ce17a1deeece5cf2ddf651ba934ddcbaa0694a98b75c2a1b4df6e7158e46857f55587670dfa32cec88f6a51c048c736a0bc5837c8b457bb7f5299968ffde495d63dc31fd8c85ffdcdac68e49c706a3db9c953cdeaadce6fb4802a590011dde9431fd08549e3d77613590294721d27d17ca487a0c1d5700aada59bfb9b4d7ab204bf2829c9f43844b5d50916cc5054abac2d5996d87c1e05652290ff00ee3d052c267f7baef1cd906b8be9372ea0de188d14414e8aaf35260d221a29b6d1229c8d4d94647584ccf778df8cdee50cc932367f650e2f96d6606f6f702bec2d5e15f926b926fede1e289be077486b7616fd76248955ce87be9fe332487f821f9b1cedf1fdcffdaf2d33883d18d833846987515ffe0efe2bb81d6c6b52aa34a04dce85fbf85efad100f971ff716b2e8fd677058d3c4cc393398c08f292fab89cf62e6629bc3f24d30f9ad11f2f43b0a9907e0a5bf63f7f5f0e2f8c24052ca4c940b88e838ee7a4ff6fa703bd49e85a7e42119046216dab62948605079e6d8824c4af47f54af963d89096580bebe769595ac9edcc4fc8c766497859647166fc325fff1dfeaa909223dd176021dd002e63d6f309ca6b997878c59bb76f17dcac56855f7a2dcedb0a2ee756ec73f1b1f5282c01aad2c4a9ea38e49019cc7e4637d218c96505b4fe60bcae9437a723fb8dc2380941384965cf94f8d8c301c135477abc6a6cd0d892abaa9a754d930e9420e8026715e75f329ca1a79a0b9005acbda46409493bb68f9746c17e1d211826dec263e43a0aefe62c28a7b2e8f417040b8b62b87a54e38fb313129d3871130569734f71c21b3e51f72da22ecd689cce6487a9bd6f7479d52c551e3c0ee13fae618294facf132d0a6d67a11486723ea2dcc2c6477717ad3f67de216d156f596ea65f5b756b902d13bdcb841fe8e1927bd54dff30f7b0ec289127540714b2491dd7667019c861cc853e608381978a7aed220c4d2a12ea5fb58d5feed8f4ca0389e9c4380203f1ce90a08a2994fc887f8cff6fda30c0c30c8e9e227daa6522d33a968c8dc4e6ceac9d7a8eb203b6d89634e9bad7542fb0a3e8679d256454bc38efe62593497ebe2f6331e0c0a79767ccc57553749fa4aa5bc4b759992079986efaa986d6aa88ae39d6266db730ed8d5cf4443ce86d0af331eeb44a4143a3504c828a2288e8ecf3aab21771a2f5df70e09524f4902d73cfeb2bf124513a5be630c052de0efb1d6d836800d4728aa7518b644ebf511af6b77227eb6e51230407dd5d22a349dbd4a36470c2915a3a6fb85a11fbac8dc19f27cf41e6cd56552f1835531565cc098cfde05b77af46d03b19eefdd7281efe9d475961849e17974ee172d56b641ded704457fb2821e5f3d093278baebe637ff75efb3269311071a0e86fd8e64a39c7fd009bc3f4e79ad70ee699df7cf68b9bb3815f4eb14796223593d8c498c0bdd12e9b4a2c612d38dcd36c98d5467b750d673d8929822937ad2b9929b1eda1652f726954360d9bf9b2fce7de96dcc2404bb03dacaa92c4f1eed80188dab68c3629954468f173bd1314556495840d368ce5b9c596565ca1e6f098de15118d375ba614c2f277cda8be6cca6182fe64c6d75836d3ed1abed2429fbbbf886a36a2a39b25e6adae4093213a172b0be8d8956bb420c8332783d53e92ab72bdc3953b1e5fecdd79c67f98fc23cdbbd6a9eacf232b7df6d30cb095db45b16ab850707c12de11ca41c6d925b29e097d945fa821bb85052d73cfd9598efb533a01ddeafa23df001462b8fded40f96343544516d57b3178d9292cfb58febf9958046145ed1043fd70168dbf44d93dacb080fac0d5fad0cb7e50d77c4ff63da6d6e672a97e7d890f35ce29a3abce24359b161921c7d235e27ef7f2687b465ee5c02275135a87370a6cdb172944d8b8c77e3672958de065da393cc09e992177d09e547ba990800b93e928c8371d598e6855939a7501c700506097a9d166d937f5296c3c754b71600660aa03786603202d18a3cca71f0fbe9e57c561e891d6c49a63ad860b517e48b7db7a4a9936db0e139c17e2b82568821fc7f97aead0d34809fe7c3977e9ba3088f16ed3d1232072a74cdf071fd187198593e22d352a48b695d6dab6f2e1fd9038699e46513383fea3bd5bfd7a78cbc2f6df66597644426001989679aae2ef082f5924a0cc422929c98845eb9954ebad8b56e19b2bc6dc182f2f85ec6eeeb36b15137978f96243d6c0ce6295311cee74d80a68375ab41d6f0c9573fc635b8fcf367e42fcd9f35245357fafaf6baee64ac859ab8c5ecf670e5ca032cf33536f0f012455adedd77604d469739ae72eade7391d02aaf17eca75178217813bea214979a4a69545cb29c62fd3b038fec587219da31b3cd87a54eb31a5f36a58ed489502f749391efba63c392ff7aacc9847381e4e31c6fc803763ec38ad951a13cb7d55024fc713a93d9db98cfce0f05f41e114761c1db623c2dc322fb715b9c36cacf0333232c056646fd1a1cfb35c6ea62e587b81222b8fc63f716170e13898c8a8a060a5e5e26268002be8427138de0e5d0ef265e536a787ea9481e8c657bc330d67dd1dbab0de54e595b37f2e0e2a73b88898d342c2886d9710c29c5d8f64ebfe994ab35614abbd80a260da9ad1ee8cf8a86fab3e45c8b2fb9d39e0e59c7be2e3cadee75ad1380d13bedd9b03a52e242a8d51fbd1fde4051cdbcaec1d0964b7bd2d0746b646bf92f0103dab39490e1013c871a70f108c2a0f964248d383860c918e68ba4481a1331c59681898e8395312de4fb7e7c2406376ca8daba13b4c93eb11371668e4461eafc97fc322a6e1142bedecbc213dfcd132c715c9722c61bf4851be899483b953eff4d5fc6e24b971faf4b5951ac4972b0ed38f37cb04cab75df9c2b62a68f68dd9db89442916a12ad86099db80b6b5ba620ea811ba6af31e975e6dd64708571a3f376398f897dec5c8915a0a42e50994facc607a72100bbaac2226ef3476567701546cc016c64b37d2ddff9439aa671bbf1948da857db0e6bc51cd0077707ee27c73e3257a4a78297e4aac6a1321bd502c4344ba09e25889494df6daf54431bad5eb4e502d29f7d99fb7853ea17a642eaf95843a0e94c8dd56920b6e710262d16f8f45e1b48279c0c4fb39f51903f8af8fbc9c275bec5748544733eda5bf484547d03e1892dfe933dd0823d217e7becb3621d1010f0cc82a9dc0848201ec57b2f106875ec847b3935ceb7cfb521ee8948585e840454b6d5e84f24deeb4167ad3543ecb2a04635c02c5ac2b99b2baa06a6a02892e6e4cd22e7feab060ff29f45363ff0b891219acd4231d7a8b8c6acb335c6efe7942cc048bb5fbd39ccaa9496976ac8c13c6d0b63a1327b3590ac43c95e872c55e08af8ef3d84373e5769c027737a76bca13537c1de5bec7b2471f0869770e5ca97d267d85915b58672af18692f5dfc272c834661111e22149ad7da1c8cba8879bef8205e662da7aeb534d27e4d110601f0bed21c175c63d49a449b55e7e99602b8e30656d9ba3d294d641011c6e5d579fcc7a0081c5b64315db99c4552112cc5b21f7879650e44eda28c78abedb73dd1a4a1d2cdbe30f6793929e166759434f6ae24e444521c595b18d0341f4fdedae71388e9e803cc4aa35b0f489e19de1da6c6551073713fcc2948e08d94023e9d5abd54f60fe0c6ca6d19efc0b371a89c87db583c8f535d1970f1f45ceab28226b5cae0c3dff807b80ee5161d4483cf5d4572891981423d5ddedb20152166171b6fe64a9ca6754722ef4ac3c567485efb916350662136c53850eba9e294790eaa755415bfc3616eb55ab4c2486716f564a3482c3ef124338c165c003e4a31d38689e523ab9e8b4626ea485ca68e70e19faf58cccd3de2342c6a4ca233c31d261ceda65f659e3a8480df5b683a12d5fa3076182250359dfcc81385a0d449a406f62e97519d1275de622e0549cf62a445faddbbf12ea736dfe7de896057f75e69f3503ed5c1f19305bcabeb585b2d1b18a14fa5d8fc6e2d760a25ff50939c1c1dbfa6d4c4e94d43f37deda8c3cc40f7204fad4b89d79fece90eeb8cdf6af0c3da1d880c5691715d0a2dcf91df7ea44311072a0980b6ac2e1de6a3504cc353887082fe8ba84945db05f7f9098627bcc28faa0253b46d84a4214d31e2e909fca738168db2fe1ea8520d6ef117985c175b68f63ea1145d7a231ea781054959dfd2deb7a111548fe0239f681cc2a0c99cd25e286714dd12e922c3857e5409831a09e69e40e4908dac99ceaf50db3d28cb3402f0b3c00e37beb3f00af38e73d26970d1215cf95f846253bf1063ea5fbd61032c7fb426b8af043f1c8c1863d7c71c74ab47eb9c8d0d46039ab4822225b63ee1f56cab33442b9babd12f090ffc692112f1929d1746e119ca91a767de9b96e6ad48e371c64d3e4f5c88e1207a206ebaf734f1f34f1d5796d0e36248146d46e084f8d0cbacf09be48db765469fc6ffcd831ef81ab2f369b97879c041b298ebdd31a51748539b1bba85a72f3fd9971a29fb5fe967564ac34e4a6f8f6721a39d7ba443c0f1e5ef8d72066c7e5fe673830f9a811ec01e65f45582db2d8d98228dddaf2f232a2a2ad5d21d817e443dd7c130b3edcd0fb2b083883045b3cf411970cc78047801914bb1c471d21e9bfabed2a2d9de7845c87fd2992d684abeb5d6dbe85fd57569893850a995e0d56d6329a9ee358ab564d8d2573b4b6507d574096638fd135a9fb769cbef7a3004012456e8d364fde3120b98e2651f2cb18b724a0f3f1b4368abc0687c7e1593a52c08b3e43aeca4777ac3635fb32dbfb7e66949831300f212ade47dc48e76b7c1eca96b64a44977480ea16ee22fea4962519efaf31be6246e9ef3af629630839fbf92463508fbf14ceb0d3ce95fae0395d703a6d7124a4a0d34f02ee9b037595a1b478b936055c2cbcd487761ea7d343b103f6418c720a2ac2741d5122272687e7eda5b75164d312eafd27470b1d8157a87ca649384bf5ef021c31f3528a97e7795b94b1518058e922bffaff304d2e0c4353457d62d0ad01c1a5925faf5b8d4ea50080fb6aec7177687be19187349fefd980d2dc57b4d5ef1ca42eabb79ffd0e45bdef8236f1f9c533f30441565be2981e03f4c211dd655b0a32143579656291f3fff45b37f113ca0610a45cad03e26f6908bc515e7666b599d3373689fcfbad71abe3165f7be47ddae3bf2c3c8282b39e4125faa459ab5237b53cd098e011953724d081c060c79c285e5d4c82c28d8ea7e5a282ce351de6312384b8b46e890230ff87260cf463c3e5c5248c4ba939aa16e898d6c1759258e78bde35ceea2e27adbd63e329be618bc5e1aaa8f8a9c33aa3116c539a7bb6479814aee2ef5590855541fe58e8fe3a9c5466b876e7f9738e5983956c6ba5bc580781a8c22fa715040aaa9b76671ae28903b804d7b7cd0e561827396ec66ddea41a1b193ec36f4c7433a70ce5e79691b6da47ac572ecbeb2a026754fc59b74979de48ae2098737dcc57b9f11eefbfb"}, &(0x7f0000000080)=0x1004)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x6002, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r5, 0x84, 0x17, &(0x7f0000001280)={r6, 0x5, 0xd5, "16db2e125487a62a9a5bee60b014935ab935b44a721ccf31708aafb305d6904c24246a630a19e7941806e13ef82d2c5d3afb330e427dc82e14363328bab2a4c6bc5c47374a742583ee6252ddbfce04f3313f621988c858267698feb9059f768d587b8660c159e922da17d63a7155874adaed32b58fa23430e7a0124638053419d6ca5919c054b7af0e7c41bf0d3bf33c784ccd3498085087be344eddf9eee058faf6f7d8d9f1deb5745537a5d8f1542d24ccb71b7c2792c8f07b779f2ead607f0fc17f86135a50d2119270eee54f633cdee9ac3a97"}, 0xdd)
socket$nl_generic(0x10, 0x3, 0x10)

473.552867ms ago: executing program 4 (id=715):
r0 = syz_open_dev$media(&(0x7f0000000000), 0x7, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0xc, 0x8b}, 0x0)
getpid()
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
r1 = syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x0)
ioctl$CEC_S_MODE(r1, 0x40046109, &(0x7f0000000080)=0xf0)
ioctl$CEC_S_MODE(r1, 0x40046109, &(0x7f0000000100)=0xd0)
prlimit64(0x0, 0x7, &(0x7f0000000180), 0x0)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r0, 0x80047c05, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000000c0)=0x5)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000200)=0xdc)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r3, 0x84, 0xc, 0x0, &(0x7f0000000040))
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
r5 = socket$inet_sctp(0x2, 0x1, 0x84)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}]}, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r6, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r7=>0x0}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r5, 0x84, 0x76, &(0x7f0000000080)={r7, 0x5}, &(0x7f00000000c0)=0x8)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r4, 0x84, 0x7b, &(0x7f0000000100)={r7, 0x9}, 0x8)
r8 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r8, &(0x7f0000000a00)=[{{&(0x7f0000000000)={0x2, 0xffff, @rand_addr=0x64010101}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000180)="e1", 0x1}], 0x1}}, {{&(0x7f0000000200)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2b}}, 0x10, &(0x7f0000000140)}}, {{&(0x7f00000001c0)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x46}}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000240)="a0e0e8d285a5ef8513c8c68bd978e2c7bcd8e93aac8dab5d307986a7ce3039a765b014e7970abfce4e2351a7025cb58aa1af0ef85d751682468f1fc4872b1913c1beda69d8b6b2dfa9e4d536731dc9d541784f3b043bb3c30baaf13385712988595d039a33e006cacfb0df69e0252e872f1460fdce02e37e65fc70772020d5b0e05e344679e3cb33ca47875f33dcbbbc25a1d6", 0x93}], 0x1, 0x0, 0x5}}], 0x3, 0x0)
setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r8, 0x84, 0xa, &(0x7f0000000340)={0x2, 0xfff, 0x1, 0x2, 0x8, 0x80, 0x8000, 0x7}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r9 = getpid()
sched_setscheduler(r9, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)

392.786157ms ago: executing program 0 (id=716):
r0 = socket$netlink(0x10, 0x3, 0x15)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x207)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
mkdir(&(0x7f0000000400)='./file0\x00', 0x99)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f0000001b40)=ANY=[@ANYBLOB='huge=always'])
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
fcntl$setstatus(r4, 0x4, 0x40800)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f00000000c0)='highspeed\x00', 0xa)
setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000280)='cgroup.events\x00', 0x275a, 0x0)
ftruncate(r5, 0x2000009)
sendfile(r4, r5, 0x0, 0x7ffff004)
chdir(&(0x7f0000000140)='./file0\x00')
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
pipe2(&(0x7f0000000080)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
pipe(&(0x7f0000000540)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
splice(r6, 0x0, r8, 0x0, 0xffe, 0x8)
close_range(r7, 0xffffffffffffffff, 0x0)

45.06026ms ago: executing program 4 (id=717):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = openat$nvram(0xffffffffffffff9c, 0x0, 0x40, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff}, 0x111}}, 0x20)
write$RDMA_USER_CM_CMD_CONNECT(r0, &(0x7f0000000200)={0x6, 0x118, 0xfa00, {{0xfffffff7, 0x40, "c41c7de8404c23da6d43bd08335e7f35a638b8e4a8c3cf486c13f4b426bad3fce16c60c7b980c9e4d30574ae16f4c5aa036e20ec412a93682f21a2a19c1c90045263d352ed31a0a0f026859c9711bac30600240a8fe4fa204aa0d977b18b0a149dec5157c51779d265cf1e38e49390e11ee45b8269337bd60281551467750f6909d68005a802ba6c50e7a45bb6a07aff9bc79c6598cfd8dc3881d09b3867a5065536110b23fa623f424f50068c54d369cc63c1d207e439146bdc9c286b1b75410da443fb423d9d501505a3978318617b7026726efb0319154021248ae5ada27a54ee6243f17bf0be1e44a13c5b7867eb4c3660cc1903554cf91d33a35574179f", 0x4, 0x3, 0x3, 0x5, 0x8, 0x1, 0xff, 0x1}, r1}}, 0x120)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x84, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r3, 0x40045542, &(0x7f00000001c0))
syz_open_dev$dmmidi(&(0x7f0000000080), 0x200, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r4 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r4, 0xc0285700, &(0x7f0000000000)={0x0, "fe79ca3351f25129c1ca0c4beb19855c55392fde21c7d98aef39b2c985c9c778"})
ioctl$SYNC_IOC_FILE_INFO(r0, 0xc0383e04, &(0x7f0000000800)={""/32, 0x0, 0x0, 0x1, 0x0, &(0x7f00000005c0)=[{}]})
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000540)=ANY=[@ANYRES32=0x1, @ANYRES32, @ANYBLOB="090000000800000004000000ab2dfe315c1e1ef3623730bb1602d9f9914f16198e74d51fb61226300c7edde339e87a22b60123a2ec023d41e328936a48133ec3cae304a9dc91f989f6d5f701d0de3ea645c25503605e6271fbb588b6739785554762", @ANYRES32, @ANYBLOB, @ANYRES64=0x0], 0x20)
r6 = syz_mount_image$f2fs(&(0x7f00000002c0), &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x41, 0x5510, &(0x7f0000009680)="$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")
openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r7 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
sendfile(r6, r7, 0x0, 0xa4000)
ioctl$F2FS_IOC_SET_PIN_FILE(r7, 0xf519, 0x0)
read$msr(r5, &(0x7f0000002700)=""/102392, 0x18ff8)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r7, 0x81f8943c, &(0x7f00000009c0))
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r8 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r8, &(0x7f00000001c0)={0x2, 0x4e24, @loopback}, 0x10)

0s ago: executing program 3 (id=718):
r0 = timerfd_create(0x0, 0x0) (async)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000200)) (async)
r2 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
listen(r2, 0x2)
setsockopt$llc_int(0xffffffffffffffff, 0x10c, 0x5, &(0x7f0000000040)=0x7, 0x4) (async)
timerfd_settime(r0, 0x3, &(0x7f0000000440)={{0x0, 0x989680}}, 0x0)
clock_adjtime(0x0, &(0x7f0000000480)={0xd54, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000002, 0x0, 0x0, 0x0, 0x8000, 0x1000000, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x2000}) (async)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000070ecfa000000000904d400004b72860100000800000000040000000000000000"], 0x0)

kernel console output (not intermixed with test programs):

aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  287.075681][ T7437] loop0: detected capacity change from 0 to 32768
[  287.094482][ T7437] ERROR: (device loop0): diRead: i_ino != di_number
[  287.094482][ T7437] 
[  287.659887][ T7441] process 'syz.3.372' launched './file0' with NULL argv: empty string added
[  288.931667][ T5838] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  288.941913][ T5835] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  294.150919][ T7459] loop3: detected capacity change from 0 to 65536
[  294.206971][ T7459] XFS (loop3): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  294.263457][ T7459] XFS (loop3): Ending clean mount
[  294.292177][ T7472] netlink: 'syz.2.380': attribute type 10 has an invalid length.
[  294.301792][ T5835] XFS (loop3): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3
[  294.329241][ T7472] 8021q: adding VLAN 0 to HW filter on device team0
[  294.349090][ T7472] bond0: (slave team0): Enslaving as an active interface with an up link
[  294.872496][ T7481] loop3: detected capacity change from 0 to 1024
[  295.079486][ T7487] loop1: detected capacity change from 0 to 1024
[  295.122694][ T7487] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  296.981332][ T7506] netlink: 76 bytes leftover after parsing attributes in process `syz.2.390'.
[  297.168672][ T5838] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  297.255802][ T7514] loop3: detected capacity change from 0 to 64
[  297.263552][ T7514] minix: Unknown parameter '/dev/input/mouse#'
[  297.324886][ T7516] loop2: detected capacity change from 0 to 512
[  297.380259][ T7516] loop2: detected capacity change from 0 to 512
[  297.404348][ T5833] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[  297.459245][ T7520] loop1: detected capacity change from 0 to 512
[  297.497428][ T7520] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  297.554476][ T5833] usb 1-1: device descriptor read/64, error -71
[  297.569221][ T7520] EXT4-fs (loop1): 1 orphan inode deleted
[  297.587543][   T12] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  297.590751][ T7520] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  297.618351][ T7520] ext4 filesystem being mounted at /67/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  297.659759][   T12] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:0: Failed to release dquot type 1
[  297.738808][ T7526] loop2: detected capacity change from 0 to 2048
[  297.775068][ T7520] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  297.791657][ T7526] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  297.800823][ T5833] usb 1-1: new full-speed USB device number 3 using dummy_hcd
[  297.837417][ T7529] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  297.873983][ T7529] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  298.140398][ T5833] usb 1-1: device descriptor read/64, error -71
[  298.166121][ T5838] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  298.216885][ T7533] loop4: detected capacity change from 0 to 1024
[  298.264606][ T5833] usb usb1-port1: attempt power cycle
[  298.913785][ T5833] usb 1-1: new full-speed USB device number 4 using dummy_hcd
[  298.929331][ T7542] netlink: 'syz.2.401': attribute type 10 has an invalid length.
[  299.035834][ T5833] usb 1-1: device descriptor read/8, error -71
[  299.474534][ T5833] usb 1-1: new full-speed USB device number 5 using dummy_hcd
[  299.917054][ T5833] usb 1-1: device descriptor read/8, error -71
[  300.049253][ T7550] loop4: detected capacity change from 0 to 128
[  300.177845][ T5833] usb usb1-port1: unable to enumerate USB device
[  300.268278][ T7550] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  300.300050][ T7550] ext4 filesystem being mounted at /78/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  301.155885][ T7560] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(12)
[  301.162673][ T7560] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  301.173558][ T7560] vhci_hcd vhci_hcd.0: Device attached
[  301.175829][ T7555] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(10)
[  301.185811][ T7555] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  301.193440][ T7555] vhci_hcd vhci_hcd.0: Device attached
[  301.285464][ T7563] vhci_hcd: connection closed
[  301.300523][ T7564] vhci_hcd: connection closed
[  301.310789][ T7559] loop2: detected capacity change from 0 to 1024
[  301.333329][   T12] vhci_hcd: stop threads
[  301.365228][   T12] vhci_hcd: release socket
[  301.372245][ T7559] EXT4-fs: Ignoring removed oldalloc option
[  301.434459][   T12] vhci_hcd: disconnect device
[  301.459899][ T7559] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  301.472790][ T5886] usb 41-1: new low-speed USB device number 2 using vhci_hcd
[  301.479563][   T12] vhci_hcd: stop threads
[  301.480971][ T7559] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  301.499894][ T7559] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  301.515701][   T12] vhci_hcd: release socket
[  301.537442][ T7559] EXT4-fs error (device loop2): ext4_get_journal_inode:5796: comm syz.2.405: inode #1: comm syz.2.405: iget: illegal inode #
[  301.552548][   T12] vhci_hcd: disconnect device
[  301.560423][ T7559] EXT4-fs (loop2): no journal found
[  301.633367][ T7559] EXT4-fs (loop2): can't get journal size
[  301.865995][ T7559] EXT4-fs (loop2): failed to initialize system zone (-22)
[  301.887853][ T7570] netlink: 8 bytes leftover after parsing attributes in process `syz.0.407'.
[  301.958335][ T7559] EXT4-fs (loop2): mount failed
[  302.287883][ T5845] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  303.484721][ T7586] 9pnet_fd: Insufficient options for proto=fd
[  303.639859][ T7566] loop1: detected capacity change from 0 to 32768
[  303.767969][ T7589] loop0: detected capacity change from 0 to 64
[  304.105976][ T7596] loop4: detected capacity change from 0 to 1024
[  305.860442][ T7605] overlayfs: failed to resolve './file0': -2
[  306.769969][ T5886] vhci_hcd: vhci_device speed not set
[  306.806615][ T7593] loop3: detected capacity change from 0 to 40427
[  306.864804][ T7593] F2FS-fs (loop3): Unable to read 2th superblock
[  306.949408][ T7593] F2FS-fs (loop3): invalid crc value
[  306.977196][ T7593] F2FS-fs (loop3): Failed to start F2FS issue_checkpoint_thread (-4)
[  307.011828][ T7616] loop0: detected capacity change from 0 to 256
[  307.052212][ T7616] exfat: Deprecated parameter 'namecase'
[  307.072506][ T7616] exfat: Deprecated parameter 'utf8'
[  307.088575][ T7616] exfat: Deprecated parameter 'namecase'
[  307.211762][ T7616] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xdf1ac56c, utbl_chksum : 0xe619d30d)
[  307.239566][ T7619] 9pnet_fd: Insufficient options for proto=fd
[  307.255607][ T7620] netlink: 8 bytes leftover after parsing attributes in process `syz.1.419'.
[  307.644963][ T7625] loop1: detected capacity change from 0 to 8
[  307.651987][ T7625] squashfs: Unknown parameter 'ev/vbi#'
[  308.866342][ T7636] loop1: detected capacity change from 0 to 1024
[  308.873620][ T7636] EXT4-fs: Ignoring removed oldalloc option
[  309.179858][ T7633] loop2: detected capacity change from 0 to 40427
[  309.243016][ T7636] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  309.254015][ T7636] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  309.263684][ T7636] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  309.273926][ T7636] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: comm syz.1.427: inode #1: comm syz.1.427: iget: illegal inode #
[  309.288937][ T7633] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[  309.289126][ T7636] EXT4-fs (loop1): no journal found
[  309.298268][ T7633] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  309.311955][ T7636] EXT4-fs (loop1): can't get journal size
[  309.322940][ T7633] F2FS-fs (loop2): build fault injection rate: 17008
[  309.330108][ T7633] F2FS-fs (loop2): build fault injection type: 0x1f8
[  309.362619][ T7636] EXT4-fs (loop1): failed to initialize system zone (-22)
[  309.369988][ T7636] EXT4-fs (loop1): mount failed
[  309.510712][ T7639] loop3: detected capacity change from 0 to 32768
[  309.588865][ T7633] F2FS-fs (loop2): invalid crc value
[  309.736565][ T7633] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  309.743789][ T7633] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  310.117405][ T7648] syz.2.428: attempt to access beyond end of device
[  310.117405][ T7648] loop2: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[  310.132415][ T7648] CPU: 0 UID: 0 PID: 7648 Comm: syz.2.428 Not tainted 6.15.0-next-20250530-syzkaller #0 PREEMPT(full) 
[  310.132442][ T7648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  310.132461][ T7648] Call Trace:
[  310.132469][ T7648]  <TASK>
[  310.132478][ T7648]  dump_stack_lvl+0x189/0x250
[  310.132507][ T7648]  ? __pfx_dump_stack_lvl+0x10/0x10
[  310.132526][ T7648]  ? __pfx_queue_work_on+0x10/0x10
[  310.132544][ T7648]  ? _raw_spin_unlock_irqrestore+0xa8/0x110
[  310.132574][ T7648]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  310.132600][ T7648]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  310.132628][ T7648]  ? f2fs_hw_is_readonly+0x39b/0x470
[  310.132660][ T7648]  f2fs_handle_critical_error+0x37c/0x540
[  310.132694][ T7648]  f2fs_write_end_io+0x495/0x810
[  310.132741][ T7648]  __submit_merged_bio+0x27a/0x6a0
[  310.132774][ T7648]  __submit_merged_write_cond+0x255/0x530
[  310.132807][ T7648]  f2fs_write_data_pages+0x261d/0x3000
[  310.132871][ T7648]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  310.132948][ T7648]  ? check_path+0x21/0x40
[  310.132967][ T7648]  ? check_noncircular+0xe0/0x160
[  310.133034][ T7648]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  310.133065][ T7648]  do_writepages+0x32e/0x550
[  310.133096][ T7648]  ? do_raw_spin_unlock+0x122/0x240
[  310.133124][ T7648]  filemap_fdatawrite+0x191/0x230
[  310.133146][ T7648]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  310.133217][ T7648]  ? do_raw_spin_unlock+0x122/0x240
[  310.133254][ T7648]  f2fs_sync_dirty_inodes+0x31f/0x830
[  310.133302][ T7648]  f2fs_write_checkpoint+0x94a/0x1de0
[  310.133343][ T7648]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  310.133405][ T7648]  ? __pfx_down_write+0x10/0x10
[  310.133437][ T7648]  f2fs_issue_checkpoint+0x3ac/0x570
[  310.133460][ T7648]  ? __pfx_f2fs_issue_checkpoint+0x10/0x10
[  310.133486][ T7648]  ? do_raw_spin_lock+0x121/0x290
[  310.133518][ T7648]  ? __up_read+0x280/0x680
[  310.133547][ T7648]  ? f2fs_sync_fs+0x200/0x3d0
[  310.133574][ T7648]  f2fs_do_sync_file+0x86a/0x1860
[  310.133614][ T7648]  ? __pfx_f2fs_do_sync_file+0x10/0x10
[  310.133670][ T7648]  ? f2fs_inode_dirtied+0x75/0x3c0
[  310.133738][ T7648]  ? __mark_inode_dirty+0x3ab/0xdf0
[  310.133793][ T7648]  ? vfs_fsync_range+0x149/0x1c0
[  310.133820][ T7648]  ? f2fs_sync_file+0xe9/0x160
[  310.133857][ T7648]  f2fs_file_write_iter+0x78e/0x2340
[  310.133907][ T7648]  ? __pfx_f2fs_file_write_iter+0x10/0x10
[  310.133940][ T7648]  ? __asan_memset+0x22/0x50
[  310.133979][ T7648]  iter_file_splice_write+0x93a/0x1000
[  310.134035][ T7648]  ? __pfx_iter_file_splice_write+0x10/0x10
[  310.134064][ T7648]  ? rcu_read_lock_any_held+0xb3/0x120
[  310.134102][ T7648]  ? __pfx_iter_file_splice_write+0x10/0x10
[  310.134129][ T7648]  direct_splice_actor+0xfe/0x160
[  310.134158][ T7648]  splice_direct_to_actor+0x5a8/0xcc0
[  310.134207][ T7648]  ? __pfx_direct_splice_actor+0x10/0x10
[  310.134232][ T7648]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  310.134281][ T7648]  do_splice_direct+0x181/0x270
[  310.134309][ T7648]  ? __pfx_do_splice_direct+0x10/0x10
[  310.134334][ T7648]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  310.134377][ T7648]  vfs_copy_file_range+0xabc/0x1310
[  310.134425][ T7648]  ? __pfx_vfs_copy_file_range+0x10/0x10
[  310.134468][ T7648]  __se_sys_copy_file_range+0x2fb/0x470
[  310.134496][ T7648]  ? irqentry_exit+0x74/0x90
[  310.134533][ T7648]  ? __pfx___se_sys_copy_file_range+0x10/0x10
[  310.134574][ T7648]  ? __x64_sys_copy_file_range+0x21/0xf0
[  310.134606][ T7648]  do_syscall_64+0xfa/0x3b0
[  310.134626][ T7648]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.134646][ T7648]  ? asm_sysvec_call_function_single+0x1a/0x20
[  310.134667][ T7648]  ? clear_bhb_loop+0x60/0xb0
[  310.134693][ T7648]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.134713][ T7648] RIP: 0033:0x7ff1d4f8e969
[  310.134740][ T7648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  310.134762][ T7648] RSP: 002b:00007ff1d5ea4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000146
[  310.134785][ T7648] RAX: ffffffffffffffda RBX: 00007ff1d51b6080 RCX: 00007ff1d4f8e969
[  310.134801][ T7648] RDX: 000000000000000a RSI: 00002000000001c0 RDI: 000000000000000c
[  310.134814][ T7648] RBP: 00007ff1d5010ab1 R08: fffffff7a003e45c R09: 0010000000000000
[  310.134829][ T7648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  310.134841][ T7648] R13: 0000000000000000 R14: 00007ff1d51b6080 R15: 00007ffcf9fca818
[  310.134876][ T7648]  </TASK>
[  310.568937][ T7648] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  310.576313][ T7648] CPU: 0 UID: 0 PID: 7648 Comm: syz.2.428 Not tainted 6.15.0-next-20250530-syzkaller #0 PREEMPT(full) 
[  310.576337][ T7648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  310.576348][ T7648] Call Trace:
[  310.576355][ T7648]  <TASK>
[  310.576364][ T7648]  dump_stack_lvl+0x189/0x250
[  310.576390][ T7648]  ? __pfx_dump_stack_lvl+0x10/0x10
[  310.576407][ T7648]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  310.576433][ T7648]  ? __pfx_queue_work_on+0x10/0x10
[  310.576454][ T7648]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  310.576480][ T7648]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  310.576525][ T7648]  ? f2fs_hw_is_readonly+0x39b/0x470
[  310.576558][ T7648]  f2fs_handle_critical_error+0x37c/0x540
[  310.576593][ T7648]  f2fs_write_end_io+0x495/0x810
[  310.576641][ T7648]  __submit_merged_bio+0x27a/0x6a0
[  310.576676][ T7648]  __submit_merged_write_cond+0x255/0x530
[  310.576709][ T7648]  f2fs_write_data_pages+0x261d/0x3000
[  310.576774][ T7648]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  310.576852][ T7648]  ? check_path+0x21/0x40
[  310.576870][ T7648]  ? check_noncircular+0xe0/0x160
[  310.576940][ T7648]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  310.576971][ T7648]  do_writepages+0x32e/0x550
[  310.577000][ T7648]  ? do_raw_spin_unlock+0x122/0x240
[  310.577028][ T7648]  filemap_fdatawrite+0x191/0x230
[  310.577049][ T7648]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  310.577118][ T7648]  ? do_raw_spin_unlock+0x122/0x240
[  310.577146][ T7648]  f2fs_sync_dirty_inodes+0x31f/0x830
[  310.577192][ T7648]  f2fs_write_checkpoint+0x94a/0x1de0
[  310.577235][ T7648]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  310.577306][ T7648]  ? __pfx_down_write+0x10/0x10
[  310.577338][ T7648]  f2fs_issue_checkpoint+0x3ac/0x570
[  310.577362][ T7648]  ? __pfx_f2fs_issue_checkpoint+0x10/0x10
[  310.577389][ T7648]  ? do_raw_spin_lock+0x121/0x290
[  310.577423][ T7648]  ? __up_read+0x280/0x680
[  310.577454][ T7648]  ? f2fs_sync_fs+0x200/0x3d0
[  310.577482][ T7648]  f2fs_do_sync_file+0x86a/0x1860
[  310.577524][ T7648]  ? __pfx_f2fs_do_sync_file+0x10/0x10
[  310.577553][ T7648]  ? f2fs_inode_dirtied+0x75/0x3c0
[  310.577616][ T7648]  ? __mark_inode_dirty+0x3ab/0xdf0
[  310.577650][ T7648]  ? vfs_fsync_range+0x149/0x1c0
[  310.577674][ T7648]  ? f2fs_sync_file+0xe9/0x160
[  310.577707][ T7648]  f2fs_file_write_iter+0x78e/0x2340
[  310.577754][ T7648]  ? __pfx_f2fs_file_write_iter+0x10/0x10
[  310.577784][ T7648]  ? __asan_memset+0x22/0x50
[  310.577820][ T7648]  iter_file_splice_write+0x93a/0x1000
[  310.577872][ T7648]  ? __pfx_iter_file_splice_write+0x10/0x10
[  310.577900][ T7648]  ? rcu_read_lock_any_held+0xb3/0x120
[  310.577935][ T7648]  ? __pfx_iter_file_splice_write+0x10/0x10
[  310.577959][ T7648]  direct_splice_actor+0xfe/0x160
[  310.577986][ T7648]  splice_direct_to_actor+0x5a8/0xcc0
[  310.578031][ T7648]  ? __pfx_direct_splice_actor+0x10/0x10
[  310.578054][ T7648]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  310.578089][ T7648]  do_splice_direct+0x181/0x270
[  310.578115][ T7648]  ? __pfx_do_splice_direct+0x10/0x10
[  310.578138][ T7648]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  310.578178][ T7648]  vfs_copy_file_range+0xabc/0x1310
[  310.578221][ T7648]  ? __pfx_vfs_copy_file_range+0x10/0x10
[  310.578272][ T7648]  __se_sys_copy_file_range+0x2fb/0x470
[  310.578297][ T7648]  ? irqentry_exit+0x74/0x90
[  310.578332][ T7648]  ? __pfx___se_sys_copy_file_range+0x10/0x10
[  310.578368][ T7648]  ? __x64_sys_copy_file_range+0x21/0xf0
[  310.578397][ T7648]  do_syscall_64+0xfa/0x3b0
[  310.578416][ T7648]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.578435][ T7648]  ? asm_sysvec_call_function_single+0x1a/0x20
[  310.578455][ T7648]  ? clear_bhb_loop+0x60/0xb0
[  310.578479][ T7648]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  310.578498][ T7648] RIP: 0033:0x7ff1d4f8e969
[  310.578516][ T7648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  310.578532][ T7648] RSP: 002b:00007ff1d5ea4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000146
[  310.578552][ T7648] RAX: ffffffffffffffda RBX: 00007ff1d51b6080 RCX: 00007ff1d4f8e969
[  310.578566][ T7648] RDX: 000000000000000a RSI: 00002000000001c0 RDI: 000000000000000c
[  310.578578][ T7648] RBP: 00007ff1d5010ab1 R08: fffffff7a003e45c R09: 0010000000000000
[  310.578592][ T7648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  310.578603][ T7648] R13: 0000000000000000 R14: 00007ff1d51b6080 R15: 00007ffcf9fca818
[  310.578635][ T7648]  </TASK>
[  310.578663][ T7648] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  311.441735][ T7648] CPU: 0 UID: 0 PID: 7648 Comm: syz.2.428 Not tainted 6.15.0-next-20250530-syzkaller #0 PREEMPT(full) 
[  311.441780][ T7648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  311.441792][ T7648] Call Trace:
[  311.441800][ T7648]  <TASK>
[  311.441809][ T7648]  dump_stack_lvl+0x189/0x250
[  311.441837][ T7648]  ? __pfx_dump_stack_lvl+0x10/0x10
[  311.441854][ T7648]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  311.441883][ T7648]  ? __pfx_queue_work_on+0x10/0x10
[  311.441905][ T7648]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  311.441932][ T7648]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  311.441962][ T7648]  ? f2fs_hw_is_readonly+0x39b/0x470
[  311.441996][ T7648]  f2fs_handle_critical_error+0x37c/0x540
[  311.442031][ T7648]  f2fs_write_end_io+0x495/0x810
[  311.442080][ T7648]  __submit_merged_bio+0x27a/0x6a0
[  311.442114][ T7648]  __submit_merged_write_cond+0x255/0x530
[  311.442150][ T7648]  f2fs_write_data_pages+0x261d/0x3000
[  311.442216][ T7648]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  311.442319][ T7648]  ? check_path+0x21/0x40
[  311.442339][ T7648]  ? check_noncircular+0xe0/0x160
[  311.442424][ T7648]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  311.442459][ T7648]  do_writepages+0x32e/0x550
[  311.442494][ T7648]  ? do_raw_spin_unlock+0x122/0x240
[  311.442543][ T7648]  filemap_fdatawrite+0x191/0x230
[  311.442568][ T7648]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  311.442648][ T7648]  ? do_raw_spin_unlock+0x122/0x240
[  311.442681][ T7648]  f2fs_sync_dirty_inodes+0x31f/0x830
[  311.442735][ T7648]  f2fs_write_checkpoint+0x94a/0x1de0
[  311.442785][ T7648]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  311.442855][ T7648]  ? __pfx_down_write+0x10/0x10
[  311.442892][ T7648]  f2fs_issue_checkpoint+0x3ac/0x570
[  311.442918][ T7648]  ? __pfx_f2fs_issue_checkpoint+0x10/0x10
[  311.442950][ T7648]  ? do_raw_spin_lock+0x121/0x290
[  311.442989][ T7648]  ? __up_read+0x280/0x680
[  311.443025][ T7648]  ? f2fs_sync_fs+0x200/0x3d0
[  311.443057][ T7648]  f2fs_do_sync_file+0x86a/0x1860
[  311.443105][ T7648]  ? __pfx_f2fs_do_sync_file+0x10/0x10
[  311.443138][ T7648]  ? f2fs_inode_dirtied+0x75/0x3c0
[  311.443213][ T7648]  ? __mark_inode_dirty+0x3ab/0xdf0
[  311.443252][ T7648]  ? vfs_fsync_range+0x149/0x1c0
[  311.443280][ T7648]  ? f2fs_sync_file+0xe9/0x160
[  311.443319][ T7648]  f2fs_file_write_iter+0x78e/0x2340
[  311.443371][ T7648]  ? __pfx_f2fs_file_write_iter+0x10/0x10
[  311.443406][ T7648]  ? __asan_memset+0x22/0x50
[  311.443453][ T7648]  iter_file_splice_write+0x93a/0x1000
[  311.443523][ T7648]  ? __pfx_iter_file_splice_write+0x10/0x10
[  311.443554][ T7648]  ? rcu_read_lock_any_held+0xb3/0x120
[  311.443591][ T7648]  ? __pfx_iter_file_splice_write+0x10/0x10
[  311.443618][ T7648]  direct_splice_actor+0xfe/0x160
[  311.443648][ T7648]  splice_direct_to_actor+0x5a8/0xcc0
[  311.443697][ T7648]  ? __pfx_direct_splice_actor+0x10/0x10
[  311.443721][ T7648]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  311.443760][ T7648]  do_splice_direct+0x181/0x270
[  311.443788][ T7648]  ? __pfx_do_splice_direct+0x10/0x10
[  311.443814][ T7648]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  311.443858][ T7648]  vfs_copy_file_range+0xabc/0x1310
[  311.443906][ T7648]  ? __pfx_vfs_copy_file_range+0x10/0x10
[  311.443971][ T7648]  __se_sys_copy_file_range+0x2fb/0x470
[  311.444000][ T7648]  ? irqentry_exit+0x74/0x90
[  311.444039][ T7648]  ? __pfx___se_sys_copy_file_range+0x10/0x10
[  311.444080][ T7648]  ? __x64_sys_copy_file_range+0x21/0xf0
[  311.444115][ T7648]  do_syscall_64+0xfa/0x3b0
[  311.444136][ T7648]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.444157][ T7648]  ? asm_sysvec_call_function_single+0x1a/0x20
[  311.444180][ T7648]  ? clear_bhb_loop+0x60/0xb0
[  311.444207][ T7648]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.444228][ T7648] RIP: 0033:0x7ff1d4f8e969
[  311.444251][ T7648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  311.444268][ T7648] RSP: 002b:00007ff1d5ea4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000146
[  311.444291][ T7648] RAX: ffffffffffffffda RBX: 00007ff1d51b6080 RCX: 00007ff1d4f8e969
[  311.444307][ T7648] RDX: 000000000000000a RSI: 00002000000001c0 RDI: 000000000000000c
[  311.444320][ T7648] RBP: 00007ff1d5010ab1 R08: fffffff7a003e45c R09: 0010000000000000
[  311.444336][ T7648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  311.444361][ T7648] R13: 0000000000000000 R14: 00007ff1d51b6080 R15: 00007ffcf9fca818
[  311.444395][ T7648]  </TASK>
[  311.873420][ T7648] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  311.900423][ T7659] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  312.601588][ T7665] 9pnet_fd: Insufficient options for proto=fd
[  313.064675][ T7669] loop0: detected capacity change from 0 to 1024
[  313.072045][ T7669] EXT4-fs: Ignoring removed oldalloc option
[  313.114441][ T7669] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  313.125854][ T7669] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  313.135631][ T7669] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  313.145897][ T7669] EXT4-fs error (device loop0): ext4_get_journal_inode:5796: comm syz.0.439: inode #1: comm syz.0.439: iget: illegal inode #
[  313.174443][ T7669] EXT4-fs (loop0): no journal found
[  313.179699][ T7669] EXT4-fs (loop0): can't get journal size
[  313.201801][ T7669] EXT4-fs (loop0): failed to initialize system zone (-22)
[  313.209439][ T7669] EXT4-fs (loop0): mount failed
[  313.422282][ T7680] ubi31: attaching mtd0
[  313.428430][ T7680] ubi31: scanning is finished
[  313.433136][ T7680] ubi31: empty MTD device detected
[  314.098201][ T5886] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  315.283137][ T7680] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  315.291903][ T7680] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  315.299516][ T7680] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  315.306637][ T7680] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[  315.314139][ T7680] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  315.321203][ T7680] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[  315.329457][ T7680] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2023348263
[  315.340864][ T7680] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  315.366141][ T7684] ubi31: background thread "ubi_bgt31d" started, PID 7684
[  315.395926][ T5886] usb 3-1: Using ep0 maxpacket: 32
[  315.459626][ T5886] usb 3-1: config 0 has an invalid interface number: 146 but max is 0
[  315.520655][ T5886] usb 3-1: config 0 has no interface number 0
[  315.554344][ T5886] usb 3-1: config 0 interface 146 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  315.585573][ T5886] usb 3-1: config 0 interface 146 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83
[  315.623579][ T5886] usb 3-1: config 0 interface 146 altsetting 0 endpoint 0x83 has invalid maxpacket 33307, setting to 1024
[  315.674329][ T5886] usb 3-1: config 0 interface 146 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024
[  315.699900][ T7692] overlayfs: failed to resolve './file1': -2
[  315.717619][ T5886] usb 3-1: config 0 interface 146 altsetting 0 has an endpoint descriptor with address 0xF2, changing to 0x82
[  315.754461][ T5886] usb 3-1: config 0 interface 146 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  315.797564][ T7694] loop3: detected capacity change from 0 to 1024
[  315.814185][ T5886] usb 3-1: config 0 interface 146 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  315.842371][ T5886] usb 3-1: config 0 interface 146 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 1
[  315.887420][ T5886] usb 3-1: config 0 interface 146 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[  315.957515][ T7694] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  316.019353][ T5886] usb 3-1: New USB device found, idVendor=05da, idProduct=009a, bcdDevice=62.95
[  316.079574][ T7694] ext4 filesystem being mounted at /89/file1/bus/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  316.094274][ T5886] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  316.102313][ T5886] usb 3-1: Product: syz
[  316.128442][ T5886] usb 3-1: Manufacturer: syz
[  316.133179][ T5886] usb 3-1: SerialNumber: syz
[  316.172697][   T30] audit: type=1800 audit(1748928837.287:18): pid=7692 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.445" name="file1" dev="loop3" ino=15 res=0 errno=0
[  316.179212][ T5886] usb 3-1: config 0 descriptor??
[  316.315530][ T7676] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  316.723415][ T5835] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  317.026617][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  317.041567][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  317.624728][ T5886] usb 3-1: can't set config #0, error -71
[  317.667830][ T5886] usb 3-1: USB disconnect, device number 5
[  317.765232][ T7704] loop2: detected capacity change from 0 to 1024
[  317.930992][ T7710] 9pnet_fd: Insufficient options for proto=fd
[  319.320564][ T7721] loop3: detected capacity change from 0 to 1024
[  319.327875][ T7721] EXT4-fs: Ignoring removed oldalloc option
[  319.354385][ T7721] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  319.365360][ T7721] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  319.375135][ T7721] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  319.385461][ T7721] EXT4-fs error (device loop3): ext4_get_journal_inode:5796: comm syz.3.452: inode #1: comm syz.3.452: iget: illegal inode #
[  319.398771][ T7721] EXT4-fs (loop3): no journal found
[  319.404105][ T7721] EXT4-fs (loop3): can't get journal size
[  319.425383][ T7721] EXT4-fs (loop3): failed to initialize system zone (-22)
[  319.433944][ T7721] EXT4-fs (loop3): mount failed
[  319.539706][ T5889] libceph: connect (1)[c::]:6789 error -101
[  319.556997][ T5889] libceph: mon0 (1)[c::]:6789 connect error
[  319.586739][ T7724] ceph: No mds server is up or the cluster is laggy
[  319.603239][ T7717] loop2: detected capacity change from 0 to 32768
[  319.646945][ T7717] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  319.803152][ T7742] loop1: detected capacity change from 0 to 2048
[  319.836288][ T5886] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  319.895434][ T7742] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  319.912432][ T7744] FAULT_INJECTION: forcing a failure.
[  319.912432][ T7744] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  319.979598][ T7717] XFS (loop2): Ending clean mount
[  319.984157][ T7744] CPU: 0 UID: 0 PID: 7744 Comm: syz.3.455 Not tainted 6.15.0-next-20250530-syzkaller #0 PREEMPT(full) 
[  319.984185][ T7744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  319.984202][ T7744] Call Trace:
[  319.984211][ T7744]  <TASK>
[  319.984220][ T7744]  dump_stack_lvl+0x189/0x250
[  319.984246][ T7744]  ? __pfx____ratelimit+0x10/0x10
[  319.984277][ T7744]  ? __pfx_dump_stack_lvl+0x10/0x10
[  319.984297][ T7744]  ? __pfx__printk+0x10/0x10
[  319.984320][ T7744]  ? __might_fault+0xb0/0x130
[  319.984356][ T7744]  should_fail_ex+0x414/0x560
[  319.984387][ T7744]  _copy_from_iter+0x1db/0x16f0
[  319.984423][ T7744]  ? rcu_is_watching+0x15/0xb0
[  319.984444][ T7744]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  319.984470][ T7744]  ? __pfx__copy_from_iter+0x10/0x10
[  319.984503][ T7744]  ? __build_skb_around+0x257/0x3e0
[  319.984531][ T7744]  ? netlink_sendmsg+0x642/0xb30
[  319.984554][ T7744]  ? skb_put+0x11b/0x210
[  319.984583][ T7744]  netlink_sendmsg+0x6b2/0xb30
[  319.984617][ T7744]  ? __pfx_netlink_sendmsg+0x10/0x10
[  319.984645][ T7744]  ? aa_sock_msg_perm+0xf1/0x1d0
[  319.984670][ T7744]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  319.984697][ T7744]  ? __pfx_netlink_sendmsg+0x10/0x10
[  319.984720][ T7744]  __sock_sendmsg+0x219/0x270
[  319.984753][ T7744]  ____sys_sendmsg+0x505/0x830
[  319.984783][ T7744]  ? __pfx_____sys_sendmsg+0x10/0x10
[  319.984816][ T7744]  ? import_iovec+0x74/0xa0
[  319.984846][ T7744]  ___sys_sendmsg+0x21f/0x2a0
[  319.984873][ T7744]  ? __pfx____sys_sendmsg+0x10/0x10
[  319.984936][ T7744]  ? __fget_files+0x2a/0x420
[  319.984959][ T7744]  ? __fget_files+0x3a0/0x420
[  319.984995][ T7744]  __x64_sys_sendmsg+0x19b/0x260
[  319.985022][ T7744]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  319.985057][ T7744]  ? __pfx_ksys_write+0x10/0x10
[  319.985075][ T7744]  ? rcu_is_watching+0x15/0xb0
[  319.985098][ T7744]  ? do_syscall_64+0xbe/0x3b0
[  319.985120][ T7744]  do_syscall_64+0xfa/0x3b0
[  319.985135][ T7744]  ? lockdep_hardirqs_on+0x9c/0x150
[  319.985163][ T7744]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.985184][ T7744]  ? clear_bhb_loop+0x60/0xb0
[  319.985212][ T7744]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.985232][ T7744] RIP: 0033:0x7f5e3918e969
[  319.985252][ T7744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  319.985270][ T7744] RSP: 002b:00007f5e39f33038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  319.985290][ T7744] RAX: ffffffffffffffda RBX: 00007f5e393b5fa0 RCX: 00007f5e3918e969
[  319.985306][ T7744] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 000000000000000b
[  319.985318][ T7744] RBP: 00007f5e39f33090 R08: 0000000000000000 R09: 0000000000000000
[  319.985330][ T7744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  319.985342][ T7744] R13: 0000000000000000 R14: 00007f5e393b5fa0 R15: 00007ffe5eb08508
[  319.985375][ T7744]  </TASK>
[  320.146286][ T7751] loop4: detected capacity change from 0 to 4096
[  320.227305][ T5886] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  320.293892][ T7717] XFS (loop2): Quotacheck needed: Please wait.
[  320.322159][ T5886] usb 1-1: config 1 has an invalid descriptor of length 227, skipping remainder of the config
[  320.366572][ T5886] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  320.375964][ T7717] XFS (loop2): Quotacheck: Done.
[  320.397071][ T5886] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  320.407415][ T5886] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  320.429410][ T5886] usb 1-1: Product: syz
[  320.433626][ T5886] usb 1-1: Manufacturer: 䙳㿦䷇䡧붖
[  320.444549][ T5886] usb 1-1: SerialNumber: syz
[  320.701733][ T5838] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.881439][ T7754] loop3: detected capacity change from 0 to 32768
[  320.975141][ T7754] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  321.119196][ T7754] XFS (loop3): Ending clean mount
[  321.138142][ T7754] XFS (loop3): Quotacheck needed: Please wait.
[  321.156923][ T5886] usb 1-1: 0:2 : does not exist
[  321.210910][ T5886] usb 1-1: USB disconnect, device number 6
[  321.274338][ T7754] XFS (loop3): Quotacheck: Done.
[  321.644382][ T5917] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  322.007970][ T5917] usb 2-1: Using ep0 maxpacket: 32
[  323.200889][ T5917] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[  323.511574][ T6995] udevd[6995]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  323.583798][ T5917] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  323.742548][ T5917] usb 2-1: config 0 has no interface number 0
[  323.832998][ T5917] usb 2-1: config 0 interface 51 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  324.410761][ T5835] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  324.439070][ T5917] usb 2-1: string descriptor 0 read error: -71
[  324.464390][ T5917] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  324.474687][ T5917] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  324.491380][ T5917] usb 2-1: config 0 descriptor??
[  324.520505][ T5917] usb 2-1: can't set config #0, error -71
[  324.546787][ T5917] usb 2-1: USB disconnect, device number 2
[  324.567918][ T5841] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  324.752039][ T7774] loop0: detected capacity change from 0 to 4096
[  325.084722][ T7781] loop1: detected capacity change from 0 to 2048
[  325.384313][ T7781] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  325.748903][ T5838] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.866760][ T7786] 9pnet_fd: Insufficient options for proto=fd
[  326.120959][ T7799] loop0: detected capacity change from 0 to 2048
[  326.216899][ T7799] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  326.602488][ T7809] loop1: detected capacity change from 0 to 1024
[  326.609935][ T7809] EXT4-fs: Ignoring removed oldalloc option
[  326.793790][ T7809] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  326.804977][ T7809] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  326.816026][ T7809] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  326.826292][ T7809] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: comm syz.1.466: inode #1: comm syz.1.466: iget: illegal inode #
[  326.846157][ T7809] EXT4-fs (loop1): no journal found
[  326.851546][ T7809] EXT4-fs (loop1): can't get journal size
[  326.891929][ T7809] EXT4-fs (loop1): failed to initialize system zone (-22)
[  326.899505][ T7809] EXT4-fs (loop1): mount failed
[  327.500512][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  327.548676][ T7808] loop3: detected capacity change from 0 to 4096
[  327.558379][ T7817] loop1: detected capacity change from 0 to 256
[  327.593400][ T7817] exfat: Deprecated parameter 'utf8'
[  327.614533][ T7817] exfat: Deprecated parameter 'utf8'
[  327.629911][ T7808] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[  327.720731][ T7817] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6d3f72e, utbl_chksum : 0xe619d30d)
[  327.896550][ T7819] netlink: 'syz.2.473': attribute type 10 has an invalid length.
[  328.365504][ T7820] FAULT_INJECTION: forcing a failure.
[  328.365504][ T7820] name failslab, interval 1, probability 0, space 0, times 1
[  328.406433][ T7808] netlink: 52 bytes leftover after parsing attributes in process `syz.3.472'.
[  328.450422][ T7820] CPU: 1 UID: 0 PID: 7820 Comm: syz.1.474 Not tainted 6.15.0-next-20250530-syzkaller #0 PREEMPT(full) 
[  328.450452][ T7820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  328.450466][ T7820] Call Trace:
[  328.450474][ T7820]  <TASK>
[  328.450484][ T7820]  dump_stack_lvl+0x189/0x250
[  328.450511][ T7820]  ? __pfx____ratelimit+0x10/0x10
[  328.450543][ T7820]  ? __pfx_dump_stack_lvl+0x10/0x10
[  328.450564][ T7820]  ? __pfx__printk+0x10/0x10
[  328.450591][ T7820]  ? __pfx___might_resched+0x10/0x10
[  328.450613][ T7820]  ? fs_reclaim_acquire+0x7d/0x100
[  328.450647][ T7820]  should_fail_ex+0x414/0x560
[  328.450680][ T7820]  should_failslab+0xa8/0x100
[  328.450708][ T7820]  __kmalloc_noprof+0xcb/0x4f0
[  328.450730][ T7820]  ? tomoyo_mount_permission+0x27a/0x970
[  328.450754][ T7820]  ? tomoyo_encode+0x28b/0x550
[  328.450785][ T7820]  tomoyo_encode+0x28b/0x550
[  328.450815][ T7820]  ? tomoyo_mount_permission+0x27a/0x970
[  328.450841][ T7820]  tomoyo_mount_permission+0x331/0x970
[  328.450874][ T7820]  ? __pfx_tomoyo_mount_permission+0x10/0x10
[  328.450966][ T7820]  security_sb_mount+0xec/0x350
[  328.450997][ T7820]  path_mount+0xbc/0xfe0
[  328.451021][ T7820]  ? user_path_at+0x44/0x60
[  328.451057][ T7820]  ? kmem_cache_free+0x18f/0x400
[  328.451091][ T7820]  __se_sys_mount+0x317/0x410
[  328.451125][ T7820]  ? __pfx___se_sys_mount+0x10/0x10
[  328.451159][ T7820]  ? do_syscall_64+0xbe/0x3b0
[  328.451176][ T7820]  ? __x64_sys_mount+0x20/0xc0
[  328.451206][ T7820]  do_syscall_64+0xfa/0x3b0
[  328.451223][ T7820]  ? lockdep_hardirqs_on+0x9c/0x150
[  328.451254][ T7820]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  328.451276][ T7820]  ? clear_bhb_loop+0x60/0xb0
[  328.451303][ T7820]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  328.451323][ T7820] RIP: 0033:0x7fac0fb8e969
[  328.451342][ T7820] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  328.451360][ T7820] RSP: 002b:00007fac10a3d038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  328.451383][ T7820] RAX: ffffffffffffffda RBX: 00007fac0fdb6080 RCX: 00007fac0fb8e969
[  328.451399][ T7820] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000000
[  328.451413][ T7820] RBP: 00007fac10a3d090 R08: 0000000000000000 R09: 0000000000000000
[  328.451426][ T7820] R10: 0000000002236824 R11: 0000000000000246 R12: 0000000000000001
[  328.451445][ T7820] R13: 0000000000000001 R14: 00007fac0fdb6080 R15: 00007fff1784ae68
[  328.451479][ T7820]  </TASK>
[  328.786895][   T30] audit: type=1800 audit(1748928849.907:19): pid=7808 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.472" name="file1" dev="loop3" ino=30 res=0 errno=0
[  329.030849][ T7829] loop0: detected capacity change from 0 to 2048
[  329.040471][ T7829] nilfs2: Unknown parameter 'devlink'
[  329.093639][   T30] audit: type=1326 audit(1748928850.237:20): auid=4294967295 uid=32768 gid=0 ses=4294967295 subj=unconfined pid=7800 comm="syz.4.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e3638e969 code=0x7ffc0000
[  329.153544][ T7826] loop2: detected capacity change from 0 to 32768
[  329.168380][ T7826] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.476 (7826)
[  329.186317][   T30] audit: type=1326 audit(1748928850.237:21): auid=4294967295 uid=32768 gid=0 ses=4294967295 subj=unconfined pid=7800 comm="syz.4.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3e3638e969 code=0x7ffc0000
[  329.210856][   T30] audit: type=1326 audit(1748928850.237:22): auid=4294967295 uid=32768 gid=0 ses=4294967295 subj=unconfined pid=7800 comm="syz.4.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e3638e969 code=0x7ffc0000
[  329.322886][   T30] audit: type=1326 audit(1748928850.237:23): auid=4294967295 uid=32768 gid=0 ses=4294967295 subj=unconfined pid=7800 comm="syz.4.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f3e3638e969 code=0x7ffc0000
[  329.362156][ T7826] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  329.374017][ T7826] BTRFS info (device loop2): using sha256 (sha256-x86_64) checksum algorithm
[  329.464289][   T30] audit: type=1326 audit(1748928850.277:24): auid=4294967295 uid=32768 gid=0 ses=4294967295 subj=unconfined pid=7800 comm="syz.4.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e3638e969 code=0x7ffc0000
[  329.605532][ T7844] 9pnet_fd: Insufficient options for proto=fd
[  329.614433][   T30] audit: type=1326 audit(1748928850.277:25): auid=4294967295 uid=32768 gid=0 ses=4294967295 subj=unconfined pid=7800 comm="syz.4.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f3e3638e969 code=0x7ffc0000
[  329.748363][   T30] audit: type=1326 audit(1748928850.277:26): auid=4294967295 uid=32768 gid=0 ses=4294967295 subj=unconfined pid=7800 comm="syz.4.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e3638e969 code=0x7ffc0000
[  329.784332][   T30] audit: type=1326 audit(1748928850.277:27): auid=4294967295 uid=32768 gid=0 ses=4294967295 subj=unconfined pid=7800 comm="syz.4.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3e3638e969 code=0x7ffc0000
[  329.864184][ T7826] BTRFS info (device loop2): rebuilding free space tree
[  330.311658][ T7826] BTRFS info (device loop2): disabling free space tree
[  330.319397][ T7826] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  330.329399][ T7826] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  330.518047][ T7856] loop0: detected capacity change from 0 to 128
[  330.563947][ T7826] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  330.843710][ T7861] loop1: detected capacity change from 0 to 2048
[  330.941725][ T7863] loop4: detected capacity change from 0 to 1024
[  330.949398][ T7863] EXT4-fs: Ignoring removed oldalloc option
[  330.989962][ T7863] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  331.001071][ T7863] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  331.012793][ T7863] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  331.023148][ T7863] EXT4-fs error (device loop4): ext4_get_journal_inode:5796: comm syz.4.484: inode #1: comm syz.4.484: iget: illegal inode #
[  331.040835][ T7863] EXT4-fs (loop4): no journal found
[  331.046133][ T7863] EXT4-fs (loop4): can't get journal size
[  331.094764][ T7863] EXT4-fs (loop4): failed to initialize system zone (-22)
[  331.102037][ T7863] EXT4-fs (loop4): mount failed
[  331.228645][ T7861] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  331.294446][ T7831] loop3: detected capacity change from 0 to 32768
[  331.362615][ T7831] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.478 (7831)
[  332.104564][ T7869] syz.2.476: attempt to access beyond end of device
[  332.104564][ T7869] nbd2: rw=0, sector=2, nr_sectors = 2 limit=0
[  332.117929][ T7869] MINIX-fs: unable to read superblock
[  332.396768][ T7867] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  332.612099][ T7831] BTRFS error (device loop3): open_ctree failed: -4
[  332.649429][ T7873] libceph: resolve '4' (ret=-3): failed
[  332.907094][ T7875] netlink: 'syz.4.486': attribute type 10 has an invalid length.
[  333.082764][ T5838] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.557659][ T7875] 8021q: adding VLAN 0 to HW filter on device team0
[  333.568508][ T7875] bond0: (slave team0): Enslaving as an active interface with an up link
[  333.999044][    C0] Unknown status report in ack skb
[  334.008037][ T7890] netlink: 24 bytes leftover after parsing attributes in process `syz.1.489'.
[  334.067056][ T7884] loop0: detected capacity change from 0 to 1764
[  334.334423][   T48] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  334.343725][ T7891] netlink: 24 bytes leftover after parsing attributes in process `syz.1.489'.
[  334.386531][ T7891] nbd: nbd64 already in use
[  334.411583][ T7893] netlink: 24 bytes leftover after parsing attributes in process `syz.1.489'.
[  334.456842][ T7893] nbd: device at index 64 is going down
[  334.494491][   T48] usb 5-1: device descriptor read/64, error -71
[  334.860674][   T48] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  335.077468][ T6995] udevd[6995]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  335.094371][   T48] usb 5-1: device descriptor read/64, error -71
[  335.236421][   T48] usb usb5-port1: attempt power cycle
[  335.754795][   T48] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  335.971124][   T48] usb 5-1: device descriptor read/8, error -71
[  336.081368][ T7913] loop3: detected capacity change from 0 to 1024
[  336.088931][ T7913] EXT4-fs: Ignoring removed oldalloc option
[  336.252009][ T7913] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  336.263835][ T7913] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  336.273768][ T7913] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  336.284320][ T7913] EXT4-fs error (device loop3): ext4_get_journal_inode:5796: comm syz.3.496: inode #1: comm syz.3.496: iget: illegal inode #
[  336.305824][ T7913] EXT4-fs (loop3): no journal found
[  336.311170][ T7913] EXT4-fs (loop3): can't get journal size
[  336.325881][ T7913] EXT4-fs (loop3): failed to initialize system zone (-22)
[  336.334380][ T7913] EXT4-fs (loop3): mount failed
[  336.369772][   T48] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  336.405917][   T48] usb 5-1: device descriptor read/8, error -71
[  336.525395][   T48] usb usb5-port1: unable to enumerate USB device
[  337.082101][ T7921] loop0: detected capacity change from 0 to 2048
[  337.189906][ T7923] netlink: 'syz.3.498': attribute type 10 has an invalid length.
[  337.710528][ T7923] 8021q: adding VLAN 0 to HW filter on device team0
[  337.720701][ T7923] bond0: (slave team0): Enslaving as an active interface with an up link
[  337.766298][ T7921] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  338.011182][ T7932] netlink: 'syz.1.502': attribute type 10 has an invalid length.
[  338.368998][ T7933] loop4: detected capacity change from 0 to 1024
[  338.376380][ T7933] EXT4-fs: Ignoring removed oldalloc option
[  338.415600][ T7933] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  338.426752][ T7933] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  338.437018][ T7933] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  338.447301][ T7933] EXT4-fs error (device loop4): ext4_get_journal_inode:5796: comm syz.4.501: inode #1: comm syz.4.501: iget: illegal inode #
[  338.460629][ T7933] EXT4-fs (loop4): no journal found
[  338.465945][ T7933] EXT4-fs (loop4): can't get journal size
[  338.480794][ T7932] 8021q: adding VLAN 0 to HW filter on device team0
[  338.484877][ T7933] EXT4-fs (loop4): failed to initialize system zone (-22)
[  338.490387][ T7932] bond0: (slave team0): Enslaving as an active interface with an up link
[  338.494733][ T7933] EXT4-fs (loop4): mount failed
[  339.631943][ T7945] loop4: detected capacity change from 0 to 1024
[  339.641509][ T7946] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  339.671609][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  339.707027][ T7936] loop2: detected capacity change from 0 to 64
[  340.382579][ T7953] FAULT_INJECTION: forcing a failure.
[  340.382579][ T7953] name failslab, interval 1, probability 0, space 0, times 0
[  340.467906][ T7953] CPU: 0 UID: 0 PID: 7953 Comm: syz.0.507 Not tainted 6.15.0-next-20250530-syzkaller #0 PREEMPT(full) 
[  340.467938][ T7953] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  340.467951][ T7953] Call Trace:
[  340.467961][ T7953]  <TASK>
[  340.467970][ T7953]  dump_stack_lvl+0x189/0x250
[  340.467997][ T7953]  ? __pfx____ratelimit+0x10/0x10
[  340.468030][ T7953]  ? __pfx_dump_stack_lvl+0x10/0x10
[  340.468051][ T7953]  ? __pfx__printk+0x10/0x10
[  340.468081][ T7953]  ? __pfx___might_resched+0x10/0x10
[  340.468100][ T7953]  ? fs_reclaim_acquire+0x7d/0x100
[  340.468133][ T7953]  should_fail_ex+0x414/0x560
[  340.468166][ T7953]  should_failslab+0xa8/0x100
[  340.468194][ T7953]  __kmalloc_cache_noprof+0x70/0x3d0
[  340.468217][ T7953]  ? proc_pid_stack+0x94/0x1f0
[  340.468247][ T7953]  proc_pid_stack+0x94/0x1f0
[  340.468284][ T7953]  proc_single_show+0xfb/0x1c0
[  340.468315][ T7953]  traverse+0x1e9/0x570
[  340.468351][ T7953]  seq_read_iter+0xcfe/0xe10
[  340.468374][ T7953]  ? _parse_integer_limit+0x1ae/0x1f0
[  340.468420][ T7953]  ? __asan_memset+0x22/0x50
[  340.468459][ T7953]  seq_read+0x2e2/0x3d0
[  340.468488][ T7953]  ? __pfx_seq_read+0x10/0x10
[  340.468522][ T7953]  ? rw_verify_area+0x258/0x650
[  340.468559][ T7953]  vfs_readv+0x5aa/0x850
[  340.468586][ T7953]  ? __pfx_seq_read+0x10/0x10
[  340.468606][ T7953]  ? __pfx_vfs_readv+0x10/0x10
[  340.468648][ T7953]  ? __fget_files+0x2a/0x420
[  340.468677][ T7953]  ? __fget_files+0x3a0/0x420
[  340.468700][ T7953]  ? __fget_files+0x2a/0x420
[  340.468733][ T7953]  __x64_sys_preadv+0x197/0x2a0
[  340.468759][ T7953]  ? __pfx___x64_sys_preadv+0x10/0x10
[  340.468779][ T7953]  ? rcu_is_watching+0x15/0xb0
[  340.468803][ T7953]  ? do_syscall_64+0xbe/0x3b0
[  340.468825][ T7953]  do_syscall_64+0xfa/0x3b0
[  340.468841][ T7953]  ? lockdep_hardirqs_on+0x9c/0x150
[  340.468868][ T7953]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.468887][ T7953]  ? clear_bhb_loop+0x60/0xb0
[  340.468915][ T7953]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  340.468934][ T7953] RIP: 0033:0x7efc2778e969
[  340.468952][ T7953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  340.468969][ T7953] RSP: 002b:00007efc2863d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  340.468990][ T7953] RAX: ffffffffffffffda RBX: 00007efc279b5fa0 RCX: 00007efc2778e969
[  340.469004][ T7953] RDX: 0000000000000001 RSI: 00002000000001c0 RDI: 0000000000000003
[  340.469016][ T7953] RBP: 00007efc2863d090 R08: 0000000000000009 R09: 0000000000000000
[  340.469028][ T7953] R10: 0000000000000401 R11: 0000000000000246 R12: 0000000000000001
[  340.469040][ T7953] R13: 0000000000000000 R14: 00007efc279b5fa0 R15: 00007ffe3ef96888
[  340.469071][ T7953]  </TASK>
[  341.133999][ T7961] loop2: detected capacity change from 0 to 1024
[  341.141231][ T7961] EXT4-fs: Ignoring removed oldalloc option
[  341.162774][ T7961] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  341.173736][ T7961] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  341.183390][ T7961] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  341.193598][ T7961] EXT4-fs error (device loop2): ext4_get_journal_inode:5796: comm syz.2.508: inode #1: comm syz.2.508: iget: illegal inode #
[  341.215306][ T7961] EXT4-fs (loop2): no journal found
[  341.216075][ T7963] loop3: detected capacity change from 0 to 512
[  341.220580][ T7961] EXT4-fs (loop2): can't get journal size
[  341.242097][ T7961] EXT4-fs (loop2): failed to initialize system zone (-22)
[  341.251336][ T7961] EXT4-fs (loop2): mount failed
[  341.262478][ T7963] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  341.286850][ T7962] loop1: detected capacity change from 0 to 2048
[  342.117625][ T7969] loop0: detected capacity change from 0 to 40427
[  342.142951][ T7969] F2FS-fs (loop0): build fault injection type: 0x7
[  342.151441][ T7963] EXT4-fs error (device loop3): ext4_iget_extra_inode:5035: inode #15: comm syz.3.511: corrupted in-inode xattr: e_value size too large
[  342.152376][ T7969] F2FS-fs (loop0): invalid crc value
[  342.239555][ T7969] F2FS-fs (loop0): Start checkpoint disabled!
[  342.294998][ T7969] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[  342.303500][ T7963] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.511: couldn't read orphan inode 15 (err -117)
[  342.346523][ T7963] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  343.814659][ T7982] netlink: 'syz.4.515': attribute type 10 has an invalid length.
[  344.385316][ T5835] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  344.530783][ T7984] loop2: detected capacity change from 0 to 128
[  344.581883][ T7984] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  344.669168][ T7984] ext4 filesystem being mounted at /99/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  344.732996][ T1339] kworker/u8:6: attempt to access beyond end of device
[  344.732996][ T1339] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  344.818146][ T1339] CPU: 1 UID: 0 PID: 1339 Comm: kworker/u8:6 Not tainted 6.15.0-next-20250530-syzkaller #0 PREEMPT(full) 
[  344.818177][ T1339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  344.818192][ T1339] Workqueue: writeback wb_workfn (flush-7:0)
[  344.818230][ T1339] Call Trace:
[  344.818238][ T1339]  <TASK>
[  344.818247][ T1339]  dump_stack_lvl+0x189/0x250
[  344.818275][ T1339]  ? __pfx_dump_stack_lvl+0x10/0x10
[  344.818291][ T1339]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  344.818321][ T1339]  ? __pfx_queue_work_on+0x10/0x10
[  344.818346][ T1339]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  344.818374][ T1339]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  344.818405][ T1339]  ? f2fs_hw_is_readonly+0x39b/0x470
[  344.818440][ T1339]  f2fs_handle_critical_error+0x37c/0x540
[  344.818479][ T1339]  f2fs_write_end_io+0x495/0x810
[  344.818508][ T1339]  ? blkg_put+0x22/0x240
[  344.818549][ T1339]  __submit_merged_bio+0x27a/0x6a0
[  344.818586][ T1339]  __submit_merged_write_cond+0x255/0x530
[  344.818625][ T1339]  f2fs_write_data_pages+0x261d/0x3000
[  344.818702][ T1339]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  344.818730][ T1339]  ? __local_bh_enable_ip+0x12d/0x1c0
[  344.818781][ T1339]  ? rcu_is_watching+0x15/0xb0
[  344.818878][ T1339]  ? rcu_read_lock_sched_held+0x89/0x100
[  344.818900][ T1339]  ? __pfx_rcu_read_lock_sched_held+0x10/0x10
[  344.818960][ T1339]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  344.818991][ T1339]  do_writepages+0x32e/0x550
[  344.819018][ T1339]  ? reacquire_held_locks+0x127/0x1d0
[  344.819037][ T1339]  ? writeback_sb_inodes+0x372/0x1000
[  344.819067][ T1339]  __writeback_single_inode+0x145/0xff0
[  344.819096][ T1339]  ? do_raw_spin_unlock+0x122/0x240
[  344.819125][ T1339]  writeback_sb_inodes+0x6b5/0x1000
[  344.819179][ T1339]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  344.819254][ T1339]  ? rcu_is_watching+0x15/0xb0
[  344.819286][ T1339]  wb_writeback+0x43b/0xaf0
[  344.819316][ T1339]  ? queue_io+0x3b1/0x590
[  344.819341][ T1339]  ? __pfx_wb_writeback+0x10/0x10
[  344.819373][ T1339]  ? _raw_spin_unlock_irq+0x23/0x50
[  344.819407][ T1339]  wb_workfn+0x409/0xef0
[  344.819455][ T1339]  ? __pfx_wb_workfn+0x10/0x10
[  344.819490][ T1339]  ? __lock_acquire+0xab9/0xd20
[  344.819532][ T1339]  ? process_scheduled_works+0x9ef/0x17b0
[  344.819571][ T1339]  ? _raw_spin_unlock_irq+0x23/0x50
[  344.819597][ T1339]  ? process_scheduled_works+0x9ef/0x17b0
[  344.819626][ T1339]  ? process_scheduled_works+0x9ef/0x17b0
[  344.819660][ T1339]  process_scheduled_works+0xae1/0x17b0
[  344.819730][ T1339]  ? __pfx_process_scheduled_works+0x10/0x10
[  344.819785][ T1339]  worker_thread+0x8a0/0xda0
[  344.819822][ T1339]  ? __kthread_parkme+0x7b/0x200
[  344.819856][ T1339]  kthread+0x70e/0x8a0
[  344.819884][ T1339]  ? __pfx_worker_thread+0x10/0x10
[  344.819903][ T1339]  ? __pfx_kthread+0x10/0x10
[  344.819930][ T1339]  ? _raw_spin_unlock_irq+0x23/0x50
[  344.819955][ T1339]  ? lockdep_hardirqs_on+0x9c/0x150
[  344.819982][ T1339]  ? __pfx_kthread+0x10/0x10
[  344.820007][ T1339]  ret_from_fork+0x3fc/0x770
[  344.820040][ T1339]  ? __pfx_ret_from_fork+0x10/0x10
[  344.820076][ T1339]  ? __switch_to_asm+0x39/0x70
[  344.820105][ T1339]  ? __switch_to_asm+0x33/0x70
[  344.820125][ T1339]  ? __pfx_kthread+0x10/0x10
[  344.820150][ T1339]  ret_from_fork_asm+0x1a/0x30
[  344.820192][ T1339]  </TASK>
[  344.820201][ T1339] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  344.839798][ T7997] loop3: detected capacity change from 0 to 64
[  345.034490][ T7984] EXT4-fs error (device loop2): htree_dirblock_to_tree:1080: inode #2: block 4: comm syz.2.516: bad entry in directory: inode out of bounds - offset=1012, inode=128, rec_len=12, size=1024 fake=1
[  345.400090][ T8002] loop4: detected capacity change from 0 to 32768
[  345.473338][    T9] IPVS: starting estimator thread 0...
[  345.604680][ T8005] IPVS: using max 28 ests per chain, 67200 per kthread
[  345.620585][ T8002] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  345.772034][ T5841] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  345.984620][ T8017] loop1: detected capacity change from 0 to 1024
[  345.991975][ T8017] EXT4-fs: Ignoring removed oldalloc option
[  345.996872][ T8002] XFS (loop4): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  346.010050][ T8017] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  346.021112][ T8017] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  346.030917][ T8017] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  346.040714][ T8002] XFS (loop4): Starting recovery (logdev: internal)
[  346.041292][ T8017] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: comm syz.1.523: inode #1: comm syz.1.523: iget: illegal inode #
[  346.063683][ T8017] EXT4-fs (loop1): no journal found
[  346.069088][ T8017] EXT4-fs (loop1): can't get journal size
[  346.079687][ T8017] EXT4-fs (loop1): failed to initialize system zone (-22)
[  346.087983][ T8017] EXT4-fs (loop1): mount failed
[  346.129136][ T8002] XFS (loop4): Ending recovery (logdev: internal)
[  346.292872][ T5845] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  346.853279][ T5886] IPVS: starting estimator thread 0...
[  346.864441][ T8031] FAULT_INJECTION: forcing a failure.
[  346.864441][ T8031] name failslab, interval 1, probability 0, space 0, times 0
[  346.881779][ T8031] CPU: 0 UID: 0 PID: 8031 Comm: syz.3.528 Not tainted 6.15.0-next-20250530-syzkaller #0 PREEMPT(full) 
[  346.881808][ T8031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  346.881820][ T8031] Call Trace:
[  346.881828][ T8031]  <TASK>
[  346.881836][ T8031]  dump_stack_lvl+0x189/0x250
[  346.881861][ T8031]  ? __pfx____ratelimit+0x10/0x10
[  346.881889][ T8031]  ? __pfx_dump_stack_lvl+0x10/0x10
[  346.881908][ T8031]  ? __pfx__printk+0x10/0x10
[  346.881936][ T8031]  ? __pfx___might_resched+0x10/0x10
[  346.881960][ T8031]  should_fail_ex+0x414/0x560
[  346.881989][ T8031]  should_failslab+0xa8/0x100
[  346.882015][ T8031]  __kmalloc_cache_noprof+0x70/0x3d0
[  346.882036][ T8031]  ? ip_vs_sh_init_svc+0x4f/0xb0
[  346.882064][ T8031]  ip_vs_sh_init_svc+0x4f/0xb0
[  346.882092][ T8031]  ip_vs_bind_scheduler+0x4c/0xc0
[  346.882126][ T8031]  ip_vs_edit_service+0x225/0x670
[  346.882158][ T8031]  do_ip_vs_set_ctl+0x94b/0xa60
[  346.882193][ T8031]  ? __pfx_do_ip_vs_set_ctl+0x10/0x10
[  346.882239][ T8031]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  346.882278][ T8031]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  346.882307][ T8031]  ? smc_setsockopt+0x181/0xab0
[  346.882338][ T8031]  ? __pfx___mutex_lock+0x10/0x10
[  346.882368][ T8031]  ? __pfx___schedule+0x10/0x10
[  346.882404][ T8031]  nf_setsockopt+0x26c/0x290
[  346.882432][ T8031]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  346.882454][ T8031]  smc_setsockopt+0x232/0xab0
[  346.882489][ T8031]  ? __pfx_smc_setsockopt+0x10/0x10
[  346.882515][ T8031]  ? aa_sock_opt_perm+0xff/0x1b0
[  346.882543][ T8031]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[  346.882570][ T8031]  ? __pfx_smc_setsockopt+0x10/0x10
[  346.882600][ T8031]  do_sock_setsockopt+0x257/0x3e0
[  346.882627][ T8031]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  346.882655][ T8031]  ? __x64_sys_setsockopt+0x16d/0x220
[  346.882680][ T8031]  ? do_sock_setsockopt+0xc/0x3e0
[  346.882708][ T8031]  __x64_sys_setsockopt+0x18b/0x220
[  346.882738][ T8031]  do_syscall_64+0xfa/0x3b0
[  346.882757][ T8031]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.882776][ T8031]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  346.882795][ T8031]  ? clear_bhb_loop+0x60/0xb0
[  346.882819][ T8031]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  346.882837][ T8031] RIP: 0033:0x7f5e3918e969
[  346.882856][ T8031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  346.882874][ T8031] RSP: 002b:00007f5e39f12038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  346.882894][ T8031] RAX: ffffffffffffffda RBX: 00007f5e393b6080 RCX: 00007f5e3918e969
[  346.882909][ T8031] RDX: 0000000000000483 RSI: 0000000000000000 RDI: 0000000000000004
[  346.882920][ T8031] RBP: 00007f5e39f12090 R08: 000000000000002c R09: 0000000000000000
[  346.882933][ T8031] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000001
[  346.882945][ T8031] R13: 0000000000000000 R14: 00007f5e393b6080 R15: 00007ffe5eb08508
[  346.882978][ T8031]  </TASK>
[  347.171871][ T8031] IPVS: ip_vs_bind_scheduler(): init error
[  347.319232][ T8032] IPVS: using max 29 ests per chain, 69600 per kthread
[  348.039995][ T8036] loop0: detected capacity change from 0 to 32768
[  348.047317][ T8036] XFS: ikeep mount option is deprecated.
[  348.150158][ T8033] loop1: detected capacity change from 0 to 4096
[  348.160231][ T8033] ntfs3: Unknown parameter 'force���tK�-'
[  348.311911][ T8036] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  349.585703][ T8036] XFS (loop0): Ending clean mount
[  349.608552][ T8057] loop4: detected capacity change from 0 to 256
[  349.615779][ T8036] XFS (loop0): Quotacheck needed: Please wait.
[  349.656616][ T8036] XFS (loop0): Quotacheck: Done.
[  349.680066][ T8057] vfat: Unknown parameter 's	3:+Do?zd;�*dhortname'
[  349.773929][ T8045] loop2: detected capacity change from 0 to 4096
[  349.807072][ T8045] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512).
[  350.012143][ T8045] ntfs3(loop2): Failed to load $Secure (-22).
[  350.018314][ T8045] ntfs3(loop2): Failed to initialize $Secure (-22).
[  351.026607][ T5830] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  351.222727][ T8066] loop3: detected capacity change from 0 to 1024
[  351.305830][ T8066] EXT4-fs: Ignoring removed nomblk_io_submit option
[  352.176044][ T8066] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  352.269685][ T8070] loop1: detected capacity change from 0 to 1024
[  352.277150][ T8070] EXT4-fs: Ignoring removed oldalloc option
[  352.290237][ T8066] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  352.300490][ T8066] System zones: 0-1, 3-36
[  352.305990][ T8070] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  352.317759][ T8070] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  352.327554][ T8070] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  352.337952][ T8070] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: comm syz.1.539: inode #1: comm syz.1.539: iget: illegal inode #
[  352.351507][ T8070] EXT4-fs (loop1): no journal found
[  352.358267][ T8070] EXT4-fs (loop1): can't get journal size
[  352.370858][ T8070] EXT4-fs (loop1): failed to initialize system zone (-22)
[  352.378581][ T8070] EXT4-fs (loop1): mount failed
[  352.433308][ T8066] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  352.661171][ T5835] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  352.867650][ T8098] syzkaller1: entered promiscuous mode
[  352.884497][ T8098] syzkaller1: entered allmulticast mode
[  352.944301][ T5889] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  353.035630][ T8101] loop1: detected capacity change from 0 to 256
[  353.084328][ T5889] usb 5-1: device descriptor read/64, error -71
[  353.153689][ T8101] FAT-fs (loop1): Directory bread(block 64) failed
[  353.165736][ T8103] loop3: detected capacity change from 0 to 1024
[  353.178894][ T8101] FAT-fs (loop1): Directory bread(block 65) failed
[  353.196861][ T8101] FAT-fs (loop1): Directory bread(block 66) failed
[  353.203442][ T8101] FAT-fs (loop1): Directory bread(block 67) failed
[  353.229042][ T8101] FAT-fs (loop1): Directory bread(block 68) failed
[  353.249833][ T8101] FAT-fs (loop1): Directory bread(block 69) failed
[  353.259529][ T8101] FAT-fs (loop1): Directory bread(block 70) failed
[  353.290339][ T8101] FAT-fs (loop1): Directory bread(block 71) failed
[  353.314424][ T8101] FAT-fs (loop1): Directory bread(block 72) failed
[  353.321016][ T8101] FAT-fs (loop1): Directory bread(block 73) failed
[  353.354495][ T5889] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  353.535338][ T8090] loop0: detected capacity change from 0 to 32768
[  353.587050][ T8090] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.537 (8090)
[  353.636628][   T48] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  353.696781][ T8090] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  353.713191][ T5889] usb 5-1: device descriptor read/64, error -71
[  353.795482][ T8090] BTRFS info (device loop0): using sha256 (sha256-x86_64) checksum algorithm
[  353.829032][ T8090] BTRFS info (device loop0): using free-space-tree
[  353.856821][ T5889] usb usb5-port1: attempt power cycle
[  354.285008][ T5889] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  354.344836][ T8090] BTRFS info (device loop0): rebuilding free space tree
[  354.375950][ T5889] usb 5-1: device descriptor read/8, error -71
[  354.404968][   T48] usb 4-1: Using ep0 maxpacket: 16
[  354.428383][   T48] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  354.448662][   T48] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  354.474279][   T48] usb 4-1: Product: syz
[  354.478529][   T48] usb 4-1: Manufacturer: syz
[  354.483151][   T48] usb 4-1: SerialNumber: syz
[  354.498541][   T48] r8152-cfgselector 4-1: Unknown version 0x0000
[  354.505807][ T5886] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  354.513375][   T48] r8152-cfgselector 4-1: config 0 descriptor??
[  354.624533][ T5889] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  354.663209][ T5889] usb 5-1: device descriptor read/8, error -71
[  354.674574][ T5886] usb 2-1: Using ep0 maxpacket: 8
[  354.681739][ T5886] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[  354.704275][ T5886] usb 2-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  354.724356][ T5886] usb 2-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  354.754388][ T5886] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  354.768762][ T8126] loop3: detected capacity change from 0 to 512
[  354.774309][ T5886] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  354.790364][ T8126] EXT4-fs: Ignoring removed nobh option
[  354.804351][ T5889] usb usb5-port1: unable to enumerate USB device
[  354.813395][ T8126] ext4: Unknown parameter 'fowner>00000000000000000000'
[  354.815887][ T5886] usbtmc 2-1:16.0: bulk endpoints not found
[  354.940395][ T5889] r8152-cfgselector 4-1: USB disconnect, device number 2
[  355.067250][  T976] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  355.097438][  T976] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  355.119902][ T8128] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  355.189172][ T8128] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  355.225482][ T8101] hid-generic 0000:0000:0000.0001: pid 8101 passed too large report
[  355.323209][ T8090] IPVS: Unknown mcast interface: dvmrp1
[  355.493626][ T5830] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  355.643125][ T8132] kvm: emulating exchange as write
[  358.054587][ T8155] loop0: detected capacity change from 0 to 1024
[  358.062003][ T8155] EXT4-fs: Ignoring removed oldalloc option
[  358.093408][ T8155] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  358.104559][ T8155] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  358.114275][ T8155] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  358.124506][ T8155] EXT4-fs error (device loop0): ext4_get_journal_inode:5796: comm syz.0.555: inode #1: comm syz.0.555: iget: illegal inode #
[  358.141601][ T8155] EXT4-fs (loop0): no journal found
[  358.146886][ T8155] EXT4-fs (loop0): can't get journal size
[  358.192979][ T8155] EXT4-fs (loop0): failed to initialize system zone (-22)
[  358.200452][ T8155] EXT4-fs (loop0): mount failed
[  358.288806][  T976] usb 2-1: USB disconnect, device number 3
[  358.469652][ T8158] libceph: resolve '4' (ret=-3): failed
[  358.921051][ T8171] netlink: 60 bytes leftover after parsing attributes in process `syz.3.560'.
[  358.973997][ T8170] loop4: detected capacity change from 0 to 1024
[  358.982165][ T8167] netlink: 60 bytes leftover after parsing attributes in process `syz.3.560'.
[  359.027898][ T8173] netlink: 60 bytes leftover after parsing attributes in process `syz.3.560'.
[  359.064981][ T8170] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  359.184689][ T8170] ext4 filesystem being mounted at /112/file1/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  359.254291][   T30] audit: type=1800 audit(1748928880.407:28): pid=8170 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.561" name="file1" dev="loop4" ino=15 res=0 errno=0
[  359.340161][ T8177] loop2: detected capacity change from 0 to 1024
[  359.349573][ T8179] loop0: detected capacity change from 0 to 16
[  359.402637][ T5845] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  359.501148][ T8183] loop3: detected capacity change from 0 to 2048
[  359.577877][ T8183] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found!
[  359.631429][ T8183] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  359.933949][ T8183] UDF-fs: error (device loop3): udf_verify_fi: directory (ino 1376) has entry at pos 0 with unaligned length of impUse field
[  363.159150][ T8204] loop1: detected capacity change from 0 to 512
[  363.201833][ T8204] ext4: Unknown parameter 'subj_role'
[  363.530698][ T8210] loop0: detected capacity change from 0 to 1024
[  363.538193][ T8210] EXT4-fs: Ignoring removed oldalloc option
[  363.549170][ T8210] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  363.561645][ T8210] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  363.573265][ T8210] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  363.583621][ T8210] EXT4-fs error (device loop0): ext4_get_journal_inode:5796: comm syz.0.569: inode #1: comm syz.0.569: iget: illegal inode #
[  363.610193][ T8210] EXT4-fs (loop0): no journal found
[  363.616042][ T8210] EXT4-fs (loop0): can't get journal size
[  363.675050][ T8210] EXT4-fs (loop0): failed to initialize system zone (-22)
[  363.682258][ T8210] EXT4-fs (loop0): mount failed
[  365.580413][ T8228] netlink: 60 bytes leftover after parsing attributes in process `syz.1.574'.
[  365.808507][ T8227] netlink: 60 bytes leftover after parsing attributes in process `syz.1.574'.
[  365.851030][ T8231] FAULT_INJECTION: forcing a failure.
[  365.851030][ T8231] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  365.853346][ T8232] netlink: 60 bytes leftover after parsing attributes in process `syz.1.574'.
[  365.864837][ T8231] CPU: 0 UID: 0 PID: 8231 Comm: syz.0.575 Not tainted 6.15.0-next-20250530-syzkaller #0 PREEMPT(full) 
[  365.864870][ T8231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  365.864888][ T8231] Call Trace:
[  365.864896][ T8231]  <TASK>
[  365.864906][ T8231]  dump_stack_lvl+0x189/0x250
[  365.864931][ T8231]  ? __pfx____ratelimit+0x10/0x10
[  365.864962][ T8231]  ? __pfx_dump_stack_lvl+0x10/0x10
[  365.864983][ T8231]  ? __pfx__printk+0x10/0x10
[  365.865006][ T8231]  ? __might_fault+0xb0/0x130
[  365.865039][ T8231]  should_fail_ex+0x414/0x560
[  365.865073][ T8231]  _copy_from_user+0x2d/0xb0
[  365.865098][ T8231]  snd_pcm_oss_write+0x84f/0x11a0
[  365.865132][ T8231]  ? get_pid_task+0x20/0x1f0
[  365.865180][ T8231]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  365.865216][ T8231]  ? bpf_lsm_file_permission+0x9/0x20
[  365.865250][ T8231]  ? security_file_permission+0x75/0x290
[  365.865287][ T8231]  ? rw_verify_area+0x258/0x650
[  365.865309][ T8231]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  365.865344][ T8231]  vfs_write+0x27b/0xa90
[  365.865378][ T8231]  ? __pfx_vfs_write+0x10/0x10
[  365.865404][ T8231]  ? __fget_files+0x2a/0x420
[  365.865435][ T8231]  ? __fget_files+0x2a/0x420
[  365.865461][ T8231]  ? __fget_files+0x3a0/0x420
[  365.865488][ T8231]  ? __fget_files+0x2a/0x420
[  365.865525][ T8231]  ksys_write+0x145/0x250
[  365.865552][ T8231]  ? __pfx_ksys_write+0x10/0x10
[  365.865573][ T8231]  ? rcu_is_watching+0x15/0xb0
[  365.865609][ T8231]  ? do_syscall_64+0xbe/0x3b0
[  365.865666][ T8231]  do_syscall_64+0xfa/0x3b0
[  365.865685][ T8231]  ? lockdep_hardirqs_on+0x9c/0x150
[  365.865718][ T8231]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.865742][ T8231]  ? clear_bhb_loop+0x60/0xb0
[  365.865771][ T8231]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  365.865799][ T8231] RIP: 0033:0x7efc2778e969
[  365.865821][ T8231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  365.865841][ T8231] RSP: 002b:00007efc2863d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  365.865872][ T8231] RAX: ffffffffffffffda RBX: 00007efc279b5fa0 RCX: 00007efc2778e969
[  365.865892][ T8231] RDX: 000000000000fc36 RSI: 0000200000000500 RDI: 0000000000000004
[  365.865907][ T8231] RBP: 00007efc2863d090 R08: 0000000000000000 R09: 0000000000000000
[  365.865921][ T8231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  365.865934][ T8231] R13: 0000000000000000 R14: 00007efc279b5fa0 R15: 00007ffe3ef96888
[  365.865971][ T8231]  </TASK>
[  368.374737][ T8244] loop4: detected capacity change from 0 to 32768
[  368.469729][ T8244] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  368.785149][ T8244] XFS (loop4): Ending clean mount
[  368.801909][ T8244] XFS (loop4): Quotacheck needed: Please wait.
[  369.146728][ T8261] loop3: detected capacity change from 0 to 1024
[  369.154152][ T8261] EXT4-fs: Ignoring removed oldalloc option
[  369.171827][ T8261] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  369.182837][ T8261] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  369.192562][ T8261] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  369.203938][ T8261] EXT4-fs error (device loop3): ext4_get_journal_inode:5796: comm syz.3.582: inode #1: comm syz.3.582: iget: illegal inode #
[  369.217759][ T8261] EXT4-fs (loop3): no journal found
[  369.223013][ T8261] EXT4-fs (loop3): can't get journal size
[  369.257589][ T8244] XFS (loop4): Quotacheck: Done.
[  369.265957][ T8261] EXT4-fs (loop3): failed to initialize system zone (-22)
[  369.273229][ T8261] EXT4-fs (loop3): mount failed
[  370.405707][ T8270] loop1: detected capacity change from 0 to 64
[  370.540653][ T8270] hfs: unable to locate alternate MDB
[  370.540707][ T8270] hfs: continuing without an alternate MDB
[  370.646859][   T30] audit: type=1800 audit(1748928891.806:29): pid=8270 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.584" name="file1" dev="loop1" ino=18 res=0 errno=0
[  370.667566][    C1] vkms_vblank_simulate: vblank timer overrun
[  370.691378][ T5845] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  370.702477][ T8267] loop2: detected capacity change from 0 to 1024
[  370.933089][ T8273] loop0: detected capacity change from 0 to 4096
[  370.969711][ T8273] ntfs3: Unknown parameter 'noacl'
[  371.152385][ T8278] netlink: 60 bytes leftover after parsing attributes in process `syz.1.588'.
[  371.164829][ T8277] netlink: 60 bytes leftover after parsing attributes in process `syz.1.588'.
[  371.189403][ T8278] netlink: 60 bytes leftover after parsing attributes in process `syz.1.588'.
[  371.238221][ T8273] loop0: detected capacity change from 0 to 512
[  371.276199][ T8273] EXT4-fs: Ignoring removed mblk_io_submit option
[  371.282814][ T8273] EXT4-fs: Ignoring removed mblk_io_submit option
[  371.341410][ T8273] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  371.418943][ T8273] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c11c, mo2=0002]
[  371.459476][ T8273] System zones: 1-12
[  371.485310][ T8273] EXT4-fs error (device loop0): ext4_iget_extra_inode:5035: inode #15: comm syz.0.586: corrupted in-inode xattr: e_value size too large
[  371.558541][ T8273] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.586: couldn't read orphan inode 15 (err -117)
[  371.632618][ T8273] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  371.682302][ T8281] loop4: detected capacity change from 0 to 32768
[  371.757082][ T8281] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  371.840827][ T8281] XFS (loop4): Ending clean mount
[  371.849724][ T8281] XFS (loop4): Quotacheck needed: Please wait.
[  372.200339][ T8297] EXT4-fs warning (device loop0): dx_probe:801: inode #2: comm syz.0.586: Unrecognised inode hash code 4
[  372.570384][ T8297] EXT4-fs warning (device loop0): dx_probe:934: inode #2: comm syz.0.586: Corrupt directory, running e2fsck is recommended
[  372.871087][ T8281] XFS (loop4): Quotacheck: Done.
[  373.281906][ T8275] loop3: detected capacity change from 0 to 32768
[  373.355015][ T5961] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  373.513463][ T8275] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.589 (8275)
[  374.190216][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.230542][ T5961] usb 1-1: device not accepting address 7, error -71
[  374.254722][ T5845] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  374.591667][ T8311] loop1: detected capacity change from 0 to 1024
[  374.599172][ T8311] EXT4-fs: Ignoring removed oldalloc option
[  375.489482][ T8311] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  375.500483][ T8311] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  375.510297][ T8311] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  375.520595][ T8311] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: comm syz.1.595: inode #1: comm syz.1.595: iget: illegal inode #
[  375.549828][ T8311] EXT4-fs (loop1): no journal found
[  375.555290][ T8311] EXT4-fs (loop1): can't get journal size
[  375.693751][ T8311] EXT4-fs (loop1): failed to initialize system zone (-22)
[  375.701193][ T8311] EXT4-fs (loop1): mount failed
[  375.918771][ T8316] loop2: detected capacity change from 0 to 2048
[  376.426828][ T8316] hpfs: filesystem error: improperly stopped; already mounted read-only
[  376.478124][ T8316] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  376.518721][ T8316] hpfs: filesystem error: sector(s) 'dir_band_bitmap' badly placed at 7b318cc4
[  376.875196][ T8331] netlink: 60 bytes leftover after parsing attributes in process `syz.3.600'.
[  376.907968][ T8330] netlink: 60 bytes leftover after parsing attributes in process `syz.3.600'.
[  376.937665][ T8331] netlink: 60 bytes leftover after parsing attributes in process `syz.3.600'.
[  376.974488][ T5889] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  377.146457][ T5889] usb 3-1: unable to get BOS descriptor or descriptor too short
[  377.192407][ T5889] usb 3-1: config 0 interface 0 has no altsetting 0
[  377.261701][ T5889] usb 3-1: New USB device found, idVendor=0e41, idProduct=4156, bcdDevice=15.eb
[  377.340185][ T5889] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  377.422755][ T5889] usb 3-1: Product: syz
[  377.434377][ T5889] usb 3-1: Manufacturer: syz
[  377.443199][ T5889] usb 3-1: SerialNumber: syz
[  377.489573][ T5889] usb 3-1: config 0 descriptor??
[  377.703463][ T8320] loop0: detected capacity change from 0 to 32768
[  377.789588][ T8341] loop4: detected capacity change from 0 to 1024
[  377.897729][ T8341] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  377.902286][ T8326] loop1: detected capacity change from 0 to 32768
[  377.948342][ T5889] snd_usb_podhd 3-1:0.0: Line 6 POD HDDESKTOP found
[  378.004644][ T8341] ext4 filesystem being mounted at /121/file1/bus/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  378.023383][   T30] audit: type=1800 audit(1748928899.176:30): pid=8341 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.604" name="file1" dev="loop4" ino=15 res=0 errno=0
[  378.141161][ T5889] snd_usb_podhd 3-1:0.0: endpoint not available, using fallback values
[  378.176581][ T5845] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.189980][ T5889] snd_usb_podhd 3-1:0.0: invalid control EP
[  378.196076][ T8348] syzkaller0: entered allmulticast mode
[  378.219386][ T5889] snd_usb_podhd 3-1:0.0: cannot start listening: -22
[  378.249908][ T5889] snd_usb_podhd 3-1:0.0: Line 6 POD HDDESKTOP now disconnected
[  378.258255][ T8347] syzkaller0 (unregistering): left allmulticast mode
[  378.267606][ T5889] snd_usb_podhd 3-1:0.0: probe with driver snd_usb_podhd failed with error -22
[  378.350860][ T7769] usb 3-1: USB disconnect, device number 6
[  378.439156][ T1304] ieee802154 phy0 wpan0: encryption failed: -22
[  378.448627][ T1304] ieee802154 phy1 wpan1: encryption failed: -22
[  378.470631][ T8323] netlink: 3 bytes leftover after parsing attributes in process `syz.1.599'.
[  378.964805][ T8360] 9pnet_fd: Insufficient options for proto=fd
[  379.074411][ T5889] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  379.151955][ T8362] loop2: detected capacity change from 0 to 4096
[  379.215928][ T8363] loop0: detected capacity change from 0 to 1024
[  379.244259][ T5889] usb 4-1: Using ep0 maxpacket: 32
[  379.257676][ T5889] usb 4-1: config 0 has an invalid interface number: 244 but max is 0
[  379.269103][ T5889] usb 4-1: config 0 has no interface number 0
[  379.281410][ T5889] usb 4-1: config 0 interface 244 altsetting 2 has an endpoint descriptor with address 0xB1, changing to 0x81
[  379.331237][ T5889] usb 4-1: config 0 interface 244 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  379.391785][ T5889] usb 4-1: config 0 interface 244 has no altsetting 0
[  379.434306][ T5889] usb 4-1: New USB device found, idVendor=0e41, idProduct=4750, bcdDevice=26.9c
[  379.456558][ T8362] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[  379.486656][ T8362] ntfs3(loop2): Failed to load $Extend (-22).
[  379.492843][ T8362] ntfs3(loop2): Failed to initialize $Extend.
[  379.494536][ T5889] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  379.743792][ T8367] loop1: detected capacity change from 0 to 1024
[  379.756880][ T8367] EXT4-fs: Ignoring removed oldalloc option
[  379.836671][ T8367] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  379.847753][ T8367] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  379.858820][ T8367] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  379.870364][ T8367] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: comm syz.1.609: inode #1: comm syz.1.609: iget: illegal inode #
[  379.888055][ T8367] EXT4-fs (loop1): no journal found
[  379.893362][ T8367] EXT4-fs (loop1): can't get journal size
[  380.047413][ T8367] EXT4-fs (loop1): failed to initialize system zone (-22)
[  380.056287][ T8367] EXT4-fs (loop1): mount failed
[  380.129610][ T5889] usb 4-1: Product: syz
[  380.134017][ T5889] usb 4-1: Manufacturer: syz
[  380.138734][ T5889] usb 4-1: SerialNumber: syz
[  380.151568][ T5889] usb 4-1: config 0 descriptor??
[  380.177643][ T5889] snd_usb_toneport 4-1:0.244: Line 6 GuitarPort found
[  380.265609][ T8362] ntfs3(loop2): ino=1b, "file0" ntfs_readdir
[  380.388184][ T5889] snd_usb_toneport 4-1:0.244: cannot get proper max packet size
[  380.424038][ T5889] snd_usb_toneport 4-1:0.244: Line 6 GuitarPort now disconnected
[  380.442299][ T5889] snd_usb_toneport 4-1:0.244: probe with driver snd_usb_toneport failed with error -22
[  380.491389][ T8374] netlink: 60 bytes leftover after parsing attributes in process `syz.4.612'.
[  380.543205][ T8373] netlink: 60 bytes leftover after parsing attributes in process `syz.4.612'.
[  380.601063][ T8375] netlink: 60 bytes leftover after parsing attributes in process `syz.4.612'.
[  380.718396][ T8379] loop2: detected capacity change from 0 to 64
[  380.725820][ T8379] hfs: Unknown parameter 'par000007'
[  380.769479][ T8380] FAULT_INJECTION: forcing a failure.
[  380.769479][ T8380] name failslab, interval 1, probability 0, space 0, times 0
[  380.782846][ T8379] loop2: detected capacity change from 0 to 8
[  380.810726][ T8380] CPU: 0 UID: 0 PID: 8380 Comm: syz.1.614 Not tainted 6.15.0-next-20250530-syzkaller #0 PREEMPT(full) 
[  380.810758][ T8380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  380.810772][ T8380] Call Trace:
[  380.810781][ T8380]  <TASK>
[  380.810791][ T8380]  dump_stack_lvl+0x189/0x250
[  380.810817][ T8380]  ? __pfx____ratelimit+0x10/0x10
[  380.810850][ T8380]  ? __pfx_dump_stack_lvl+0x10/0x10
[  380.810870][ T8380]  ? __pfx__printk+0x10/0x10
[  380.810897][ T8380]  ? __pfx___might_resched+0x10/0x10
[  380.810919][ T8380]  ? fs_reclaim_acquire+0x7d/0x100
[  380.810952][ T8380]  should_fail_ex+0x414/0x560
[  380.810985][ T8380]  should_failslab+0xa8/0x100
[  380.811013][ T8380]  __kmalloc_noprof+0xcb/0x4f0
[  380.811036][ T8380]  ? tomoyo_encode+0x28b/0x550
[  380.811067][ T8380]  tomoyo_encode+0x28b/0x550
[  380.811101][ T8380]  tomoyo_realpath_from_path+0x58d/0x5d0
[  380.811130][ T8380]  ? tomoyo_domain+0xd9/0x130
[  380.811164][ T8380]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  380.811186][ T8380]  tomoyo_path_number_perm+0x1e8/0x5a0
[  380.811211][ T8380]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  380.811253][ T8380]  ? __lock_acquire+0xab9/0xd20
[  380.811308][ T8380]  ? __fget_files+0x2a/0x420
[  380.811337][ T8380]  ? __fget_files+0x2a/0x420
[  380.811362][ T8380]  ? __fget_files+0x3a0/0x420
[  380.811387][ T8380]  ? __fget_files+0x2a/0x420
[  380.811418][ T8380]  security_file_ioctl+0xcb/0x2d0
[  380.811453][ T8380]  __se_sys_ioctl+0x47/0x170
[  380.811478][ T8380]  do_syscall_64+0xfa/0x3b0
[  380.811496][ T8380]  ? lockdep_hardirqs_on+0x9c/0x150
[  380.811526][ T8380]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  380.811547][ T8380]  ? clear_bhb_loop+0x60/0xb0
[  380.811574][ T8380]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  380.811594][ T8380] RIP: 0033:0x7fac0fb8e969
[  380.811614][ T8380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  380.811632][ T8380] RSP: 002b:00007fac10a3d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  380.811655][ T8380] RAX: ffffffffffffffda RBX: 00007fac0fdb6080 RCX: 00007fac0fb8e969
[  380.811678][ T8380] RDX: 0000200000000040 RSI: 00000000c028aa05 RDI: 0000000000000003
[  380.811692][ T8380] RBP: 00007fac10a3d090 R08: 0000000000000000 R09: 0000000000000000
[  380.811705][ T8380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  380.811718][ T8380] R13: 0000000000000001 R14: 00007fac0fdb6080 R15: 00007fff1784ae68
[  380.811751][ T8380]  </TASK>
[  380.811774][ T8380] ERROR: Out of memory at tomoyo_realpath_from_path.
[  381.161665][ T8382] loop4: detected capacity change from 0 to 4096
[  381.195469][ T8382] ntfs3: Unknown parameter 'force���tK�-'
[  381.861468][ T8386] 9pnet_fd: Insufficient options for proto=fd
[  381.941289][ T5889] usb 4-1: USB disconnect, device number 3
[  381.995150][    C1] Unknown status report in ack skb
[  382.693587][ T8392] loop1: detected capacity change from 0 to 40427
[  382.706573][ T8392] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504)
[  382.713617][ T8392] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  382.724716][ T8392] F2FS-fs (loop1): build fault injection rate: 17008
[  382.731456][ T8392] F2FS-fs (loop1): build fault injection type: 0x1f8
[  382.743288][ T8392] F2FS-fs (loop1): invalid crc value
[  384.338163][ T8408] loop3: detected capacity change from 0 to 1024
[  384.547504][ T8392] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  384.554676][ T8392] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  385.647238][ T8408] FAULT_INJECTION: forcing a failure.
[  385.647238][ T8408] name failslab, interval 1, probability 0, space 0, times 0
[  385.660156][ T8408] CPU: 0 UID: 0 PID: 8408 Comm: syz.3.622 Not tainted 6.15.0-next-20250530-syzkaller #0 PREEMPT(full) 
[  385.660185][ T8408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  385.660198][ T8408] Call Trace:
[  385.660207][ T8408]  <TASK>
[  385.660216][ T8408]  dump_stack_lvl+0x189/0x250
[  385.660242][ T8408]  ? __pfx____ratelimit+0x10/0x10
[  385.660274][ T8408]  ? __pfx_dump_stack_lvl+0x10/0x10
[  385.660294][ T8408]  ? __pfx__printk+0x10/0x10
[  385.660321][ T8408]  ? __pfx___might_resched+0x10/0x10
[  385.660341][ T8408]  ? fs_reclaim_acquire+0x7d/0x100
[  385.660374][ T8408]  should_fail_ex+0x414/0x560
[  385.660406][ T8408]  should_failslab+0xa8/0x100
[  385.660433][ T8408]  __kmalloc_noprof+0xcb/0x4f0
[  385.660455][ T8408]  ? sock_kmalloc+0xd6/0x160
[  385.660488][ T8408]  sock_kmalloc+0xd6/0x160
[  385.660525][ T8408]  skcipher_recvmsg+0x55c/0x11c0
[  385.660608][ T8408]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  385.660643][ T8408]  ? bpf_lsm_socket_recvmsg+0x9/0x20
[  385.660672][ T8408]  ? security_socket_recvmsg+0x7e/0x2e0
[  385.660703][ T8408]  ? __pfx_skcipher_recvmsg+0x10/0x10
[  385.660733][ T8408]  sock_recvmsg+0x229/0x270
[  385.660772][ T8408]  ____sys_recvmsg+0x1c9/0x460
[  385.660812][ T8408]  ? __pfx_____sys_recvmsg+0x10/0x10
[  385.660859][ T8408]  ? import_iovec+0x74/0xa0
[  385.660885][ T8408]  ___sys_recvmsg+0x1b5/0x510
[  385.660921][ T8408]  ? __pfx____sys_recvmsg+0x10/0x10
[  385.660979][ T8408]  ? __fget_files+0x3a0/0x420
[  385.661020][ T8408]  do_recvmmsg+0x307/0x770
[  385.661059][ T8408]  ? __pfx_do_recvmmsg+0x10/0x10
[  385.661105][ T8408]  ? trace_irq_disable+0x37/0x110
[  385.661153][ T8408]  __x64_sys_recvmmsg+0x190/0x240
[  385.661186][ T8408]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  385.661230][ T8408]  do_syscall_64+0xfa/0x3b0
[  385.661252][ T8408]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  385.661273][ T8408]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  385.661294][ T8408]  ? clear_bhb_loop+0x60/0xb0
[  385.661323][ T8408]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  385.661343][ T8408] RIP: 0033:0x7f5e3918e969
[  385.661363][ T8408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  385.661382][ T8408] RSP: 002b:00007f5e39f12038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  385.661404][ T8408] RAX: ffffffffffffffda RBX: 00007f5e393b6080 RCX: 00007f5e3918e969
[  385.661420][ T8408] RDX: 0000000000000001 RSI: 0000200000005d40 RDI: 0000000000000008
[  385.661433][ T8408] RBP: 00007f5e39f12090 R08: 0000000000000000 R09: 0000000000000000
[  385.661447][ T8408] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000001
[  385.661459][ T8408] R13: 0000000000000000 R14: 00007f5e393b6080 R15: 00007ffe5eb08508
[  385.661494][ T8408]  </TASK>
[  386.226913][ T8413] loop4: detected capacity change from 0 to 4096
[  386.235574][ T8413] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512).
[  386.304771][ T8413] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  386.311815][ T8413] ntfs3(loop4): ino=3, ntfs_set_state failed, -22.
[  386.351439][ T8413] ntfs3(loop4): Failed to load $Bitmap (-22).
[  386.362345][ T8413] ntfs3(loop4): ino=3, ntfs3_write_inode failed, -22.
[  386.385926][ T8419] loop2: detected capacity change from 0 to 512
[  386.404816][ T8420] netlink: 60 bytes leftover after parsing attributes in process `syz.0.626'.
[  386.443993][ T8417] netlink: 60 bytes leftover after parsing attributes in process `syz.0.626'.
[  386.479808][ T8420] netlink: 60 bytes leftover after parsing attributes in process `syz.0.626'.
[  386.636037][ T5961] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  386.723411][ T8419] EXT4-fs (loop2): Test dummy encryption mode enabled
[  386.731154][ T8419] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  386.744869][ T8423] loop3: detected capacity change from 0 to 2048
[  386.780524][ T8419] EXT4-fs error (device loop2): ext4_orphan_get:1419: comm syz.2.625: bad orphan inode 131083
[  386.804962][ T5961] usb 5-1: Using ep0 maxpacket: 32
[  386.814158][ T5961] usb 5-1: unable to get BOS descriptor or descriptor too short
[  386.815900][ T8419] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  386.838383][ T8427] loop0: detected capacity change from 0 to 4096
[  386.861085][ T5961] usb 5-1: config 9 has an invalid interface number: 196 but max is 0
[  386.879667][ T5961] usb 5-1: config 9 has no interface number 0
[  386.889809][ T5961] usb 5-1: config 9 interface 196 has no altsetting 0
[  386.900601][ T8427] ntfs3: Unknown parameter 'force���tK�-'
[  386.916119][ T5961] usb 5-1: New USB device found, idVendor=7dd8, idProduct=d075, bcdDevice=b4.e4
[  386.934228][ T5961] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  386.952609][ T5961] usb 5-1: Product: syz
[  386.965603][ T5961] usb 5-1: Manufacturer: syz
[  386.970238][ T5961] usb 5-1: SerialNumber: syz
[  387.711042][ T5841] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  388.010213][ T8438] loop2: detected capacity change from 0 to 512
[  388.103479][ T8438] EXT4-fs (loop2): 1 orphan inode deleted
[  388.127612][   T59] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  388.156669][ T8438] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  388.171255][   T59] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:4: Failed to release dquot type 1
[  388.171839][ T8438] ext4 filesystem being mounted at /120/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  388.370645][ T8438] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  388.440662][ T8446] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  388.516752][ T8446] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  388.680509][ T8456] loop3: detected capacity change from 0 to 1024
[  388.697806][ T8456] EXT4-fs: Ignoring removed nomblk_io_submit option
[  388.711725][ T5841] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  388.776403][ T8456] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  388.832478][ T8456] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  388.878220][ T8456] System zones: 0-1, 3-36
[  388.927987][ T8456] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  388.969044][ T8461] loop2: detected capacity change from 0 to 512
[  389.055219][ T8461] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  389.113574][ T8461] ext4 filesystem being mounted at /121/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  389.422474][ T8465] loop0: detected capacity change from 0 to 1024
[  389.436795][ T8465] EXT4-fs: Ignoring removed oldalloc option
[  389.512972][ T8465] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  389.524372][ T8465] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  389.535185][ T8465] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  389.547445][ T8465] EXT4-fs error (device loop0): ext4_get_journal_inode:5796: comm syz.0.636: inode #1: comm syz.0.636: iget: illegal inode #
[  389.566995][ T8465] EXT4-fs (loop0): no journal found
[  389.573124][ T8465] EXT4-fs (loop0): can't get journal size
[  389.672559][ T8465] EXT4-fs (loop0): failed to initialize system zone (-22)
[  389.680613][ T8465] EXT4-fs (loop0): mount failed
[  389.749882][ T5835] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  389.761177][ T8461] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.635: bg 0: block 128: padding at end of block bitmap is not set
[  389.934944][ T8461] Quota error (device loop2): write_blk: dquota write failed
[  389.942837][ T8461] Quota error (device loop2): find_free_dqentry: Can't write quota data block 5
[  390.045119][ T8461] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[  390.102661][ T8461] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.635: Failed to acquire dquot type 1
[  390.121866][ T8440] loop1: detected capacity change from 0 to 32768
[  390.416732][ T8468] Quota error (device loop2): write_blk: dquota write failed
[  390.436828][ T8468] Quota error (device loop2): find_free_dqentry: Can't write quota data block 5
[  390.465278][ T8468] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[  390.475351][ T8468] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.635: Failed to acquire dquot type 1
[  390.492702][ T5961] usb 5-1: USB disconnect, device number 10
[  390.523316][ T8476] loop0: detected capacity change from 0 to 2048
[  390.607702][ T8468] Quota error (device loop2): write_blk: dquota write failed
[  390.626592][ T8476] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  390.640533][   T30] audit: type=1800 audit(1748928911.756:31): pid=8468 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.635" name="file2" dev="loop2" ino=16 res=0 errno=0
[  390.665950][ T8468] Quota error (device loop2): find_free_dqentry: Can't write quota data block 5
[  390.768222][ T8468] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.635: Failed to acquire dquot type 1
[  390.768693][ T8474] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  390.812252][ T8477] loop3: detected capacity change from 0 to 1024
[  390.869966][ T8440] netlink: 65039 bytes leftover after parsing attributes in process `syz.1.627'.
[  391.089554][ T5841] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  391.432850][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  391.486404][ T8484] loop2: detected capacity change from 0 to 4096
[  391.515348][ T8484] ntfs3: Unknown parameter 'force���tK�-'
[  393.096661][ T8497] loop0: detected capacity change from 0 to 512
[  393.293800][ T8497] EXT4-fs (loop0): 1 orphan inode deleted
[  393.313733][   T49] __quota_error: 1 callbacks suppressed
[  393.313754][   T49] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  393.341059][ T8497] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  393.344524][   T49] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 1
[  393.418964][ T8497] ext4 filesystem being mounted at /139/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  393.495865][ T8502] Invalid ELF header type: 0 != 1
[  393.579638][ T8497] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  393.614528][ T8503] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  393.671919][ T8503] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  393.903875][ T8507] loop3: detected capacity change from 0 to 1024
[  393.941462][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  393.948827][ T8507] EXT4-fs: Ignoring removed nomblk_io_submit option
[  394.035464][ T8507] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  394.104680][ T8507] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  394.125820][ T8493] loop2: detected capacity change from 0 to 32768
[  394.159042][ T8507] System zones: 0-1, 3-36
[  394.191926][ T8507] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  394.252817][ T8493] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.644 (8493)
[  394.457142][ T5835] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.586230][ T8493] BTRFS info (device loop2 state S): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  394.634965][ T8493] BTRFS info (device loop2 state S): using blake2b (blake2b-256-generic) checksum algorithm
[  394.840705][ T8514] loop0: detected capacity change from 0 to 1024
[  394.852302][ T8514] EXT4-fs: Ignoring removed oldalloc option
[  395.014959][ T8514] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  395.026088][ T8514] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  395.036213][ T8514] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  395.047088][ T8514] EXT4-fs error (device loop0): ext4_get_journal_inode:5796: comm syz.0.648: inode #1: comm syz.0.648: iget: illegal inode #
[  395.073246][ T8514] EXT4-fs (loop0): no journal found
[  395.078759][ T8514] EXT4-fs (loop0): can't get journal size
[  395.196706][ T8493] BTRFS info (device loop2 state S): using free-space-tree
[  395.225768][ T8514] EXT4-fs (loop0): failed to initialize system zone (-22)
[  395.234357][ T8514] EXT4-fs (loop0): mount failed
[  395.625493][   T12] BTRFS warning (device loop2 state S): checksum verify failed on logical 5332992 mirror 1 wanted 0xb929531db417ae5491593d99afe1510df15bdaa63fb6603d26a93ec9245f098d found 0x738e71096e26db1560a5d92d7d81b759a195b31331ea7d80f04080cafacb12e2 level 0, ignored
[  395.749162][ T8493] BTRFS warning (device loop2 state S): mismatching generation and generation_v2 found in root item. This root was probably mounted with an older kernel. Resetting all new fields.
[  395.811070][ T8536] loop0: detected capacity change from 0 to 2048
[  395.936694][ T8536] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  395.945002][ T8493] BTRFS error (device loop2 state S): open_ctree failed: -4
[  396.252515][ T8535] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  397.749995][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  398.115789][ T8559] loop4: detected capacity change from 0 to 512
[  398.382735][ T8564] netlink: 'syz.2.659': attribute type 10 has an invalid length.
[  398.595264][ T8559] EXT4-fs (loop4): 1 orphan inode deleted
[  398.603413][ T8559] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  398.636127][ T8559] ext4 filesystem being mounted at /131/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  398.650854][ T5928] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  398.848658][ T5928] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:8: Failed to release dquot type 1
[  398.886126][ T8564] team0: Device ipvlan1 failed to register rx_handler
[  399.012869][ T8572] loop3: detected capacity change from 0 to 1024
[  399.047390][ T8564] syz.2.659 (8564) used greatest stack depth: 17288 bytes left
[  399.083911][ T8559] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  399.157986][ T8573] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  399.193353][ T8573] EXT4-fs warning (device loop4): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop4.
[  399.276379][ T8577] overlayfs: missing 'lowerdir'
[  399.319346][ T8577] loop0: detected capacity change from 0 to 1024
[  399.322060][ T5845] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  399.418082][ T8577] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  399.441509][ T8582] loop2: detected capacity change from 0 to 8
[  399.472241][ T8585] loop4: detected capacity change from 0 to 1024
[  399.481650][ T8577] ext4 filesystem being mounted at /143/file1/bus/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  399.529997][   T30] audit: type=1800 audit(1748928920.676:32): pid=8577 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.660" name="file1" dev="loop0" ino=15 res=0 errno=0
[  399.609944][ T8585] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  399.663234][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  400.926592][ T8596] netlink: 'syz.1.664': attribute type 10 has an invalid length.
[  401.989655][ T8605] loop2: detected capacity change from 0 to 32768
[  402.250306][ T8605] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  402.290622][ T5845] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  402.387277][ T8605] XFS (loop2): Ending clean mount
[  402.412345][ T8605] XFS (loop2): Quotacheck needed: Please wait.
[  402.593728][ T8620] batadv_slave_0: entered promiscuous mode
[  402.687021][ T8605] XFS (loop2): Quotacheck: Done.
[  403.044046][ T8620] batadv_slave_0: left promiscuous mode
[  404.589555][ T8636] loop3: detected capacity change from 0 to 512
[  404.773342][ T5841] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  404.782951][ T8636] EXT4-fs (loop3): 1 orphan inode deleted
[  404.794478][ T5992] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  404.828504][ T5992] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:10: Failed to release dquot type 1
[  404.830221][ T8636] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  404.915451][ T8636] ext4 filesystem being mounted at /136/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  405.084067][ T8636] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  405.128422][ T8643] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  405.182571][ T8643] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  405.343535][ T8622] loop0: detected capacity change from 0 to 32768
[  405.375485][ T8622] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.670 (8622)
[  405.477104][ T5835] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  405.498325][ T8622] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  405.509843][ T8648] netlink: 'syz.2.675': attribute type 4 has an invalid length.
[  405.548474][ T8622] BTRFS info (device loop0): using crc32c (crc32c-x86_64) checksum algorithm
[  405.577195][ T8648] netlink: 60 bytes leftover after parsing attributes in process `syz.2.675'.
[  405.607387][ T8622] BTRFS info (device loop0): using free-space-tree
[  405.664746][ T8622] workqueue: Failed to create a rescuer kthread for wq "btrfs-worker": -EINTR
[  405.665232][ T8622] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR
[  405.830122][ T8622] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  405.845783][ T8622] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  406.705249][ T8622] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  406.758170][ T8622] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  406.776286][ T8622] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  406.853875][ T8622] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  406.934632][ T8622] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  407.022227][ T8622] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  407.063057][ T8622] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  407.088614][ T8622] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  407.099208][ T8622] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  407.271578][ T8622] BTRFS error (device loop0): open_ctree failed: -12
[  407.921186][ T8681] loop2: detected capacity change from 0 to 1024
[  408.314435][ T5889] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  408.453649][ T8687] netlink: 'syz.4.685': attribute type 2 has an invalid length.
[  408.537097][ T8688] Bluetooth: MGMT ver 1.23
[  408.605566][ T5889] usb 3-1: Using ep0 maxpacket: 16
[  408.652384][ T5889] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  408.673006][ T5889] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x33, changing to 0x3
[  408.687196][ T5889] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  408.732600][ T5889] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid maxpacket 51807, setting to 1024
[  408.783244][ T5889] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 1024
[  408.810902][ T5889] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  409.765981][ T8702] ubi: mtd0 is already attached to ubi31
[  409.860653][ T5889] usb 3-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  409.973592][ T5889] usb 3-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  410.074408][ T5889] usb 3-1: Manufacturer: syz
[  410.174977][ T5889] usb 3-1: config 0 descriptor??
[  410.379483][ T8702] loop4: detected capacity change from 0 to 1024
[  410.425038][ T8702] hfsplus: Unknown parameter '0x0000000000000008��������'
[  410.445388][ T5917] usb 3-1: USB disconnect, device number 7
[  410.542146][ T8706] loop3: detected capacity change from 0 to 8
[  410.558711][ T8706] SQUASHFS error: Failed to read block 0x1ec: -5
[  410.565252][ T8706] SQUASHFS error: Unable to read metadata cache entry [1ea]
[  410.925804][ T8711] netlink: 28 bytes leftover after parsing attributes in process `syz.0.694'.
[  411.029044][ T8714] FAULT_INJECTION: forcing a failure.
[  411.029044][ T8714] name failslab, interval 1, probability 0, space 0, times 0
[  411.041848][ T8714] CPU: 0 UID: 0 PID: 8714 Comm: syz.2.692 Not tainted 6.15.0-next-20250530-syzkaller #0 PREEMPT(full) 
[  411.041875][ T8714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  411.041888][ T8714] Call Trace:
[  411.041896][ T8714]  <TASK>
[  411.041906][ T8714]  dump_stack_lvl+0x189/0x250
[  411.041934][ T8714]  ? __pfx_dump_stack_lvl+0x10/0x10
[  411.041955][ T8714]  ? __pfx__printk+0x10/0x10
[  411.041994][ T8714]  should_fail_ex+0x414/0x560
[  411.042027][ T8714]  should_failslab+0xa8/0x100
[  411.042054][ T8714]  kmem_cache_alloc_node_noprof+0x76/0x3c0
[  411.042078][ T8714]  ? __alloc_skb+0x112/0x2d0
[  411.042099][ T8714]  ? hci_sock_sendmsg+0x549/0xef0
[  411.042129][ T8714]  __alloc_skb+0x112/0x2d0
[  411.042158][ T8714]  hci_mgmt_cmd+0x1ca/0xef0
[  411.042183][ T8714]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  411.042230][ T8714]  hci_sock_sendmsg+0x6ca/0xef0
[  411.042254][ T8714]  ? lockdep_hardirqs_on+0x9c/0x150
[  411.042292][ T8714]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  411.042322][ T8714]  ? __sock_sendmsg+0x54/0x270
[  411.042354][ T8714]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  411.042400][ T8714]  __sock_sendmsg+0x219/0x270
[  411.042437][ T8714]  sock_write_iter+0x258/0x330
[  411.042471][ T8714]  ? __pfx_sock_write_iter+0x10/0x10
[  411.042516][ T8714]  ? bpf_lsm_file_permission+0x9/0x20
[  411.042549][ T8714]  ? security_file_permission+0x75/0x290
[  411.042593][ T8714]  vfs_write+0x54b/0xa90
[  411.042621][ T8714]  ? __pfx_sock_write_iter+0x10/0x10
[  411.042671][ T8714]  ? __pfx_vfs_write+0x10/0x10
[  411.042707][ T8714]  ? __fget_files+0x2a/0x420
[  411.042751][ T8714]  ksys_write+0x145/0x250
[  411.042778][ T8714]  ? __pfx_ksys_write+0x10/0x10
[  411.042815][ T8714]  do_syscall_64+0xfa/0x3b0
[  411.042836][ T8714]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  411.042856][ T8714]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  411.042877][ T8714]  ? clear_bhb_loop+0x60/0xb0
[  411.042904][ T8714]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  411.042925][ T8714] RIP: 0033:0x7ff1d4f8e969
[  411.042945][ T8714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  411.042963][ T8714] RSP: 002b:00007ff1d5e83038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  411.042986][ T8714] RAX: ffffffffffffffda RBX: 00007ff1d51b6160 RCX: 00007ff1d4f8e969
[  411.043002][ T8714] RDX: 0000000000000007 RSI: 0000200000000000 RDI: 000000000000000a
[  411.043015][ T8714] RBP: 00007ff1d5e83090 R08: 0000000000000000 R09: 0000000000000000
[  411.043029][ T8714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  411.043042][ T8714] R13: 0000000000000000 R14: 00007ff1d51b6160 R15: 00007ffcf9fca818
[  411.043077][ T8714]  </TASK>
[  411.389310][ T8715] vivid-000: =================  START STATUS  =================
[  411.399523][ T8715] vivid-000: Generate PTS: true
[  411.406611][ T8715] vivid-000: Generate SCR: true
[  411.411898][ T8715] tpg source WxH: 320x240 (Y'CbCr)
[  411.418272][ T8715] tpg field: 1
[  411.422728][ T8715] tpg crop: (0,0)/320x240
[  411.427332][ T8715] tpg compose: (0,0)/320x240
[  411.432136][ T8715] tpg colorspace: 8
[  411.436163][ T8715] tpg transfer function: 0/0
[  411.440954][ T8715] tpg Y'CbCr encoding: 0/0
[  411.445667][ T8715] tpg quantization: 0/0
[  411.449932][ T8715] tpg RGB range: 0/2
[  411.453947][ T8715] vivid-000: ==================  END STATUS  ==================
[  412.097457][ T8716] loop0: detected capacity change from 0 to 4096
[  412.152642][ T8716] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  412.437788][ T8723] ubi: mtd0 is already attached to ubi31
[  413.039477][ T8728] overlayfs: missing 'lowerdir'
[  413.602268][ T8730] loop2: detected capacity change from 0 to 1024
[  413.705699][ T8730] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  413.790792][ T8730] ext4 filesystem being mounted at /134/file1/bus/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  413.862931][   T30] audit: type=1800 audit(1748928935.016:33): pid=8728 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.698" name="file1" dev="loop2" ino=15 res=0 errno=0
[  413.995454][ T5841] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.021254][ T8740] loop4: detected capacity change from 0 to 512
[  414.119069][ T8740] EXT4-fs (loop4): 1 orphan inode deleted
[  414.141978][ T1339] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  414.170694][ T1339] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:6: Failed to release dquot type 1
[  414.186133][ T8740] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  414.216100][ T8740] ext4 filesystem being mounted at /144/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  414.240124][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  414.522047][ T8748] loop1: detected capacity change from 0 to 40427
[  414.540899][ T8748] F2FS-fs (loop1): build fault injection type: 0x7
[  414.551976][ T8748] F2FS-fs (loop1): invalid crc value
[  414.610676][ T8748] F2FS-fs (loop1): Start checkpoint disabled!
[  414.624961][ T8748] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  414.931738][ T8746] 9pnet_fd: Insufficient options for proto=fd
[  414.938557][ T8740] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  414.943712][ T8746] netlink: 8 bytes leftover after parsing attributes in process `syz.3.704'.
[  415.000359][ T8746] (unnamed net_device) (uninitialized): option arp_all_targets: invalid value (255)
[  415.060755][ T8752] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  415.287768][ T8752] EXT4-fs warning (device loop4): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop4.
[  416.163799][ T5928] kworker/u8:8: attempt to access beyond end of device
[  416.163799][ T5928] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  416.208971][ T5928] CPU: 1 UID: 0 PID: 5928 Comm: kworker/u8:8 Not tainted 6.15.0-next-20250530-syzkaller #0 PREEMPT(full) 
[  416.208999][ T5928] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  416.209012][ T5928] Workqueue: writeback wb_workfn (flush-7:1)
[  416.209064][ T5928] Call Trace:
[  416.209072][ T5928]  <TASK>
[  416.209080][ T5928]  dump_stack_lvl+0x189/0x250
[  416.209106][ T5928]  ? __pfx_dump_stack_lvl+0x10/0x10
[  416.209123][ T5928]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  416.209153][ T5928]  ? __pfx_queue_work_on+0x10/0x10
[  416.209175][ T5928]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  416.209204][ T5928]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  416.209235][ T5928]  ? f2fs_hw_is_readonly+0x39b/0x470
[  416.209271][ T5928]  f2fs_handle_critical_error+0x37c/0x540
[  416.209309][ T5928]  f2fs_write_end_io+0x495/0x810
[  416.209339][ T5928]  ? blkg_put+0x22/0x240
[  416.209380][ T5928]  __submit_merged_bio+0x27a/0x6a0
[  416.209417][ T5928]  __submit_merged_write_cond+0x255/0x530
[  416.209455][ T5928]  f2fs_write_data_pages+0x261d/0x3000
[  416.209532][ T5928]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  416.209561][ T5928]  ? __local_bh_enable_ip+0x12d/0x1c0
[  416.209611][ T5928]  ? rcu_is_watching+0x15/0xb0
[  416.209707][ T5928]  ? __update_load_avg_se+0x751/0xbc0
[  416.209757][ T5928]  ? kvm_sched_clock_read+0x11/0x20
[  416.209803][ T5928]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  416.209853][ T5928]  do_writepages+0x32e/0x550
[  416.209883][ T5928]  ? reacquire_held_locks+0x127/0x1d0
[  416.209912][ T5928]  ? writeback_sb_inodes+0x372/0x1000
[  416.209946][ T5928]  __writeback_single_inode+0x145/0xff0
[  416.209969][ T5928]  ? do_raw_spin_unlock+0x122/0x240
[  416.210004][ T5928]  writeback_sb_inodes+0x6b5/0x1000
[  416.210062][ T5928]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  416.210141][ T5928]  ? rcu_is_watching+0x15/0xb0
[  416.210175][ T5928]  wb_writeback+0x43b/0xaf0
[  416.210214][ T5928]  ? queue_io+0x3b1/0x590
[  416.210240][ T5928]  ? __pfx_wb_writeback+0x10/0x10
[  416.210273][ T5928]  ? _raw_spin_unlock_irq+0x23/0x50
[  416.210310][ T5928]  wb_workfn+0x409/0xef0
[  416.210360][ T5928]  ? __pfx_wb_workfn+0x10/0x10
[  416.210397][ T5928]  ? __lock_acquire+0xab9/0xd20
[  416.210444][ T5928]  ? process_scheduled_works+0x9ef/0x17b0
[  416.210486][ T5928]  ? _raw_spin_unlock_irq+0x23/0x50
[  416.210513][ T5928]  ? process_scheduled_works+0x9ef/0x17b0
[  416.210546][ T5928]  ? process_scheduled_works+0x9ef/0x17b0
[  416.210600][ T5928]  process_scheduled_works+0xae1/0x17b0
[  416.210683][ T5928]  ? __pfx_process_scheduled_works+0x10/0x10
[  416.210745][ T5928]  worker_thread+0x8a0/0xda0
[  416.210771][ T5928]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  416.210813][ T5928]  ? __kthread_parkme+0x7b/0x200
[  416.210850][ T5928]  kthread+0x70e/0x8a0
[  416.210882][ T5928]  ? __pfx_worker_thread+0x10/0x10
[  416.210903][ T5928]  ? __pfx_kthread+0x10/0x10
[  416.210932][ T5928]  ? _raw_spin_unlock_irq+0x23/0x50
[  416.210961][ T5928]  ? lockdep_hardirqs_on+0x9c/0x150
[  416.210989][ T5928]  ? __pfx_kthread+0x10/0x10
[  416.211018][ T5928]  ret_from_fork+0x3fc/0x770
[  416.211054][ T5928]  ? __pfx_ret_from_fork+0x10/0x10
[  416.211096][ T5928]  ? __switch_to_asm+0x39/0x70
[  416.211117][ T5928]  ? __switch_to_asm+0x33/0x70
[  416.211138][ T5928]  ? __pfx_kthread+0x10/0x10
[  416.211166][ T5928]  ret_from_fork_asm+0x1a/0x30
[  416.211213][ T5928]  </TASK>
[  416.211222][ T5928] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  416.221737][ T5845] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  416.640263][ T8770] loop0: detected capacity change from 0 to 256
[  416.920220][ T8774] affs: No valid root block on device nullb0
[  417.570777][ T8770] FAT-fs (loop0): Directory bread(block 64) failed
[  417.598186][ T8770] FAT-fs (loop0): Directory bread(block 65) failed
[  417.646077][ T8770] FAT-fs (loop0): Directory bread(block 66) failed
[  417.652713][ T8770] FAT-fs (loop0): Directory bread(block 67) failed
[  417.697090][ T8770] FAT-fs (loop0): Directory bread(block 68) failed
[  417.705029][ T8770] FAT-fs (loop0): Directory bread(block 69) failed
[  417.705545][ T8781] overlay: ./file0 is not a directory
[  417.711649][ T8770] FAT-fs (loop0): Directory bread(block 70) failed
[  417.733637][ T8770] FAT-fs (loop0): Directory bread(block 71) failed
[  417.742828][ T8770] FAT-fs (loop0): Directory bread(block 72) failed
[  417.757174][ T8770] FAT-fs (loop0): Directory bread(block 73) failed
[  417.930761][ T8770] Trying to write to read-only block-device loop0
[  417.950881][ T8770] syz.0.710: attempt to access beyond end of device
[  417.950881][ T8770] loop0: rw=2049, sector=1224, nr_sectors = 4 limit=256
[  418.853449][ T5830] FAT-fs (loop0): error, corrupted directory (invalid entries)
[  418.856235][ T8790] netlink: 'syz.1.707': attribute type 2 has an invalid length.
[  418.869601][ T8790] netlink: 'syz.1.707': attribute type 1 has an invalid length.
[  418.879835][ T8790] netlink: 152 bytes leftover after parsing attributes in process `syz.1.707'.
[  419.035747][ T5830] FAT-fs (loop0): Filesystem has been set read-only
[  419.666016][ T8796] loop4: detected capacity change from 0 to 40427
[  419.718005][ T8796] F2FS-fs (loop4): build fault injection type: 0x7
[  419.730018][ T8796] F2FS-fs (loop4): invalid crc value
[  419.815199][ T8796] F2FS-fs (loop4): Start checkpoint disabled!
[  524.754146][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  524.761185][    C0] rcu: 	1-...!: (0 ticks this GP) idle=fe2c/0/0x1 softirq=35568/35568 fqs=0
[  524.770892][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=27113, q=771 ncpus=2)
[  524.778645][    C0] Sending NMI from CPU 0 to CPUs 1:
[  524.778683][    C1] NMI backtrace for cpu 1
[  524.778701][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted 6.15.0-next-20250530-syzkaller #0 PREEMPT(full) 
[  524.778721][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  524.778733][    C1] RIP: 0010:lock_release+0x44/0x3e0
[  524.778763][    C1] Code: 8b 05 60 8a fe 10 48 89 44 24 28 0f 1f 44 00 00 65 8b 05 63 8a fe 10 83 f8 08 0f 83 9a 02 00 00 89 c0 48 0f a3 05 0c e2 02 0e <73> 16 e8 65 e1 08 00 84 c0 75 0d f6 05 e6 d1 ec 0d 01 0f 84 ad 02
[  524.778778][    C1] RSP: 0018:ffffc90000a08bf8 EFLAGS: 00000097
[  524.778794][    C1] RAX: 0000000000000001 RBX: ffff888020eb92e8 RCX: 1ffff110041d7265
[  524.778806][    C1] RDX: 0000000000010000 RSI: ffffffff8985a64f RDI: ffff888020eb9300
[  524.778818][    C1] RBP: ffff88802fdb2d50 R08: ffff88802fdb2c87 R09: 1ffff11005fb6590
[  524.778831][    C1] R10: dffffc0000000000 R11: ffffed1005fb6591 R12: ffff888020eb9340
[  524.778844][    C1] R13: ffffffff8985a64f R14: ffff888020eb9300 R15: ffff88802fdb2000
[  524.778857][    C1] FS:  0000000000000000(0000) GS:ffff888125d53000(0000) knlGS:0000000000000000
[  524.778870][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  524.778882][    C1] CR2: 000020000001e000 CR3: 000000002fe26000 CR4: 00000000003526f0
[  524.778897][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  524.778906][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  524.778917][    C1] Call Trace:
[  524.778924][    C1]  <IRQ>
[  524.778949][    C1]  ? taprio_set_budgets+0x375/0x3b0
[  524.778980][    C1]  _raw_spin_unlock+0x16/0x50
[  524.779004][    C1]  advance_sched+0x99f/0xc90
[  524.779035][    C1]  ? __pfx_advance_sched+0x10/0x10
[  524.779057][    C1]  __hrtimer_run_queues+0x52c/0xc60
[  524.779096][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  524.779124][    C1]  ? read_tsc+0x9/0x20
[  524.779151][    C1]  hrtimer_interrupt+0x45b/0xaa0
[  524.779195][    C1]  __sysvec_apic_timer_interrupt+0x108/0x410
[  524.779215][    C1]  sysvec_apic_timer_interrupt+0xa1/0xc0
[  524.779240][    C1]  </IRQ>
[  524.779246][    C1]  <TASK>
[  524.779253][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  524.779272][    C1] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  524.779297][    C1] Code: c3 d4 02 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 43 45 22 00 f3 0f 1e fa fb f4 <e9> 98 d4 02 00 cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[  524.779312][    C1] RSP: 0018:ffffc90000197de0 EFLAGS: 000002c6
[  524.779326][    C1] RAX: bdb6030cc649d700 RBX: ffffffff81976058 RCX: bdb6030cc649d700
[  524.779339][    C1] RDX: 0000000000000001 RSI: ffffffff8d98278e RDI: ffffffff8be29c80
[  524.779351][    C1] RBP: ffffc90000197f20 R08: ffff8880b8732f5b R09: 1ffff110170e65eb
[  524.779364][    C1] R10: dffffc0000000000 R11: ffffed10170e65ec R12: ffffffff8fa127f0
[  524.779376][    C1] R13: 0000000000000001 R14: 0000000000000001 R15: 1ffff11003a57b40
[  524.779390][    C1]  ? do_idle+0x1e8/0x510
[  524.779423][    C1]  default_idle+0x13/0x20
[  524.779439][    C1]  default_idle_call+0x74/0xb0
[  524.779479][    C1]  do_idle+0x1e8/0x510
[  524.779499][    C1]  ? __pfx_do_idle+0x10/0x10
[  524.779522][    C1]  ? do_idle+0xc/0x510
[  524.779539][    C1]  cpu_startup_entry+0x44/0x60
[  524.779556][    C1]  start_secondary+0x101/0x110
[  524.779578][    C1]  common_startup_64+0x13e/0x147
[  524.779608][    C1]  </TASK>
[  524.779670][    C0] rcu: rcu_preempt kthread timer wakeup didn't happen for 10501 jiffies! g27113 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
[  525.116360][    C0] rcu: 	Possible timer handling issue on cpu=1 timer-softirq=27052
[  525.124274][    C0] rcu: rcu_preempt kthread starved for 10502 jiffies! g27113 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1
[  525.135670][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  525.145654][    C0] rcu: RCU grace-period kthread stack dump:
[  525.151556][    C0] task:rcu_preempt     state:I stack:25576 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00004000
[  525.163504][    C0] Call Trace:
[  525.166793][    C0]  <TASK>
[  525.169742][    C0]  __schedule+0x16f5/0x4d00
[  525.174307][    C0]  ? schedule+0x165/0x360
[  525.178672][    C0]  ? __pfx___schedule+0x10/0x10
[  525.183572][    C0]  ? schedule+0x91/0x360
[  525.187847][    C0]  schedule+0x165/0x360
[  525.192032][    C0]  schedule_timeout+0x12b/0x270
[  525.196912][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  525.202312][    C0]  ? __pfx_process_timeout+0x10/0x10
[  525.207627][    C0]  ? prepare_to_swait_event+0x341/0x380
[  525.213212][    C0]  rcu_gp_fqs_loop+0x301/0x1540
[  525.218103][    C0]  ? __pfx_rcu_gp_init+0x10/0x10
[  525.223077][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  525.228307][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  525.233803][    C0]  ? _raw_spin_unlock_irq+0x2e/0x50
[  525.239032][    C0]  ? finish_swait+0xcd/0x1f0
[  525.243652][    C0]  rcu_gp_kthread+0x99/0x390
[  525.248273][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  525.253501][    C0]  ? __kthread_parkme+0x7b/0x200
[  525.258457][    C0]  ? __kthread_parkme+0x1a1/0x200
[  525.263506][    C0]  kthread+0x70e/0x8a0
[  525.267599][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  525.272818][    C0]  ? __pfx_kthread+0x10/0x10
[  525.277437][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  525.282672][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  525.287901][    C0]  ? __pfx_kthread+0x10/0x10
[  525.292516][    C0]  ret_from_fork+0x3fc/0x770
[  525.297143][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  525.302300][    C0]  ? __switch_to_asm+0x39/0x70
[  525.307084][    C0]  ? __switch_to_asm+0x33/0x70
[  525.311976][    C0]  ? __pfx_kthread+0x10/0x10
[  525.316607][    C0]  ret_from_fork_asm+0x1a/0x30
[  525.321421][    C0]  </TASK>