syzkaller login: [  242.919754][ T2894] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  242.971409][ T2894] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
[  260.828176][ T2894] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'.
Warning: Permanently added '[localhost]:1760' (ECDSA) to the list of known hosts.
1970/01/01 00:04:52 fuzzer started
1970/01/01 00:05:03 dialing manager at localhost:35785
1970/01/01 00:05:08 syscalls: 2768
1970/01/01 00:05:08 code coverage: enabled
1970/01/01 00:05:08 comparison tracing: enabled
1970/01/01 00:05:08 extra coverage: enabled
1970/01/01 00:05:08 setuid sandbox: enabled
1970/01/01 00:05:08 namespace sandbox: enabled
1970/01/01 00:05:08 Android sandbox: /sys/fs/selinux/policy does not exist
1970/01/01 00:05:08 fault injection: enabled
1970/01/01 00:05:08 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
1970/01/01 00:05:08 net packet injection: enabled
1970/01/01 00:05:08 net device setup: enabled
1970/01/01 00:05:08 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
1970/01/01 00:05:08 devlink PCI setup: PCI device 0000:00:10.0 is not available
1970/01/01 00:05:08 USB emulation: enabled
1970/01/01 00:05:08 hci packet injection: /dev/vhci does not exist
1970/01/01 00:05:08 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist
1970/01/01 00:05:08 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist
1970/01/01 00:05:11 fetching corpus: 50, signal 20676/22581 (executing program)
1970/01/01 00:05:13 fetching corpus: 100, signal 32274/35936 (executing program)
1970/01/01 00:05:15 fetching corpus: 150, signal 42522/47870 (executing program)
1970/01/01 00:05:18 fetching corpus: 200, signal 47442/54496 (executing program)
1970/01/01 00:05:21 fetching corpus: 250, signal 54737/63346 (executing program)
1970/01/01 00:05:22 fetching corpus: 300, signal 59715/69899 (executing program)
1970/01/01 00:05:24 fetching corpus: 350, signal 62998/74744 (executing program)
1970/01/01 00:05:25 fetching corpus: 400, signal 65936/79238 (executing program)
1970/01/01 00:05:27 fetching corpus: 450, signal 73841/88454 (executing program)
1970/01/01 00:05:29 fetching corpus: 500, signal 77152/93231 (executing program)
1970/01/01 00:05:31 fetching corpus: 550, signal 79829/97388 (executing program)
1970/01/01 00:05:32 fetching corpus: 600, signal 84312/103186 (executing program)
1970/01/01 00:05:35 fetching corpus: 650, signal 86716/106992 (executing program)
1970/01/01 00:05:37 fetching corpus: 700, signal 88889/110561 (executing program)
1970/01/01 00:05:38 fetching corpus: 750, signal 92207/115138 (executing program)
1970/01/01 00:05:39 fetching corpus: 800, signal 95405/119645 (executing program)
1970/01/01 00:05:41 fetching corpus: 850, signal 97739/123297 (executing program)
1970/01/01 00:05:43 fetching corpus: 900, signal 99715/126571 (executing program)
1970/01/01 00:05:45 fetching corpus: 950, signal 101654/129806 (executing program)
1970/01/01 00:05:46 fetching corpus: 1000, signal 103502/133007 (executing program)
1970/01/01 00:05:48 fetching corpus: 1050, signal 106086/136766 (executing program)
1970/01/01 00:05:50 fetching corpus: 1100, signal 106973/139036 (executing program)
1970/01/01 00:05:52 fetching corpus: 1150, signal 108891/142168 (executing program)
1970/01/01 00:05:53 fetching corpus: 1200, signal 110029/144625 (executing program)
1970/01/01 00:05:55 fetching corpus: 1250, signal 111476/147289 (executing program)
1970/01/01 00:05:57 fetching corpus: 1300, signal 113571/150568 (executing program)
1970/01/01 00:05:59 fetching corpus: 1350, signal 115161/153336 (executing program)
1970/01/01 00:06:01 fetching corpus: 1400, signal 117065/156373 (executing program)
1970/01/01 00:06:02 fetching corpus: 1450, signal 118171/158771 (executing program)
1970/01/01 00:06:04 fetching corpus: 1500, signal 119607/161395 (executing program)
1970/01/01 00:06:05 fetching corpus: 1550, signal 121457/164355 (executing program)
1970/01/01 00:06:07 fetching corpus: 1600, signal 124976/168665 (executing program)
1970/01/01 00:06:09 fetching corpus: 1650, signal 128407/172912 (executing program)
1970/01/01 00:06:10 fetching corpus: 1700, signal 129137/174891 (executing program)
1970/01/01 00:06:12 fetching corpus: 1750, signal 130308/177208 (executing program)
1970/01/01 00:06:13 fetching corpus: 1800, signal 131077/179162 (executing program)
1970/01/01 00:06:15 fetching corpus: 1850, signal 132293/181506 (executing program)
1970/01/01 00:06:16 fetching corpus: 1900, signal 133294/183687 (executing program)
1970/01/01 00:06:18 fetching corpus: 1950, signal 134221/185772 (executing program)
1970/01/01 00:06:20 fetching corpus: 2000, signal 134862/187602 (executing program)
1970/01/01 00:06:21 fetching corpus: 2050, signal 135921/189721 (executing program)
1970/01/01 00:06:23 fetching corpus: 2100, signal 138842/193330 (executing program)
1970/01/01 00:06:25 fetching corpus: 2150, signal 140107/195647 (executing program)
1970/01/01 00:06:26 fetching corpus: 2200, signal 140950/197558 (executing program)
1970/01/01 00:06:27 fetching corpus: 2250, signal 142344/199882 (executing program)
1970/01/01 00:06:28 fetching corpus: 2300, signal 144412/202781 (executing program)
1970/01/01 00:06:30 fetching corpus: 2350, signal 145408/204823 (executing program)
1970/01/01 00:06:31 fetching corpus: 2400, signal 146717/207060 (executing program)
1970/01/01 00:06:32 fetching corpus: 2450, signal 148616/209689 (executing program)
1970/01/01 00:06:35 fetching corpus: 2500, signal 149546/211648 (executing program)
1970/01/01 00:06:38 fetching corpus: 2550, signal 150667/213757 (executing program)
1970/01/01 00:06:40 fetching corpus: 2600, signal 151557/215657 (executing program)
1970/01/01 00:06:41 fetching corpus: 2650, signal 152453/217574 (executing program)
1970/01/01 00:06:43 fetching corpus: 2700, signal 153282/219407 (executing program)
1970/01/01 00:06:44 fetching corpus: 2750, signal 155332/222109 (executing program)
1970/01/01 00:06:46 fetching corpus: 2800, signal 156946/224462 (executing program)
1970/01/01 00:06:47 fetching corpus: 2850, signal 157928/226381 (executing program)
1970/01/01 00:06:49 fetching corpus: 2900, signal 158952/228309 (executing program)
1970/01/01 00:06:51 fetching corpus: 2950, signal 159810/230106 (executing program)
1970/01/01 00:06:52 fetching corpus: 3000, signal 161013/232146 (executing program)
1970/01/01 00:06:54 fetching corpus: 3050, signal 162413/234307 (executing program)
1970/01/01 00:06:56 fetching corpus: 3100, signal 163043/235888 (executing program)
1970/01/01 00:06:58 fetching corpus: 3150, signal 163994/237735 (executing program)
1970/01/01 00:07:00 fetching corpus: 3200, signal 164667/239375 (executing program)
1970/01/01 00:07:01 fetching corpus: 3250, signal 165692/241222 (executing program)
1970/01/01 00:07:02 fetching corpus: 3300, signal 166403/242872 (executing program)
1970/01/01 00:07:04 fetching corpus: 3350, signal 167906/245049 (executing program)
1970/01/01 00:07:06 fetching corpus: 3400, signal 168554/246661 (executing program)
1970/01/01 00:07:07 fetching corpus: 3450, signal 169235/248276 (executing program)
1970/01/01 00:07:09 fetching corpus: 3500, signal 170037/249978 (executing program)
1970/01/01 00:07:10 fetching corpus: 3550, signal 170898/251629 (executing program)
1970/01/01 00:07:12 fetching corpus: 3600, signal 171919/253379 (executing program)
1970/01/01 00:07:14 fetching corpus: 3650, signal 172624/254975 (executing program)
1970/01/01 00:07:15 fetching corpus: 3700, signal 173319/256537 (executing program)
1970/01/01 00:07:17 fetching corpus: 3750, signal 173951/258065 (executing program)
1970/01/01 00:07:18 fetching corpus: 3800, signal 174562/259565 (executing program)
1970/01/01 00:07:20 fetching corpus: 3850, signal 175002/260981 (executing program)
1970/01/01 00:07:22 fetching corpus: 3900, signal 175784/262560 (executing program)
1970/01/01 00:07:23 fetching corpus: 3950, signal 176366/263997 (executing program)
1970/01/01 00:07:25 fetching corpus: 4000, signal 178358/266271 (executing program)
1970/01/01 00:07:26 fetching corpus: 4050, signal 179351/267957 (executing program)
1970/01/01 00:07:28 fetching corpus: 4100, signal 179853/269360 (executing program)
1970/01/01 00:07:30 fetching corpus: 4150, signal 180615/270908 (executing program)
1970/01/01 00:07:32 fetching corpus: 4200, signal 181092/272278 (executing program)
1970/01/01 00:07:33 fetching corpus: 4250, signal 181802/273750 (executing program)
1970/01/01 00:07:35 fetching corpus: 4300, signal 182458/275161 (executing program)
1970/01/01 00:07:38 fetching corpus: 4350, signal 183044/276579 (executing program)
1970/01/01 00:07:40 fetching corpus: 4400, signal 185737/279141 (executing program)
1970/01/01 00:07:41 fetching corpus: 4450, signal 186285/280528 (executing program)
1970/01/01 00:07:42 fetching corpus: 4500, signal 186817/281900 (executing program)
1970/01/01 00:07:44 fetching corpus: 4550, signal 187219/283173 (executing program)
1970/01/01 00:07:46 fetching corpus: 4600, signal 187932/284639 (executing program)
1970/01/01 00:07:48 fetching corpus: 4650, signal 188824/286134 (executing program)
1970/01/01 00:07:50 fetching corpus: 4700, signal 189844/287732 (executing program)
1970/01/01 00:07:51 fetching corpus: 4750, signal 190583/289146 (executing program)
1970/01/01 00:07:52 fetching corpus: 4800, signal 191024/290418 (executing program)
1970/01/01 00:07:53 fetching corpus: 4850, signal 191561/291715 (executing program)
1970/01/01 00:07:54 fetching corpus: 4900, signal 194284/294125 (executing program)
1970/01/01 00:07:56 fetching corpus: 4950, signal 195379/295673 (executing program)
1970/01/01 00:07:58 fetching corpus: 5000, signal 195808/296947 (executing program)
1970/01/01 00:07:59 fetching corpus: 5050, signal 196680/298404 (executing program)
1970/01/01 00:08:01 fetching corpus: 5100, signal 197279/299726 (executing program)
1970/01/01 00:08:02 fetching corpus: 5150, signal 197701/300931 (executing program)
1970/01/01 00:08:04 fetching corpus: 5200, signal 198089/302114 (executing program)
1970/01/01 00:08:05 fetching corpus: 5250, signal 198621/303349 (executing program)
1970/01/01 00:08:07 fetching corpus: 5300, signal 199137/304512 (executing program)
1970/01/01 00:08:08 fetching corpus: 5350, signal 199687/305779 (executing program)
1970/01/01 00:08:09 fetching corpus: 5400, signal 200248/307004 (executing program)
1970/01/01 00:08:11 fetching corpus: 5450, signal 200714/308197 (executing program)
1970/01/01 00:08:12 fetching corpus: 5500, signal 201065/309316 (executing program)
1970/01/01 00:08:14 fetching corpus: 5550, signal 201449/310470 (executing program)
1970/01/01 00:08:16 fetching corpus: 5600, signal 201818/311625 (executing program)
1970/01/01 00:08:17 fetching corpus: 5650, signal 202277/312816 (executing program)
1970/01/01 00:08:19 fetching corpus: 5700, signal 202778/314053 (executing program)
1970/01/01 00:08:21 fetching corpus: 5750, signal 204530/315711 (executing program)
1970/01/01 00:08:22 fetching corpus: 5800, signal 205297/317019 (executing program)
1970/01/01 00:08:24 fetching corpus: 5850, signal 205804/318204 (executing program)
1970/01/01 00:08:26 fetching corpus: 5900, signal 206081/319262 (executing program)
1970/01/01 00:08:27 fetching corpus: 5950, signal 206501/320397 (executing program)
1970/01/01 00:08:29 fetching corpus: 6000, signal 206946/321510 (executing program)
1970/01/01 00:08:30 fetching corpus: 6050, signal 207998/322860 (executing program)
1970/01/01 00:08:31 fetching corpus: 6100, signal 209128/324265 (executing program)
1970/01/01 00:08:33 fetching corpus: 6150, signal 209528/325376 (executing program)
1970/01/01 00:08:35 fetching corpus: 6200, signal 210178/326562 (executing program)
1970/01/01 00:08:37 fetching corpus: 6250, signal 210609/327672 (executing program)
1970/01/01 00:08:39 fetching corpus: 6300, signal 212004/329190 (executing program)
1970/01/01 00:08:41 fetching corpus: 6350, signal 212366/330249 (executing program)
1970/01/01 00:08:42 fetching corpus: 6400, signal 213017/331375 (executing program)
1970/01/01 00:08:45 fetching corpus: 6450, signal 213914/332607 (executing program)
1970/01/01 00:08:46 fetching corpus: 6500, signal 214505/333760 (executing program)
1970/01/01 00:08:48 fetching corpus: 6550, signal 214986/334871 (executing program)
1970/01/01 00:08:49 fetching corpus: 6600, signal 215337/335917 (executing program)
1970/01/01 00:08:50 fetching corpus: 6650, signal 215729/337008 (executing program)
1970/01/01 00:08:51 fetching corpus: 6700, signal 216063/338061 (executing program)
1970/01/01 00:08:53 fetching corpus: 6750, signal 216393/339070 (executing program)
1970/01/01 00:08:54 fetching corpus: 6800, signal 216881/340129 (executing program)
1970/01/01 00:08:56 fetching corpus: 6850, signal 217366/341186 (executing program)
1970/01/01 00:08:58 fetching corpus: 6900, signal 217691/342158 (executing program)
1970/01/01 00:08:59 fetching corpus: 6950, signal 218021/343177 (executing program)
1970/01/01 00:09:00 fetching corpus: 7000, signal 218543/344243 (executing program)
1970/01/01 00:09:01 fetching corpus: 7050, signal 219067/345343 (executing program)
1970/01/01 00:09:02 fetching corpus: 7100, signal 219375/346307 (executing program)
1970/01/01 00:09:04 fetching corpus: 7150, signal 219896/347299 (executing program)
1970/01/01 00:09:05 fetching corpus: 7200, signal 220258/348301 (executing program)
1970/01/01 00:09:07 fetching corpus: 7250, signal 220858/349345 (executing program)
1970/01/01 00:09:10 fetching corpus: 7300, signal 221285/350345 (executing program)
1970/01/01 00:09:11 fetching corpus: 7350, signal 221603/351265 (executing program)
1970/01/01 00:09:12 fetching corpus: 7400, signal 221925/352188 (executing program)
1970/01/01 00:09:14 fetching corpus: 7450, signal 222380/353168 (executing program)
1970/01/01 00:09:15 fetching corpus: 7500, signal 222758/354179 (executing program)
1970/01/01 00:09:16 fetching corpus: 7550, signal 223266/355188 (executing program)
1970/01/01 00:09:18 fetching corpus: 7600, signal 223762/356163 (executing program)
1970/01/01 00:09:19 fetching corpus: 7650, signal 224185/357120 (executing program)
1970/01/01 00:09:21 fetching corpus: 7700, signal 225181/358266 (executing program)
1970/01/01 00:09:23 fetching corpus: 7750, signal 225531/359155 (executing program)
1970/01/01 00:09:25 fetching corpus: 7800, signal 225771/360029 (executing program)
1970/01/01 00:09:26 fetching corpus: 7850, signal 225995/360913 (executing program)
1970/01/01 00:09:28 fetching corpus: 7900, signal 226563/361892 (executing program)
1970/01/01 00:09:29 fetching corpus: 7950, signal 226852/362757 (executing program)
1970/01/01 00:09:31 fetching corpus: 8000, signal 227688/363773 (executing program)
1970/01/01 00:09:32 fetching corpus: 8050, signal 228037/364731 (executing program)
1970/01/01 00:09:34 fetching corpus: 8100, signal 228355/365660 (executing program)
1970/01/01 00:09:35 fetching corpus: 8150, signal 228752/366589 (executing program)
1970/01/01 00:09:37 fetching corpus: 8200, signal 229130/367481 (executing program)
1970/01/01 00:09:39 fetching corpus: 8250, signal 229472/368392 (executing program)
1970/01/01 00:09:41 fetching corpus: 8300, signal 229751/369279 (executing program)
1970/01/01 00:09:42 fetching corpus: 8350, signal 230111/370215 (executing program)
1970/01/01 00:09:43 fetching corpus: 8400, signal 230808/371163 (executing program)
1970/01/01 00:09:44 fetching corpus: 8450, signal 231063/372036 (executing program)
1970/01/01 00:09:46 fetching corpus: 8500, signal 231327/372866 (executing program)
1970/01/01 00:09:47 fetching corpus: 8550, signal 231531/373752 (executing program)
1970/01/01 00:09:49 fetching corpus: 8600, signal 231845/374615 (executing program)
1970/01/01 00:09:50 fetching corpus: 8650, signal 232249/375512 (executing program)
1970/01/01 00:09:52 fetching corpus: 8700, signal 232734/376417 (executing program)
1970/01/01 00:09:54 fetching corpus: 8750, signal 233048/377288 (executing program)
1970/01/01 00:09:56 fetching corpus: 8800, signal 233434/378131 (executing program)
1970/01/01 00:09:58 fetching corpus: 8850, signal 233701/378979 (executing program)
1970/01/01 00:10:00 fetching corpus: 8900, signal 234266/379823 (executing program)
1970/01/01 00:10:01 fetching corpus: 8950, signal 234576/380631 (executing program)
1970/01/01 00:10:02 fetching corpus: 9000, signal 234905/381467 (executing program)
1970/01/01 00:10:03 fetching corpus: 9050, signal 235224/382324 (executing program)
1970/01/01 00:10:05 fetching corpus: 9100, signal 235692/383197 (executing program)
1970/01/01 00:10:05 fetching corpus: 9150, signal 236523/384112 (executing program)
1970/01/01 00:10:07 fetching corpus: 9200, signal 236828/384927 (executing program)
1970/01/01 00:10:09 fetching corpus: 9250, signal 237061/385777 (executing program)
1970/01/01 00:10:10 fetching corpus: 9300, signal 237466/386602 (executing program)
1970/01/01 00:10:12 fetching corpus: 9350, signal 237845/387425 (executing program)
1970/01/01 00:10:13 fetching corpus: 9400, signal 238258/388271 (executing program)
1970/01/01 00:10:14 fetching corpus: 9450, signal 238473/389101 (executing program)
1970/01/01 00:10:15 fetching corpus: 9500, signal 238705/389854 (executing program)
1970/01/01 00:10:17 fetching corpus: 9550, signal 238935/390650 (executing program)
1970/01/01 00:10:18 fetching corpus: 9600, signal 239130/391434 (executing program)
1970/01/01 00:10:19 fetching corpus: 9650, signal 239530/392261 (executing program)
1970/01/01 00:10:21 fetching corpus: 9700, signal 239787/393088 (executing program)
1970/01/01 00:10:22 fetching corpus: 9750, signal 240033/393892 (executing program)
1970/01/01 00:10:24 fetching corpus: 9800, signal 240322/394686 (executing program)
1970/01/01 00:10:25 fetching corpus: 9849, signal 240649/395476 (executing program)
1970/01/01 00:10:27 fetching corpus: 9899, signal 240891/396270 (executing program)
1970/01/01 00:10:29 fetching corpus: 9949, signal 241143/396910 (executing program)
1970/01/01 00:10:30 fetching corpus: 9999, signal 241455/396910 (executing program)
1970/01/01 00:10:32 fetching corpus: 10049, signal 241694/396910 (executing program)
1970/01/01 00:10:33 fetching corpus: 10099, signal 242205/396910 (executing program)
1970/01/01 00:10:36 fetching corpus: 10149, signal 243051/396910 (executing program)
1970/01/01 00:10:38 fetching corpus: 10199, signal 243343/396910 (executing program)
1970/01/01 00:10:39 fetching corpus: 10249, signal 243758/396910 (executing program)
1970/01/01 00:10:41 fetching corpus: 10299, signal 243993/396938 (executing program)
1970/01/01 00:10:42 fetching corpus: 10349, signal 244216/396938 (executing program)
1970/01/01 00:10:43 fetching corpus: 10399, signal 244528/396938 (executing program)
1970/01/01 00:10:45 fetching corpus: 10449, signal 244781/396938 (executing program)
1970/01/01 00:10:46 fetching corpus: 10499, signal 245001/396938 (executing program)
1970/01/01 00:10:48 fetching corpus: 10549, signal 245326/396938 (executing program)
1970/01/01 00:10:49 fetching corpus: 10599, signal 246154/396938 (executing program)
1970/01/01 00:10:51 fetching corpus: 10649, signal 246363/396938 (executing program)
1970/01/01 00:10:53 fetching corpus: 10699, signal 246689/396938 (executing program)
1970/01/01 00:10:55 fetching corpus: 10749, signal 247060/396938 (executing program)
1970/01/01 00:10:56 fetching corpus: 10799, signal 247342/396938 (executing program)
1970/01/01 00:10:57 fetching corpus: 10849, signal 247636/396938 (executing program)
1970/01/01 00:10:58 fetching corpus: 10899, signal 247889/396938 (executing program)
1970/01/01 00:11:00 fetching corpus: 10949, signal 248554/396938 (executing program)
1970/01/01 00:11:01 fetching corpus: 10999, signal 248896/396938 (executing program)
1970/01/01 00:11:02 fetching corpus: 11049, signal 249224/396938 (executing program)
1970/01/01 00:11:03 fetching corpus: 11099, signal 249541/396938 (executing program)
1970/01/01 00:11:05 fetching corpus: 11149, signal 249921/396938 (executing program)
1970/01/01 00:11:08 fetching corpus: 11199, signal 250151/396938 (executing program)
1970/01/01 00:11:10 fetching corpus: 11249, signal 250472/396938 (executing program)
1970/01/01 00:11:12 fetching corpus: 11299, signal 250633/396938 (executing program)
1970/01/01 00:11:13 fetching corpus: 11349, signal 250801/396938 (executing program)
1970/01/01 00:11:14 fetching corpus: 11399, signal 251039/396938 (executing program)
1970/01/01 00:11:15 fetching corpus: 11449, signal 251439/396938 (executing program)
1970/01/01 00:11:16 fetching corpus: 11499, signal 251690/396938 (executing program)
1970/01/01 00:11:18 fetching corpus: 11549, signal 252283/396938 (executing program)
1970/01/01 00:11:19 fetching corpus: 11599, signal 252784/396938 (executing program)
1970/01/01 00:11:20 fetching corpus: 11649, signal 253184/396938 (executing program)
1970/01/01 00:11:22 fetching corpus: 11699, signal 253414/396938 (executing program)
1970/01/01 00:11:22 fetching corpus: 11704, signal 253437/396938 (executing program)
1970/01/01 00:11:22 fetching corpus: 11704, signal 253437/396938 (executing program)
1970/01/01 00:12:41 starting 2 fuzzer processes
00:13:00 executing program 0:
write$P9_RMKDIR(0xffffffffffffffff, &(0x7f0000000000)={0x14, 0x49, 0x2, {0x10, 0x2, 0x5}}, 0x14)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f0000000040)={0x0, 0x0, 0x7, 0x0, [], [{0x1000, 0xfffffffc, 0x3f, 0x7, 0x1}, {0x66641d49, 0xa9, 0x3e2a, 0x7, 0x9}], [[], [], [], [], [], [], []]})
ioctl$F2FS_IOC_GET_FEATURES(0xffffffffffffffff, 0x8004f50c, &(0x7f00000002c0))
write$P9_RSETATTR(0xffffffffffffffff, &(0x7f0000000300)={0x7, 0x1b, 0x2}, 0x7)
write$P9_RWSTAT(0xffffffffffffffff, &(0x7f0000000340)={0x7, 0x7f, 0x1}, 0x7)
fcntl$notify(0xffffffffffffffff, 0x402, 0x3)
write$P9_RXATTRWALK(0xffffffffffffffff, &(0x7f0000000380)={0xf, 0x1f, 0x1, 0x400}, 0xf)
r0 = openat(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x800, 0xf8)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000400)={"72e2fb6e685ae890638a2ca724de6de7", 0x0, 0x0, {0x3ff, 0x7}, {0x101, 0x3}, 0x400, [0x7fff, 0x9, 0x89, 0xed0, 0x1, 0x838, 0x7ff, 0x6, 0x1, 0x8, 0x3f360f10, 0x200, 0x1ff, 0x4, 0x8000000000000000, 0x2]})
ioctl$BTRFS_IOC_SUBVOL_CREATE(r0, 0x5000940e, &(0x7f0000000500)={{r0}, "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"})
fcntl$getown(r0, 0x9)
ioctl$BTRFS_IOC_QGROUP_CREATE(r0, 0x4010942a, &(0x7f0000001500)={0x0, 0x8dc8})
r1 = dup3(0xffffffffffffffff, r0, 0x80000)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000001580)='TIPCv2\x00', r0)
sendmsg$TIPC_NL_MON_PEER_GET(r1, &(0x7f0000001900)={&(0x7f0000001540), 0xc, &(0x7f00000018c0)={&(0x7f00000015c0)={0x2d0, r2, 0x800, 0x70bd25, 0x25dfdbfb, {}, [@TIPC_NLA_NODE={0xf4, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x3}, @TIPC_NLA_NODE_ID={0xa5, 0x3, "c93f2999daed2598645b849b57960d9c6ddf73a2caeb3805dfbf35a3cea3c4d64627367fbae442b2de0caf1a66d9a02b6fb6faf069e6a8857bf926ee0880954e8490db82245ac26bd1d081aea3f7e00cf86c94f9e5b110f78dfc5bc058c170227df28567408c62a69274abe6e540d4291e6c5bfd91ab805887d5fa1bff2a4b1e4be6b9a7844e7c5a8de3f1150823c6da825a7a12d2e4673fe62b3bc0ca08716c08"}, @TIPC_NLA_NODE_ID={0x3f, 0x3, "ec88524f9cfc959d0d2737d18025719011f0e024ea733f0d2d54873c76d53cbef1985a264ee6c7731c854a8475cbfe92bd42ce061ba880ab9420d7"}]}, @TIPC_NLA_LINK={0xa0, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x83}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x20}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}]}, @TIPC_NLA_LINK_PROP={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x30e3}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_PRIO={0x8}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x101}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}]}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}]}]}, @TIPC_NLA_MEDIA={0x114, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x54, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x28c}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x81}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x81}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xe88}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xffffffaa}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffd}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffffb}, @TIPC_NLA_PROP_MTU={0x8}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x400}]}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xd0f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffff9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x71f17e4d}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x40}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}]}, @TIPC_NLA_SOCK={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x8}]}]}, 0x2d0}, 0x1, 0x0, 0x0, 0x8000}, 0x800)
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r1, 0x8008f513, &(0x7f0000001940))
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000001980)={<r3=>r1})
setsockopt$IP_VS_SO_SET_DELDEST(r3, 0x0, 0x488, &(0x7f00000019c0)={{0x2e, @rand_addr=0x64010102, 0x4e24, 0x3, 'rr\x00', 0x12, 0x8, 0x6f}, {@multicast2, 0x4e22, 0x4, 0x1, 0x8c2, 0x3}}, 0x44)
r4 = accept4(r3, &(0x7f0000001a40), &(0x7f0000001ac0)=0x80, 0x80000)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r4, &(0x7f0000001c40)={&(0x7f0000001b00)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001c00)={&(0x7f0000001b40)={0x88, 0x0, 0x800, 0x70bd29, 0x25dfdbff, {}, [@HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'erspan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x4040}, 0x800)

00:13:23 executing program 1:
inotify_rm_watch(0xffffffffffffffff, 0x0)
io_cancel(0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x7, 0xffffffffffffffff, &(0x7f0000000000)="1c1f2cd9c9a08c08b291c85be01aebecf29b9aaa8f686d03af3b23e590938f326495e6fca17d82cd02402de49b1d49f79ac196f3950a16ff2c39aaf3f2f09a214987f975535c5430d568b4cf373b31d5c44146761aaf83fcd195faa2e252bf7eb4661da1528a34064ab4f0b628521d049898a4db8e2c1a4fe5936d37836b06cc95ad77c46b34883a53a2aa2fb31511ffd1740fdab5d51d6262b740edfc5519bdfebfc101f0a5ae275cfda9481b0223237bf89fb1a2d168a9", 0xb8, 0x6}, &(0x7f0000000100))
preadv2(0xffffffffffffffff, &(0x7f0000001300)=[{&(0x7f0000000140)=""/47, 0x2f}, {&(0x7f0000000180)=""/44, 0x2c}, {&(0x7f00000001c0)=""/4096, 0x1000}, {&(0x7f00000011c0)=""/226, 0xe2}, {&(0x7f00000012c0)=""/2, 0x2}], 0x5, 0x7, 0x1ff, 0x1)
ioctl$F2FS_IOC_GET_PIN_FILE(0xffffffffffffffff, 0x8004f50e, &(0x7f0000001380))
r0 = fsopen(&(0x7f00000013c0)='hfsplus\x00', 0x0)
pread64(r0, &(0x7f0000001400)=""/4096, 0x1000, 0x20)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x1, 0x3)
r2 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000002400)='/dev/ttynull\x00', 0x10000, 0x0)
pwritev(r2, &(0x7f00000025c0)=[{&(0x7f0000002440)="85123d404bdf086052ffc781632b36b8e0d1c71f7bdd5f3be5885ed1d2a1b1cb2ab89251ac176a263c3e0be018effca295b8011996893553804f29add9d542744ecddd2eb3d8fe55675e198d607839fcee0087a5698c7a64bbe8682d31845c76244cf83bc13d4bcad2575fd79bfaaa1455463838f37b42d483c492563bf38e83a7b6a3328b6245826873762f8d3efee88fa767a3ac897c2e46783cac52391342e3f0072f361d80d310df00dc18af8b44b35295abbb40c39ad24b43c3145c0a0132b5922d275c1ee7d486d0d574692a60b2d4abb4c21b26554ee2bb4415923011d794b0012913", 0xe6}, {&(0x7f0000002540)="8b54bf1192e7bef180c5c8f4fd0d1a9553f509b6e352eea7dd83131eabbe14843eb218a5adcaac51169df999b1829b956efc5809ff815c7e4c8ae43ea8b628db729110639afd92e616a485ec46c2f98fa941bb1c3cd48d3525ea65ae7c85d7d0031d2bee06badd9198c478ef4acb93607e5e46c60b6b2ced", 0x78}], 0x2, 0x1, 0x2)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x66, &(0x7f0000002600)={<r3=>0x0, 0x7}, &(0x7f0000002640)=0x8)
setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000002680)={r3, 0x796, 0x10}, 0xc)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f00000026c0)={0x0, 0x0, {}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, <r4=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
ioctl$BTRFS_IOC_DEV_INFO(r2, 0xd000941e, &(0x7f0000002ac0)={r4, "68c757f5efd9a345f735a92d41639458"})
ioctl$FS_IOC_GET_ENCRYPTION_NONCE(0xffffffffffffffff, 0x8010661b, &(0x7f0000003ac0))
getsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x1, &(0x7f0000003b00)={<r5=>r3, 0x2, 0x2, 0x3, 0x4, 0x100}, &(0x7f0000003b40)=0x14)
getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(0xffffffffffffffff, 0x84, 0x76, &(0x7f0000003b80)={r5, 0x20000000}, &(0x7f0000003bc0)=0x8)
readv(r0, &(0x7f0000003d80)=[{&(0x7f0000003c00)=""/194, 0xc2}, {&(0x7f0000003d00)=""/92, 0x5c}], 0x2)
r6 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000003dc0)='/dev/vcsa\x00', 0x80142, 0x0)
write$P9_RFSYNC(r6, &(0x7f0000003e00)={0x7, 0x33, 0x2}, 0x7)

[  809.836579][ T3088] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  810.032307][ T3088] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  817.892619][ T3088] device hsr_slave_0 entered promiscuous mode
[  817.958795][ T3088] device hsr_slave_1 entered promiscuous mode
[  822.769028][ T3088] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  822.918949][ T3088] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  823.057874][ T3088] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  823.437576][ T3088] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  833.113004][ T3088] 8021q: adding VLAN 0 to HW filter on device bond0
[  834.537047][ T3159] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  834.615428][ T3159] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  840.087288][ T3231] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  840.240061][ T3231] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  841.067984][ T3159] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  841.139431][ T3159] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  841.380758][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  841.452333][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  841.618027][ T3284] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  842.394901][ T3284] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  842.456648][ T3284] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  842.510039][ T3284] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  842.709513][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  842.797555][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  843.032868][ T3088] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  843.737326][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  843.741811][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  850.001463][ T3231] device hsr_slave_0 entered promiscuous mode
[  850.082489][ T3231] device hsr_slave_1 entered promiscuous mode
[  850.150363][ T3231] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  850.188597][ T3231] Cannot create hsr debugfs directory
[  855.009743][ T3231] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  855.148435][ T3231] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  855.276611][ T3231] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  855.597741][ T3231] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  856.823254][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  856.891327][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  863.329375][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  863.352053][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  863.502718][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  863.540478][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  863.642766][ T3088] device veth0_vlan entered promiscuous mode
[  864.169939][ T3088] device veth1_vlan entered promiscuous mode
[  865.542704][ T3231] 8021q: adding VLAN 0 to HW filter on device bond0
[  866.144161][ T1936] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  866.188052][ T1936] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  866.319858][ T1936] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  866.366030][ T1936] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  866.587265][ T3088] device veth0_macvtap entered promiscuous mode
[  866.828102][ T3088] device veth1_macvtap entered promiscuous mode
[  867.602950][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  867.669089][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  867.772299][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  868.352117][ T1936] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  868.400981][ T1936] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  868.718875][ T3088] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  868.722684][ T3088] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  868.755131][ T3088] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  868.757078][ T3088] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  871.731435][ T3088] cgroup: cgroup: disabling cgroup2 socket matching due to net_prio or net_cls activation
[  874.715974][ T3269] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  874.756233][ T3269] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  875.068543][ T3269] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  875.138559][ T3269] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  875.427693][ T3159] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  876.018660][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  877.197295][ T1936] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  877.257979][ T1936] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  877.597096][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  877.677635][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  877.945533][ T3231] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  879.186269][ T3269] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  879.190514][ T3269] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
00:14:38 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000000000004000000000002000020000020000000d2f4655fd2f4655f0100ffff53ef", 0x3a, 0x400}], 0x4000, &(0x7f0000000080)={[{@max_batch_time={'max_batch_time'}}, {@usrjquota_path={'usrjquota', 0x3d, './file0'}}]})
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x80442)
r1 = dup(r0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r1, 0x800c6613, &(0x7f0000000040)=@v2={0x2, @aes128, 0x1, [], @a='i\xb2\xf6\xed\xee\xe7 \xcc\xe0Wy7\xeb\x8agQ'})

[  884.329452][ T3534] loop0: detected capacity change from 0 to 4
[  885.328421][ T3534] EXT4-fs (loop0): quotafile must be on filesystem root
[  886.687411][ T3534] loop0: detected capacity change from 0 to 4
[  886.958949][ T3534] EXT4-fs (loop0): quotafile must be on filesystem root
00:14:48 executing program 0:
ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(0xffffffffffffffff, 0xf504, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@ipv6_newroute={0x20, 0x18, 0x1, 0x0, 0x0, {0xa, 0x0, 0x10}, [@RTA_METRICS={0x4}]}, 0x20}}, 0x20048800)

00:14:57 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xe66e1, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000))
ftruncate(r0, 0x4d0)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r0, &(0x7f0000000400)={0x12, 0x10, 0xfa00, {0x0}}, 0x18)
r1 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001780)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000340)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff}, 0x2}}, 0x20)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000180)={r0})
listxattr(&(0x7f00000003c0)='./file0/file0\x00', &(0x7f00000005c0)=""/260, 0x104)
r4 = io_uring_setup(0x4eaa, &(0x7f0000000540)={0x0, 0xd0c1, 0x8, 0x2, 0x100008, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)
r5 = socket(0x27, 0x1, 0x10001)
getsockopt$inet6_opts(r5, 0x29, 0x37, &(0x7f0000000280)=""/37, &(0x7f00000002c0)=0x25)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r1, 0x10e, 0x8, &(0x7f0000000200)=0x7, 0x4)
write$RDMA_USER_CM_CMD_QUERY(r2, &(0x7f0000000380)={0x13, 0x10, 0x10f, {0x0, r3, 0x2}}, 0x18)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x80442)
r7 = dup(r6)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r7, 0x800c6613, &(0x7f0000000100)=@v1={0x0, @aes128, 0x4, @desc2='\xe3U\xa7j\x11\xa1\xbe\x18'})
write$RDMA_USER_CM_CMD_LISTEN(r1, &(0x7f00000000c0)={0x7, 0x8, 0xfa00, {r3, 0x7f}}, 0x10)

[  904.809227][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  904.880439][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  911.602057][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  911.629712][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  911.794659][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  911.812218][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  911.829222][ T3231] device veth0_vlan entered promiscuous mode
[  912.269242][ T3231] device veth1_vlan entered promiscuous mode
[  913.656928][ T3159] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  913.706163][ T3159] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  913.861616][ T3231] device veth0_macvtap entered promiscuous mode
[  914.117712][ T3231] device veth1_macvtap entered promiscuous mode
[  914.842340][ T3284] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  914.975716][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  915.016237][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  915.312323][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  915.361394][ T2707] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  915.556688][ T3231] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  915.559755][ T3231] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  915.561356][ T3231] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  915.562895][ T3231] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
00:15:18 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xe66e1, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000000))
ftruncate(r0, 0x4d0)
write$RDMA_USER_CM_CMD_MIGRATE_ID(r0, &(0x7f0000000400)={0x12, 0x10, 0xfa00, {0x0}}, 0x18)
r1 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/binder/failed_transaction_log\x00', 0x0, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001780)='/dev/infiniband/rdma_cm\x00', 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000340)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff}, 0x2}}, 0x20)
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000180)={r0})
listxattr(&(0x7f00000003c0)='./file0/file0\x00', &(0x7f00000005c0)=""/260, 0x104)
r4 = io_uring_setup(0x4eaa, &(0x7f0000000540)={0x0, 0xd0c1, 0x8, 0x2, 0x100008, 0x0, r0})
io_uring_register$IORING_UNREGISTER_BUFFERS(r4, 0x1, 0x0, 0x0)
r5 = socket(0x27, 0x1, 0x10001)
getsockopt$inet6_opts(r5, 0x29, 0x37, &(0x7f0000000280)=""/37, &(0x7f00000002c0)=0x25)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r1, 0x10e, 0x8, &(0x7f0000000200)=0x7, 0x4)
write$RDMA_USER_CM_CMD_QUERY(r2, &(0x7f0000000380)={0x13, 0x10, 0x10f, {0x0, r3, 0x2}}, 0x18)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x80442)
r7 = dup(r6)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r7, 0x800c6613, &(0x7f0000000100)=@v1={0x0, @aes128, 0x4, @desc2='\xe3U\xa7j\x11\xa1\xbe\x18'})
write$RDMA_USER_CM_CMD_LISTEN(r1, &(0x7f00000000c0)={0x7, 0x8, 0xfa00, {r3, 0x7f}}, 0x10)

00:15:19 executing program 1:
r0 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/udplite6\x00')
r1 = open_tree(r0, &(0x7f0000000000)='./file0\x00', 0x1000)
sendmsg$NL80211_CMD_GET_MPP(r1, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x40, 0x0, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x40}, 0x1, 0x0, 0x0, 0x88001}, 0x4880)
lseek(r0, 0x100000001, 0x0)

00:15:23 executing program 1:
write(0xffffffffffffffff, &(0x7f0000000080)="01010101", 0x4)
read(0xffffffffffffffff, &(0x7f00000000c0)=""/4, 0x4)

00:15:24 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/anycast6\x00')
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x80442)
dup(r1)
readv(r1, &(0x7f0000000100)=[{&(0x7f0000000080)=""/55, 0x37}], 0x1)
readv(r0, &(0x7f00000000c0)=[{&(0x7f0000000000)=""/8, 0x8}], 0x1)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x80442)
dup(r2)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r2, 0xc058534f, &(0x7f0000000140)={{0xdf, 0x95}, 0x1, 0x46611157, 0x0, {0x3, 0x2}, 0x1, 0x8})

00:15:27 executing program 1:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = getpid()
getpid()
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x0, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x80442)
r5 = dup(r4)
write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
r6 = openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000040)='cgroup.type\x00', 0x2, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snd/seq\x00', 0x800)
socketpair(0x1e, 0x404, 0x5, &(0x7f0000000100)={<r7=>0xffffffffffffffff})
r8 = accept4$llc(r5, &(0x7f0000000200), &(0x7f0000000240)=0x10, 0x80800)
sendmsg$unix(r0, &(0x7f0000000700)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=[@rights={{0x30, 0x1, 0x1, [r3, r5, r6, r0, r8, r0, r1, r7]}}, @cred={{0x1c, 0x1, 0x2, {r2, 0xee01}}}], 0x50}, 0x0)

00:15:30 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000180)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x210000}}]})

[  934.522887][ T3593] loop0: detected capacity change from 0 to 4
00:15:33 executing program 1:
r0 = syz_mount_image$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000340)='autofs\x00', 0x0, &(0x7f0000000380)='\x00\x98\x05\xc5r\xfe=\xca \xd4\x89w\xe8C\xe3]\xe3\x8cf\xcb\x0e\xb19D\x81\xa5s\xa3\xb0O\xc0\xe5Y\xbb\x93\xaf6P')
r1 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat2(r1, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0xc80, 0x10, 0x1}, 0x18)

[  935.268194][ T3593] EXT4-fs (loop0): EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  935.982082][ T3593] loop0: detected capacity change from 0 to 4
[  936.179732][ T3593] EXT4-fs (loop0): EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  936.992098][ T3600] autofs4:pid:3600:autofs_fill_super: called with bogus options
[  937.196494][ T3600] autofs4:pid:3600:autofs_fill_super: called with bogus options
00:15:37 executing program 0:
openat(0xffffffffffffff9c, &(0x7f0000001080)='./file0\x00', 0x24140, 0x0)
pipe2$9p(&(0x7f0000000000), 0x800)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x80442)
r1 = dup(r0)
ioctl$FITRIM(r0, 0xc0185879, 0xfffffffffffffffd)
getuid()
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f0000000100)=[@in={0x2, 0x0, @multicast1}], 0xfefa)
getsockopt$inet_sctp_SCTP_HMAC_IDENT(0xffffffffffffffff, 0x84, 0x16, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000040)=0x6)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x80442)
dup(r2)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f00000000c0)='trusted.overlay.opaque\x00', &(0x7f0000000140)='y\x00', 0x2, 0x1)
getgid()
write$P9_RREADLINK(r1, &(0x7f0000000080)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0x10)

00:15:37 executing program 1:
r0 = syz_mount_image$tmpfs(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000340)='autofs\x00', 0x0, &(0x7f0000000380)='\x00\x98\x05\xc5r\xfe=\xca \xd4\x89w\xe8C\xe3]\xe3\x8cf\xcb\x0e\xb19D\x81\xa5s\xa3\xb0O\xc0\xe5Y\xbb\x93\xaf6P')
r1 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
openat2(r1, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)={0xc80, 0x10, 0x1}, 0x18)

[  941.306192][   T39] audit: type=1800 audit(939.580:2): pid=3606 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="vda" ino=646 res=0 errno=0
[  941.909985][ T3605] autofs4:pid:3605:autofs_fill_super: called with bogus options
[  942.088014][   T39] audit: type=1800 audit(940.390:3): pid=3606 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="vda" ino=646 res=0 errno=0
00:15:42 executing program 1:
r0 = syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}}}}}]}}, 0x0)
syz_usb_control_io$cdc_ncm(r0, &(0x7f00000000c0)={0x14, &(0x7f0000000000)={0x20, 0xc, 0x70, {0x70, 0x31, "c4cad28e4ccb5489fa1b0d47cee05797c1dbe38c545b99d5fd9dd1be938c0715d647e9bd3e2655ca379dd4980afee9ba19ef9edebcf719db3ca451a38f450e1ae072da6629dee28097b8c3fd0d19e8bd35544d1930be4222a320b4e6f850d45e9f05cd829f2e4b02cb09b6a7dea2"}}, &(0x7f0000000080)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000300)={0x44, &(0x7f0000000100)={0x20, 0x7, 0x2d, "b6d53170252af9b937ef2bfcfd8a045b2a97372ee24a6bdef2ee64bb0fdb7dc75a0fe0a00869bfd77106d87ff6"}, &(0x7f0000000140)={0x0, 0xa, 0x1, 0x81}, &(0x7f0000000180)={0x0, 0x8, 0x1, 0xe1}, &(0x7f00000001c0)={0x20, 0x80, 0x1c, {0x7, 0x9, 0x9, 0x6, 0x5, 0x7fff, 0xfffa, 0x10001, 0x835f, 0x9, 0x1, 0x3}}, &(0x7f0000000200)={0x20, 0x85, 0x4, 0x3b}, &(0x7f0000000240)={0x20, 0x83, 0x2, 0x1}, &(0x7f0000000280)={0x20, 0x87, 0x2, 0x2}, &(0x7f00000002c0)={0x20, 0x89, 0x2}})

00:15:42 executing program 0:
openat(0xffffffffffffff9c, &(0x7f0000001080)='./file0\x00', 0x24140, 0x0)
pipe2$9p(&(0x7f0000000000), 0x800)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x80442)
r1 = dup(r0)
ioctl$FITRIM(r0, 0xc0185879, 0xfffffffffffffffd)
getuid()
setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, &(0x7f0000000100)=[@in={0x2, 0x0, @multicast1}], 0xfefa)
getsockopt$inet_sctp_SCTP_HMAC_IDENT(0xffffffffffffffff, 0x84, 0x16, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000040)=0x6)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x80442)
dup(r2)
fsetxattr$trusted_overlay_opaque(r2, &(0x7f00000000c0)='trusted.overlay.opaque\x00', &(0x7f0000000140)='y\x00', 0x2, 0x1)
getgid()
write$P9_RREADLINK(r1, &(0x7f0000000080)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0x10)

[  946.762569][   T39] audit: type=1800 audit(945.060:4): pid=3612 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="vda" ino=646 res=0 errno=0
[  946.859117][ T3269] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  947.548398][ T3269] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  947.581418][ T3269] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  947.606547][ T3269] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  947.608540][ T3269] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  947.610264][ T3269] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  947.612762][ T3269] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  947.869997][ T3269] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  947.871789][ T3269] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  947.899150][ T3269] usb 2-1: Product: syz
[  947.900537][ T3269] usb 2-1: Manufacturer: syz
[  947.901631][ T3269] usb 2-1: SerialNumber: syz
[  949.092046][ T3269] cdc_ncm 2-1:1.0: bind() failure
[  949.317738][ T3269] cdc_ncm: probe of 2-1:1.1 failed with error -71
[  949.343032][ T3269] cdc_mbim: probe of 2-1:1.1 failed with error -71
[  949.439808][ T3269] usbtest: probe of 2-1:1.1 failed with error -71
[  949.649414][ T3269] usb 2-1: USB disconnect, device number 2
00:15:48 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1400000004080500000000001567d7691d0700000036441cec05980000000000000000"], 0x14}}, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x80442)
r2 = dup(r1)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0x7, &(0x7f0000000080)={0xd8, 0x80, 0x6, 0x3f}, 0x10)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
bind$netlink(r2, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfb, 0x8}, 0xc)

[  951.356052][ T3269] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  951.761054][ T3269] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  951.763046][ T3269] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  951.786723][ T3269] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  951.788403][ T3269] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  951.790212][ T3269] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  951.792335][ T3269] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  952.257691][ T3269] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  952.259568][ T3269] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  952.281886][ T3269] usb 2-1: Product: syz
[  952.309941][ T3269] usb 2-1: Manufacturer: syz
[  952.311393][ T3269] usb 2-1: SerialNumber: syz
[  952.917964][ T3269] cdc_ncm 2-1:1.0: bind() failure
[  953.161743][ T3269] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[  953.195758][ T3269] cdc_ncm 2-1:1.1: bind() failure
[  953.395750][ T3269] usb 2-1: USB disconnect, device number 3
00:15:53 executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x80442)
r2 = dup(r1)
ioctl$HIDIOCGPHYS(r2, 0x80404812, &(0x7f0000000500))
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
setsockopt$inet6_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000200)=0xffffffffffffffff, 0x4)
socketpair(0x25, 0x6, 0x2, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
getsockopt$inet6_tcp_buf(r3, 0x6, 0xd, &(0x7f0000000080)=""/242, &(0x7f0000000180)=0xf2)
getsockopt$inet6_tcp_int(r0, 0x6, 0x1, &(0x7f0000000000), &(0x7f0000000400)=0x4)
fchdir(0xffffffffffffffff)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x80442)
r6 = dup(r5)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r6, 0xc0605345, &(0x7f0000000540)={0x7, 0x1, {0x1, 0x1, 0x4, 0x3, 0x12a4}, 0x8})
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r6, 0xc0a85322, &(0x7f0000000440))
ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f0000000040)={<r7=>r4, 0x7, 0xbe, 0x80000001})
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280)='nl80211\x00', r3)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f00000003c0)=[@mss={0x2, 0xcf0}, @window={0x3, 0x0, 0x81}, @window={0x3, 0x3f, 0x7fff}, @timestamp, @window={0x3, 0xfff9, 0x463}], 0x5)
sendmsg$NL80211_CMD_START_NAN(r7, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)=ANY=[@ANYBLOB=';\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="200028bd7000fedbdf257300000008000300", @ANYRES32=0x0, @ANYBLOB="0c00990000100000370000000500ee000000020000000800ef000200000008004700080000000500ee00"/52], 0x50}, 0x1, 0x0, 0x0, 0x24054804}, 0x8010)

00:15:53 executing program 0:
symlinkat(&(0x7f0000000140)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00')
execve(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000300)=[&(0x7f0000000040)='--*%*\x00', &(0x7f0000000080)='\xa2()[%I(\x00', &(0x7f00000000c0)=')-.-\x00', &(0x7f0000000100)='\x00', &(0x7f00000001c0)='.\x00', &(0x7f0000000200)='\x00', &(0x7f0000000240)='\x00', &(0x7f0000000280)=':+*\x00', &(0x7f00000002c0)=',\xa6(\x885)'], &(0x7f00000004c0)=[&(0x7f0000000380)='\x00', &(0x7f00000003c0)='$-:#}\\^\xc2)@\'\x00', &(0x7f0000000400)='\x00', &(0x7f0000000440)='%\x00', &(0x7f0000000480)='{\x00'])
move_mount(0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00', 0xffffffffffffffff, 0x0, 0x40)
execve(&(0x7f0000000500)='./file0/../file0/file0\x00', &(0x7f00000007c0)=[&(0x7f0000000540)='@-\x00', &(0x7f0000000580)='&#\\,-/{\x00', &(0x7f00000005c0)='.\x00', &(0x7f0000000600)='\x00', &(0x7f0000000680)=',\x84/-!.@.^}(\x00', &(0x7f00000006c0)='\x00', &(0x7f0000000700)='{\x00', &(0x7f0000000740)='.\x00', &(0x7f0000000780)='$\'\x00'], &(0x7f0000000a80)=[&(0x7f0000000840)='\x00', &(0x7f0000000880)='\x00', &(0x7f00000008c0)=')-.-\x00', &(0x7f0000000900)='.\x00', &(0x7f0000000940)='{\x00', &(0x7f0000000980)='$-:#}\\^\xc2)@\'\x00', &(0x7f00000009c0)='^+--[*%\x00', &(0x7f0000000a00)=':+*\x00', &(0x7f0000000a40)='$-:#}\\^\xc2)@\'\x00'])
r0 = syz_io_uring_complete(0x0)
accept(r0, &(0x7f0000000bc0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={[], [], @broadcast}}}}, &(0x7f0000000c40)=0x80)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b80)='/proc/sysvipc/sem\x00', 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH(r0, 0x3, &(0x7f0000000b00)=']\x00', &(0x7f0000000b40)='./file0/../file0/file0\x00', r1)

00:16:00 executing program 0:
symlinkat(&(0x7f0000000140)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00')
execve(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000300)=[&(0x7f0000000040)='--*%*\x00', &(0x7f0000000080)='\xa2()[%I(\x00', &(0x7f00000000c0)=')-.-\x00', &(0x7f0000000100)='\x00', &(0x7f00000001c0)='.\x00', &(0x7f0000000200)='\x00', &(0x7f0000000240)='\x00', &(0x7f0000000280)=':+*\x00', &(0x7f00000002c0)=',\xa6(\x885)'], &(0x7f00000004c0)=[&(0x7f0000000380)='\x00', &(0x7f00000003c0)='$-:#}\\^\xc2)@\'\x00', &(0x7f0000000400)='\x00', &(0x7f0000000440)='%\x00', &(0x7f0000000480)='{\x00'])
move_mount(0xffffffffffffff9c, &(0x7f0000000640)='./file0\x00', 0xffffffffffffffff, 0x0, 0x40)
execve(&(0x7f0000000500)='./file0/../file0/file0\x00', &(0x7f00000007c0)=[&(0x7f0000000540)='@-\x00', &(0x7f0000000580)='&#\\,-/{\x00', &(0x7f00000005c0)='.\x00', &(0x7f0000000600)='\x00', &(0x7f0000000680)=',\x84/-!.@.^}(\x00', &(0x7f00000006c0)='\x00', &(0x7f0000000700)='{\x00', &(0x7f0000000740)='.\x00', &(0x7f0000000780)='$\'\x00'], &(0x7f0000000a80)=[&(0x7f0000000840)='\x00', &(0x7f0000000880)='\x00', &(0x7f00000008c0)=')-.-\x00', &(0x7f0000000900)='.\x00', &(0x7f0000000940)='{\x00', &(0x7f0000000980)='$-:#}\\^\xc2)@\'\x00', &(0x7f00000009c0)='^+--[*%\x00', &(0x7f0000000a00)=':+*\x00', &(0x7f0000000a40)='$-:#}\\^\xc2)@\'\x00'])
r0 = syz_io_uring_complete(0x0)
accept(r0, &(0x7f0000000bc0)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={[], [], @broadcast}}}}, &(0x7f0000000c40)=0x80)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000b80)='/proc/sysvipc/sem\x00', 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH(r0, 0x3, &(0x7f0000000b00)=']\x00', &(0x7f0000000b40)='./file0/../file0/file0\x00', r1)

00:16:03 executing program 1:
getsockopt$bt_hci(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)

00:16:06 executing program 0:
fsetxattr$trusted_overlay_opaque(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000140)='/dev/autofs\x00', 0x101000, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x80442)
r1 = dup(r0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x80442)
r3 = dup(r2)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
getpeername$inet(r3, &(0x7f00000000c0), &(0x7f0000000100)=0x10)
getsockopt$IP_VS_SO_GET_SERVICE(0xffffffffffffffff, 0x0, 0x483, &(0x7f0000000000), &(0x7f0000000080)=0x68)

00:16:07 executing program 1:
r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/cpuinfo\x00', 0x0, 0x0)
read$FUSE(r1, &(0x7f0000000cc0)={0x2020}, 0x2020)
shmctl$IPC_RMID(r0, 0x0)

00:16:11 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
r0 = syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))
r1 = dup3(r0, r0, 0x0)
syz_io_uring_setup(0x5959, &(0x7f0000000000)={0x0, 0xa6a9, 0x1, 0x0, 0x10c, 0x0, r1}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0))

00:16:12 executing program 1:
r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000040)='/dev/nvme-fabrics\x00', 0x0, 0x0)
write$P9_RFLUSH(r0, &(0x7f0000000080)={0x7, 0x6d, 0x1}, 0x7)
set_mempolicy(0x0, &(0x7f0000000000)=0x80000001, 0x80)

00:16:17 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x19, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000100000005000000000004000040000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000001000018000000c28500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e32323330373039383000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000e8f7d2e8feeb4bf889ba053b02420ff8010040000c00000000000000daf4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000500400000000000000000000000000000004300000000000000", 0x40, 0x540}, {&(0x7f0000010300)="02000000030000000400000019000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="7f000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000daf4655fdaf4655fdaf4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000daf4655fdbf4655fdbf4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2100}, {&(0x7f0000011600)="20000000641e8ebf641e8ebf00000000daf4655f00"/32, 0x20, 0x2180}, {&(0x7f0000011700)="8081000000601020daf4655fdaf4655fdaf4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000daf4655f00"/160, 0xa0, 0x2600}, {&(0x7f0000011800)="c041000000380000daf4655fdaf4655fdaf4655f00000000000002004000000000000800000000000af301000400000000000000000000000700000020000000", 0x40, 0x2a00}, {&(0x7f0000011900)="20000000000000000000000000000000daf4655f000000000000000000000000000002ea00"/64, 0x40, 0x2a80}, {&(0x7f0000011a00)="ed4100003c000000dbf4655fdbf4655fdbf4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000904a5ec200000000000000000000000000000000000000000000000020000000641e8ebf641e8ebf641e8ebfdbf4655f641e8ebf0000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x2b00}, {&(0x7f0000011b00)="ed8100001a040000dbf4655fdbf4655fdbf4655f00000000000001004000000000000800010000000af30100040000000000000000000000010000005000000000000000000000000000000000000000000000000000000000000000000000000000000046b58a6000000000000000000000000000000000000000000000000020000000641e8ebf641e8ebf641e8ebfdbf4655f641e8ebf0000000000000000", 0xa0, 0x2c00}, {&(0x7f0000011c00)="ffa1000026000000dbf4655fdbf4655fdbf4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3232333037303938302f66696c65302f66696c65300000000000000000000000000000000000000000000029d1c2e100000000000000000000000000000000000000000000000020000000641e8ebf641e8ebf641e8ebfdbf4655f641e8ebf0000000000000000", 0xa0, 0x2d00}, {&(0x7f0000011d00)="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", 0x1a0, 0x2e00}, {&(0x7f0000011f00)="ed81000064000000dbf4655fdbf4655fdbf4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616cb822423400000000000000000000000000000000000000000000000020000000641e8ebf641e8ebf641e8ebfdbf4655f641e8ebf0000000000000000000002ea040734000000000028000000000000006461746100000000000000000000000000000000000000000000000000000000000000006c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273", 0x100, 0x3000}, {&(0x7f0000012000)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000012100)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8070000", 0x20, 0x10000}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000012400)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012500)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012600)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012700)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012800)="504d4d00504d4dffdbf4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7033320075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x20000}, {&(0x7f0000012900)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x28000}], 0x0, &(0x7f0000012e00))
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='pipefs\x00', 0x4000, 0x0)

00:16:18 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
r0 = syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))
r1 = dup3(r0, r0, 0x0)
syz_io_uring_setup(0x5959, &(0x7f0000000000)={0x0, 0xa6a9, 0x1, 0x0, 0x10c, 0x0, r1}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0))

[  982.179367][ T3668] loop1: detected capacity change from 0 to 2048
[  983.661947][ T3668] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
00:16:23 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
r0 = syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))
r1 = dup3(r0, r0, 0x0)
syz_io_uring_setup(0x5959, &(0x7f0000000000)={0x0, 0xa6a9, 0x1, 0x0, 0x10c, 0x0, r1}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0))

00:16:25 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x19, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000100000005000000000004000040000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000001000018000000c28500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e32323330373039383000"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000e8f7d2e8feeb4bf889ba053b02420ff8010040000c00000000000000daf4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000500400000000000000000000000000000004300000000000000", 0x40, 0x540}, {&(0x7f0000010300)="02000000030000000400000019000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="7f000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000daf4655fdaf4655fdaf4655f00"/4128, 0x1020, 0x1000}, {&(0x7f0000011500)="ed41000000080000daf4655fdbf4655fdbf4655f00000000000004004000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x2100}, {&(0x7f0000011600)="20000000641e8ebf641e8ebf00000000daf4655f00"/32, 0x20, 0x2180}, {&(0x7f0000011700)="8081000000601020daf4655fdaf4655fdaf4655f00000000000001004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000daf4655f00"/160, 0xa0, 0x2600}, {&(0x7f0000011800)="c041000000380000daf4655fdaf4655fdaf4655f00000000000002004000000000000800000000000af301000400000000000000000000000700000020000000", 0x40, 0x2a00}, {&(0x7f0000011900)="20000000000000000000000000000000daf4655f000000000000000000000000000002ea00"/64, 0x40, 0x2a80}, {&(0x7f0000011a00)="ed4100003c000000dbf4655fdbf4655fdbf4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000904a5ec200000000000000000000000000000000000000000000000020000000641e8ebf641e8ebf641e8ebfdbf4655f641e8ebf0000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x2b00}, {&(0x7f0000011b00)="ed8100001a040000dbf4655fdbf4655fdbf4655f00000000000001004000000000000800010000000af30100040000000000000000000000010000005000000000000000000000000000000000000000000000000000000000000000000000000000000046b58a6000000000000000000000000000000000000000000000000020000000641e8ebf641e8ebf641e8ebfdbf4655f641e8ebf0000000000000000", 0xa0, 0x2c00}, {&(0x7f0000011c00)="ffa1000026000000dbf4655fdbf4655fdbf4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3232333037303938302f66696c65302f66696c65300000000000000000000000000000000000000000000029d1c2e100000000000000000000000000000000000000000000000020000000641e8ebf641e8ebf641e8ebfdbf4655f641e8ebf0000000000000000", 0xa0, 0x2d00}, {&(0x7f0000011d00)="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", 0x1a0, 0x2e00}, {&(0x7f0000011f00)="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", 0x100, 0x3000}, {&(0x7f0000012000)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009407090166696c652e636f6c64000000", 0x80, 0x8000}, {&(0x7f0000012100)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8070000", 0x20, 0x10000}, {&(0x7f0000012200)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x10800}, {&(0x7f0000012300)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11000}, {&(0x7f0000012400)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x11800}, {&(0x7f0000012500)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12000}, {&(0x7f0000012600)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x12800}, {&(0x7f0000012700)='\x00\x00\x00\x00\x00\b\x00'/32, 0x20, 0x13000}, {&(0x7f0000012800)="504d4d00504d4dffdbf4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7033320075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x20000}, {&(0x7f0000012900)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x28000}], 0x0, &(0x7f0000012e00))
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='pipefs\x00', 0x4000, 0x0)

00:16:28 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
r0 = syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))
r1 = dup3(r0, r0, 0x0)
syz_io_uring_setup(0x5959, &(0x7f0000000000)={0x0, 0xa6a9, 0x1, 0x0, 0x10c, 0x0, r1}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0))

[  990.721135][ T3681] loop1: detected capacity change from 0 to 2048
[  991.457164][ T3681] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
00:16:32 executing program 1:
r0 = socket$l2tp(0x2, 0x2, 0x73)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000003b00)='/dev/hwrng\x00', 0x0, 0x0)
bind$l2tp(r0, &(0x7f0000000400)={0x2, 0x0, @loopback}, 0x10)
dup3(r1, r0, 0x0)
fremovexattr(0xffffffffffffffff, &(0x7f0000000000)=@known='user.incfs.metadata\x00')

00:16:33 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
r0 = syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))
dup3(r0, r0, 0x0)

00:16:37 executing program 1:
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$BTRFS_IOC_SCRUB_CANCEL(r0, 0x941c, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/snd/seq\x00', 0x80442)
r2 = dup(r1)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/vmallocinfo\x00', 0x0, 0x0)
ioctl$SNDRV_SEQ_IOCTL_GET_PORT_INFO(r3, 0xc0a85322, &(0x7f0000000200))
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x0, 0x0}}, 0x20)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYRESDEC], 0xe8}, 0x1, 0x0, 0x0, 0x40000}, 0x20044000)

00:16:38 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:16:44 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
r0 = syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))
dup3(r0, r0, 0x0)

00:16:45 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:16:48 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:16:49 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
r0 = syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))
dup3(r0, r0, 0x0)

00:16:53 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:16:56 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
r0 = syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))
dup3(r0, r0, 0x0)

00:16:57 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:17:01 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:17:02 executing program 0:
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:17:06 executing program 0:
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:17:06 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:17:09 executing program 0:
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:17:10 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:17:14 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:17:14 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:17:18 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:17:19 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:17:23 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:17:23 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:17:26 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil)

00:17:28 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:17:31 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil)

00:17:32 executing program 1:
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:17:34 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil)

00:17:36 executing program 1:
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:17:39 executing program 0:
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:17:41 executing program 1:
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:17:45 executing program 0:
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:17:46 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:17:50 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:17:50 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:17:54 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:17:55 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:17:58 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:17:58 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x0, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:18:02 executing program 0 (fault-call:2 fault-nth:0):
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:18:02 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0x0, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

[ 1086.787246][ T3796] FAULT_INJECTION: forcing a failure.
[ 1086.787246][ T3796] name failslab, interval 1, probability 0, space 0, times 1
[ 1086.818214][ T3796] CPU: 0 PID: 3796 Comm: syz-executor.0 Not tainted 5.12.0-rc5-syzkaller-00721-gb2b3d18fc20e #0
[ 1086.820139][ T3796] Hardware name: riscv-virtio,qemu (DT)
[ 1086.822029][ T3796] Call Trace:
[ 1086.823078][ T3796] [<ffffffe000009706>] walk_stackframe+0x0/0x23c
[ 1086.825365][ T3796] [<ffffffe002a5f182>] dump_backtrace+0x40/0x4e
[ 1086.826753][ T3796] [<ffffffe002a5f1b2>] show_stack+0x22/0x2e
[ 1086.828737][ T3796] [<ffffffe002a68a3e>] dump_stack+0x148/0x1d8
[ 1086.830082][ T3796] [<ffffffe000a37512>] should_fail+0x250/0x252
[ 1086.831511][ T3796] [<ffffffe0003be93e>] __should_failslab+0x62/0x82
[ 1086.832934][ T3796] [<ffffffe000312314>] should_failslab+0xc/0x1c
[ 1086.835081][ T3796] [<ffffffe0003b8e04>] kmem_cache_alloc+0x5c/0x3ca
[ 1086.836498][ T3796] [<ffffffe00001f31a>] vm_area_dup+0x36/0x182
[ 1086.837880][ T3796] [<ffffffe00034af80>] copy_vma+0x240/0x414
[ 1086.840095][ T3796] [<ffffffe000351974>] move_vma+0x7fc/0x862
[ 1086.841689][ T3796] [<ffffffe0003522e6>] sys_mremap+0x90c/0xaec
[ 1086.843185][ T3796] [<ffffffe000005572>] ret_from_syscall+0x0/0x2
00:18:06 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0x0, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:18:07 executing program 0 (fault-call:2 fault-nth:1):
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

[ 1091.551295][ T3800] FAULT_INJECTION: forcing a failure.
[ 1091.551295][ T3800] name failslab, interval 1, probability 0, space 0, times 0
[ 1091.581410][ T3800] CPU: 1 PID: 3800 Comm: syz-executor.0 Not tainted 5.12.0-rc5-syzkaller-00721-gb2b3d18fc20e #0
[ 1091.583568][ T3800] Hardware name: riscv-virtio,qemu (DT)
[ 1091.585153][ T3800] Call Trace:
[ 1091.586062][ T3800] [<ffffffe000009706>] walk_stackframe+0x0/0x23c
[ 1091.587573][ T3800] [<ffffffe002a5f182>] dump_backtrace+0x40/0x4e
[ 1091.588983][ T3800] [<ffffffe002a5f1b2>] show_stack+0x22/0x2e
[ 1091.590301][ T3800] [<ffffffe002a68a3e>] dump_stack+0x148/0x1d8
[ 1091.591625][ T3800] [<ffffffe000a37512>] should_fail+0x250/0x252
[ 1091.593040][ T3800] [<ffffffe0003be93e>] __should_failslab+0x62/0x82
[ 1091.595144][ T3800] [<ffffffe000312314>] should_failslab+0xc/0x1c
[ 1091.598003][ T3800] [<ffffffe0003b8e04>] kmem_cache_alloc+0x5c/0x3ca
[ 1091.599404][ T3800] [<ffffffe000358758>] anon_vma_clone+0xa4/0x32e
[ 1091.600897][ T3800] [<ffffffe00034afde>] copy_vma+0x29e/0x414
[ 1091.602249][ T3800] [<ffffffe000351974>] move_vma+0x7fc/0x862
[ 1091.603947][ T3800] [<ffffffe0003522e6>] sys_mremap+0x90c/0xaec
[ 1091.606057][ T3800] [<ffffffe000005572>] ret_from_syscall+0x0/0x2
00:18:10 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0x0, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:18:11 executing program 0 (fault-call:2 fault-nth:2):
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

[ 1095.635588][ T3804] FAULT_INJECTION: forcing a failure.
[ 1095.635588][ T3804] name fail_usercopy, interval 1, probability 0, space 0, times 1
[ 1095.640655][ T3804] CPU: 1 PID: 3804 Comm: syz-executor.0 Not tainted 5.12.0-rc5-syzkaller-00721-gb2b3d18fc20e #0
[ 1095.643492][ T3804] Hardware name: riscv-virtio,qemu (DT)
[ 1095.645123][ T3804] Call Trace:
[ 1095.645977][ T3804] [<ffffffe000009706>] walk_stackframe+0x0/0x23c
[ 1095.647578][ T3804] [<ffffffe002a5f182>] dump_backtrace+0x40/0x4e
[ 1095.649713][ T3804] [<ffffffe002a5f1b2>] show_stack+0x22/0x2e
[ 1095.651162][ T3804] [<ffffffe002a68a3e>] dump_stack+0x148/0x1d8
[ 1095.652499][ T3804] [<ffffffe000a37512>] should_fail+0x250/0x252
[ 1095.654455][ T3804] [<ffffffe000a37532>] should_fail_usercopy+0x1e/0x26
[ 1095.656098][ T3804] [<ffffffe000974ed2>] _copy_to_user+0x34/0xc0
[ 1095.658006][ T3804] [<ffffffe00045901c>] simple_read_from_buffer+0xbe/0x120
[ 1095.659638][ T3804] [<ffffffe0005548aa>] proc_fail_nth_read+0x104/0x16e
[ 1095.661141][ T3804] [<ffffffe0003f9210>] vfs_read+0x108/0x2ac
[ 1095.662490][ T3804] [<ffffffe0003f9724>] ksys_read+0xb4/0x1b8
[ 1095.664411][ T3804] [<ffffffe0003f9850>] sys_read+0x28/0x36
[ 1095.666129][ T3804] [<ffffffe000005572>] ret_from_syscall+0x0/0x2
00:18:14 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, 0x0, &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:18:16 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:18:18 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, 0x0, &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:18:20 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1008, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:18:22 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, 0x0, &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:18:24 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1200, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:18:26 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, 0x0, &(0x7f0000000280))

00:18:27 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x100f00, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:18:29 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, 0x0, &(0x7f0000000280))

00:18:31 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x900e00, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:18:34 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, 0x0, &(0x7f0000000280))

00:18:35 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x20fff000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:18:38 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), 0x0)

00:18:39 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x3fdf001000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:18:41 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), 0x0)

00:18:42 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x3ffffff000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:18:48 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), 0x0)

00:18:49 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x4000000000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:18:53 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1008, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:18:55 executing program 1:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, 0x0, &(0x7f0000000280))

00:18:58 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1200, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:18:59 executing program 1 (fault-call:3 fault-nth:0):
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

[ 1143.871005][ T3861] FAULT_INJECTION: forcing a failure.
[ 1143.871005][ T3861] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1143.886236][ T3861] CPU: 1 PID: 3861 Comm: syz-executor.1 Not tainted 5.12.0-rc5-syzkaller-00721-gb2b3d18fc20e #0
[ 1143.888101][ T3861] Hardware name: riscv-virtio,qemu (DT)
[ 1143.889120][ T3861] Call Trace:
[ 1143.889923][ T3861] [<ffffffe000009706>] walk_stackframe+0x0/0x23c
[ 1143.891342][ T3861] [<ffffffe002a5f182>] dump_backtrace+0x40/0x4e
[ 1143.892662][ T3861] [<ffffffe002a5f1b2>] show_stack+0x22/0x2e
[ 1143.894791][ T3861] [<ffffffe002a68a3e>] dump_stack+0x148/0x1d8
[ 1143.896341][ T3861] [<ffffffe000a37512>] should_fail+0x250/0x252
[ 1143.897897][ T3861] [<ffffffe000a37532>] should_fail_usercopy+0x1e/0x26
[ 1143.900285][ T3861] [<ffffffe000974dc2>] _copy_from_user+0x34/0x110
[ 1143.902176][ T3861] [<ffffffe0004e309c>] io_uring_setup+0x4c/0x1c10
[ 1143.904132][ T3861] [<ffffffe0004e8670>] sys_io_uring_setup+0x22/0x2e
[ 1143.906100][ T3861] [<ffffffe000005572>] ret_from_syscall+0x0/0x2
00:19:02 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x100f00, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:19:04 executing program 1 (fault-call:3 fault-nth:1):
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

[ 1148.747807][ T3865] FAULT_INJECTION: forcing a failure.
[ 1148.747807][ T3865] name failslab, interval 1, probability 0, space 0, times 0
[ 1148.749924][ T3865] CPU: 0 PID: 3865 Comm: syz-executor.1 Not tainted 5.12.0-rc5-syzkaller-00721-gb2b3d18fc20e #0
[ 1148.751448][ T3865] Hardware name: riscv-virtio,qemu (DT)
[ 1148.752420][ T3865] Call Trace:
[ 1148.753274][ T3865] [<ffffffe000009706>] walk_stackframe+0x0/0x23c
[ 1148.754843][ T3865] [<ffffffe002a5f182>] dump_backtrace+0x40/0x4e
[ 1148.756226][ T3865] [<ffffffe002a5f1b2>] show_stack+0x22/0x2e
[ 1148.757375][ T3865] [<ffffffe002a68a3e>] dump_stack+0x148/0x1d8
[ 1148.758758][ T3865] [<ffffffe000a37512>] should_fail+0x250/0x252
[ 1148.760355][ T3865] [<ffffffe0003be93e>] __should_failslab+0x62/0x82
[ 1148.761264][ T3865] [<ffffffe000312314>] should_failslab+0xc/0x1c
[ 1148.762236][ T3865] [<ffffffe0003b8ab0>] kmem_cache_alloc_trace+0x5e/0x2bc
[ 1148.763568][ T3865] [<ffffffe0004e3206>] io_uring_setup+0x1b6/0x1c10
[ 1148.764726][ T3865] [<ffffffe0004e8670>] sys_io_uring_setup+0x22/0x2e
[ 1148.766078][ T3865] [<ffffffe000005572>] ret_from_syscall+0x0/0x2
00:19:07 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x900e00, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:19:08 executing program 1 (fault-call:3 fault-nth:2):
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

[ 1152.539129][ T3870] FAULT_INJECTION: forcing a failure.
[ 1152.539129][ T3870] name failslab, interval 1, probability 0, space 0, times 0
[ 1152.542341][ T3870] CPU: 0 PID: 3870 Comm: syz-executor.1 Not tainted 5.12.0-rc5-syzkaller-00721-gb2b3d18fc20e #0
[ 1152.545113][ T3870] Hardware name: riscv-virtio,qemu (DT)
[ 1152.546736][ T3870] Call Trace:
[ 1152.547650][ T3870] [<ffffffe000009706>] walk_stackframe+0x0/0x23c
[ 1152.549653][ T3870] [<ffffffe002a5f182>] dump_backtrace+0x40/0x4e
[ 1152.551100][ T3870] [<ffffffe002a5f1b2>] show_stack+0x22/0x2e
[ 1152.552501][ T3870] [<ffffffe002a68a3e>] dump_stack+0x148/0x1d8
[ 1152.554454][ T3870] [<ffffffe000a37512>] should_fail+0x250/0x252
[ 1152.556173][ T3870] [<ffffffe0003be93e>] __should_failslab+0x62/0x82
[ 1152.557522][ T3870] [<ffffffe000312314>] should_failslab+0xc/0x1c
[ 1152.559599][ T3870] [<ffffffe0003b8086>] __kmalloc+0x6e/0x332
[ 1152.561037][ T3870] [<ffffffe0004e33ac>] io_uring_setup+0x35c/0x1c10
[ 1152.562495][ T3870] [<ffffffe0004e8670>] sys_io_uring_setup+0x22/0x2e
[ 1152.564602][ T3870] [<ffffffe000005572>] ret_from_syscall+0x0/0x2
00:19:10 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x20fff000, 0x7, &(0x7f0000fff000/0x1000)=nil)

00:19:13 executing program 1 (fault-call:3 fault-nth:3):
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

00:19:15 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x3fdf001000, 0x7, &(0x7f0000fff000/0x1000)=nil)

[ 1157.187136][ T3875] FAULT_INJECTION: forcing a failure.
[ 1157.187136][ T3875] name failslab, interval 1, probability 0, space 0, times 0
[ 1157.190337][ T3875] CPU: 0 PID: 3875 Comm: syz-executor.1 Not tainted 5.12.0-rc5-syzkaller-00721-gb2b3d18fc20e #0
[ 1157.192879][ T3875] Hardware name: riscv-virtio,qemu (DT)
[ 1157.194339][ T3875] Call Trace:
[ 1157.195404][ T3875] [<ffffffe000009706>] walk_stackframe+0x0/0x23c
[ 1157.196847][ T3875] [<ffffffe002a5f182>] dump_backtrace+0x40/0x4e
[ 1157.198227][ T3875] [<ffffffe002a5f1b2>] show_stack+0x22/0x2e
[ 1157.199642][ T3875] [<ffffffe002a68a3e>] dump_stack+0x148/0x1d8
[ 1157.200992][ T3875] [<ffffffe000a37512>] should_fail+0x250/0x252
[ 1157.202507][ T3875] [<ffffffe0003be93e>] __should_failslab+0x62/0x82
[ 1157.204389][ T3875] [<ffffffe000312314>] should_failslab+0xc/0x1c
[ 1157.206113][ T3875] [<ffffffe0003b8ab0>] kmem_cache_alloc_trace+0x5e/0x2bc
[ 1157.207701][ T3875] [<ffffffe00096c73a>] percpu_ref_init+0x8e/0x220
[ 1157.209149][ T3875] [<ffffffe0004e3414>] io_uring_setup+0x3c4/0x1c10
[ 1157.210539][ T3875] [<ffffffe0004e8670>] sys_io_uring_setup+0x22/0x2e
[ 1157.211918][ T3875] [<ffffffe000005572>] ret_from_syscall+0x0/0x2
00:19:18 executing program 1 (fault-call:3 fault-nth:4):
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x0, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000fff000/0x1000)=nil)
syz_io_uring_setup(0xf69, &(0x7f00000001c0), &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000ff7000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))

[ 1159.943778][    C0] hrtimer: interrupt took 1279200 ns
00:19:19 executing program 0:
mlock(&(0x7f0000ffa000/0x4000)=nil, 0x4000)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x3000, 0x3, &(0x7f0000ff3000/0x3000)=nil)
mremap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x3ffffff000, 0x7, &(0x7f0000fff000/0x1000)=nil)

[ 1161.771828][ T3880] FAULT_INJECTION: forcing a failure.
[ 1161.771828][ T3880] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[ 1161.795616][ T3880] CPU: 1 PID: 3880 Comm: syz-executor.1 Not tainted 5.12.0-rc5-syzkaller-00721-gb2b3d18fc20e #0
[ 1161.798687][ T3880] Hardware name: riscv-virtio,qemu (DT)
[ 1161.799985][ T3880] Call Trace:
[ 1161.801013][ T3880] [<ffffffe000009706>] walk_stackframe+0x0/0x23c
[ 1161.804911][ T3880] [<ffffffe002a5f182>] dump_backtrace+0x40/0x4e
[ 1161.806598][ T3880] [<ffffffe002a5f1b2>] show_stack+0x22/0x2e
[ 1161.808123][ T3880] [<ffffffe002a68a3e>] dump_stack+0x148/0x1d8
[ 1161.809711][ T3880] [<ffffffe000a37512>] should_fail+0x250/0x252
[ 1161.811489][ T3880] [<ffffffe00036c530>] should_fail_alloc_page+0x54/0x62
[ 1161.813186][ T3880] [<ffffffe00036f654>] __alloc_pages_nodemask+0xf6/0x480
[ 1161.815686][ T3880] [<ffffffe0003a273c>] alloc_pages_current+0x114/0x234
[ 1161.817403][ T3880] [<ffffffe000366d58>] __get_free_pages+0xe/0x38
[ 1161.818899][ T3880] [<ffffffe0004ceaf0>] io_mem_alloc+0x114/0x180
[ 1161.820396][ T3880] [<ffffffe0004e3894>] io_uring_setup+0x844/0x1c10
[ 1161.821958][ T3880] [<ffffffe0004e8670>] sys_io_uring_setup+0x22/0x2e
[ 1161.823672][ T3880] [<ffffffe000005572>] ret_from_syscall+0x0/0x2
[ 1161.922971][ T3880] ==================================================================
[ 1161.927524][ T3880] BUG: KASAN: null-ptr-deref in io_commit_cqring+0x3ea/0x8f6
[ 1161.929145][ T3880] Write of size 4 at addr 00000000000000c0 by task syz-executor.1/3880
[ 1161.931176][ T3880] 
[ 1161.932304][ T3880] CPU: 1 PID: 3880 Comm: syz-executor.1 Not tainted 5.12.0-rc5-syzkaller-00721-gb2b3d18fc20e #0
[ 1161.934783][ T3880] Hardware name: riscv-virtio,qemu (DT)
[ 1161.936322][ T3880] Call Trace:
[ 1161.937184][ T3880] [<ffffffe000009706>] walk_stackframe+0x0/0x23c
[ 1161.938668][ T3880] [<ffffffe002a5f182>] dump_backtrace+0x40/0x4e
[ 1161.940143][ T3880] [<ffffffe002a5f1b2>] show_stack+0x22/0x2e
[ 1161.941546][ T3880] [<ffffffe002a68a3e>] dump_stack+0x148/0x1d8
[ 1161.942895][ T3880] [<ffffffe0003bccfc>] kasan_report+0x146/0x18c
[ 1161.944705][ T3880] [<ffffffe0003bd4e4>] __asan_store4+0x4a/0x80
[ 1161.946149][ T3880] [<ffffffe0004d1950>] io_commit_cqring+0x3ea/0x8f6
[ 1161.947725][ T3880] [<ffffffe0004d3044>] io_kill_timeouts+0x412/0x420
[ 1161.949131][ T3880] [<ffffffe0004e2eea>] io_ring_ctx_wait_and_kill+0x172/0x2a0
[ 1161.950664][ T3880] [<ffffffe0004e3dee>] io_uring_setup+0xd9e/0x1c10
[ 1161.952149][ T3880] [<ffffffe0004e8670>] sys_io_uring_setup+0x22/0x2e
[ 1161.953931][ T3880] [<ffffffe000005572>] ret_from_syscall+0x0/0x2
[ 1161.956080][ T3880] ==================================================================
[ 1161.957412][ T3880] Disabling lock debugging due to kernel taint
[ 1161.958810][ T3880] Kernel panic - not syncing: panic_on_warn set ...
[ 1161.960056][ T3880] CPU: 1 PID: 3880 Comm: syz-executor.1 Tainted: G    B             5.12.0-rc5-syzkaller-00721-gb2b3d18fc20e #0
[ 1161.961714][ T3880] Hardware name: riscv-virtio,qemu (DT)
[ 1161.962588][ T3880] Call Trace:
[ 1161.963248][ T3880] [<ffffffe000009706>] walk_stackframe+0x0/0x23c
[ 1161.964459][ T3880] [<ffffffe002a5f182>] dump_backtrace+0x40/0x4e
[ 1161.965689][ T3880] [<ffffffe002a5f1b2>] show_stack+0x22/0x2e
[ 1161.966943][ T3880] [<ffffffe002a68a3e>] dump_stack+0x148/0x1d8
[ 1161.968102][ T3880] [<ffffffe002a5f57a>] panic+0x20a/0x5cc
[ 1161.969223][ T3880] [<ffffffe0003bc7b0>] print_address_description.constprop.0+0x0/0x31e
[ 1161.970654][ T3880] [<ffffffe0003bcd06>] kasan_report+0x150/0x18c
[ 1161.971946][ T3880] [<ffffffe0003bd4e4>] __asan_store4+0x4a/0x80
[ 1161.973221][ T3880] [<ffffffe0004d1950>] io_commit_cqring+0x3ea/0x8f6
[ 1161.974387][ T3880] [<ffffffe0004d3044>] io_kill_timeouts+0x412/0x420
[ 1161.975780][ T3880] [<ffffffe0004e2eea>] io_ring_ctx_wait_and_kill+0x172/0x2a0
[ 1161.977161][ T3880] [<ffffffe0004e3dee>] io_uring_setup+0xd9e/0x1c10
[ 1161.978452][ T3880] [<ffffffe0004e8670>] sys_io_uring_setup+0x22/0x2e
[ 1161.979850][ T3880] [<ffffffe000005572>] ret_from_syscall+0x0/0x2
[ 1161.981542][ T3880] SMP: stopping secondary CPUs
[ 1161.983970][ T3880] Rebooting in 86400 seconds..

VM DIAGNOSIS:
10:35:56  Registers:
info registers vcpu 0
 pc       ffffffe0000d3918
 mhartid  0000000000000000
 mstatus  00000000000000a0
 mip      00000000000000a0
 mie      000000000000022a
 mideleg  0000000000000222
 medeleg  000000000000b109
 mtvec    0000000080000540
 stvec    ffffffe00000542c
 mepc     ffffffe0000e1ace
 sepc     ffffffe002a68aba
 mcause   8000000000000007
 scause   0000000000000008
 mtval  0000000000000000
 stval  0000000000000000
 x0/zero 0000000000000000 x1/ra ffffffe0000d3904 x2/sp ffffffe00589b840 x3/gp ffffffe004588b08
 x4/tp ffffffe005805f00 x5/t0 ffffffe004ffdbb7 x6/t1 0000000000000001 x7/t2 0000000000000000
 x8/s0 ffffffe00589b900 x9/s1 ffffffe002e27840 x10/a0 ffffffe067d60840 x11/a1 0000000000000003
 x12/a2 1ffffffc0cfac108 x13/a3 ffffffe0000d3904 x14/a4 0000000000000000 x15/a5 0000000000000020
 x16/a6 0000000000f00000 x17/a7 ffffffe0000dd8c2 x18/s2 ffffffe0050495a8 x19/s3 ffffffe067d60840
 x20/s4 0000000000000001 x21/s5 0000000000000000 x22/s6 ffffffe004249e88 x23/s7 0000000000000000
 x24/s8 0000000000000000 x25/s9 ffffffe0000dd8c2 x26/s10 ffffffe00458c0d0 x27/s11 0000000000000000
 x28/t3 42eb1e3f2a096100 x29/t4 ffffffc400b13717 x30/t5 ffffffc400b13719 x31/t6 ffffffe00589b8c8
 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000
 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000
 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000
 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000
 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000
 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000
 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000
 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000
info registers vcpu 1
 pc       ffffffe0000d2e24
 mhartid  0000000000000001
 mstatus  00000000000000a0
 mip      0000000000000000
 mie      00000000000002aa
 mideleg  0000000000000222
 medeleg  000000000000b109
 mtvec    0000000080000540
 stvec    ffffffe00000542c
 mepc     ffffffe00000e9d4
 sepc     ffffffe0000c9cc0
 mcause   0000000000000009
 scause   8000000000000005
 mtval  0000000000000000
 stval  0000000000000000
 x0/zero 0000000000000000 x1/ra ffffffe0000097c4 x2/sp ffffffe008a77750 x3/gp ffffffe004588b08
 x4/tp ffffffe0057997c0 x5/t0 ffffffc4011e1ee5 x6/t1 0000000000000001 x7/t2 ffffffffb6bbd485
 x8/s0 ffffffe008a777d0 x9/s1 ffffffe008a77800 x10/a0 0000000000000000 x11/a1 ffffffe00579a7c0
 x12/a2 1ffffffc0114ef11 x13/a3 ffffffe0000097f0 x14/a4 0000000000000000 x15/a5 ffffffe008a77800
 x16/a6 0000000000f00000 x17/a7 42eb1e3f2a096100 x18/s2 ffffffe008a78000 x19/s3 0000000000000000
 x20/s4 ffffffe0000631b8 x21/s5 ffffffe008a77df0 x22/s6 0000000000000000 x23/s7 ffffffe008a77ed0
 x24/s8 ffffffe00011775e x25/s9 ffffffe008a77800 x26/s10 0000000000000002 x27/s11 ffffffe008f0f708
 x28/t3 ffffffffc7400000 x29/t4 ffffffc40114ef67 x30/t5 ffffffc40114ef6f x31/t6 ffffffe00940e026
 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000
 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000
 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000
 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000
 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000
 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000
 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000
 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000