last executing test programs:

50.086585151s ago: executing program 0 (id=138):
syz_mount_image$xfs(&(0x7f00000003c0), &(0x7f0000000000)='./file0\x00', 0x4008, &(0x7f0000000080)={[{@inode32}, {@nolazytime}]}, 0x1, 0x9825, &(0x7f000001c900)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000000c0)=ANY=[@ANYBLOB="000000004c90020001000000030001000000000000000000000000000000000083ffffff0000000000000000000000000000000000000000000000000000000000000000000000000007000000000000070000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080"])

48.835954169s ago: executing program 0 (id=147):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r0 = socket$l2tp(0x2, 0x2, 0x73)
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x400, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f00000002c0)={&(0x7f00000001c0)=[0x0], &(0x7f0000000200)=[0x0, 0x0], &(0x7f0000000240)=[0x0, 0x0, <r2=>0x0, 0x0, 0x0, 0x0], &(0x7f0000000280)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x1, 0x2, 0x6, 0x6})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r1, 0xc05064a7, &(0x7f0000000300)={&(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000000c0)=[{}], &(0x7f0000000140)=[0x0], &(0x7f0000000180)=[0x0], 0x1, 0x1, 0x9, 0x0, r2})
r3 = openat$incfs(r1, &(0x7f0000000380)='.log\x00', 0x200000, 0x80)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), r3)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000440)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r3, &(0x7f00000005c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000580)={&(0x7f0000000480)={0xc4, r4, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_CONTROL_PORT={0x4}, @NL80211_ATTR_FREQ_FIXED={0x4}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac=@broadcast}, @NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_IE={0x8f, 0x2a, [@perr={0x84, 0x89, {0x3, 0x9, [{{0x0, 0x1}, @device_b, 0x6af7, @value=@broadcast, 0x41}, {{}, @device_b, 0x2, @void, 0x25}, {{}, @broadcast, 0x4, @void, 0x3}, {{}, @device_a, 0xba1, @void, 0x3c}, {{}, @device_a, 0x200, @void, 0x25}, {{0x0, 0x1}, @device_b, 0x7, @value, 0x2}, {{}, @device_a, 0x4, @void, 0x3a}, {{0x0, 0x1}, @broadcast, 0x6, @value=@broadcast, 0x28}, {{}, @broadcast, 0x7, @void, 0x6}]}}]}]}, 0xc4}, 0x1, 0x0, 0x0, 0x80}, 0x40)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r3, 0xc0502100, &(0x7f0000000600)={0x0, <r6=>0x0})
r7 = getpgrp(0x0)
rt_tgsigqueueinfo(r6, r7, 0x3f, &(0x7f0000000680)={0x31, 0x10001, 0x1ff})
connect$inet(r0, &(0x7f0000000700)={0x2, 0x4e21, @multicast1}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f0000000740)={{0x1, 0x1, 0x18, <r8=>r1, {0x2}}, './file0\x00'})
getsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000800)={{{@in6=@dev, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0, <r10=>0x0}}, {{@in=@local}, 0x0, @in=@local}}, &(0x7f0000000900)=0xe8)
fstat(r3, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0, <r11=>0x0})
mount$9p_fd(0x0, &(0x7f0000000780)='./file1\x00', &(0x7f00000007c0), 0x2000840, &(0x7f00000009c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@cachetag={'cachetag', 0x3d, '-+.'}}, {@dfltuid={'dfltuid', 0x3d, r10}}, {@ignoreqv}, {@version_L}, {@dfltgid={'dfltgid', 0x3d, r11}}, {@ignoreqv}], [{@seclabel}, {@hash}]}})
sched_setscheduler(r6, 0x0, &(0x7f0000000a80)=0x1)
bind$inet(r0, &(0x7f0000000ac0)={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x3, r7, 0x0, 0x0)
ptrace$setopts(0xffffffffffffffff, r7, 0x8000000000000000, 0x1)
r12 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000b40), r1)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r8, 0x89f1, &(0x7f0000000c00)={'syztnl0\x00', &(0x7f0000000b80)={'ip6gre0\x00', <r13=>r9, 0x29, 0x6, 0x10, 0x9, 0x24faebaa64bd83d5, @private2={0xfc, 0x2, '\x00', 0x1}, @mcast1, 0x700, 0x40, 0x200, 0x1}})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000d00)={'syztnl0\x00', &(0x7f0000000c40)={'syztnl0\x00', <r14=>r9, 0x10, 0x706, 0x7, 0x5770, {{0x1f, 0x4, 0x2, 0x2b, 0x7c, 0x68, 0x0, 0x4, 0x2f, 0x0, @broadcast, @broadcast, {[@end, @lsrr={0x83, 0x7, 0xfc, [@initdev={0xac, 0x1e, 0x1, 0x0}]}, @timestamp_addr={0x44, 0x34, 0x78, 0x1, 0x7, [{@loopback, 0x7}, {@dev={0xac, 0x14, 0x14, 0x26}, 0x97}, {@empty, 0x6}, {@private=0xa010101, 0x1000}, {@multicast2, 0xffffffff}, {@empty, 0x3}]}, @timestamp_addr={0x44, 0x1c, 0x13, 0x1, 0xc, [{@empty, 0x5}, {@multicast1, 0x82d9}, {@broadcast, 0x3ff}]}, @generic={0x88, 0xd, "a99b0eda25d153ba1133c9"}]}}}}})
sendmsg$ETHTOOL_MSG_WOL_SET(r1, &(0x7f0000000f40)={&(0x7f0000000b00)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000f00)={&(0x7f0000000d40)={0x1bc, r12, 0x100, 0x70bd29, 0x25dfdbfe, {}, [@ETHTOOL_A_WOL_SOPASS={0x74, 0x3, "11bb314bcde7e8f7c2916a420200a01e831c83ca92f5ccaabd06c36f815b192320047a7df240e471e2bb8428b813f4362914a26084291be33ad9e812973f6c1158cffcc46426573fe36d7985de276247c2c9fd4f7dac2e9685dc516e8ad7a5a7e87c726bfc8474b95e64df160be3a061"}, @ETHTOOL_A_WOL_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r13}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r14}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}, @ETHTOOL_A_WOL_SOPASS={0x98, 0x3, "3d74d5b43c92b5ed5dde423ebfe4b68e869663eeed9bda704e8d8a41d3a62478075d923aa5707816f7368c4118f879316416420693b97932c6215fda93a262001b4264a5852f88386da5f9b8155e6fd8c3af6210c85179eb3cdbed898fae67eef537b210d0ba8a461e634d469b972b51cffe701dc26d3246d8c921ed650059d6510af4c9e9f1ceee31b1f5abc5120d9cb28a96d1"}, @ETHTOOL_A_WOL_MODES={0xc, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8}]}, @ETHTOOL_A_WOL_HEADER={0x74, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dvmrp0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'virt_wifi0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'nicvf0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r9}]}]}, 0x1bc}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
r15 = creat(&(0x7f0000000f80)='./file0\x00', 0x8)
openat$cgroup_ro(r15, &(0x7f0000000fc0)='pids.events\x00', 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000001000), 0x0, 0x101c1)
syz_genetlink_get_family_id$fou(&(0x7f0000001040), r3)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r8, 0xc0709411, &(0x7f0000002080)={{0x0, 0x9, 0x8000, 0x1, 0x2198, 0x8000000000000000, 0x0, 0x1ff, 0x4, 0x4, 0x10, 0x6, 0xb5f, 0x0, 0x2}, 0x28, [0x0, 0x0, 0x0, 0x0, 0x0]})

47.786354302s ago: executing program 0 (id=150):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1018e58, &(0x7f0000000f00)={[{@usrquota}, {@barrier}, {@resuid}, {@min_batch_time={'min_batch_time', 0x3d, 0x101}}, {@errors_remount}, {@bh}]}, 0x6, 0x600, &(0x7f0000001200)="$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") (fail_nth: 15)

46.866382168s ago: executing program 0 (id=154):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x67df4f96)
listen(0xffffffffffffffff, 0x40007)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000140), 0x1, 0x4fa, &(0x7f0000000ac0)="$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")
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000100)='./file1\x00', 0x0, 0x5000, 0x0)
r1 = open(&(0x7f0000000140)='./file1\x00', 0x100, 0x110)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cb19976d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "64885973ff030000000000000000d01cd3160000ffffff7f0000000000002000", [0x200]})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
mount(&(0x7f00000001c0)=@sr0, &(0x7f0000000240)='./file1/file0\x00', &(0x7f0000000300)='ceph\x00', 0x64c8, 0x0)
r4 = syz_init_net_socket$ax25(0x3, 0x5, 0xce)
ioctl$SIOCAX25DELFWD(r4, 0x89eb, &(0x7f0000000c40)={@default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}})
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(&(0x7f00000000c0)=@nullb, &(0x7f0000000040)='./bus\x00', &(0x7f0000000180)='jfs\x00', 0x400080, 0x0)
r5 = fsopen(&(0x7f0000000000)='devtmpfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
fsmount(r5, 0x0, 0x1)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r5, 0x7, 0x0, 0x0, 0x0)

43.658559383s ago: executing program 0 (id=157):
syz_mount_image$hfs(&(0x7f00000000c0), &(0x7f0000000080)='./file1\x00', 0x4810, &(0x7f0000000480)=ANY=[@ANYRES32=0x0, @ANYBLOB="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", @ANYRES8=0x0, @ANYRES32=0x0, @ANYRES64, @ANYRES64, @ANYBLOB="e6b9560b9eb60651c8d861e16cafb4b5006725db63a742488f27db28a3b869f9a114e3f806c42595dd30b03d1acb2a404a6d705dcf1efd2e1fa0042e335f582178d72a1d22166abbfc7955582faa65f8d8f80263129df5b788f53846f8c88e9050f753551f19ad50976b889736158a98f148ec0baee53bfde9dd1bf4dffde3e44cc05b6b969ab5c530d4c8f5488ec6231315fd02386e30ce86a388410478a2ead75ba02275faf3839d05fbdadd6f7eece5190eb4bc079f6c5ddff08d4cda7d0cd232bcd711777e46720665", @ANYRES16], 0x7, 0x2ce, &(0x7f00000007c0)="$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")
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000100)='./file1\x00', 0x2000000, &(0x7f00000006c0)={[{@codepage={'codepage', 0x3d, 'macturkish'}}, {@iocharset={'iocharset', 0x3d, 'macgaelic'}}, {@type={'type', 0x3d, "67369671"}}]}, 0x5, 0x2db, &(0x7f0000000200)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
getdents64(r1, &(0x7f0000002080)=""/4072, 0xfe8)
fcntl$setstatus(r0, 0x4, 0x6100)
write$cgroup_type(r0, &(0x7f0000000040), 0x4)

42.995955211s ago: executing program 0 (id=162):
r0 = openat$null(0xffffffffffffff9c, &(0x7f00000034c0), 0x902, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x8, 0x1, 0x68}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe}, 0x80) (async)
pread64(r0, 0x0, 0x0, 0xe7)
r1 = socket$inet_icmp(0x2, 0x2, 0x1)
sendmmsg$inet(r1, &(0x7f0000000540)=[{{&(0x7f0000000200)={0x2, 0x4e1e, @remote}, 0x10, &(0x7f0000000080)=[{&(0x7f00000002c0)='\b\x00\x00\x00(\x00\x00\x00', 0x8}], 0x1}}], 0x1, 0x4048810) (async, rerun: 64)
r2 = syz_open_dev$dri(&(0x7f0000000280), 0x1, 0x0) (rerun: 64)
ioctl$DRM_IOCTL_MODE_GET_LEASE(r2, 0xc01064c8, &(0x7f00000005c0)={0x1, 0x0, &(0x7f0000000580)=[<r3=>0x0]})
ioctl$DRM_IOCTL_MODE_SETPLANE(r2, 0xc03064b7, &(0x7f0000000700)={r3, 0x0, r3, 0x1, 0x1, 0x8, 0x3, 0x80, 0xd403, 0x10, 0x8, 0xd})

42.196519444s ago: executing program 32 (id=162):
r0 = openat$null(0xffffffffffffff9c, &(0x7f00000034c0), 0x902, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x8, 0x1, 0x68}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xe}, 0x80) (async)
pread64(r0, 0x0, 0x0, 0xe7)
r1 = socket$inet_icmp(0x2, 0x2, 0x1)
sendmmsg$inet(r1, &(0x7f0000000540)=[{{&(0x7f0000000200)={0x2, 0x4e1e, @remote}, 0x10, &(0x7f0000000080)=[{&(0x7f00000002c0)='\b\x00\x00\x00(\x00\x00\x00', 0x8}], 0x1}}], 0x1, 0x4048810) (async, rerun: 64)
r2 = syz_open_dev$dri(&(0x7f0000000280), 0x1, 0x0) (rerun: 64)
ioctl$DRM_IOCTL_MODE_GET_LEASE(r2, 0xc01064c8, &(0x7f00000005c0)={0x1, 0x0, &(0x7f0000000580)=[<r3=>0x0]})
ioctl$DRM_IOCTL_MODE_SETPLANE(r2, 0xc03064b7, &(0x7f0000000700)={r3, 0x0, r3, 0x1, 0x1, 0x8, 0x3, 0x80, 0xd403, 0x10, 0x8, 0xd})

8.250645225s ago: executing program 3 (id=254):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x8, @local, 0x3}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @remote}, 0x108}, 0x1c)

7.316249348s ago: executing program 3 (id=260):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
syz_kvm_add_vcpu$x86(0x0, &(0x7f00000001c0)={0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="010000000000000062000000000000003e0f7fda0f0163ae"], 0x62})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil})
syz_kvm_add_vcpu$x86(0x0, &(0x7f00000001c0)={0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="01000000000000004f"], 0x161})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000380)={0x0, 0x0, @pic={0x2a, 0xc0, 0x7, 0x6, 0xfb, 0x0, 0xf, 0x4, 0x3, 0x0, 0x3, 0x58, 0x92, 0x5, 0x9, 0x7f}})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x7, 0x0, 0x180, 0x4, 0x10, 0xf1, 0x0, 0xfffffffffffffff9, 0x5, 0x0, 0x9, 0xffffffffffffffff, 0x5, 0xffffffff, 0xbdb], 0x1, 0x2c4210})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

6.937508372s ago: executing program 3 (id=261):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x8910, 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r3, 0xc0045627, &(0x7f00000000c0)=0x3)
r4 = syz_open_dev$media(&(0x7f00000006c0), 0x4007, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0x5, 0x2, 0x2d9b, 0x7, 0x1, 0xffffffffffffffff, 0x4, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x4}, 0x48)
ioctl$MEDIA_IOC_REQUEST_ALLOC(r4, 0x80047c05, &(0x7f0000000940)=<r5=>0xffffffffffffffff)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r5, 0x7c81, 0x0)
r6 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r6, 0x84, 0x17, &(0x7f0000000000), 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x893}, 0x24040084)
syz_open_dev$vim2m(&(0x7f0000000040), 0x7, 0x2)
membarrier(0x8, 0x0)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f0000000340)="71e67a15cdf0311cfcf33a52a7d86bd1", 0x20)
unshare(0x42000000)

4.489668703s ago: executing program 3 (id=270):
mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x200000b, 0x8c4b815a5465c2b2, 0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
vmsplice(r0, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x6a855000)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0xff, 0x7fff0000}]})
close_range(r1, 0xffffffffffffffff, 0x0)

4.240573887s ago: executing program 5 (id=273):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mlock2(&(0x7f000000e000/0x1000)=nil, 0x1000, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000bd000), 0x318, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

3.858102055s ago: executing program 1 (id=276):
socket(0xa, 0x3, 0x3a)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000280)={0x38, 0x5, 0x8, 0x8001, 0x0, 0x9, 0x0, 0xfffffe0000000001, 0xfa11, 0xffffffff}, 0x0)
fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000006c0)=ANY=[@ANYBLOB="02"], 0x33fe0}}, 0x40010)
r3 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x80082, 0x0)
write$vga_arbiter(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB="6c6f636b206e6f6e916500"], 0xa)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000740)='./binderfs/binder1\x00', 0x1802, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000080)={0x73622a85, 0x100})
r5 = add_key$user(&(0x7f0000000380), &(0x7f0000000000)={'syz', 0x0}, &(0x7f0000000140)='_', 0x1, 0xfffffffffffffffe)
r6 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r6, 0x7a7, &(0x7f0000000000)=0x10000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r6, 0x7a0, &(0x7f0000000100)={@local})
ioctl$IOCTL_VMCI_CTX_SET_CPT_STATE(r6, 0x7b2, &(0x7f0000001680)={&(0x7f0000000680)=[0x100000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xe3, 0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcb776f6, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7357c35c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x9, 0x0, 0x0, 0x5, 0x4, 0x40000, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1cd5a44b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x4], 0x1, 0x400})
ioctl$IOCTL_VMCI_CTX_REMOVE_NOTIFICATION(r6, 0x7b0, &(0x7f00000000c0)={@hyper, 0x1})
r7 = add_key$user(&(0x7f0000000200), &(0x7f00000005c0), &(0x7f00000000c0), 0x390, 0xfffffffffffffffd)
r8 = add_key$user(&(0x7f0000006400), &(0x7f0000006c00)={'syz', 0x3}, &(0x7f0000006900)="3e12", 0x2, 0xfffffffffffffffe)
keyctl$dh_compute(0x17, &(0x7f0000000100)={r5, r7, r8}, 0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={'sha3-512-generic\x00'}})
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000100)={0x14, 0x0, &(0x7f0000000180)=[@increfs_done], 0x4, 0x0, &(0x7f0000000240)="2294a696"})
r9 = syz_mount_image$fuse(&(0x7f0000000040), &(0x7f00000000c0)='.\x00', 0x0, &(0x7f0000000280)={{}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {'group_id', 0x3d, 0xee00}, 0x2c, {[], [{@obj_user={'obj_user', 0x3d, '/dev/cec#\x00'}}, {@mask={'mask', 0x3d, 'MAY_READ'}}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x31, 0x5d, 0x39, 0x39, 0x37, 0x32, 0x30], 0x2d, [0x61, 0x64, 0x36, 0x61], 0x2d, [0x66, 0x65, 0x53, 0x39], 0x2d, [0x37, 0x30, 0x37, 0x64], 0x2d, [0x37, 0x34, 0x34, 0x0, 0x30, 0x66, 0x31, 0x33]}}}, {@audit}]}}, 0x1, 0x0, &(0x7f0000000380)="1503f47fcee8af5def8b900588653365fe9bef5529b7edb0d930d7b95f5a8b1812a532648a000f6dae612f70ab4449a944b8a2b7013c68d5a1ef8ae00fa0a3ea6bc3535c54ca942ec52db3d606e6eff38780ae28ea16ff34e775dc1508e3013f38de584f21de10dd9f6d71029e897fd4bcd21c44c2aa7f3587601a0c13846ffdf368d6ede017d83e5f81757daf700c2cb5bf53c4229d758b5cf0d8ac2211780d504ff1eccb2d2adbd076a446ee46881113265a38e6c1c42840ea4688667a0c9191f3b794ffd2b717288c155b81f5fb58f8048df014dbdff73b107e0febf4833e73ccb9df8acb0f090c5203038d32a09e6857216028beeae59e")
mkdirat(r9, &(0x7f0000000480)='./file0\x00', 0x1d9)
unshare(0x24020400)

3.798659429s ago: executing program 4 (id=278):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
syz_kvm_add_vcpu$x86(0x0, &(0x7f00000001c0)={0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="010000000000000062000000000000003e0f7fda0f0163ae"], 0x62})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil})
syz_kvm_add_vcpu$x86(0x0, &(0x7f00000001c0)={0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="01000000000000004f"], 0x161})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000380)={0x0, 0x0, @pic={0x2a, 0xc0, 0x7, 0x6, 0xfb, 0x0, 0xf, 0x4, 0x3, 0x0, 0x3, 0x58, 0x92, 0x5, 0x9, 0x7f}})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3.548668339s ago: executing program 3 (id=279):
pipe2(&(0x7f00000000c0), 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r1, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
ioctl$TCSBRKP(0xffffffffffffffff, 0x5425, 0xc)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="020300090a0000000000000004000000030006000000000002000000ac1414000000000000000000020001000000000000000002fffffffb03000500"], 0x50}}, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000180)={{{@in=@private, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@local, 0x0, 0x6c}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0x4}}, 0xe8)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
r3 = socket$key(0xf, 0x3, 0x2)
ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0xbe)
sendmsg$key(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)={0x2, 0x9, 0x0, 0x0, 0x2}, 0x10}}, 0x0)

3.499608822s ago: executing program 4 (id=280):
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x20605)
syz_open_dev$ttys(0xc, 0x2, 0x1)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = shmget$private(0x0, 0x4000, 0x10, &(0x7f0000000000/0x4000)=nil)
shmat(r3, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffcfff)
lseek(0xffffffffffffffff, 0x1000000, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x20050081)
socket$nl_netfilter(0x10, 0x3, 0xc)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)

3.026263164s ago: executing program 5 (id=281):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000011c0)=ANY=[@ANYBLOB="12010001090003206d0414c340000000000109022400010000a0000904000001030101000921000800012203000905", @ANYRES64], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=ANY=[], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94)
syz_usb_control_io(r0, 0x0, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x1003, 0xffffffffffffffff, 0x4}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000002fc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000540)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, &(0x7f0000000180)='\x00', 0x0}, 0x50)
syz_usb_control_io(r0, &(0x7f00000001c0)={0x2c, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_emit_vhci(&(0x7f0000000040)=@HCI_VENDOR_PKT, 0x2)

2.565248118s ago: executing program 2 (id=282):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000001240)=[{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000600)="5308fe8e4c59ee609a5ab268afd855a0af46fd165c3e5d9682cbbf6e9668f0e92983a453b2148163ca78a8f3175179259f8a73fb28eecc49ac09149af80a1bc78c06a568003c63b463856b028f246c7796bf6fe12a23de95141e225d7b575139e6ef96648979cdbd1ea3de097a5726390f1063451b979150a3c829a7580c77629f6687f184d9db9d6789cbddf790504291218d8250e3fe4699643e61cdf7093fc1cf0c71b8ee6165f37dd93dd75d", 0xae}], 0x1, &(0x7f0000000800)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x80}], 0x1, 0x0)
read$alg(r1, &(0x7f0000000000)=""/70, 0x46)

2.436171132s ago: executing program 2 (id=283):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000001240)=[{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000600)="5308fe8e4c59ee609a5ab268afd855a0af46fd165c3e5d9682cbbf6e9668f0e92983a453b2148163ca78a8f3175179259f8a73fb28eecc49ac09149af80a1bc78c06a568003c63b463856b028f246c7796bf6fe12a23de95141e225d7b575139e6ef96648979cdbd1ea3de097a5726390f1063451b979150a3c829a7580c77629f6687f184d9db9d6789cbddf790504291218d8250e3fe4699643e61cdf7093fc1cf0c71b8ee6165f37dd93dd75d", 0xae}], 0x1, &(0x7f0000000800)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x80}], 0x1, 0x0)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}, {&(0x7f00000002c0)=""/92, 0x5c}], 0x2}, 0x0)

2.226703442s ago: executing program 1 (id=284):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="2400000056000100000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="0c0001"], 0x24}}, 0x0)

2.053514609s ago: executing program 1 (id=285):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x4082c1, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x8904, 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'veth1_to_batadv\x00', 0x7101})
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000340)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cast6-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, 0x0, 0x0)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched_retired(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000006c0)=@newchain={0x43c, 0x64, 0x100, 0x70bd29, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x7}, {0xfff1}, {0xc, 0xe}}, [@f_rsvp6={{0xa}, {0x40c, 0x2, [@TCA_RSVP_POLICE={0x408, 0x5, [@TCA_POLICE_RATE={0x404, 0x2, [0x85, 0x8, 0x4, 0x9, 0x4, 0x9, 0xcf, 0x775, 0xfffffffa, 0x3, 0xa2, 0x4, 0x4, 0x7fff, 0x3, 0xf, 0x4, 0x3, 0x6, 0x2, 0x8, 0x7, 0x6, 0xffffffff, 0x9, 0x78, 0x1, 0x2, 0x4, 0x1, 0xfffffee8, 0x5, 0x9, 0xa, 0x5, 0x8000, 0xd9, 0x0, 0x16, 0x0, 0x8, 0xfffffffa, 0x1ff, 0x5, 0x3ff, 0x7, 0x0, 0x5, 0xfffffff7, 0x8, 0x50ea, 0x6, 0x8001, 0x9, 0xb0e0, 0xf, 0x5, 0x8, 0x3, 0x0, 0xcc000000, 0x5b23, 0x5, 0x8, 0x3, 0xee, 0x7fffffff, 0x7fffffff, 0x3, 0x172, 0x5ae27a20, 0x5, 0x6, 0x4, 0x200, 0x1ff, 0x3, 0x400, 0xe6b3, 0xd171, 0x6, 0x1ff, 0x7, 0x699213b0, 0x9, 0xa, 0x12, 0x3, 0x4, 0x0, 0x100, 0x5, 0x6793, 0x0, 0x1, 0xfffffffa, 0x9, 0x80000000, 0x7, 0x5, 0x0, 0x80000000, 0x400, 0x7, 0x7, 0x5, 0x9, 0x6, 0x9, 0x0, 0x1, 0x5, 0x2, 0x2, 0x2, 0x7ff, 0x40, 0x7f, 0x5fece1ea, 0xbf7, 0x8, 0x78, 0xe, 0x80000000, 0x6, 0x8, 0x5, 0xe, 0x5, 0x200, 0x4, 0x4, 0x0, 0x0, 0x1, 0x3, 0xb, 0x70, 0x2, 0x1, 0x9, 0x1800000, 0x9, 0xbff, 0x4, 0x6, 0x800, 0x7, 0x5, 0x3, 0x9, 0x6, 0x0, 0x2, 0x6, 0x800, 0x3ff, 0x9, 0x3, 0xcc, 0xc60, 0x3, 0x8, 0x4, 0x1, 0x0, 0x7, 0x2, 0x6, 0xc, 0x4, 0x32, 0x2, 0x8, 0x1000, 0x2, 0x4, 0x4, 0x2, 0xffff, 0xb37, 0x7fff, 0xbec, 0x8, 0x5, 0x1, 0x5, 0x0, 0x1, 0xffff, 0x7f, 0x3, 0x94f, 0xc91, 0x9, 0x3, 0x2, 0xd46, 0xf, 0x200, 0x0, 0x8, 0x7fffffff, 0x0, 0x8, 0x2, 0xe6, 0xb, 0x18000000, 0x4, 0x5, 0xd756, 0x6, 0x3, 0x800, 0xd3, 0x2, 0x6, 0x9, 0x4, 0x7, 0x5, 0xaec, 0x100, 0x0, 0xfffffffb, 0x40, 0xfffffffe, 0x3, 0xa, 0x7f, 0x1, 0x9c, 0x400, 0x5, 0x8000, 0x8, 0x8, 0x9, 0x6, 0xffffff7f, 0xee2b, 0x7, 0xeaf, 0x3, 0x401, 0x7, 0x7f, 0x5f, 0x1000, 0x7, 0x9, 0x7, 0x8001, 0x9, 0x3]}]}]}}]}, 0x43c}, 0x1, 0x0, 0x0, 0x1}, 0x40881)
recvmmsg(r4, &(0x7f0000006fc0)=[{{0x0, 0x0, 0x0}, 0x3}], 0x1, 0x1, 0x0)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000030c0)=[{&(0x7f0000000340)="1400000016001963d25a80648c56915a19aa2bfe", 0x14}], 0x1}, 0x0)
r6 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r6, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002300)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x28, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x7c}}, 0x0)
sendto$inet6(r6, &(0x7f0000000140)="f4", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r6, 0x84, 0x7c, &(0x7f0000000000)={0x0, 0x0, 0x2ce9}, 0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r6, 0x84, 0x7c, 0x0, 0x0)
recvmsg(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000001580)=""/4090, 0xffa}], 0x1}, 0x0)
r8 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r8, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x3, 0x3, 0x3}, 0x10)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x4810)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

2.023786028s ago: executing program 2 (id=286):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r4)
r5 = socket$unix(0x1, 0x5, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000026c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2, 0x2}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x0, '\x00', 0x1, 0x7, 0x100, 0x8}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000300)={0x0, 0x24, &(0x7f0000000140)={&(0x7f00000001c0)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, r7, {}, {0x2, 0xb}, {0x9, 0xb}}, [@qdisc_kind_options=@q_blackhole={0xe}]}, 0x34}, 0x1, 0x0, 0x0, 0x2000c0e9}, 0x4008000)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

1.452586905s ago: executing program 2 (id=287):
r0 = memfd_create(&(0x7f0000000280)='%\x00', 0x4)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x200000f, 0x4002012, r0, 0x0)
move_pages(0x0, 0x1, &(0x7f0000000140)=[&(0x7f0000000000/0x1000)=nil], &(0x7f0000000040), 0x0, 0x2)

1.417158856s ago: executing program 4 (id=288):
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x400, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x64040, 0xd0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140), 0x18557f, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_freezer_state(r1, &(0x7f0000000140), 0x2, 0x0)
write$cgroup_freezer_state(r2, &(0x7f0000000040)='FROZEN\x00', 0x7)
sendfile(r2, r2, 0x0, 0x9)

1.370375349s ago: executing program 3 (id=289):
getsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x6, 0x0, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000000)={@local, @empty, @void, {@ipv6={0x86dd, @udp={0x3, 0x6, "67fdd5", 0x8, 0x11, 0xff, @private0={0xfc, 0x0, '\x00', 0xff}, @ipv4={'\x00', '\xff\xff', @remote}, {[], {0x4e21, 0x4e24, 0x8}}}}}}, 0x0)
r0 = socket$igmp(0x2, 0x3, 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_io_uring_setup(0x88e, &(0x7f0000000140)={0x0, 0xaef2, 0x400, 0x2, 0xbfcffffc}, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xffffbffc, 0x0, 0x4)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000800)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r6, 0x0, &(0x7f00000007c0)={0x0, 0x0, 0x0}, 0x0, 0x0, 0x1, {0x2}})
io_uring_enter(r3, 0x47f6, 0x0, 0x2, 0x0, 0x0)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10)
r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_mreq(r7, 0x0, 0x23, 0x0, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000040)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x20, 0xfc, 0x2, 0x0, @rand_addr=0x1c, @multicast1=0xe0000300}, @dest_unreach={0x3, 0x6, 0x0, 0x0, 0xfa, 0x9, {0x5, 0x4, 0x0, 0x3d, 0xfff6, 0x65, 0x5, 0x1, 0x4, 0x3, @private=0xa010102, @local}}}}}}, 0x0)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
recvmmsg(r8, &(0x7f0000000080)=[{{0x0, 0x0, 0x0}}], 0x40000000000012d, 0x2, 0x0)
bind$inet(r8, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0xfc0, &(0x7f00000023c0)={@broadcast, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xfb2, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x4e22, 0x4e20, 0xf9e, 0x0, @wg=@data={0x4, 0xffffffff, 0x5, "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"}}}}}}, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000002380)={r9, 0x0, 0x2d, 0x0, @val=@netfilter={0x2, 0x4, 0x600, 0x1}}, 0x20)
r10 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r10, 0x0, 0xca, &(0x7f0000000080)={0x1, 0x1, 0x4, 0x2, @vifc_lcl_addr=@loopback, @remote}, 0x10)
setsockopt$MRT_ADD_MFC_PROXY(r10, 0x0, 0xd2, &(0x7f00000000c0)={@multicast1=0x1c, @empty=0xe0000300, 0x0, "8a79348df081496d0420922f45a71c1daa8b610468cd140526c41efcd3a4a422", 0x3, 0x1, 0x85}, 0x3c)

1.339707781s ago: executing program 2 (id=290):
unshare(0x22020400)
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
ioctl$UDMABUF_CREATE_LIST(r0, 0x40087543, 0x0)

1.147653368s ago: executing program 2 (id=291):
r0 = eventfd2(0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x1, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000001, 0x8071, 0xffffffffffffffff, 0x33eb4000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
write$eventfd(r0, &(0x7f0000000280)=0x9, 0x8)

842.66166ms ago: executing program 4 (id=292):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0x1, 0x7, 0x7fffffff}]})
wait4(0x0, 0x0, 0x8, 0x0)

842.417971ms ago: executing program 5 (id=293):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000001240)=[{0x0, 0x0, &(0x7f00000007c0)=[{&(0x7f0000000600)="5308fe8e4c59ee609a5ab268afd855a0af46fd165c3e5d9682cbbf6e9668f0e92983a453b2148163ca78a8f3175179259f8a73fb28eecc49ac09149af80a1bc78c06a568003c63b463856b028f246c7796bf6fe12a23de95141e225d7b575139e6ef96648979cdbd1ea3de097a5726390f1063451b979150a3c829a7580c77629f6687f184d9db9d6789cbddf790504291218d8250e3fe4699643e61cdf7093fc1cf0c71b8ee6165f37dd93dd75d", 0xae}], 0x1, &(0x7f0000000800)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x80}], 0x1, 0x0)
read$alg(r1, &(0x7f0000000000)=""/70, 0x46)

715.511854ms ago: executing program 5 (id=294):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r0, 0x84, 0x80, &(0x7f0000000000)='\x00\x00\x00\x00\t\x00\x00\x00', 0x8)
r1 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r2=>0x0]}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x5, &(0x7f0000000140)={r2, @in6={{0xa, 0x4e21, 0x9b2, @private0, 0x2}}}, 0x84)

642.910226ms ago: executing program 5 (id=295):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
getgid()

542.528256ms ago: executing program 4 (id=296):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}, {&(0x7f00000002c0)=""/92, 0x5c}], 0x2}, 0x0)

533.54841ms ago: executing program 4 (id=297):
socket(0x2, 0x80805, 0x0)
r0 = syz_usb_connect(0x0, 0x1cb, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000122f0d4071040403dfe4000000010902b901010000003f0904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'ip6gretap0\x00'})
r2 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x1, 0x401, 0x0, 0x92, 0x55, 0x8, 0x7, 0x8}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
r8 = openat$rfkill(0xffffff9c, &(0x7f0000000180), 0xc81, 0x0)
write$rfkill(r8, &(0x7f0000000080)={0x5, 0x8, 0x3, 0x1}, 0x8)
ioctl$KVM_RUN(r7, 0xae80, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, 0x0)
r9 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xfffffffffffff000, 0x101, &(0x7f0000000080))
getrusage(0x0, &(0x7f0000000240))
ioctl$BINDER_WRITE_READ(r9, 0xc0306201, &(0x7f0000000480)={0x78, 0x0, &(0x7f00000004c0)=[@enter_looper, @register_looper, @dead_binder_done, @exit_looper, @acquire_done, @transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000840)={@ptr={0x70742a85, 0x0, &(0x7f00000008c0)=""/202, 0xca, 0x2, 0x1e}, @fd={0x66642a85, 0x0, r4}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x80000001, 0x31}}, &(0x7f0000000140)={0x0, 0x28, 0x40}}, 0x400}], 0x0, 0x0, 0x0})
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0xfffffffffffffe6c, &(0x7f0000000080)={0x0, 0x2b}, 0x1, 0x0, 0x0, 0x20040880}, 0x8011)
r10 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$char_usb(r10, &(0x7f0000000380)="2781f1b2d0fc8d64f7", 0x9)
pread64(r10, &(0x7f0000000080)=""/110, 0x88, 0x400)
syz_open_dev$video(&(0x7f0000000300), 0x7, 0x640)

511.632837ms ago: executing program 1 (id=298):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f00000000c0)={0x4000001, 0x71, 0x200000009})
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f0000000300)={r1, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000400)={0x0, 0x0, r2, 0x0, 0x0, 0x1f5, 0x0, 0x0, {0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, "b4bc323ef77d1f000071849800000000dfff00"}})

398.704294ms ago: executing program 1 (id=299):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendmmsg$inet(r0, &(0x7f00000007c0)=[{{&(0x7f0000000100)={0x2, 0x4e22, @multicast1}, 0x10, 0x0}}], 0x1, 0x240080e0)
sendmsg$nl_route_sched(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=@delqdisc={0x24, 0x25, 0x800, 0x70bd2d, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x5, 0x2}, {0x8, 0x10}, {0xa, 0xd}}}, 0x24}, 0x1, 0x0, 0x0, 0x20048800}, 0x24008080)

302.359571ms ago: executing program 1 (id=300):
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/tcp6\x00')
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
quotactl$Q_SETINFO(0xffffffff80000601, 0x0, 0x0, &(0x7f0000000440)={0x5, 0x2, 0x1, 0x2})
sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(0xffffffffffffffff, 0x84, 0x73, &(0x7f00000001c0)={<r3=>0x0, 0x3, 0x30}, &(0x7f00000002c0)=0x18)
getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f0000000300)={r3, 0x7c7b912c}, &(0x7f0000000340)=0x8)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r2, 0x89f0, &(0x7f0000000140)={'tunl0\x00', &(0x7f0000000540)=@ethtool_perm_addr={0x20, 0x1c5, "7669b23960892004b1c650c02d82cb15d03ce9bbb86251470fbc4f558a60590e48fffd4ffb5eebedd0da276aabb041286bc7be64ead93ccf474578790abf55828777d322b21b37062c43705aa9226b87b46e7ff8aa1567fff491591cf4e531a65b87499cb7512be102982051a37c2dcf0ec5440707074244ab24f45273c7de1893c1756364c76ad42d36a28eafd6da8e197ba297721b42e55561ee69d9816e00968ac33e96bb3cff63ab266ff410abb18d071fa2ea769317bfa90be300000000000000000000000000000000967f15d915f972cc9e59503b62df930f291b9d765f93db9f55d53142ff0bb725ccc5f0ab55ad6b2f73e52f0f0a86eb7e321e864abd5b16894937e43a46876cf529311d3efae59366d9e949bd69fce4523437a299fa0bc9fe2bd939059f13a749752bb4c9916d92084da205f50484f8a0fe01085d51f36a259d95779e88eada1cd75902c0212c64e6b153df8cabf7c8fde5ae235926c6e57f7ac181ce3a6846f8e89340b9a4200b440b43b9a8bd404231621ec27620900ab22b603bf10e515f362c93f61bbd04afe6502f1e81248160f7ea03ec3fb372293f28294a6932a984734e4946da5b9ba5af63dbe3706d1988fcfca5e8bc08c8d1aba3"}})
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x20000000, '\x00', 0x0, 0x0}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000000f40)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf0900000000000055090100000000009500000000000000b7020000000000007baaf8ff00000000b5090800000100007baaf0ff00000000bf8700000000000007070000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018280000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7050000080076000000bfa78200b5080000000000008500000007000000b700000000549a097978edf7b9c1c9a736caed0e0000009576e399dd97"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000680)={r5, 0xe0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f0000001200)=[0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13, 0x8, 0x0, 0x0}}, 0x10)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r6 = add_key(&(0x7f0000000080)='big_key\x00', &(0x7f00000005c0)={'syz', 0x1}, &(0x7f0000000980)="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", 0x5a5, 0xfffffffffffffffb)
keyctl$update(0x2, r6, &(0x7f0000000000)="11868a0fceae284c00000001000000", 0xf)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x4004)
r7 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOW_IOVAS(r7, 0x3b82, &(0x7f0000000280)={0x18, 0x0, 0x0, 0x0, 0x0})
mremap(&(0x7f0000000000/0x9000)=nil, 0x600000, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)

0s ago: executing program 5 (id=301):
r0 = syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x0)
ioctl$VIDIOC_QUERYMENU(r0, 0xc008561c, &(0x7f00000001c0)={0x980900, 0x8081, @name="6736516728a5678c18a4ec047f3f1fa52fe9a9987d0406b3a0c705c611b66f06"})

kernel console output (not intermixed with test programs):

3.334029][ T6451]  should_fail_ex+0x414/0x560
[  113.334063][ T6451]  _copy_from_user+0x2d/0xb0
[  113.334090][ T6451]  sctp_setsockopt+0x19f/0x1200
[  113.334116][ T6451]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  113.334158][ T6451]  do_sock_setsockopt+0x179/0x1b0
[  113.334187][ T6451]  __x64_sys_setsockopt+0x13f/0x1b0
[  113.334217][ T6451]  do_syscall_64+0xfa/0x3b0
[  113.334239][ T6451]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.334262][ T6451]  ? clear_bhb_loop+0x60/0xb0
[  113.334286][ T6451]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  113.334306][ T6451] RIP: 0033:0x7f2219d8ebe9
[  113.334327][ T6451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  113.334346][ T6451] RSP: 002b:00007f221ab1b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  113.334369][ T6451] RAX: ffffffffffffffda RBX: 00007f2219fb5fa0 RCX: 00007f2219d8ebe9
[  113.334386][ T6451] RDX: 0000000000000084 RSI: 0000000000000084 RDI: 0000000000000003
[  113.334399][ T6451] RBP: 00007f221ab1b090 R08: 0000000000000090 R09: 0000000000000000
[  113.334413][ T6451] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001
[  113.334426][ T6451] R13: 00007f2219fb6038 R14: 00007f2219fb5fa0 R15: 00007fff8f769b68
[  113.334452][ T6451]  </TASK>
[  113.422908][ T6457] loop0: detected capacity change from 0 to 128
[  113.426631][ T5940] usb usb3-port1: attempt power cycle
[  113.582445][ T6443] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  113.605539][    T9] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  113.619460][ T6443] ext4 filesystem being mounted at /14/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.733179][ T5862] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  113.765386][    T9] usb 5-1: Using ep0 maxpacket: 16
[  113.777638][    T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  113.806804][    T9] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  113.838040][    T9] usb 5-1: New USB device found, idVendor=5543, idProduct=0042, bcdDevice= 0.00
[  113.849417][ T6469] loop1: detected capacity change from 0 to 1024
[  113.857815][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  113.868713][    T9] usb 5-1: config 0 descriptor??
[  113.892766][ T6469] hfsplus: invalid extent max_key_len 0
[  113.894342][ T5940] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  113.919362][ T6469] hfsplus: failed to load extents file
[  113.944919][ T5940] usb 3-1: device descriptor read/8, error -71
[  114.072058][ T6475] loop3: detected capacity change from 0 to 512
[  114.081222][ T6475] EXT4-fs: Ignoring removed oldalloc option
[  114.093717][ T6475] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.99: Parent and EA inode have the same ino 15
[  114.108585][ T6475] EXT4-fs (loop3): Remounting filesystem read-only
[  114.117330][ T6475] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -30)
[  114.127349][ T6475] EXT4-fs (loop3): 1 orphan inode deleted
[  114.136050][ T6475] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.188863][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.198266][ T5940] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  114.205279][   T24] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  114.280884][    T9] usb 5-1: string descriptor 0 read error: -71
[  114.315268][    T9] usbhid 5-1:0.0: can't add hid device: -71
[  114.324290][    T9] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  114.377134][    T9] usb 5-1: USB disconnect, device number 3
[  114.403194][ T6483] loop0: detected capacity change from 0 to 16
[  114.425828][ T5940] usb 3-1: device not accepting address 7, error -71
[  114.434468][ T5940] usb usb3-port1: unable to enumerate USB device
[  114.474315][   T24] usb 2-1: Using ep0 maxpacket: 16
[  114.490663][ T6483] erofs (device loop0): mounted with root inode @ nid 36.
[  114.492310][   T24] usb 2-1: config 8 has an invalid interface number: 223 but max is 0
[  114.509142][   T24] usb 2-1: config 8 contains an unexpected descriptor of type 0x1, skipping
[  114.518227][   T24] usb 2-1: config 8 has an invalid descriptor of length 156, skipping remainder of the config
[  114.530765][   T24] usb 2-1: config 8 has no interface number 0
[  114.537137][   T24] usb 2-1: config 8 interface 223 altsetting 2 bulk endpoint 0xC has invalid maxpacket 32
[  114.623997][ T6485] process 'syz.2.100' launched './file0' with NULL argv: empty string added
[  114.980193][   T24] usb 2-1: config 8 interface 223 altsetting 2 endpoint 0x7 has invalid maxpacket 15872, setting to 64
[  114.992887][   T24] usb 2-1: config 8 interface 223 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  115.006569][   T24] usb 2-1: config 8 interface 223 has no altsetting 0
[  115.024494][   T24] usb 2-1: New USB device found, idVendor=a6da, idProduct=7458, bcdDevice=2d.4d
[  115.044374][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  115.053035][ T6479] loop3: detected capacity change from 0 to 8192
[  115.055030][   T24] usb 2-1: Product: syz
[  115.078672][   T24] usb 2-1: Manufacturer: syz
[  115.086956][   T24] usb 2-1: SerialNumber: syz
[  115.098326][ T6469] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[  115.107911][ T6489] FAULT_INJECTION: forcing a failure.
[  115.107911][ T6489] name failslab, interval 1, probability 0, space 0, times 0
[  115.121410][ T6489] CPU: 1 UID: 0 PID: 6489 Comm: syz.4.103 Not tainted 6.17.0-rc1-next-20250814-syzkaller #0 PREEMPT(full) 
[  115.121444][ T6489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  115.121456][ T6489] Call Trace:
[  115.121464][ T6489]  <TASK>
[  115.121472][ T6489]  dump_stack_lvl+0x189/0x250
[  115.121501][ T6489]  ? __pfx____ratelimit+0x10/0x10
[  115.121532][ T6489]  ? __pfx_dump_stack_lvl+0x10/0x10
[  115.121553][ T6489]  ? __pfx__printk+0x10/0x10
[  115.121579][ T6489]  ? fs_reclaim_acquire+0x7d/0x100
[  115.121595][ T6489]  ? rcu_is_watching+0x15/0xb0
[  115.121612][ T6489]  ? __pfx___might_resched+0x10/0x10
[  115.121628][ T6489]  ? lock_acquire+0x5f/0x360
[  115.121656][ T6489]  should_fail_ex+0x414/0x560
[  115.121683][ T6489]  should_failslab+0xa8/0x100
[  115.121709][ T6489]  kmem_cache_alloc_noprof+0x73/0x3c0
[  115.121732][ T6489]  ? ptlock_alloc+0x20/0x70
[  115.121757][ T6489]  ptlock_alloc+0x20/0x70
[  115.121779][ T6489]  pte_alloc_one+0x7d/0x170
[  115.121799][ T6489]  __pte_alloc+0x25/0x1a0
[  115.121816][ T6489]  __handle_mm_fault+0x49b3/0x5440
[  115.121845][ T6489]  ? __pfx___handle_mm_fault+0x10/0x10
[  115.121868][ T6489]  ? lock_release+0x4b/0x3e0
[  115.121898][ T6489]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  115.121926][ T6489]  handle_mm_fault+0x40a/0x8e0
[  115.121953][ T6489]  do_user_addr_fault+0xa81/0x1390
[  115.121983][ T6489]  ? rcu_is_watching+0x15/0xb0
[  115.122000][ T6489]  ? trace_page_fault_user+0x84/0x1e0
[  115.122016][ T6489]  exc_page_fault+0x76/0xf0
[  115.122032][ T6489]  asm_exc_page_fault+0x26/0x30
[  115.122048][ T6489] RIP: 0033:0x7fbe81250c46
[  115.122065][ T6489] Code: f0 72 6e 48 63 cd 48 01 c1 49 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 <47> 0f b6 0c 08 45 84 c9 74 08 45 88 0c 00 49 8b 47 10 48 83 c0 01
[  115.122079][ T6489] RSP: 002b:00007fbe822154a0 EFLAGS: 00010246
[  115.122096][ T6489] RAX: 0000000000000001 RBX: 00007fbe82215540 RCX: 0000000000000101
[  115.122109][ T6489] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 00007fbe822155e0
[  115.122120][ T6489] RBP: 0000000000000102 R08: 00007fbe77000000 R09: 0000000000000000
[  115.122131][ T6489] R10: 0000000000000000 R11: 00007fbe82215550 R12: 0000000000000001
[  115.122142][ T6489] R13: 00007fbe8142d980 R14: 0000000000000000 R15: 00007fbe822155e0
[  115.122161][ T6489]  </TASK>
[  115.122219][ T6489] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  115.166260][ T5863] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  115.182044][ T6489] loop4: detected capacity change from 0 to 1024
[  115.302840][ T5863] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  115.311413][ T5863]  loop3: unable to read partition table
[  115.355692][ T6489] EXT4-fs: Ignoring removed bh option
[  115.420962][   T24] usb 2-1: USB disconnect, device number 8
[  115.431724][ T5235] ldm_parse_privhead(): Cannot find PRIVHEAD structure. LDM database is corrupt. Aborting.
[  115.467659][ T6489] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  115.481029][ T5235] ldm_validate_privheads(): Cannot find PRIVHEAD 1.
[  115.482778][ T6493] tipc: Started in network mode
[  115.496338][ T6493] tipc: Node identity 48, cluster identity 4711
[  115.502813][ T6493] tipc: Node number set to 72
[  115.508015][ T5235]  loop3: unable to read partition table
[  115.838782][ T6494] netlink: 18308 bytes leftover after parsing attributes in process `syz.0.105'.
[  115.858273][ T6489] EXT4-fs error (device loop4): ext4_ext_check_inode:523: inode #2: comm syz.4.103: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 31(4), depth 0(0)
[  115.935844][ T6489] EXT4-fs (loop4): Remounting filesystem read-only
[  115.950154][ T6489] EXT4-fs (loop4): get root inode failed
[  115.970768][ T6489] EXT4-fs (loop4): mount failed
[  116.052420][ T6503] loop1: detected capacity change from 0 to 512
[  116.078136][ T6503] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  116.120193][ T6505] overlayfs: failed to resolve './file2': -2
[  116.134257][   T24] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  116.136846][ T6503] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.216669][ T6510] fuse: Bad value for 'fd'
[  116.315218][   T24] usb 3-1: Using ep0 maxpacket: 32
[  116.331541][   T24] usb 3-1: config 0 has an invalid interface number: 218 but max is 0
[  116.356956][   T24] usb 3-1: config 0 has no interface number 0
[  116.386282][   T24] usb 3-1: New USB device found, idVendor=0e20, idProduct=0101, bcdDevice=74.07
[  116.411102][   T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  116.448139][   T24] usb 3-1: Product: syz
[  116.460755][   T24] usb 3-1: Manufacturer: syz
[  116.477289][   T24] usb 3-1: SerialNumber: syz
[  116.494828][ T6498] loop3: detected capacity change from 0 to 32768
[  116.504136][   T24] usb 3-1: config 0 descriptor??
[  116.562887][ T6498] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  116.651650][ T6501] loop0: detected capacity change from 0 to 32768
[  116.663049][   T30] audit: type=1326 audit(1755421897.865:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16c5b8ebe9 code=0x7ffc0000
[  116.700709][   T30] audit: type=1326 audit(1755421897.865:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16c5b8ebe9 code=0x7ffc0000
[  116.738401][   T24] usb 3-1: USB disconnect, device number 8
[  116.757874][   T30] audit: type=1326 audit(1755421897.865:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f16c5b8ebe9 code=0x7ffc0000
[  116.804879][   T30] audit: type=1326 audit(1755421897.985:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16c5b8ebe9 code=0x7ffc0000
[  116.850900][ T6501] debugfs: 'B1DE653C5FFC4D88B33B244AAB9EB3E9' already exists in 'ocfs2'
[  116.922523][ T6501] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  116.976500][   T30] audit: type=1326 audit(1755421897.985:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16c5b8ebe9 code=0x7ffc0000
[  117.023539][ T5862] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.037023][   T30] audit: type=1326 audit(1755421897.995:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f16c5b8ebe9 code=0x7ffc0000
[  117.116135][   T30] audit: type=1326 audit(1755421898.075:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16c5b8ebe9 code=0x7ffc0000
[  117.186478][   T30] audit: type=1326 audit(1755421898.075:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16c5b8ebe9 code=0x7ffc0000
[  117.251394][ T5870] ocfs2: Unmounting device (7,3) on (node local)
[  117.281586][   T30] audit: type=1326 audit(1755421898.075:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f16c5b8ebe9 code=0x7ffc0000
[  117.359972][   T30] audit: type=1326 audit(1755421898.075:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6496 comm="syz.3.106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f16c5b8ebe9 code=0x7ffc0000
[  117.532369][ T6530] loop4: detected capacity change from 0 to 1024
[  117.544906][ T5940] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  117.565599][ T6532] netlink: 'syz.3.115': attribute type 12 has an invalid length.
[  117.574678][ T6530] EXT4-fs (loop4): orphan cleanup on readonly fs
[  117.578084][ T6532] netlink: 'syz.3.115': attribute type 29 has an invalid length.
[  117.589890][ T6532] netlink: 148 bytes leftover after parsing attributes in process `syz.3.115'.
[  117.594961][ T6530] EXT4-fs (loop4): 1 truncate cleaned up
[  117.630964][ T6530] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  117.709119][ T5940] usb 2-1: Using ep0 maxpacket: 8
[  117.735988][ T5940] usb 2-1: config index 0 descriptor too short (expected 30, got 18)
[  117.749156][ T6534] loop3: detected capacity change from 0 to 2048
[  117.750184][ T5940] usb 2-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea
[  117.756448][ T6534] udf: Unknown parameter 'Î '
[  117.836136][ T5940] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  117.866890][ T5940] usb 2-1: Product: syz
[  117.878054][ T5940] usb 2-1: Manufacturer: syz
[  117.889869][ T5940] usb 2-1: SerialNumber: syz
[  117.907903][ T5940] usb 2-1: config 0 descriptor??
[  117.926460][ T5940] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state.
[  117.947138][ T5940] usb 2-1: setting power ON
[  117.961714][ T5940] dvb-usb: bulk message failed: -22 (2/0)
[  117.978317][ T5940] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  117.990524][ T5940] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID))
[  118.002666][ T5940] usb 2-1: media controller created
[  118.024732][ T5940] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  118.050152][ T5940] usb 2-1: selecting invalid altsetting 6
[  118.059527][ T5940] usb 2-1: digital interface selection failed (-22)
[  118.069786][ T5861] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.080554][ T5940] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)'
[  118.091268][ T5940] usb 2-1: setting power OFF
[  118.104311][ T5940] dvb-usb: bulk message failed: -22 (2/0)
[  118.113671][ T5940] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected.
[  118.131741][ T6523] dvb-usb: bulk message failed: -22 (3/0)
[  118.144398][ T6523] dvb-usb: bulk message failed: -22 (3/0)
[  118.154279][ T6523] dvb-usb: bulk message failed: -22 (5/0)
[  118.161831][ T5940] (NULL device *): no alternate interface
[  118.202245][ T6523] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  118.228187][ T6523] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  118.256454][ T6523] netlink: 185392 bytes leftover after parsing attributes in process `syz.1.111'.
[  118.270890][ T5940] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected.
[  118.301200][ T5940] usb 2-1: USB disconnect, device number 9
[  118.553412][ T6542] netlink: 18308 bytes leftover after parsing attributes in process `syz.2.118'.
[  118.856321][ T6546] loop4: detected capacity change from 0 to 512
[  118.912117][ T6546] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.120: Invalid inode bitmap blk 4 in block_group 0
[  118.983118][ T6546] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.104001][ T5859] ocfs2: Unmounting device (7,0) on (node local)
[  119.114499][ T5940] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  119.215643][ T6552] loop1: detected capacity change from 0 to 1024
[  119.223014][ T6552] EXT4-fs: Ignoring removed bh option
[  119.253964][ T6552] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  119.275705][ T5940] usb 4-1: config 0 has an invalid interface number: 83 but max is 0
[  119.284943][ T5940] usb 4-1: config 0 has no interface number 0
[  119.291125][ T5940] usb 4-1: New USB device found, idVendor=0b48, idProduct=2003, bcdDevice=39.61
[  119.314923][ T6550] loop2: detected capacity change from 0 to 32768
[  119.315395][ T6552] EXT4-fs error (device loop1): ext4_quota_enable:7128: comm syz.1.122: inode #2304: comm syz.1.122: iget: illegal inode #
[  119.334217][ T5940] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  119.356213][    T9] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[  119.365295][ T6552] EXT4-fs (loop1): Remounting filesystem read-only
[  119.382998][ T6550] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.121 (6550)
[  119.414288][ T6552] EXT4-fs warning (device loop1): ext4_enable_quotas:7172: Failed to enable quota tracking (type=2, err=-117, ino=2304). Please run e2fsck to fix.
[  119.447336][ T5940] usb 4-1: config 0 descriptor??
[  119.460962][ T5940] ttusbir 4-1:0.83: cannot find expected altsetting
[  119.473530][ T6552] EXT4-fs (loop1): mount failed
[  119.491165][ T6550] BTRFS info (device loop2 state S): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  119.537237][    T9] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  119.552580][ T6550] BTRFS info (device loop2 state S): using crc32c (crc32c-lib) checksum algorithm
[  119.584338][    T9] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  119.598878][    T9] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  119.611272][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  119.666205][ T5940] usb 4-1: USB disconnect, device number 3
[  119.690559][    T9] usb 5-1: SerialNumber: syz
[  119.733278][    T9] usb 5-1: 0:2 : does not exist
[  119.750916][   T12] BTRFS warning (device loop2 state S): checksum verify failed on logical 1052672 mirror 1 wanted 0x37e030f7 found 0xf6479a7e level 0, ignored
[  119.828690][   T12] BTRFS warning (device loop2 state S): checksum verify failed on logical 5332992 mirror 1 wanted 0x0a5e5d25 found 0x13388982 level 0, ignored
[  120.274737][ T6548] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 13: invalid block bitmap
[  120.288223][   T13] BTRFS warning (device loop2 state S): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0x28b693f7 level 0, ignored
[  120.304027][ T6550] BTRFS error (device loop2 state S): failed to load root free space
[  120.425650][   T13] BTRFS warning (device loop2 state S): checksum verify failed on logical 5267456 mirror 1 wanted 0x22fa3277 found 0x0d9b21b0 level 0, ignored
[  120.463660][ T6550] BTRFS info (device loop2 state S): enabling ssd optimizations
[  120.751960][ T6550] BTRFS info (device loop2 state S): enabling free space tree
[  120.954640][ T6550] BTRFS info (device loop2 state S): ignoring bad roots
[  120.961671][ T6550] BTRFS info (device loop2 state S): ignoring meta csums
[  120.968827][ T6550] BTRFS info (device loop2 state S): force zlib compression, level 3
[  121.178860][ T6555] loop0: detected capacity change from 0 to 32768
[  121.241045][ T6555] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  121.279112][   T24] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  121.335295][ T6555] XFS (loop0): Ending clean mount
[  121.422578][ T5859] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  121.455058][   T24] usb 2-1: Using ep0 maxpacket: 16
[  121.475558][   T24] usb 2-1: New USB device found, idVendor=0471, idProduct=0327, bcdDevice=61.a4
[  121.494768][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  121.515447][   T24] usb 2-1: config 0 descriptor??
[  121.550484][   T24] gspca_main: sonixj-2.14.0 probing 0471:0327
[  121.709366][ T6581] loop3: detected capacity change from 0 to 32768
[  121.717745][ T6581] btrfs: Unknown parameter 'q‰ƒ»�CÖHy¤¶ˆÛ¡b®§‡ÌǤÜ
[  121.717745][ T6581] :///'
[  121.826344][ T6592] tipc: Started in network mode
[  121.861980][ T6592] tipc: Node identity 7a400000ff7f0000403a002d00002d4, cluster identity 4711
[  122.062868][    T9] usb 5-1: USB disconnect, device number 4
[  122.129825][ T6600] loop0: detected capacity change from 0 to 16
[  122.147074][ T5861] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  122.161269][ T5863] udevd[5863]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  122.176331][ T6600] erofs (device loop0): mounted with root inode @ nid 36.
[  122.215910][ T5858] BTRFS info (device loop2 state S): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  122.273077][ T6597] kvm: requested 3352 ns i8254 timer period limited to 200000 ns
[  122.377234][ T6597] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[  122.421862][ T6597] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[  122.533936][   T24] gspca_sonixj: reg_w1 err -71
[  122.554418][   T24] sonixj 2-1:0.0: probe with driver sonixj failed with error -71
[  122.573510][   T24] usb 2-1: USB disconnect, device number 10
[  122.587471][ T6606] capability: warning: `syz.3.128' uses 32-bit capabilities (legacy support in use)
[  122.612569][ T6597] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  122.687023][ T6604] loop4: detected capacity change from 0 to 4096
[  122.699732][ T6597] kvm: requested 2514 ns i8254 timer period limited to 200000 ns
[  122.721525][ T6604] NILFS (loop4): invalid segment: Inconsistency found
[  122.751779][ T6604] NILFS (loop4): trying rollback from an earlier position
[  122.772296][ T6597] kvm: requested 3352 ns i8254 timer period limited to 200000 ns
[  122.810069][ T6604] NILFS (loop4): recovery complete
[  122.830357][ T6597] kvm: requested 10895 ns i8254 timer period limited to 200000 ns
[  122.846650][ T6608] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  122.855274][ T6597] kvm: requested 6704 ns i8254 timer period limited to 200000 ns
[  123.238303][ T6616] netlink: 8 bytes leftover after parsing attributes in process `syz.2.131'.
[  123.269037][ T6618] netlink: 18308 bytes leftover after parsing attributes in process `syz.4.132'.
[  123.600066][ T6613] netlink: 24 bytes leftover after parsing attributes in process `syz.1.133'.
[  123.644511][ T6616] bridge0: port 3(macvlan2) entered blocking state
[  123.651196][ T6616] bridge0: port 3(macvlan2) entered disabled state
[  123.658221][ T6616] macvlan2: entered allmulticast mode
[  123.663660][ T6616] bridge0: entered allmulticast mode
[  123.672252][ T6619] loop2: detected capacity change from 0 to 4096
[  123.679471][ T6619] ntfs3: Unknown parameter ''
[  123.715242][ T6616] macvlan2: left allmulticast mode
[  123.736342][ T6616] bridge0: left allmulticast mode
[  123.814094][ T6626] loop3: detected capacity change from 0 to 512
[  123.843792][ T6631] FAULT_INJECTION: forcing a failure.
[  123.843792][ T6631] name failslab, interval 1, probability 0, space 0, times 0
[  123.860380][ T6631] CPU: 0 UID: 0 PID: 6631 Comm: syz.0.135 Not tainted 6.17.0-rc1-next-20250814-syzkaller #0 PREEMPT(full) 
[  123.860422][ T6631] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  123.860442][ T6631] Call Trace:
[  123.860453][ T6631]  <TASK>
[  123.860462][ T6631]  dump_stack_lvl+0x189/0x250
[  123.860501][ T6631]  ? __pfx____ratelimit+0x10/0x10
[  123.860533][ T6631]  ? __pfx_dump_stack_lvl+0x10/0x10
[  123.860556][ T6631]  ? __pfx__printk+0x10/0x10
[  123.860584][ T6631]  ? __pfx___might_resched+0x10/0x10
[  123.860603][ T6631]  ? lock_acquire+0x5f/0x360
[  123.860631][ T6631]  should_fail_ex+0x414/0x560
[  123.860661][ T6631]  should_failslab+0xa8/0x100
[  123.860691][ T6631]  kmem_cache_alloc_noprof+0x73/0x3c0
[  123.860717][ T6631]  ? __anon_vma_prepare+0x117/0x4a0
[  123.860748][ T6631]  __anon_vma_prepare+0x117/0x4a0
[  123.860779][ T6631]  do_wp_page+0x3938/0x5800
[  123.860808][ T6631]  ? rcu_is_watching+0x15/0xb0
[  123.860828][ T6631]  ? lock_acquire+0x5f/0x360
[  123.860866][ T6631]  ? __pfx_do_wp_page+0x10/0x10
[  123.860889][ T6631]  ? do_raw_spin_lock+0x121/0x290
[  123.860915][ T6631]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  123.860937][ T6631]  ? ___pte_offset_map+0x45/0x250
[  123.860967][ T6631]  __handle_mm_fault+0x1033/0x5440
[  123.860999][ T6631]  ? __pfx___handle_mm_fault+0x10/0x10
[  123.861025][ T6631]  ? lock_release+0x4b/0x3e0
[  123.861057][ T6631]  ? rcu_is_watching+0x15/0xb0
[  123.861076][ T6631]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  123.861108][ T6631]  handle_mm_fault+0x40a/0x8e0
[  123.861139][ T6631]  do_user_addr_fault+0xa81/0x1390
[  123.861174][ T6631]  ? rcu_is_watching+0x15/0xb0
[  123.861194][ T6631]  ? trace_page_fault_user+0x84/0x1e0
[  123.861212][ T6631]  exc_page_fault+0x76/0xf0
[  123.861231][ T6631]  asm_exc_page_fault+0x26/0x30
[  123.861250][ T6631] RIP: 0033:0x7f2219c50ba3
[  123.861275][ T6631] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  123.861292][ T6631] RSP: 002b:00007f221ab1a4a0 EFLAGS: 00010202
[  123.861317][ T6631] RAX: 0000000000000400 RBX: 00007f221ab1a540 RCX: 00007f220fa00000
[  123.861331][ T6631] RDX: 00007f221ab1a6e0 RSI: 0000000000000000 RDI: 00007f221ab1a5e0
[  123.861344][ T6631] RBP: 00000000000000f9 R08: 0000000000000008 R09: 00000000000000ac
[  123.861355][ T6631] R10: 00000000000000c0 R11: 00007f221ab1a540 R12: 0000000000000001
[  123.861367][ T6631] R13: 00007f2219e2d980 R14: 0000000000000020 R15: 00007f221ab1a5e0
[  123.861388][ T6631]  </TASK>
[  123.861414][ T6631] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  123.899740][ T6626] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.137: Invalid inode bitmap blk 4 in block_group 0
[  123.910646][ T6631] loop0: detected capacity change from 0 to 1024
[  124.146507][ T6631] EXT4-fs: Ignoring removed bh option
[  124.152862][ T6631] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  124.257540][ T6626] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  124.280962][ T6631] EXT4-fs error (device loop0): ext4_ext_check_inode:523: inode #2: comm syz.0.135: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 31(4), depth 0(0)
[  124.705265][ T6631] EXT4-fs (loop0): Remounting filesystem read-only
[  124.752988][ T6631] EXT4-fs (loop0): get root inode failed
[  124.776261][ T6631] EXT4-fs (loop0): mount failed
[  124.974436][   T24] usb 4-1: new full-speed USB device number 4 using dummy_hcd
[  125.061522][ T6646] netlink: 'syz.4.140': attribute type 25 has an invalid length.
[  125.154467][ T6646] netlink: 'syz.4.140': attribute type 1 has an invalid length.
[  125.171085][ T6646] bridge0: port 1(bridge_slave_0) entered learning state
[  125.241066][   T24] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  125.264478][   T24] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  125.372456][ T6659] netlink: 'syz.1.142': attribute type 1 has an invalid length.
[  125.380316][ T6659] netlink: 'syz.1.142': attribute type 3 has an invalid length.
[  125.388163][ T6659] netlink: 224 bytes leftover after parsing attributes in process `syz.1.142'.
[  125.787080][   T24] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  125.804220][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  125.812391][   T24] usb 4-1: SerialNumber: syz
[  125.831275][   T24] usb 4-1: 0:2 : does not exist
[  125.881330][ T6664] fuse: Bad value for 'group_id'
[  125.881333][ T6663] fuse: Bad value for 'group_id'
[  125.886724][ T6664] fuse: Bad value for 'group_id'
[  125.897437][ T6663] fuse: Bad value for 'group_id'
[  125.936832][ T6641] loop0: detected capacity change from 0 to 32768
[  125.946896][ T6663] loop2: detected capacity change from 0 to 128
[  126.006370][ T6663] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  126.030467][ T6663] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  126.068372][ T6641] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  126.117277][ T6641] XFS (loop0): Ending clean mount
[  126.122688][ T6675] loop1: detected capacity change from 0 to 16
[  126.145809][ T6675] erofs (device loop1): mounted with root inode @ nid 36.
[  126.178408][ T5859] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  126.195196][ T6633] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 13: invalid block bitmap
[  127.021522][ T6680] loop2: detected capacity change from 0 to 128
[  127.041288][ T6680] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  127.061495][ T6680] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  127.279156][ T6686] FAULT_INJECTION: forcing a failure.
[  127.279156][ T6686] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  127.302796][ T6686] CPU: 0 UID: 0 PID: 6686 Comm: syz.0.150 Not tainted 6.17.0-rc1-next-20250814-syzkaller #0 PREEMPT(full) 
[  127.302827][ T6686] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  127.302840][ T6686] Call Trace:
[  127.302848][ T6686]  <TASK>
[  127.302856][ T6686]  dump_stack_lvl+0x189/0x250
[  127.302886][ T6686]  ? __pfx____ratelimit+0x10/0x10
[  127.302918][ T6686]  ? __pfx_dump_stack_lvl+0x10/0x10
[  127.302941][ T6686]  ? __pfx__printk+0x10/0x10
[  127.302970][ T6686]  ? lock_acquire+0x5f/0x360
[  127.303003][ T6686]  should_fail_ex+0x414/0x560
[  127.303033][ T6686]  prepare_alloc_pages+0x213/0x610
[  127.303056][ T6686]  __alloc_frozen_pages_noprof+0x123/0x370
[  127.303076][ T6686]  ? rcu_is_watching+0x15/0xb0
[  127.303096][ T6686]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  127.303121][ T6686]  ? policy_nodemask+0x27c/0x720
[  127.303148][ T6686]  ? lock_acquire+0x5f/0x360
[  127.303178][ T6686]  alloc_pages_mpol+0x232/0x4a0
[  127.303208][ T6686]  vma_alloc_folio_noprof+0xe4/0x200
[  127.303238][ T6686]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  127.303265][ T6686]  ? __up_read+0x280/0x680
[  127.303286][ T6686]  ? __pfx___up_read+0x10/0x10
[  127.303310][ T6686]  folio_prealloc+0x30/0x180
[  127.303339][ T6686]  do_wp_page+0x1231/0x5800
[  127.303378][ T6686]  ? lock_acquire+0x5f/0x360
[  127.303408][ T6686]  ? __pfx_do_wp_page+0x10/0x10
[  127.303430][ T6686]  ? do_raw_spin_lock+0x121/0x290
[  127.303455][ T6686]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  127.303477][ T6686]  ? ___pte_offset_map+0x45/0x250
[  127.303507][ T6686]  __handle_mm_fault+0x1033/0x5440
[  127.303540][ T6686]  ? __pfx___handle_mm_fault+0x10/0x10
[  127.303566][ T6686]  ? lock_release+0x4b/0x3e0
[  127.303598][ T6686]  ? rcu_is_watching+0x15/0xb0
[  127.303617][ T6686]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  127.303649][ T6686]  handle_mm_fault+0x40a/0x8e0
[  127.303679][ T6686]  do_user_addr_fault+0xa81/0x1390
[  127.303712][ T6686]  ? rcu_is_watching+0x15/0xb0
[  127.303731][ T6686]  ? trace_page_fault_user+0x84/0x1e0
[  127.303749][ T6686]  exc_page_fault+0x76/0xf0
[  127.303768][ T6686]  asm_exc_page_fault+0x26/0x30
[  127.303787][ T6686] RIP: 0033:0x7f2219c50ba3
[  127.303804][ T6686] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  127.303820][ T6686] RSP: 002b:00007f221ab1a4a0 EFLAGS: 00010202
[  127.303839][ T6686] RAX: 0000000000000400 RBX: 00007f221ab1a540 RCX: 00007f220fa00000
[  127.303852][ T6686] RDX: 00007f221ab1a6e0 RSI: 0000000000000000 RDI: 00007f221ab1a5e0
[  127.303865][ T6686] RBP: 00000000000000f9 R08: 0000000000000008 R09: 00000000000000ac
[  127.303877][ T6686] R10: 00000000000000c0 R11: 00007f221ab1a540 R12: 0000000000000001
[  127.303889][ T6686] R13: 00007f2219e2d980 R14: 0000000000000020 R15: 00007f221ab1a5e0
[  127.303909][ T6686]  </TASK>
[  127.303954][ T6686] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  127.616464][ T6661] loop4: detected capacity change from 0 to 40427
[  127.625777][ T6661] F2FS-fs (loop4): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288)
[  127.643982][ T6686] loop0: detected capacity change from 0 to 1024
[  127.651329][ T6686] EXT4-fs: Ignoring removed bh option
[  127.657171][ T6661] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  127.670542][ T6686] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  127.692376][ T6661] F2FS-fs (loop4): Fix alignment : done, start(4096) end(16896) block(12288)
[  127.719705][ T6686] EXT4-fs error (device loop0): ext4_ext_check_inode:523: inode #2: comm syz.0.150: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 31(4), depth 0(0)
[  127.746544][ T6689] loop2: detected capacity change from 0 to 1024
[  127.756565][ T6661] F2FS-fs (loop4): invalid crc value
[  127.917108][ T6686] EXT4-fs (loop0): Remounting filesystem read-only
[  127.966452][ T5940] usb 4-1: USB disconnect, device number 4
[  127.982895][ T6686] EXT4-fs (loop0): get root inode failed
[  127.996627][ T6686] EXT4-fs (loop0): mount failed
[  128.012644][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.212898][ T6661] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  128.222920][ T6697] loop3: detected capacity change from 0 to 1024
[  128.224959][ T6695] loop0: detected capacity change from 0 to 512
[  128.240597][ T6661] F2FS-fs (loop4): Start checkpoint disabled!
[  128.281446][ T6697] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  128.300353][ T6661] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  128.300435][ T6697] ext4 filesystem being mounted at /31/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.313095][ T6661] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  128.347487][ T6695] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.356618][ T6661] F2FS-fs (loop4): disabling checkpoint not compatible with read-only
[  128.372192][ T6661] bio_check_eod: 3 callbacks suppressed
[  128.372223][ T6661] syz.4.144: attempt to access beyond end of device
[  128.372223][ T6661] loop4: rw=524288, sector=45064, nr_sectors = 8 limit=40427
[  128.392700][ T6661] syz.4.144: attempt to access beyond end of device
[  128.392700][ T6661] loop4: rw=0, sector=45064, nr_sectors = 8 limit=40427
[  128.424820][ T6695] ext4 filesystem being mounted at /37/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  128.487430][   T12] kworker/u8:0: attempt to access beyond end of device
[  128.487430][   T12] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  128.502997][   T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:0 Not tainted 6.17.0-rc1-next-20250814-syzkaller #0 PREEMPT(full) 
[  128.503026][   T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  128.503039][   T12] Workqueue: writeback wb_workfn (flush-7:4)
[  128.503070][   T12] Call Trace:
[  128.503078][   T12]  <TASK>
[  128.503086][   T12]  dump_stack_lvl+0x189/0x250
[  128.503113][   T12]  ? __pfx_dump_stack_lvl+0x10/0x10
[  128.503136][   T12]  ? __pfx_queue_work_on+0x10/0x10
[  128.503156][   T12]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  128.503187][   T12]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  128.503219][   T12]  f2fs_handle_critical_error+0x37c/0x540
[  128.503287][   T12]  f2fs_write_end_io+0x886/0xb60
[  128.503308][   T12]  __submit_merged_bio+0x27a/0x6a0
[  128.503330][   T12]  __submit_merged_write_cond+0x255/0x530
[  128.503352][   T12]  f2fs_write_data_pages+0x261d/0x3000
[  128.503388][   T12]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  128.503409][   T12]  ? rcu_is_watching+0x15/0xb0
[  128.503428][   T12]  ? rcu_is_watching+0x15/0xb0
[  128.503454][   T12]  ? unwind_next_frame+0xa5/0x2390
[  128.503471][   T12]  ? rcu_is_watching+0x15/0xb0
[  128.503485][   T12]  ? trace_pelt_se_tp+0x39/0x130
[  128.503509][   T12]  ? __asan_memset+0x22/0x50
[  128.503526][   T12]  ? __enqueue_entity+0x283/0x5e0
[  128.503549][   T12]  ? kvm_sched_clock_read+0x11/0x20
[  128.503577][   T12]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  128.503598][   T12]  do_writepages+0x32b/0x550
[  128.503626][   T12]  __writeback_single_inode+0x145/0xff0
[  128.503645][   T12]  ? do_raw_spin_unlock+0x122/0x240
[  128.503664][   T12]  writeback_sb_inodes+0x6c7/0x1010
[  128.503693][   T12]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  128.503728][   T12]  ? rcu_is_watching+0x15/0xb0
[  128.503746][   T12]  wb_writeback+0x43b/0xaf0
[  128.503767][   T12]  ? queue_io+0x3a1/0x590
[  128.503785][   T12]  ? __pfx_wb_writeback+0x10/0x10
[  128.503806][   T12]  ? rcu_is_watching+0x15/0xb0
[  128.503822][   T12]  wb_workfn+0x409/0xef0
[  128.503842][   T12]  ? __pfx_wb_workfn+0x10/0x10
[  128.503857][   T12]  ? rcu_is_watching+0x15/0xb0
[  128.503871][   T12]  ? rcu_is_watching+0x15/0xb0
[  128.503888][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  128.503900][   T12]  ? rcu_is_watching+0x15/0xb0
[  128.503914][   T12]  ? lock_acquire+0x5f/0x360
[  128.503937][   T12]  ? rcu_is_watching+0x15/0xb0
[  128.503949][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  128.503962][   T12]  ? process_scheduled_works+0x9ef/0x17b0
[  128.503977][   T12]  process_scheduled_works+0xae1/0x17b0
[  128.504002][   T12]  ? __pfx_process_scheduled_works+0x10/0x10
[  128.504023][   T12]  worker_thread+0x8a0/0xda0
[  128.504048][   T12]  kthread+0x711/0x8a0
[  128.504067][   T12]  ? __pfx_worker_thread+0x10/0x10
[  128.504080][   T12]  ? __pfx_kthread+0x10/0x10
[  128.504098][   T12]  ? _raw_spin_unlock_irq+0x23/0x50
[  128.504118][   T12]  ? lockdep_hardirqs_on+0x9c/0x150
[  128.504130][   T12]  ? __pfx_kthread+0x10/0x10
[  128.504154][   T12]  ret_from_fork+0x3f9/0x770
[  128.504176][   T12]  ? __pfx_ret_from_fork+0x10/0x10
[  128.504198][   T12]  ? __switch_to_asm+0x39/0x70
[  128.504222][   T12]  ? __switch_to_asm+0x33/0x70
[  128.504254][   T12]  ? __pfx_kthread+0x10/0x10
[  128.504278][   T12]  ret_from_fork_asm+0x1a/0x30
[  128.504314][   T12]  </TASK>
[  128.832305][   T12] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  129.020634][ T6706] EXT4-fs error (device loop3): ext4_free_blocks:6696: comm syz.3.152: Freeing blocks not in datazone - block = 0, count = 16
[  129.288490][ T6696] loop2: detected capacity change from 0 to 32768
[  129.344291][ T6696] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.153 (6696)
[  129.362428][ T6696] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  129.391054][ T6696] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm
[  129.411588][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  130.405388][ T6714] loop4: detected capacity change from 0 to 32768
[  130.921100][ T6714] bcachefs (/dev/loop4): error validating superblock: Invalid superblock section members_v2: device 0: not enough buckets (got 128, max 512)
[  130.921100][ T6714] members_v2 (size 152):
[  130.921100][ T6714] Device:                        0
[  130.921100][ T6714]   Label:                       (none)
[  130.921100][ T6714]   UUID:                        7af6772b-00de-4159-84cd-1faead05aceb
[  130.921100][ T6714]   Size:                        16777216
[  130.921100][ T6714]   read errors:                 0
[  130.921100][ T6714]   write errors:                0
[  130.921100][ T6714]   checksum errors:             0
[  130.921100][ T6714]   seqread iops:                0
[  130.921100][ T6714]   seqwrite iops:               0
[  130.921100][ T6714]   randread iops:               0
[  130.921100][ T6714]   randwrite iops:              0
[  130.921100][ T6714]   Bucket size:                 131072
[  130.921100][ T6714]   First bucket:                0
[  130.921100][ T6714]   Buckets:                     128
[  130.921100][ T6714]   Last mount:                  1714681267
[  130.921100][ T6714]   Last superblock write:       42
[  130.921100][ T6714]   State:                       rw
[  130.921100][ T6714]   Data allowed:                journal,btree,user
[  130.921100][ T6714]   Has data:                    journal,btree,user
[  130.921100][ T6714]   Btree allocated bitmap blocksize:256
[  130.921100][ T6714]   Btree allocated bitmap:      000000000000000000000100001000001001100000000000000000000000000
[  130.921807][ T6714] bcachefs: bch2_fs_get_tree() error: invalid_sb_members
[  131.243465][ T6696] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  131.243727][ T6696] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  131.253515][ T6696] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  131.262753][ T6696] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  131.273441][ T6696] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  131.283445][ T6696] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  131.293473][ T6696] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  131.303886][ T6696] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  131.310282][ T5859] EXT4-fs error (device loop0): ext4_lookup:1787: inode #12: comm syz-executor: iget: bad i_size value: 2533274857506816
[  131.354084][ T5859] EXT4-fs error (device loop0): ext4_lookup:1787: inode #12: comm syz-executor: iget: bad i_size value: 2533274857506816
[  131.404584][ T6696] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  131.406311][ T6696] BTRFS error (device loop2): open_ctree failed: -12
[  131.652278][ T6733] loop1: detected capacity change from 0 to 512
[  131.696669][ T5940] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  131.723123][ T6735] loop2: detected capacity change from 0 to 1024
[  131.730130][ T6733] EXT4-fs (loop1): can't mount with data_err=abort, fs mounted w/o journal
[  131.755324][ T6735] EXT4-fs: Ignoring removed bh option
[  131.784565][ T6735] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  131.813984][ T5859] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.831977][   T36] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.866543][ T6735] EXT4-fs error (device loop2): ext4_quota_enable:7128: comm syz.2.160: inode #2304: comm syz.2.160: iget: illegal inode #
[  131.887638][ T5940] usb 5-1: Using ep0 maxpacket: 16
[  131.894585][ T6735] EXT4-fs (loop2): Remounting filesystem read-only
[  131.901470][ T5940] usb 5-1: config 8 has an invalid interface number: 206 but max is 0
[  131.909829][ T6735] EXT4-fs warning (device loop2): ext4_enable_quotas:7172: Failed to enable quota tracking (type=2, err=-117, ino=2304). Please run e2fsck to fix.
[  131.910226][ T6735] EXT4-fs (loop2): mount failed
[  131.925094][ T5940] usb 5-1: config 8 has no interface number 0
[  131.936104][ T5940] usb 5-1: config 8 interface 206 altsetting 1 has an endpoint descriptor with address 0xF7, changing to 0x87
[  131.948166][ T5940] usb 5-1: config 8 interface 206 altsetting 1 endpoint 0x87 has invalid maxpacket 33058, setting to 1024
[  131.959657][ T5940] usb 5-1: config 8 interface 206 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 9
[  131.974991][ T5940] usb 5-1: config 8 interface 206 has no altsetting 0
[  131.988759][ T5940] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=35.bb
[  132.020448][ T5940] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  132.044240][ T5940] usb 5-1: Product: syz
[  132.060334][   T36] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.083971][ T5940] usb 5-1: Manufacturer: syz
[  132.094458][ T5940] usb 5-1: SerialNumber: syz
[  132.272772][   T36] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.369846][ T6743] netlink: 'syz.1.161': attribute type 1 has an invalid length.
[  132.377791][ T6743] netlink: 'syz.1.161': attribute type 3 has an invalid length.
[  132.385618][ T6743] netlink: 224 bytes leftover after parsing attributes in process `syz.1.161'.
[  132.748262][ T5940] garmin_gps 5-1:8.206: Garmin GPS usb/tty converter detected
[  132.763517][ T5940] usb 5-1: Garmin GPS usb/tty converter now attached to ttyUSB0
[  132.781356][ T5940] usb 5-1: USB disconnect, device number 5
[  132.803347][   T36] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.825936][ T5940] garmin_gps ttyUSB0: Garmin GPS usb/tty converter now disconnected from ttyUSB0
[  132.861025][ T5940] garmin_gps 5-1:8.206: device disconnected
[  132.880564][ T6747] FAULT_INJECTION: forcing a failure.
[  132.880564][ T6747] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  132.938675][ T6747] CPU: 0 UID: 0 PID: 6747 Comm: syz.2.164 Not tainted 6.17.0-rc1-next-20250814-syzkaller #0 PREEMPT(full) 
[  132.938708][ T6747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  132.938722][ T6747] Call Trace:
[  132.938730][ T6747]  <TASK>
[  132.938739][ T6747]  dump_stack_lvl+0x189/0x250
[  132.938769][ T6747]  ? __pfx____ratelimit+0x10/0x10
[  132.938802][ T6747]  ? __pfx_dump_stack_lvl+0x10/0x10
[  132.938833][ T6747]  ? __pfx__printk+0x10/0x10
[  132.938862][ T6747]  ? lock_acquire+0x5f/0x360
[  132.938894][ T6747]  should_fail_ex+0x414/0x560
[  132.938925][ T6747]  prepare_alloc_pages+0x213/0x610
[  132.938948][ T6747]  __alloc_frozen_pages_noprof+0x123/0x370
[  132.938971][ T6747]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  132.938996][ T6747]  ? policy_nodemask+0x27c/0x720
[  132.939026][ T6747]  alloc_pages_mpol+0x232/0x4a0
[  132.939056][ T6747]  vma_alloc_folio_noprof+0xe4/0x200
[  132.939087][ T6747]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  132.939116][ T6747]  ? do_raw_spin_lock+0x121/0x290
[  132.939141][ T6747]  ? rcu_is_watching+0x15/0xb0
[  132.939162][ T6747]  ? lock_release+0x4b/0x3e0
[  132.939191][ T6747]  folio_prealloc+0x30/0x180
[  132.939220][ T6747]  __handle_mm_fault+0x2ab9/0x5440
[  132.939264][ T6747]  ? __pfx___handle_mm_fault+0x10/0x10
[  132.939290][ T6747]  ? lock_release+0x4b/0x3e0
[  132.939323][ T6747]  ? rcu_is_watching+0x15/0xb0
[  132.939342][ T6747]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  132.939375][ T6747]  handle_mm_fault+0x40a/0x8e0
[  132.939406][ T6747]  do_user_addr_fault+0xa81/0x1390
[  132.939441][ T6747]  ? rcu_is_watching+0x15/0xb0
[  132.939460][ T6747]  ? trace_page_fault_user+0x84/0x1e0
[  132.939485][ T6747]  exc_page_fault+0x76/0xf0
[  132.939505][ T6747]  asm_exc_page_fault+0x26/0x30
[  132.939524][ T6747] RIP: 0033:0x7faf0f650c50
[  132.939543][ T6747] Code: 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 47 0f b6 0c 08 45 84 c9 74 08 <45> 88 0c 00 49 8b 47 10 48 83 c0 01 49 89 47 10 83 e9 01 73 d3 41
[  132.939561][ T6747] RSP: 002b:00007faf105204a0 EFLAGS: 00010286
[  132.939580][ T6747] RAX: 0000000000001000 RBX: 00007faf10520540 RCX: 0000000000000001
[  132.939594][ T6747] RDX: 0000000000000001 RSI: 0000000000000001 RDI: 00007faf105205e0
[  132.939607][ T6747] RBP: 00000000000000f7 R08: 00007faf05400000 R09: 00000000000000ff
[  132.939619][ T6747] R10: 0000000000000000 R11: 00007faf10520550 R12: 0000000000000001
[  132.939632][ T6747] R13: 00007faf0f82d980 R14: 0000000000000000 R15: 00007faf105205e0
[  132.939653][ T6747]  </TASK>
[  132.939667][ T6747] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  133.090188][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  133.224596][ T6747] loop2: detected capacity change from 0 to 1024
[  133.231811][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  133.243257][ T6747] EXT4-fs: Ignoring removed bh option
[  133.314450][ T6747] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  133.349126][ T6747] EXT4-fs error (device loop2): ext4_ext_check_inode:523: inode #2: comm syz.2.164: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 31(4), depth 0(0)
[  133.438357][   T36] bridge_slave_1: left allmulticast mode
[  133.515504][   T36] bridge_slave_1: left promiscuous mode
[  133.522355][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  133.590719][ T6747] EXT4-fs (loop2): Remounting filesystem read-only
[  133.622945][ T6747] EXT4-fs (loop2): get root inode failed
[  133.656911][ T6747] EXT4-fs (loop2): mount failed
[  133.686699][   T36] bridge_slave_0: left allmulticast mode
[  133.689887][ T6762] loop4: detected capacity change from 0 to 512
[  133.708439][ T6762] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  133.732062][   T36] bridge_slave_0: left promiscuous mode
[  133.741722][ T6762] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  133.742512][ T6763] loop3: detected capacity change from 0 to 4096
[  133.774396][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  133.776396][ T6766] loop2: detected capacity change from 0 to 16
[  133.791095][ T6762] EXT4-fs error (device loop4): ext4_iget_extra_inode:5104: inode #15: comm syz.4.168: corrupted in-inode xattr: e_value size too large
[  133.806199][ T6763] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[  133.815619][ T6762] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.168: couldn't read orphan inode 15 (err -117)
[  133.831106][ T6766] erofs (device loop2): mounted with root inode @ nid 36.
[  133.838875][ T6762] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.885115][ T5875] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  133.893227][ T5875] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  133.902287][ T5875] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  133.910870][ T5875] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  133.913423][ T6763] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  133.931203][ T5875] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  133.997372][ T6763] ntfs3(loop3): ino=5, mi_enum_attr
[  134.031680][ T6763] ntfs3(loop3): ino=5, "/" mi_enum_attr
[  134.047166][ T6763] ntfs3(loop3): ino=5, "/" mi_enum_attr
[  134.102897][ T6763] ntfs3(loop3): ino=5, "/" mi_enum_attr
[  134.154295][ T6763] ntfs3(loop3): ino=5, "/" mi_enum_attr
[  134.189489][ T6763] ntfs3(loop3): ino=5, "/" mi_enum_attr
[  134.225999][ T5932] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  134.238705][ T6763] ntfs3(loop3): ino=5, "/" attr_set_size
[  134.316050][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  134.404275][ T5932] usb 5-1: Using ep0 maxpacket: 16
[  135.293399][ T6773] loop1: detected capacity change from 0 to 32768
[  136.034317][   T51] Bluetooth: hci1: command tx timeout
[  136.157969][ T5932] usb 5-1: config 0 has an invalid interface number: 49 but max is 0
[  136.166655][ T5932] usb 5-1: config 0 has no interface number 0
[  136.173093][ T5932] usb 5-1: config 0 interface 49 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 16
[  136.184524][ T5932] usb 5-1: config 0 interface 49 altsetting 0 has an endpoint descriptor with address 0x29, changing to 0x9
[  136.196877][ T5932] usb 5-1: config 0 interface 49 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  136.206716][ T5932] usb 5-1: config 0 interface 49 altsetting 0 bulk endpoint 0x9 has invalid maxpacket 0
[  136.218686][ T5932] usb 5-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=76.b7
[  136.228438][ T5932] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  136.239897][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  136.250517][ T6773] bcachefs (/dev/loop1): error validating superblock: Invalid superblock section members_v2: device 0: not enough buckets (got 128, max 512)
[  136.250517][ T6773] members_v2 (size 152):
[  136.250517][ T6773] Device:                        0
[  136.250517][ T6773]   Label:                       (none)
[  136.250517][ T6773]   UUID:                        7af6772b-00de-4159-84cd-1faead05aceb
[  136.250517][ T6773]   Size:                        16777216
[  136.250517][ T6773]   read errors:                 0
[  136.250517][ T6773]   write errors:                0
[  136.250517][ T6773]   checksum errors:             0
[  136.250517][ T6773]   seqread iops:                0
[  136.250517][ T6773]   seqwrite iops:               0
[  136.250517][ T6773]   randread iops:               0
[  136.250517][ T6773]   randwrite iops:              0
[  136.250517][ T6773]   Bucket size:                 131072
[  136.250517][ T6773]   First bucket:                0
[  136.250517][ T6773]   Buckets:                     128
[  136.250517][ T6773]   Last mount:                  1714681267
[  136.250517][ T6773]   Last superblock write:       42
[  136.250517][ T6773]   State:                       rw
[  136.250517][ T6773]   Data allowed:                journal,btree,user
[  136.250517][ T6773]   Has data:                    journal,btree,user
[  136.250517][ T6773]   Btree allocated bitmap blocksize:256
[  136.250517][ T6773]   Btree allocated bitmap:      000000000000000000000100001000001001100000000000000000000000000
[  136.250651][ T6773] bcachefs: bch2_fs_get_tree() error: invalid_sb_members
[  136.402337][ T5932] usb 5-1: Product: syz
[  136.407832][ T5932] usb 5-1: Manufacturer: syz
[  136.412610][ T5932] usb 5-1: SerialNumber: syz
[  136.442574][   T36] bond0 (unregistering): Released all slaves
[  136.442784][ T5932] usb 5-1: config 0 descriptor??
[  136.454782][ T6762] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  136.575947][ T6767] wg1 speed is unknown, defaulting to 1000
[  136.612102][   T36] tipc: Left network mode
[  136.666983][ T5932] qcserial 5-1:0.49: Qualcomm USB modem converter detected
[  136.705348][ T5932] usb 5-1: USB disconnect, device number 6
[  136.753430][ T5932] qcserial 5-1:0.49: device disconnected
[  136.775806][ T5861] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.903502][ T6779] netem: change failed
[  136.931564][ T6783] netlink: 'syz.3.171': attribute type 1 has an invalid length.
[  136.939488][ T6783] netlink: 'syz.3.171': attribute type 3 has an invalid length.
[  136.947476][ T6783] netlink: 224 bytes leftover after parsing attributes in process `syz.3.171'.
[  137.684550][ T5932] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  137.760113][   T36] hsr_slave_0: left promiscuous mode
[  137.866389][   T36] hsr_slave_1: left promiscuous mode
[  137.890602][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  137.898302][ T5932] usb 5-1: Using ep0 maxpacket: 32
[  137.900028][ T5932] usb 5-1: config 0 has an invalid interface number: 184 but max is 0
[  138.057283][ T5932] usb 5-1: config 0 has no interface number 0
[  138.087687][ T5932] usb 5-1: config 0 interface 184 has no altsetting 0
[  138.125003][   T51] Bluetooth: hci1: command tx timeout
[  138.133569][ T5932] usb 5-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  138.142798][ T5932] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  138.161068][ T5932] usb 5-1: Product: syz
[  138.165372][ T5932] usb 5-1: Manufacturer: syz
[  138.173181][ T5932] usb 5-1: SerialNumber: syz
[  138.181831][ T5932] usb 5-1: config 0 descriptor??
[  138.187164][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  138.196985][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  138.223212][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  138.250063][ T5932] smsc75xx v1.0.0
[  138.280169][   T36] veth1_macvtap: left promiscuous mode
[  138.298460][   T36] veth0_macvtap: left promiscuous mode
[  138.316648][   T36] veth1_vlan: left promiscuous mode
[  138.324792][   T36] veth0_vlan: left promiscuous mode
[  138.697098][   T36] team0 (unregistering): Port device team_slave_1 removed
[  138.731304][   T36] team0 (unregistering): Port device team_slave_0 removed
[  138.755097][ T5973] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  138.849751][ T5932] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  138.860730][ T5932] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  138.882661][ T6767] chnl_net:caif_netlink_parms(): no params data found
[  138.926013][ T5973] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  138.945843][ T5973] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  138.956019][ T5973] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.966498][ T5973] usb 3-1: config 0 descriptor??
[  138.986321][ T5973] pwc: Askey VC010 type 2 USB webcam detected.
[  139.049714][ T6767] bridge0: port 1(bridge_slave_0) entered blocking state
[  139.062097][ T6767] bridge0: port 1(bridge_slave_0) entered disabled state
[  139.069912][ T6767] bridge_slave_0: entered allmulticast mode
[  139.077521][ T6767] bridge_slave_0: entered promiscuous mode
[  139.087622][ T6767] bridge0: port 2(bridge_slave_1) entered blocking state
[  139.095836][ T6767] bridge0: port 2(bridge_slave_1) entered disabled state
[  139.103182][ T6767] bridge_slave_1: entered allmulticast mode
[  139.115646][ T6767] bridge_slave_1: entered promiscuous mode
[  139.189377][ T6821] FAULT_INJECTION: forcing a failure.
[  139.189377][ T6821] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  139.202945][ T6821] CPU: 0 UID: 0 PID: 6821 Comm: syz.1.178 Not tainted 6.17.0-rc1-next-20250814-syzkaller #0 PREEMPT(full) 
[  139.202975][ T6821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  139.202989][ T6821] Call Trace:
[  139.202996][ T6821]  <TASK>
[  139.203004][ T6821]  dump_stack_lvl+0x189/0x250
[  139.203036][ T6821]  ? __pfx____ratelimit+0x10/0x10
[  139.203064][ T6821]  ? __pfx_dump_stack_lvl+0x10/0x10
[  139.203085][ T6821]  ? __pfx__printk+0x10/0x10
[  139.203110][ T6821]  ? lock_acquire+0x5f/0x360
[  139.203139][ T6821]  should_fail_ex+0x414/0x560
[  139.203167][ T6821]  prepare_alloc_pages+0x213/0x610
[  139.203188][ T6821]  __alloc_frozen_pages_noprof+0x123/0x370
[  139.203209][ T6821]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  139.203232][ T6821]  ? policy_nodemask+0x27c/0x720
[  139.203270][ T6821]  ? pfn_valid+0xba/0x490
[  139.203296][ T6821]  ? rcu_is_watching+0x15/0xb0
[  139.203317][ T6821]  alloc_pages_mpol+0x232/0x4a0
[  139.203355][ T6821]  vma_alloc_folio_noprof+0xe4/0x200
[  139.203383][ T6821]  ? rcu_read_lock_held+0xa/0x50
[  139.203405][ T6821]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  139.203436][ T6821]  ? rcu_is_watching+0x15/0xb0
[  139.203455][ T6821]  ? lock_release+0x4b/0x3e0
[  139.203485][ T6821]  folio_prealloc+0x30/0x180
[  139.203513][ T6821]  __handle_mm_fault+0x2ab9/0x5440
[  139.203549][ T6821]  ? __pfx___handle_mm_fault+0x10/0x10
[  139.203575][ T6821]  ? lock_release+0x4b/0x3e0
[  139.203608][ T6821]  ? rcu_is_watching+0x15/0xb0
[  139.203626][ T6821]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  139.203660][ T6821]  handle_mm_fault+0x40a/0x8e0
[  139.203692][ T6821]  do_user_addr_fault+0xa81/0x1390
[  139.203726][ T6821]  ? rcu_is_watching+0x15/0xb0
[  139.203745][ T6821]  ? trace_page_fault_user+0x84/0x1e0
[  139.203765][ T6821]  exc_page_fault+0x76/0xf0
[  139.203784][ T6821]  asm_exc_page_fault+0x26/0x30
[  139.203804][ T6821] RIP: 0033:0x7f2326250ba3
[  139.203823][ T6821] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  139.203841][ T6821] RSP: 002b:00007f23272154a0 EFLAGS: 00010206
[  139.203859][ T6821] RAX: 0000000000002000 RBX: 00007f2327215540 RCX: 00007f231c000000
[  139.203873][ T6821] RDX: 00007f23272156e0 RSI: 0000000000000037 RDI: 00007f23272155e0
[  139.203886][ T6821] RBP: 0000000000000064 R08: 0000000000000009 R09: 00000000000001ad
[  139.203899][ T6821] R10: 00000000000001b6 R11: 00007f2327215540 R12: 0000000000000001
[  139.203911][ T6821] R13: 00007f232642d980 R14: 00000000000000ed R15: 00007f23272155e0
[  139.203932][ T6821]  </TASK>
[  139.204013][ T6821] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  139.483146][ T6821] loop1: detected capacity change from 0 to 1024
[  139.495758][ T6767] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  139.517380][ T6767] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  139.532593][ T6821] EXT4-fs: Ignoring removed bh option
[  139.569872][ T5973] pwc: recv_control_msg error -32 req 02 val 2b00
[  139.577044][ T6821] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  139.587651][ T5973] pwc: recv_control_msg error -32 req 02 val 2700
[  139.599236][ T5973] pwc: recv_control_msg error -32 req 02 val 2c00
[  139.606677][ T5973] pwc: recv_control_msg error -32 req 04 val 1000
[  139.613929][ T5973] pwc: recv_control_msg error -32 req 04 val 1300
[  139.624536][ T5973] pwc: recv_control_msg error -32 req 04 val 1400
[  139.637295][ T5973] pwc: recv_control_msg error -32 req 02 val 2000
[  139.644320][ T6821] EXT4-fs error (device loop1): ext4_ext_check_inode:523: inode #2: comm syz.1.178: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 31(4), depth 0(0)
[  139.656554][ T5973] pwc: recv_control_msg error -32 req 02 val 2100
[  139.684607][ T6821] EXT4-fs (loop1): Remounting filesystem read-only
[  139.691258][ T6821] EXT4-fs (loop1): get root inode failed
[  139.704664][ T6821] EXT4-fs (loop1): mount failed
[  139.740688][ T5973] pwc: recv_control_msg error -32 req 04 val 1500
[  139.760895][ T6767] team0: Port device team_slave_0 added
[  139.768585][ T5973] pwc: recv_control_msg error -32 req 02 val 2500
[  139.782417][ T6835] loop3: detected capacity change from 0 to 512
[  139.787263][ T5973] pwc: recv_control_msg error -32 req 02 val 2400
[  139.805819][ T6767] team0: Port device team_slave_1 added
[  139.845745][ T6835] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.179: bg 0: block 288: padding at end of block bitmap is not set
[  139.893303][ T6835] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  139.935485][ T6835] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #13: comm syz.3.179: attempt to clear invalid blocks 1024 len 1
[  139.955206][ T6767] batman_adv: batadv0: Adding interface: batadv_slave_0
[  139.982684][ T6767] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  140.004815][ T5973] pwc: recv_control_msg error -71 req 02 val 2900
[  140.024583][ T5973] pwc: recv_control_msg error -71 req 02 val 2800
[  140.030053][ T6835] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.179: invalid indirect mapped block 1819239214 (level 0)
[  140.044299][ T5973] pwc: recv_control_msg error -71 req 04 val 1100
[  140.051803][ T5973] pwc: recv_control_msg error -71 req 04 val 1200
[  140.070591][ T5973] pwc: Registered as video103.
[  140.076364][ T6767] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  140.096963][ T6835] EXT4-fs (loop3): 1 truncate cleaned up
[  140.103558][ T6835] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  140.121412][ T6767] batman_adv: batadv0: Adding interface: batadv_slave_1
[  140.130131][ T5973] input: PWC snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/input/input7
[  140.142497][ T6843] loop1: detected capacity change from 0 to 1024
[  140.147956][ T6767] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  140.163152][ T6843] EXT4-fs: Ignoring removed bh option
[  140.192403][ T5973] usb 3-1: USB disconnect, device number 9
[  140.198443][   T51] Bluetooth: hci1: command tx timeout
[  140.247764][ T6843] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  140.253792][ T6767] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  140.296024][ T6843] EXT4-fs error (device loop1): ext4_quota_enable:7128: comm syz.1.181: inode #2304: comm syz.1.181: iget: illegal inode #
[  140.330472][ T6843] EXT4-fs (loop1): Remounting filesystem read-only
[  140.359533][ T6843] EXT4-fs warning (device loop1): ext4_enable_quotas:7172: Failed to enable quota tracking (type=2, err=-117, ino=2304). Please run e2fsck to fix.
[  140.388183][ T6767] hsr_slave_0: entered promiscuous mode
[  140.394890][ T6843] EXT4-fs (loop1): mount failed
[  140.414792][ T6767] hsr_slave_1: entered promiscuous mode
[  140.424852][ T6767] debugfs: 'hsr0' already exists in 'hsr'
[  140.451049][ T6767] Cannot create hsr debugfs directory
[  140.712763][ T6787] loop4: detected capacity change from 0 to 32768
[  140.790727][ T6787] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  140.855787][ T6787] XFS (loop4): Ending clean mount
[  140.867437][ T6787] XFS (loop4): syz.4.173 should use fallocate; XFS_IOC_{ALLOC,FREE}SP ioctl unsupported
[  141.236848][ T6767] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  141.270443][ T6767] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  141.309543][ T6767] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  141.365317][ T6767] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  141.458273][ T6858] loop2: detected capacity change from 0 to 32768
[  141.516538][ T6858] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  141.573449][   T30] kauditd_printk_skb: 8 callbacks suppressed
[  141.573468][   T30] audit: type=1800 audit(1755421922.755:22): pid=6858 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.183" name="file1" dev="loop2" ino=17058 res=0 errno=0
[  141.626900][ T5932] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  141.642119][ T5861] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  141.646747][ T5932] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  141.683892][ T6767] 8021q: adding VLAN 0 to HW filter on device bond0
[  141.693046][ T5932] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  141.712759][ T6871] loop1: detected capacity change from 0 to 32768
[  141.748317][ T5932] smsc75xx 5-1:0.184: probe with driver smsc75xx failed with error -71
[  141.761337][ T6871] btrfs: Unknown parameter 'ref_verify'
[  141.769805][ T5939] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  141.800836][ T6767] 8021q: adding VLAN 0 to HW filter on device team0
[  141.814526][   T24] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  141.854268][ T5932] usb 5-1: USB disconnect, device number 7
[  141.884545][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  141.891726][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  141.930442][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  141.937647][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  141.979183][   T24] usb 3-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  141.984541][ T5939] usb 4-1: Using ep0 maxpacket: 8
[  141.996032][   T24] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  142.006481][ T5939] usb 4-1: config 168 has too many interfaces: 66, using maximum allowed: 32
[  142.028195][ T5939] usb 4-1: config 168 has an invalid interface number: 208 but max is 65
[  142.043170][   T24] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  142.053485][ T5925] usb 2-1: new full-speed USB device number 11 using dummy_hcd
[  142.054379][ T5939] usb 4-1: config 168 has an invalid interface association descriptor of length 2, skipping
[  142.085394][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  142.093570][   T24] usb 3-1: SerialNumber: syz
[  142.111218][ T5939] usb 4-1: config 168 has 1 interface, different from the descriptor's value: 66
[  142.137062][ T5939] usb 4-1: config 168 has no interface number 0
[  142.149580][ T5939] usb 4-1: config 168 interface 208 altsetting 4 endpoint 0x7 has invalid wMaxPacketSize 0
[  142.232718][ T5925] usb 2-1: unable to get BOS descriptor or descriptor too short
[  142.257680][ T5925] usb 2-1: not running at top speed; connect to a high speed hub
[  142.284490][   T51] Bluetooth: hci1: command tx timeout
[  142.298110][ T5925] usb 2-1: config 8 has an invalid interface number: 39 but max is 0
[  142.300085][ T5939] usb 4-1: config 168 interface 208 has no altsetting 0
[  142.316015][ T5939] usb 4-1: New USB device found, idVendor=5850, idProduct=0900, bcdDevice=b3.ef
[  142.344279][ T5939] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  142.352803][ T5939] usb 4-1: Product: syz
[  142.370450][   T24] usb 3-1: 0:2 : does not exist
[  142.375977][ T5939] usb 4-1: Manufacturer: syz
[  142.379751][ T5925] usb 2-1: config 8 has no interface number 0
[  142.380636][ T5939] usb 4-1: SerialNumber: syz
[  142.400859][   T24] usb 3-1: unit 255 not found!
[  142.434232][ T5925] usb 2-1: config 8 interface 39 has no altsetting 0
[  142.568490][ T5925] usb 2-1: language id specifier not provided by device, defaulting to English
[  142.909459][ T5925] usb 2-1: New USB device found, idVendor=1bc7, idProduct=1031, bcdDevice=8c.e5
[  142.945780][   T24] usb 3-1: USB disconnect, device number 10
[  142.961541][ T5939] usb 4-1: USB disconnect, device number 5
[  143.084237][ T5925] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  143.092328][ T5925] usb 2-1: Product: syz
[  143.111164][ T5925] usb 2-1: SerialNumber: syz
[  143.128723][ T6767] 8021q: adding VLAN 0 to HW filter on device batadv0
[  143.145898][ T5863] udevd[5863]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  143.180108][ T5858] ocfs2: Unmounting device (7,2) on (node local)
[  143.355063][ T5925] option 2-1:8.39: GSM modem (1-port) converter detected
[  143.385249][ T5925] usb 2-1: USB disconnect, device number 11
[  143.395458][ T5925] option 2-1:8.39: device disconnected
[  145.372608][ T6767] veth0_vlan: entered promiscuous mode
[  145.382891][ T6908] loop4: detected capacity change from 0 to 32768
[  145.412332][ T6767] veth1_vlan: entered promiscuous mode
[  145.545733][ T6767] veth0_macvtap: entered promiscuous mode
[  145.557229][ T6929] FAULT_INJECTION: forcing a failure.
[  145.557229][ T6929] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  145.572570][ T6767] veth1_macvtap: entered promiscuous mode
[  145.592267][ T6929] CPU: 1 UID: 0 PID: 6929 Comm: syz.1.190 Not tainted 6.17.0-rc1-next-20250814-syzkaller #0 PREEMPT(full) 
[  145.592298][ T6929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  145.592311][ T6929] Call Trace:
[  145.592318][ T6929]  <TASK>
[  145.592327][ T6929]  dump_stack_lvl+0x189/0x250
[  145.592355][ T6929]  ? __pfx____ratelimit+0x10/0x10
[  145.592386][ T6929]  ? __pfx_dump_stack_lvl+0x10/0x10
[  145.592409][ T6929]  ? __pfx__printk+0x10/0x10
[  145.592436][ T6929]  ? lock_acquire+0x5f/0x360
[  145.592469][ T6929]  should_fail_ex+0x414/0x560
[  145.592499][ T6929]  prepare_alloc_pages+0x213/0x610
[  145.592521][ T6929]  __alloc_frozen_pages_noprof+0x123/0x370
[  145.592543][ T6929]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  145.592566][ T6929]  ? policy_nodemask+0x27c/0x720
[  145.592594][ T6929]  ? pfn_valid+0xba/0x490
[  145.592619][ T6929]  ? rcu_is_watching+0x15/0xb0
[  145.592640][ T6929]  alloc_pages_mpol+0x232/0x4a0
[  145.592670][ T6929]  vma_alloc_folio_noprof+0xe4/0x200
[  145.592698][ T6929]  ? rcu_read_lock_held+0xa/0x50
[  145.592720][ T6929]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  145.592750][ T6929]  ? rcu_is_watching+0x15/0xb0
[  145.592782][ T6929]  ? lock_release+0x4b/0x3e0
[  145.592811][ T6929]  folio_prealloc+0x30/0x180
[  145.592840][ T6929]  __handle_mm_fault+0x2ab9/0x5440
[  145.592874][ T6929]  ? __pfx___handle_mm_fault+0x10/0x10
[  145.592900][ T6929]  ? lock_release+0x4b/0x3e0
[  145.592932][ T6929]  ? rcu_is_watching+0x15/0xb0
[  145.592950][ T6929]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  145.592982][ T6929]  handle_mm_fault+0x40a/0x8e0
[  145.593013][ T6929]  do_user_addr_fault+0xa81/0x1390
[  145.593047][ T6929]  ? rcu_is_watching+0x15/0xb0
[  145.593066][ T6929]  ? trace_page_fault_user+0x84/0x1e0
[  145.593084][ T6929]  exc_page_fault+0x76/0xf0
[  145.593104][ T6929]  asm_exc_page_fault+0x26/0x30
[  145.593123][ T6929] RIP: 0033:0x7f2326250ba3
[  145.593141][ T6929] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  145.593158][ T6929] RSP: 002b:00007f23272154a0 EFLAGS: 00010206
[  145.593176][ T6929] RAX: 0000000000002000 RBX: 00007f2327215540 RCX: 00007f231c000000
[  145.593190][ T6929] RDX: 00007f23272156e0 RSI: 0000000000000037 RDI: 00007f23272155e0
[  145.593204][ T6929] RBP: 0000000000000064 R08: 0000000000000009 R09: 00000000000001ad
[  145.593215][ T6929] R10: 00000000000001b6 R11: 00007f2327215540 R12: 0000000000000001
[  145.593228][ T6929] R13: 00007f232642d980 R14: 00000000000000ed R15: 00007f23272155e0
[  145.593249][ T6929]  </TASK>
[  145.593442][ T6929] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  145.608617][ T6767] batman_adv: batadv0: Interface activated: batadv_slave_0
[  145.688226][ T6929] loop1: detected capacity change from 0 to 1024
[  145.729263][ T6767] batman_adv: batadv0: Interface activated: batadv_slave_1
[  145.885115][ T6929] EXT4-fs: Ignoring removed bh option
[  145.931208][ T6929] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  145.987622][ T6929] EXT4-fs error (device loop1): ext4_ext_check_inode:523: inode #2: comm syz.1.190: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 31(4), depth 0(0)
[  146.018580][   T36] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  146.027778][   T36] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  146.069482][ T6929] EXT4-fs (loop1): Remounting filesystem read-only
[  146.080853][ T6929] EXT4-fs (loop1): get root inode failed
[  146.101421][   T36] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  146.127832][ T6929] EXT4-fs (loop1): mount failed
[  146.132976][   T36] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  146.251294][ T6145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  146.259518][ T5932] usb 4-1: new full-speed USB device number 6 using dummy_hcd
[  146.298401][ T6145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  146.360959][ T6145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  146.372790][ T6908] loop4: detected capacity change from 0 to 16384
[  146.379888][ T6145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  146.410488][ T6941] loop1: detected capacity change from 0 to 16
[  146.427569][ T5932] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  146.479152][ T5932] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  146.537109][ T6941] erofs (device loop1): mounted with root inode @ nid 36.
[  146.600209][ T5932] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  146.672329][ T5932] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  146.729067][ T5932] usb 4-1: SerialNumber: syz
[  146.770550][ T6950] loop5: detected capacity change from 0 to 1024
[  146.777898][ T5932] usb 4-1: 0:2 : does not exist
[  146.914887][ T6908] bcachefs (loop4): Doing compatible version upgrade from 1.13: inode_has_child_snapshots to 1.30: 31bit_dirent_offset
[  146.914887][ T6908]   running recovery passes: check_allocations,check_extents_to_backpointers,check_inodes
[  147.010075][ T6908] bcachefs (loop4): starting version 1.13: inode_has_child_snapshots opts=metadata_checksum=none,data_checksum=none,inodes_32bit
[  147.010100][ T6908]   features: new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  147.010117][ T6908]   Using encoding defined by superblock: utf8-12.1.0
[  147.064614][ T6950] netlink: 4 bytes leftover after parsing attributes in process `syz.5.163'.
[  147.066506][ T6950] netlink: 8 bytes leftover after parsing attributes in process `syz.5.163'.
[  147.195841][ T6908] bcachefs (loop4): recovering from clean shutdown, journal seq 15
[  147.241361][ T6908] syz.4.188: vmalloc error: size 8388608, failed to allocated page array size 16384, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=/,mems_allowed=0-1
[  147.282236][ T6908] CPU: 1 UID: 0 PID: 6908 Comm: syz.4.188 Not tainted 6.17.0-rc1-next-20250814-syzkaller #0 PREEMPT(full) 
[  147.282272][ T6908] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  147.282287][ T6908] Call Trace:
[  147.282296][ T6908]  <TASK>
[  147.282305][ T6908]  dump_stack_lvl+0x189/0x250
[  147.282339][ T6908]  ? __pfx_dump_stack_lvl+0x10/0x10
[  147.282365][ T6908]  ? __pfx__printk+0x10/0x10
[  147.282392][ T6908]  ? lock_release+0x4b/0x3e0
[  147.282423][ T6908]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  147.282449][ T6908]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[  147.282474][ T6908]  warn_alloc+0x214/0x310
[  147.282516][ T6908]  ? __pfx_warn_alloc+0x10/0x10
[  147.282551][ T6908]  ? __get_vm_area_node+0x28f/0x300
[  147.282580][ T6908]  ? bch2_fs_journal_start+0x310/0x12f0
[  147.282614][ T6908]  __vmalloc_node_range_noprof+0x67e/0x12f0
[  147.282656][ T6908]  ? alloc_pages_mpol+0x3cd/0x4a0
[  147.282686][ T6908]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  147.282718][ T6908]  ? rcu_is_watching+0x15/0xb0
[  147.282738][ T6908]  ? bch2_fs_journal_start+0x310/0x12f0
[  147.282771][ T6908]  __kvmalloc_node_noprof+0x3ad/0x5e0
[  147.282802][ T6908]  ? bch2_fs_journal_start+0x310/0x12f0
[  147.282833][ T6908]  ? lock_release+0x4b/0x3e0
[  147.282866][ T6908]  bch2_fs_journal_start+0x310/0x12f0
[  147.282898][ T6908]  ? bch2_get_next_online_dev+0x2b/0x460
[  147.282937][ T6908]  ? __pfx_bch2_fs_journal_start+0x10/0x10
[  147.282969][ T6908]  ? __pfx_bch2_journal_log_msg+0x10/0x10
[  147.282992][ T6908]  ? up_write+0x1c4/0x420
[  147.283017][ T6908]  bch2_fs_recovery+0x148d/0x2b00
[  147.283044][ T6908]  ? stack_trace_save+0x9c/0xe0
[  147.283068][ T6908]  ? __pfx_bch2_fs_recovery+0x10/0x10
[  147.283090][ T6908]  ? bch2_have_enough_devs+0xc9/0xc00
[  147.283124][ T6908]  ? rcu_is_watching+0x15/0xb0
[  147.283144][ T6908]  ? lock_release+0x4b/0x3e0
[  147.283171][ T6908]  ? rcu_is_watching+0x15/0xb0
[  147.283192][ T6908]  ? lock_release+0x4b/0x3e0
[  147.283220][ T6908]  ? preempt_count_add+0x91/0x1a0
[  147.283255][ T6908]  ? class_percpu_read_destructor+0x11e/0x1f0
[  147.283288][ T6908]  ? bch2_have_enough_devs+0xb36/0xc00
[  147.283327][ T6908]  ? bch2_recalc_capacity+0x8b/0x890
[  147.283356][ T6908]  ? rcu_is_watching+0x15/0xb0
[  147.283377][ T6908]  ? rcu_is_watching+0x15/0xb0
[  147.283397][ T6908]  ? rcu_is_watching+0x15/0xb0
[  147.283416][ T6908]  ? lock_release+0x4b/0x3e0
[  147.283446][ T6908]  ? bch2_recalc_capacity+0x8b/0x890
[  147.283477][ T6908]  ? up_write+0x1c4/0x420
[  147.283509][ T6908]  bch2_fs_start+0x7ed/0xae0
[  147.283539][ T6908]  ? __pfx_bch2_fs_start+0x10/0x10
[  147.283575][ T6908]  ? sget+0x267/0x620
[  147.283602][ T6908]  bch2_fs_get_tree+0xb32/0x1540
[  147.283639][ T6908]  ? __pfx_bch2_fs_get_tree+0x10/0x10
[  147.283672][ T6908]  ? vfs_parse_fs_string+0x101/0x170
[  147.283706][ T6908]  ? __pfx_vfs_parse_comma_sep+0x10/0x10
[  147.283746][ T6908]  vfs_get_tree+0x8f/0x2b0
[  147.283777][ T6908]  do_new_mount+0x2a2/0xa30
[  147.283809][ T6908]  ? ns_capable+0x8a/0xf0
[  147.283828][ T6908]  ? __pfx_do_new_mount+0x10/0x10
[  147.283857][ T6908]  ? path_mount+0x61c/0xfe0
[  147.283886][ T6908]  ? user_path_at+0x44/0x60
[  147.283913][ T6908]  __se_sys_mount+0x317/0x410
[  147.283947][ T6908]  ? __pfx___se_sys_mount+0x10/0x10
[  147.283981][ T6908]  ? rcu_is_watching+0x15/0xb0
[  147.283999][ T6908]  ? __x64_sys_mount+0x20/0xc0
[  147.284031][ T6908]  do_syscall_64+0xfa/0x3b0
[  147.284053][ T6908]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.284074][ T6908]  ? clear_bhb_loop+0x60/0xb0
[  147.284097][ T6908]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.284117][ T6908] RIP: 0033:0x7fbe8139038a
[  147.284136][ T6908] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.284156][ T6908] RSP: 002b:00007fbe82215e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  147.284179][ T6908] RAX: ffffffffffffffda RBX: 00007fbe82215ef0 RCX: 00007fbe8139038a
[  147.284194][ T6908] RDX: 0000200000004900 RSI: 0000200000004940 RDI: 00007fbe82215eb0
[  147.284207][ T6908] RBP: 0000200000004900 R08: 00007fbe82215ef0 R09: 0000000000000000
[  147.284219][ T6908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000004940
[  147.284231][ T6908] R13: 00007fbe82215eb0 R14: 00000000000048e9 R15: 0000200000000000
[  147.284254][ T6908]  </TASK>
[  147.725494][ T6908] Mem-Info:
[  147.728690][ T6908] active_anon:12898 inactive_anon:0 isolated_anon:0
[  147.728690][ T6908]  active_file:3616 inactive_file:39916 isolated_file:0
[  147.728690][ T6908]  unevictable:768 dirty:81 writeback:0
[  147.728690][ T6908]  slab_reclaimable:11034 slab_unreclaimable:97838
[  147.728690][ T6908]  mapped:33162 shmem:8137 pagetables:1313
[  147.728690][ T6908]  sec_pagetables:3 bounce:0
[  147.728690][ T6908]  kernel_misc_reclaimable:0
[  147.728690][ T6908]  free:1309870 free_pcp:17637 free_cma:0
[  147.817535][ T6962] loop5: detected capacity change from 0 to 32768
[  148.196124][ T6908] Node 0 active_anon:61152kB inactive_anon:0kB active_file:14464kB inactive_file:159456kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:132648kB dirty:356kB writeback:0kB shmem:40404kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12456kB pagetables:5300kB sec_pagetables:12kB all_unreclaimable? no Balloon:0kB
[  148.262466][ T6908] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:208kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:164kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[  148.300597][ T6962] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  148.318219][   T30] audit: type=1800 audit(1755421929.515:23): pid=6962 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.196" name="file1" dev="loop5" ino=17058 res=0 errno=0
[  148.352800][ T6908] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  148.386689][ T6908] lowmem_reserve[]: 0 2497 2498 2498 2498
[  148.398416][ T6908] Node 0 DMA32 free:1337568kB boost:0kB min:34248kB low:42808kB high:51368kB reserved_highatomic:0KB free_highatomic:0KB active_anon:65076kB inactive_anon:0kB active_file:14464kB inactive_file:157888kB unevictable:1536kB writepending:412kB present:3129332kB managed:2557328kB mlocked:0kB bounce:0kB free_pcp:36992kB local_pcp:23556kB free_cma:0kB
[  148.504643][ T6908] lowmem_reserve[]: 0 0 1 1 1
[  148.513093][ T6908] Node 0 Normal free:24kB boost:0kB min:20kB low:24kB high:28kB reserved_highatomic:0KB free_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1568kB unevictable:0kB writepending:0kB present:1048580kB managed:1644kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  148.574208][ T6908] lowmem_reserve[]: 0 0 0 0 0
[  148.584322][ T6908] Node 1 Normal free:3882156kB boost:0kB min:55632kB low:69540kB high:83448kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:208kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:20352kB local_pcp:12128kB free_cma:0kB
[  148.624296][ T5973] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  148.641719][ T6974] loop1: detected capacity change from 0 to 1024
[  148.667354][ T6974] EXT4-fs: Ignoring removed bh option
[  148.694372][ T6959] loop2: detected capacity change from 0 to 32768
[  148.702127][ T6974] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  148.722230][ T6908] lowmem_reserve[]: 0 0 0 0 0
[  148.734093][ T6959] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  148.745698][ T6908] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  148.760179][ T6974] EXT4-fs error (device loop1): ext4_ext_check_inode:523: inode #2: comm syz.1.198: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 31(4), depth 0(0)
[  148.782506][ T6908] Node 0 DMA32: 2*4kB (ME) 3*8kB (UME) 2*16kB (ME) 1*32kB (E) 3*64kB (UME) 101*128kB (UM) 21*256kB (ME) 15*512kB (UM) 13*1024kB (UME) 3*2048kB (ME) 312*4096kB (M) = 1323680kB
[  148.807213][ T5973] usb 6-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  148.820022][ T6974] EXT4-fs (loop1): Remounting filesystem read-only
[  148.831220][ T5973] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  148.843140][ T6908] Node 0 Normal: 0*4kB 1*8kB (M) 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 24kB
[  148.846657][ T6974] EXT4-fs (loop1): get root inode failed
[  148.857601][ T6908] Node 1 Normal: 175*4kB (UE) 47*8kB (UME) 39*16kB (UME) 60*32kB (UME) 25*64kB (UME) 9*128kB (UME) 2*256kB (M) 3*512kB (ME) 1*1024kB (M) 1*2048kB (E) 945*4096kB (UM) = 3882212kB
[  148.881217][ T6908] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  148.891643][ T6908] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  148.897170][ T5973] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  148.901132][ T6908] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  148.916548][ T6974] EXT4-fs (loop1): mount failed
[  148.925964][ T6908] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  148.928178][ T6959] XFS (loop2): Ending clean mount
[  148.935612][ T6908] 58420 total pagecache pages
[  148.945286][ T5973] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  148.945312][ T5973] usb 6-1: SerialNumber: syz
[  148.963316][ T6959] XFS (loop2): Quotacheck needed: Please wait.
[  148.971674][ T6908] 0 pages in swap cache
[  148.977052][ T6908] Free swap  = 124996kB
[  148.984452][ T6908] Total swap = 124996kB
[  148.990824][ T6908] 2097051 pages RAM
[  148.996499][ T6908] 0 pages HighMem/MovableOnly
[  149.001386][ T6908] 425693 pages reserved
[  149.012258][ T6959] XFS (loop2): Quotacheck: Done.
[  149.026877][ T6908] 0 pages cma reserved
[  149.057694][ T6908] bcachefs (loop4): error allocating journal fifo (32768 open entries)
[  149.086536][ T6908] bcachefs (loop4): error in recovery: ENOMEM_journal_pin_fifo
[  149.086557][ T6908]   emergency read only at seq 0
[  149.100575][ T6908] bcachefs (loop4): bch2_fs_start(): error starting filesystem ENOMEM_journal_pin_fifo
[  149.128937][ T6985] loop1: detected capacity change from 0 to 1024
[  149.139583][ T5858] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  149.139670][ T6985] EXT4-fs: Ignoring removed bh option
[  149.160197][ T5973] usb 6-1: 0:2 : does not exist
[  149.165462][ T6985] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  149.189438][ T5973] usb 6-1: unit 255 not found!
[  149.198243][ T6985] EXT4-fs error (device loop1): ext4_quota_enable:7128: comm syz.1.199: inode #2304: comm syz.1.199: iget: illegal inode #
[  149.201403][ T5973] usb 6-1: USB disconnect, device number 2
[  149.235919][ T6985] EXT4-fs (loop1): Remounting filesystem read-only
[  149.318261][ T6985] EXT4-fs warning (device loop1): ext4_enable_quotas:7172: Failed to enable quota tracking (type=2, err=-117, ino=2304). Please run e2fsck to fix.
[  149.346413][ T5925] usb 4-1: USB disconnect, device number 6
[  149.359104][ T6985] EXT4-fs (loop1): mount failed
[  149.365505][ T5880] udevd[5880]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card4/controlC4/../uevent} for writing: No such file or directory
[  149.447873][ T6990] netlink: 240 bytes leftover after parsing attributes in process `syz.3.201'.
[  149.525734][ T6994] FAULT_INJECTION: forcing a failure.
[  149.525734][ T6994] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  149.541611][ T6994] CPU: 0 UID: 0 PID: 6994 Comm: syz.1.202 Not tainted 6.17.0-rc1-next-20250814-syzkaller #0 PREEMPT(full) 
[  149.541643][ T6994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  149.541657][ T6994] Call Trace:
[  149.541665][ T6994]  <TASK>
[  149.541674][ T6994]  dump_stack_lvl+0x189/0x250
[  149.541705][ T6994]  ? __pfx____ratelimit+0x10/0x10
[  149.541737][ T6994]  ? __pfx_dump_stack_lvl+0x10/0x10
[  149.541761][ T6994]  ? __pfx__printk+0x10/0x10
[  149.541789][ T6994]  ? lock_acquire+0x5f/0x360
[  149.541821][ T6994]  should_fail_ex+0x414/0x560
[  149.541852][ T6994]  prepare_alloc_pages+0x213/0x610
[  149.541876][ T6994]  __alloc_frozen_pages_noprof+0x123/0x370
[  149.541899][ T6994]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  149.541925][ T6994]  ? policy_nodemask+0x27c/0x720
[  149.541952][ T6994]  ? pfn_valid+0xba/0x490
[  149.541978][ T6994]  ? rcu_is_watching+0x15/0xb0
[  149.542000][ T6994]  alloc_pages_mpol+0x232/0x4a0
[  149.542031][ T6994]  vma_alloc_folio_noprof+0xe4/0x200
[  149.542060][ T6994]  ? rcu_read_lock_held+0xa/0x50
[  149.542082][ T6994]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  149.542113][ T6994]  ? rcu_is_watching+0x15/0xb0
[  149.542132][ T6994]  ? lock_release+0x4b/0x3e0
[  149.542162][ T6994]  folio_prealloc+0x30/0x180
[  149.542191][ T6994]  __handle_mm_fault+0x2ab9/0x5440
[  149.542224][ T6994]  ? __pfx___handle_mm_fault+0x10/0x10
[  149.542251][ T6994]  ? lock_release+0x4b/0x3e0
[  149.542284][ T6994]  ? rcu_is_watching+0x15/0xb0
[  149.542303][ T6994]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  149.542345][ T6994]  handle_mm_fault+0x40a/0x8e0
[  149.542376][ T6994]  do_user_addr_fault+0xa81/0x1390
[  149.542411][ T6994]  ? rcu_is_watching+0x15/0xb0
[  149.542431][ T6994]  ? trace_page_fault_user+0x84/0x1e0
[  149.542450][ T6994]  exc_page_fault+0x76/0xf0
[  149.542469][ T6994]  asm_exc_page_fault+0x26/0x30
[  149.542489][ T6994] RIP: 0033:0x7f2326250ba3
[  149.542507][ T6994] Code: 1f 84 00 00 00 00 00 3d 00 01 00 00 75 29 45 31 f6 48 83 c4 18 44 89 f0 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 40 00 49 8b 0f <44> 88 34 01 49 83 47 10 01 eb 92 66 90 8d 90 ff fe ff ff 83 fa 1c
[  149.542524][ T6994] RSP: 002b:00007f23272154a0 EFLAGS: 00010202
[  149.542543][ T6994] RAX: 0000000000008000 RBX: 00007f2327215540 RCX: 00007f231c000000
[  149.542557][ T6994] RDX: 00007f23272156e0 RSI: 0000000000000001 RDI: 00007f23272155e0
[  149.542570][ T6994] RBP: 0000000000000087 R08: 0000000000000009 R09: 0000000000000189
[  149.542582][ T6994] R10: 00000000000001b6 R11: 00007f2327215540 R12: 0000000000000001
[  149.542595][ T6994] R13: 00007f232642d980 R14: 000000000000000b R15: 00007f23272155e0
[  149.542617][ T6994]  </TASK>
[  149.542630][ T6994] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  149.746122][ T6996] netlink: 'syz.3.201': attribute type 10 has an invalid length.
[  149.760486][ T6994] loop1: detected capacity change from 0 to 1024
[  149.832050][ T6990] netlink: 'syz.3.201': attribute type 10 has an invalid length.
[  149.845184][ T6990] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  149.883755][ T6997] loop2: detected capacity change from 0 to 512
[  149.893414][ T6994] EXT4-fs: Ignoring removed bh option
[  149.915957][ T6994] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  149.926291][ T6996] bond0: (slave dummy0): Releasing backup interface
[  149.937174][ T6767] ocfs2: Unmounting device (7,5) on (node local)
[  149.937906][ T6997] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.957554][ T6997] ext4 filesystem being mounted at /39/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  149.996454][ T6994] EXT4-fs error (device loop1): ext4_ext_check_inode:523: inode #2: comm syz.1.202: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 31(4), depth 0(0)
[  150.021452][ T6994] EXT4-fs (loop1): Remounting filesystem read-only
[  150.073135][ T6996] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  150.093571][ T6994] EXT4-fs (loop1): get root inode failed
[  150.113682][ T6996] team0: Failed to send options change via netlink (err -105)
[  150.124825][ T6996] team0: Port device dummy0 added
[  150.133240][ T6994] EXT4-fs (loop1): mount failed
[  150.434797][ T7009] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(11)
[  150.441539][ T7009] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  150.449670][ T7009] vhci_hcd vhci_hcd.0: Device attached
[  150.490153][ T7009] loop1: detected capacity change from 0 to 512
[  151.514428][ T7010] vhci_hcd: connection closed
[  151.534352][   T61] vhci_hcd: stop threads
[  151.549039][   T61] vhci_hcd: release socket
[  151.550627][ T5858] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.553686][   T61] vhci_hcd: disconnect device
[  151.630558][ T7013] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  151.643827][ T7013] comedi comedi3: 8255: I/O port conflict (0x2,4)
[  151.651816][ T7013] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  151.659398][ T7013] comedi comedi3: 8255: I/O port conflict (0x5c952399,4)
[  151.666897][ T7013] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  151.673620][ T7013] comedi comedi3: 8255: I/O port conflict (0x3ff,4)
[  151.680872][ T7013] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  151.688088][ T7013] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  151.695243][ T7013] comedi comedi3: 8255: I/O port conflict (0x9,4)
[  151.701941][ T7013] comedi comedi3: 8255: I/O port conflict (0x6,4)
[  151.711462][ T7013] comedi comedi3: 8255: I/O port conflict (0x4,4)
[  151.718583][ T7013] comedi comedi3: 8255: I/O port conflict (0x3,4)
[  151.727953][ T7013] comedi comedi3: 8255: I/O port conflict (0xffffffff80000089,4)
[  151.737123][ T7013] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffd,4)
[  151.975031][ T7009] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.009126][ T7009] ext4 filesystem being mounted at /43/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.032610][ T7018] loop2: detected capacity change from 0 to 16
[  152.049425][ T7018] erofs (device loop2): mounted with root inode @ nid 36.
[  152.124088][ T7020] loop5: detected capacity change from 0 to 128
[  152.204604][   T24] usb 4-1: new full-speed USB device number 7 using dummy_hcd
[  152.221771][ T7020] FAT-fs (loop5): error, fat_free: invalid cluster chain (i_pos 54)
[  152.241394][ T7020] FAT-fs (loop5): Filesystem has been set read-only
[  152.253697][ T7022] netlink: 12 bytes leftover after parsing attributes in process `syz.2.208'.
[  152.279444][ T7022] xfrm1: entered promiscuous mode
[  152.296496][ T7022] xfrm1: entered allmulticast mode
[  152.318398][ T6767] FAT-fs (loop5): error, fat_free: invalid cluster chain (i_pos 54)
[  152.383457][ T7027] loop2: detected capacity change from 0 to 1024
[  152.383829][   T24] usb 4-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice=1e.8d
[  152.415545][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  152.437558][   T24] usb 4-1: config 0 descriptor??
[  152.448889][ T7025] loop5: detected capacity change from 0 to 4096
[  152.466112][ T7027] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.484009][ T7027] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.210: Allocating blocks 385-513 which overlap fs metadata
[  152.491246][ T7025] ntfs3(loop5): ino=1a, mi_enum_attr
[  152.504056][ T7027] EXT4-fs (loop2): Remounting filesystem read-only
[  152.517761][ T7027] pimreg: entered allmulticast mode
[  152.524507][ T7026] EXT4-fs (loop2): pa ffff8880742330e8: logic 16, phys. 129, len 24
[  152.548284][ T6908] bcachefs: bch2_fs_get_tree() error: ENOMEM_journal_pin_fifo
[  152.550601][ T7025] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  152.575725][ T5858] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.656323][ T5939] usb 4-1: USB disconnect, device number 7
[  152.743317][ T5862] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.305283][ T7043] netlink: 18308 bytes leftover after parsing attributes in process `syz.4.214'.
[  153.580538][ T7049] 9pnet_fd: Insufficient options for proto=fd
[  153.589220][ T7050] FAULT_INJECTION: forcing a failure.
[  153.589220][ T7050] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  153.636331][ T7050] CPU: 1 UID: 0 PID: 7050 Comm: syz.4.216 Not tainted 6.17.0-rc1-next-20250814-syzkaller #0 PREEMPT(full) 
[  153.636359][ T7050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  153.636372][ T7050] Call Trace:
[  153.636380][ T7050]  <TASK>
[  153.636388][ T7050]  dump_stack_lvl+0x189/0x250
[  153.636418][ T7050]  ? __pfx____ratelimit+0x10/0x10
[  153.636450][ T7050]  ? __pfx_dump_stack_lvl+0x10/0x10
[  153.636472][ T7050]  ? __pfx__printk+0x10/0x10
[  153.636498][ T7050]  ? lock_acquire+0x5f/0x360
[  153.636529][ T7050]  should_fail_ex+0x414/0x560
[  153.636558][ T7050]  prepare_alloc_pages+0x213/0x610
[  153.636582][ T7050]  __alloc_frozen_pages_noprof+0x123/0x370
[  153.636605][ T7050]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  153.636629][ T7050]  ? policy_nodemask+0x27c/0x720
[  153.636660][ T7050]  alloc_pages_mpol+0x232/0x4a0
[  153.636690][ T7050]  vma_alloc_folio_noprof+0xe4/0x200
[  153.636721][ T7050]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  153.636752][ T7050]  ? rcu_is_watching+0x15/0xb0
[  153.636772][ T7050]  ? lock_release+0x4b/0x3e0
[  153.636801][ T7050]  folio_prealloc+0x30/0x180
[  153.636830][ T7050]  do_wp_page+0x1231/0x5800
[  153.636861][ T7050]  ? lock_acquire+0x5f/0x360
[  153.636891][ T7050]  ? __pfx_do_wp_page+0x10/0x10
[  153.636913][ T7050]  ? do_raw_spin_lock+0x121/0x290
[  153.636938][ T7050]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  153.636960][ T7050]  ? ___pte_offset_map+0x45/0x250
[  153.636990][ T7050]  __handle_mm_fault+0x1033/0x5440
[  153.637024][ T7050]  ? __pfx___handle_mm_fault+0x10/0x10
[  153.637050][ T7050]  ? lock_release+0x4b/0x3e0
[  153.637082][ T7050]  ? rcu_is_watching+0x15/0xb0
[  153.637101][ T7050]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  153.637134][ T7050]  handle_mm_fault+0x40a/0x8e0
[  153.637164][ T7050]  do_user_addr_fault+0xa81/0x1390
[  153.637199][ T7050]  ? rcu_is_watching+0x15/0xb0
[  153.637218][ T7050]  ? trace_page_fault_user+0x84/0x1e0
[  153.637237][ T7050]  exc_page_fault+0x76/0xf0
[  153.637265][ T7050]  asm_exc_page_fault+0x26/0x30
[  153.637285][ T7050] RIP: 0033:0x7fbe81250c50
[  153.637303][ T7050] Code: 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 47 0f b6 0c 08 45 84 c9 74 08 <45> 88 0c 00 49 8b 47 10 48 83 c0 01 49 89 47 10 83 e9 01 73 d3 41
[  153.637321][ T7050] RSP: 002b:00007fbe822154a0 EFLAGS: 00010202
[  153.637339][ T7050] RAX: 0000000000009005 RBX: 00007fbe82215540 RCX: 0000000000000101
[  153.637353][ T7050] RDX: 00000000000021ff RSI: 0000000000000800 RDI: 00007fbe822155e0
[  153.637366][ T7050] RBP: 0000000000000102 R08: 00007fbe77000000 R09: 0000000000000004
[  153.637379][ T7050] R10: 0000200000001202 R11: 00000000000005fe R12: 0000000000000601
[  153.637391][ T7050] R13: 00007fbe8142d980 R14: 0000000000000015 R15: 00007fbe822155e0
[  153.637412][ T7050]  </TASK>
[  153.637426][ T7050] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  153.665411][ T7033] loop5: detected capacity change from 0 to 32768
[  153.924357][ T5932] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  153.932707][ T7050] loop4: detected capacity change from 0 to 1024
[  153.940011][ T7050] EXT4-fs: Ignoring removed bh option
[  153.962991][ T7033] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  153.978631][ T7050] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  154.016987][ T6145] (kworker/u8:10,6145,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #72: rec_len % 4 != 0 - offset=16, inode=66, rec_len=491, name_len=2
[  154.048448][ T7050] EXT4-fs error (device loop4): ext4_ext_check_inode:523: inode #2: comm syz.4.216: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 31(4), depth 0(0)
[  154.138743][ T7050] EXT4-fs (loop4): Remounting filesystem read-only
[  154.166429][ T7050] EXT4-fs (loop4): get root inode failed
[  154.173648][ T5932] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  154.182966][ T5932] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  154.193374][ T7039] loop1: detected capacity change from 0 to 32768
[  154.203421][ T7050] EXT4-fs (loop4): mount failed
[  154.223869][ T5932] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  154.242149][ T7039] debugfs: 'B1DE653C5FFC4D88B33B244AAB9EB3E9' already exists in 'ocfs2'
[  154.273526][ T5932] usb 4-1: config 1 has no interface number 1
[  154.320962][ T5932] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  154.381636][ T7039] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  154.407639][ T5932] usb 4-1: too many endpoints for config 1 interface 2 altsetting 0: 255, using maximum allowed: 30
[  154.426498][ T7059] loop4: detected capacity change from 0 to 16
[  154.444896][ T5932] usb 4-1: config 1 interface 2 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  154.461335][   T30] audit: type=1800 audit(1755421935.635:24): pid=7039 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.213" name="file1" dev="loop1" ino=17058 res=0 errno=0
[  154.465359][ T7059] erofs (device loop4): mounted with root inode @ nid 36.
[  154.518188][ T5932] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  154.527627][ T5932] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  154.528804][ T7055] loop2: detected capacity change from 0 to 40427
[  154.564289][ T5932] usb 4-1: Product: syz
[  154.568607][ T5932] usb 4-1: Manufacturer: syz
[  154.573322][ T5932] usb 4-1: SerialNumber: syz
[  154.587617][ T7055] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  154.616763][ T7055] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  154.684269][   T24] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  154.705907][ T7055] F2FS-fs (loop2): invalid crc value
[  154.836355][ T5932] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[  154.846704][ T7055] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  154.856634][ T5932] usb 4-1: MIDIStreaming interface descriptor not found
[  154.857015][   T24] usb 2-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  154.877717][   T24] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  154.899302][ T7055] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  154.907033][ T7055] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  154.919761][   T24] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  154.929752][ T5932] usb 4-1: USB disconnect, device number 8
[  154.929980][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  154.948695][   T24] usb 2-1: SerialNumber: syz
[  154.985924][ T6460] udevd[6460]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  155.199631][   T24] usb 2-1: 0:2 : does not exist
[  155.229747][   T24] usb 2-1: unit 255 not found!
[  155.271566][   T24] usb 2-1: USB disconnect, device number 12
[  155.453426][ T6988] udevd[6988]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  155.491441][   T51] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  155.820115][ T5862] ocfs2: Unmounting device (7,1) on (node local)
[  155.828395][ T6767] ocfs2: Unmounting device (7,5) on (node local)
[  156.218011][ T7087] loop1: detected capacity change from 0 to 512
[  156.262114][ T7087] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  156.298587][ T7090] loop2: detected capacity change from 0 to 1024
[  156.360574][ T7090] EXT4-fs: Ignoring removed bh option
[  156.437512][ T7087] EXT4-fs (loop1): 1 orphan inode deleted
[  156.460824][ T7090] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  156.535747][ T7087] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  156.975782][ T7090] EXT4-fs error (device loop2): ext4_quota_enable:7128: comm syz.2.221: inode #2304: comm syz.2.221: iget: illegal inode #
[  156.996113][ T7087] ext4 filesystem being mounted at /45/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.031323][ T7090] EXT4-fs (loop2): Remounting filesystem read-only
[  157.070697][ T7090] EXT4-fs warning (device loop2): ext4_enable_quotas:7172: Failed to enable quota tracking (type=2, err=-117, ino=2304). Please run e2fsck to fix.
[  157.132865][ T7090] EXT4-fs (loop2): mount failed
[  157.145156][ T7109] EXT4-fs (loop1): resizing filesystem from 64 to 1 blocks
[  157.180472][ T7109] EXT4-fs warning (device loop1): ext4_resize_fs:2042: can't shrink FS - resize aborted
[  157.436191][ T7118] FAULT_INJECTION: forcing a failure.
[  157.436191][ T7118] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  157.474270][ T5862] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.478118][ T7118] CPU: 1 UID: 0 PID: 7118 Comm: syz.2.228 Not tainted 6.17.0-rc1-next-20250814-syzkaller #0 PREEMPT(full) 
[  157.478153][ T7118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  157.478168][ T7118] Call Trace:
[  157.478177][ T7118]  <TASK>
[  157.478186][ T7118]  dump_stack_lvl+0x189/0x250
[  157.478218][ T7118]  ? __pfx____ratelimit+0x10/0x10
[  157.478255][ T7118]  ? __pfx_dump_stack_lvl+0x10/0x10
[  157.478281][ T7118]  ? __pfx__printk+0x10/0x10
[  157.478312][ T7118]  ? lock_acquire+0x5f/0x360
[  157.478349][ T7118]  should_fail_ex+0x414/0x560
[  157.478383][ T7118]  prepare_alloc_pages+0x213/0x610
[  157.478410][ T7118]  __alloc_frozen_pages_noprof+0x123/0x370
[  157.478436][ T7118]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  157.478464][ T7118]  ? policy_nodemask+0x27c/0x720
[  157.478498][ T7118]  alloc_pages_mpol+0x232/0x4a0
[  157.478533][ T7118]  vma_alloc_folio_noprof+0xe4/0x200
[  157.478567][ T7118]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[  157.478609][ T7118]  ? rcu_is_watching+0x15/0xb0
[  157.478633][ T7118]  ? lock_release+0x4b/0x3e0
[  157.478666][ T7118]  folio_prealloc+0x30/0x180
[  157.478700][ T7118]  do_wp_page+0x1231/0x5800
[  157.478737][ T7118]  ? lock_acquire+0x5f/0x360
[  157.478773][ T7118]  ? __pfx_do_wp_page+0x10/0x10
[  157.478799][ T7118]  ? do_raw_spin_lock+0x121/0x290
[  157.478827][ T7118]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  157.478852][ T7118]  ? ___pte_offset_map+0x45/0x250
[  157.478886][ T7118]  __handle_mm_fault+0x1033/0x5440
[  157.478923][ T7118]  ? __pfx___handle_mm_fault+0x10/0x10
[  157.478953][ T7118]  ? lock_release+0x4b/0x3e0
[  157.478990][ T7118]  ? rcu_is_watching+0x15/0xb0
[  157.479012][ T7118]  ? __pfx_lock_vma_under_rcu+0x10/0x10
[  157.479049][ T7118]  handle_mm_fault+0x40a/0x8e0
[  157.479083][ T7118]  do_user_addr_fault+0xa81/0x1390
[  157.479122][ T7118]  ? rcu_is_watching+0x15/0xb0
[  157.479145][ T7118]  ? trace_page_fault_user+0x84/0x1e0
[  157.479166][ T7118]  exc_page_fault+0x76/0xf0
[  157.479188][ T7118]  asm_exc_page_fault+0x26/0x30
[  157.479209][ T7118] RIP: 0033:0x7faf0f650c50
[  157.479229][ T7118] Code: 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 47 0f b6 0c 08 45 84 c9 74 08 <45> 88 0c 00 49 8b 47 10 48 83 c0 01 49 89 47 10 83 e9 01 73 d3 41
[  157.479248][ T7118] RSP: 002b:00007faf105204a0 EFLAGS: 00010202
[  157.479271][ T7118] RAX: 000000000000a005 RBX: 00007faf10520540 RCX: 0000000000000101
[  157.479287][ T7118] RDX: 00000000000010ff RSI: 0000000000000400 RDI: 00007faf105205e0
[  157.479301][ T7118] RBP: 0000000000000102 R08: 00007faf05400000 R09: 0000000000000004
[  157.479316][ T7118] R10: 0000200000001202 R11: 00000000000005fe R12: 0000000000000301
[  157.479330][ T7118] R13: 00007faf0f82d980 R14: 0000000000000013 R15: 00007faf105205e0
[  157.479355][ T7118]  </TASK>
[  157.479372][ T7118] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  157.775208][ T7118] loop2: detected capacity change from 0 to 1024
[  157.782422][ T7118] EXT4-fs: Ignoring removed bh option
[  157.791185][ T7118] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  157.803407][ T7118] EXT4-fs error (device loop2): ext4_ext_check_inode:523: inode #2: comm syz.2.228: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 1, max 31(4), depth 0(0)
[  157.820968][ T5973] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  157.831215][ T7118] EXT4-fs (loop2): Remounting filesystem read-only
[  157.838812][ T7118] EXT4-fs (loop2): get root inode failed
[  157.845509][ T7118] EXT4-fs (loop2): mount failed
[  157.980663][ T5973] usb 5-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[  158.022255][ T7126] loop5: detected capacity change from 0 to 128
[  158.121452][ T5973] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.205371][ T7126] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  158.221669][ T7126] ext4 filesystem being mounted at /7/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  158.265017][ T7126] netlink: 'syz.5.230': attribute type 21 has an invalid length.
[  158.413844][ T5973] usb 5-1: config 0 descriptor??
[  158.434638][ T7128] loop1: detected capacity change from 0 to 256
[  158.751359][ T6767] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  158.763339][ T5973] udl 5-1:0.0: [drm] Unrecognized vendor firmware descriptor
[  158.893192][ T7142] syzkaller1: entered promiscuous mode
[  158.922898][ T7142] syzkaller1: entered allmulticast mode
[  159.044530][   T24] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  159.056918][ T5973] [drm:udl_init] *ERROR* Selecting channel failed
[  159.125976][ T5973] [drm] Initialized udl 0.0.1 for 5-1:0.0 on minor 2
[  159.132729][ T5973] [drm] Initialized udl on minor 2
[  159.138456][ T7151] overlay: ./file1 is not a directory
[  159.159187][ T5973] udl 5-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  159.177971][ T7137] loop1: detected capacity change from 0 to 32768
[  159.194485][ T5973] udl 5-1:0.0: [drm] Cannot find any crtc or sizes
[  159.201421][ T5873] udl 5-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  159.225333][   T24] usb 4-1: Using ep0 maxpacket: 8
[  159.234561][   T24] usb 4-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  159.246045][ T5873] udl 5-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[  159.254629][ T5973] usb 5-1: USB disconnect, device number 8
[  159.263067][ T7137] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  159.274307][ T5873] udl 5-1:0.0: [drm] Cannot find any crtc or sizes
[  159.284868][   T24] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x93, changing to 0x83
[  159.330895][   T30] audit: type=1800 audit(1755421940.525:25): pid=7137 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.232" name="file1" dev="loop1" ino=17058 res=0 errno=0
[  159.342898][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  159.387776][ T7130] loop2: detected capacity change from 0 to 32768
[  159.405746][   T24] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[  159.451221][   T24] usb 4-1: New USB device found, idVendor=15c2, idProduct=003b, bcdDevice=66.3e
[  159.464393][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  159.490161][   T24] usb 4-1: Product: syz
[  159.514550][   T24] usb 4-1: Manufacturer: syz
[  159.519413][   T24] usb 4-1: SerialNumber: syz
[  159.533795][   T24] usb 4-1: config 0 descriptor??
[  159.567974][   T24] input: iMON Panel, Knob and Mouse(15c2:003b) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input9
[  159.650374][ T5939] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  160.108616][ T7164] loop5: detected capacity change from 0 to 2048
[  160.183889][ T7100] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  160.190455][ T7100] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  160.207149][ T5939] usb 2-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[  160.218189][ T5939] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  160.235928][ T5939] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  160.251036][ T5939] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  160.290237][ T5939] usb 2-1: SerialNumber: syz
[  160.344987][ T7100] vhci_hcd vhci_hcd.0: Device attached
[  160.391522][ T7163] vhci_hcd: connection closed
[  160.391835][   T24] imon:send_packet: packet tx failed (-71)
[  160.404868][ T3023] vhci_hcd: stop threads
[  160.409390][ T3023] vhci_hcd: release socket
[  160.424858][ T3023] vhci_hcd: disconnect device
[  160.444380][   T24] imon 4-1:0.0: panel buttons/knobs setup failed
[  160.583021][ T5939] usb 2-1: 0:2 : does not exist
[  160.602487][ T5939] usb 2-1: unit 255 not found!
[  160.649175][ T5939] usb 2-1: USB disconnect, device number 13
[  160.664518][   T24] rc_core: IR keymap rc-imon-pad not found
[  160.671428][   T24] Registered IR keymap rc-empty
[  160.691629][   T24] imon 4-1:0.0: Looks like you're trying to use an IR protocol this device does not support
[  160.746387][   T24] imon 4-1:0.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  160.780261][   T24] imon:send_packet: packet tx failed (-71)
[  160.824642][   T24] imon 4-1:0.0: remote input dev register failed
[  160.842912][   T24] imon 4-1:0.0: imon_init_intf0: rc device setup failed
[  160.903212][   T24] imon 4-1:0.0: unable to initialize intf0, err 0
[  160.924896][   T24] imon:imon_probe: failed to initialize context!
[  160.939034][   T24] imon 4-1:0.0: unable to register, err -19
[  160.988111][   T24] usb 4-1: USB disconnect, device number 9
[  163.053888][ T7176] loop5: detected capacity change from 0 to 32768
[  163.179500][ T5862] ocfs2: Unmounting device (7,1) on (node local)
[  163.353357][ T7198] loop2: detected capacity change from 0 to 1024
[  163.434366][   T24] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  163.659894][   T24] usb 6-1: Using ep0 maxpacket: 16
[  163.693059][   T24] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[  163.709942][   T24] usb 6-1: config 0 has no interface number 0
[  163.803703][   T24] usb 6-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[  163.814717][   T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  163.822867][   T24] usb 6-1: Product: syz
[  163.900022][ T7208] netlink: 16 bytes leftover after parsing attributes in process `syz.1.238'.
[  164.086655][   T24] usb 6-1: Manufacturer: syz
[  164.091318][   T24] usb 6-1: SerialNumber: syz
[  164.112258][   T24] usb 6-1: config 0 descriptor??
[  164.186555][   T24] gspca_main: spca1528-2.14.0 probing 04fc:1528
[  164.248163][   T24] gspca_spca1528: reg_w err -71
[  164.325766][   T24] spca1528 6-1:0.1: probe with driver spca1528 failed with error -71
[  164.430270][   T24] usb 6-1: USB disconnect, device number 3
[  164.711927][ T7225] random: crng reseeded on system resumption
[  165.136276][ T7232] netlink: 16 bytes leftover after parsing attributes in process `syz.4.247'.
[  166.251444][ T3023] hfsplus: b-tree write err: -5, ino 4
[  166.323979][   T30] audit: type=1326 audit(1755421947.515:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7242 comm="syz.5.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8054d8ebe9 code=0x7ffc0000
[  166.378484][   T30] audit: type=1326 audit(1755421947.515:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7242 comm="syz.5.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8054d8ebe9 code=0x7ffc0000
[  166.418523][   T30] audit: type=1326 audit(1755421947.545:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7242 comm="syz.5.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8054d8ebe9 code=0x7ffc0000
[  166.457400][   T30] audit: type=1326 audit(1755421947.545:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7242 comm="syz.5.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8054d8ebe9 code=0x7ffc0000
[  166.530996][   T30] audit: type=1326 audit(1755421947.545:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7242 comm="syz.5.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8054d8ebe9 code=0x7ffc0000
[  166.566217][   T30] audit: type=1326 audit(1755421947.545:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7242 comm="syz.5.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=198 compat=0 ip=0x7f8054d8ebe9 code=0x7ffc0000
[  166.635426][   T30] audit: type=1326 audit(1755421947.545:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7242 comm="syz.5.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8054d8ebe9 code=0x7ffc0000
[  166.758350][ T5939] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  166.924200][ T5939] usb 6-1: Using ep0 maxpacket: 8
[  166.998131][ T5939] usb 6-1: config 162 has an invalid interface number: 45 but max is 0
[  167.008319][ T5939] usb 6-1: config 162 has an invalid descriptor of length 36, skipping remainder of the config
[  167.039883][ T5939] usb 6-1: config 162 has no interface number 0
[  167.208871][ T7262] IPVS: wlc: UDP 224.0.0.2:0 - no destination available
[  167.254318][ T5932] IPVS: starting estimator thread 0...
[  167.342576][ T5939] usb 6-1: config 162 interface 45 altsetting 4 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  167.416948][ T7265] IPVS: using max 52 ests per chain, 124800 per kthread
[  167.438368][ T5939] usb 6-1: config 162 interface 45 has no altsetting 0
[  167.518019][ T5939] usb 6-1: New USB device found, idVendor=067b, idProduct=2303, bcdDevice=32.4e
[  167.814405][   T30] audit: type=1326 audit(1755421949.005:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7270 comm="syz.1.259" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f232638ebe9 code=0x0
[  167.950996][ T7277] tmpfs: Unknown parameter '€'
[  167.977806][ T5939] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  168.418392][ T5939] usb 6-1: Product: syz
[  168.433784][ T5939] usb 6-1: Manufacturer: syz
[  168.444203][ T5939] usb 6-1: SerialNumber: syz
[  168.605142][ T7283] wg1 speed is unknown, defaulting to 1000
[  168.728871][ T7247] netlink: 28 bytes leftover after parsing attributes in process `syz.5.251'.
[  168.862116][ T5939] pl2303 6-1:162.45: required endpoints missing
[  168.870099][ T5939] usb 6-1: USB disconnect, device number 4
[  169.866066][ T7300] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  169.919620][ T7302] netlink: zone id is out of range
[  169.925929][ T7302] netlink: zone id is out of range
[  169.936062][ T7302] netlink: zone id is out of range
[  169.962205][ T7302] netlink: zone id is out of range
[  169.988210][ T7302] netlink: set zone limit has 4 unknown bytes
[  171.190259][ T7328] loop2: detected capacity change from 0 to 7
[  171.207292][ T6988] Dev loop2: unable to read RDB block 7
[  171.213093][ T6988]  loop2: AHDI p1 p2 p3
[  171.236715][ T6988] loop2: partition table partially beyond EOD, truncated
[  171.271571][ T6988] loop2: p1 start 1601398130 is beyond EOD, truncated
[  171.306199][ T6988] loop2: p2 start 1702059890 is beyond EOD, truncated
[  171.412633][ T7328] Dev loop2: unable to read RDB block 7
[  171.435907][ T7328]  loop2: AHDI p1 p2 p3
[  171.443585][ T7328] loop2: partition table partially beyond EOD, truncated
[  171.494614][ T7328] loop2: p1 start 1601398130 is beyond EOD, truncated
[  171.514554][ T7328] loop2: p2 start 1702059890 is beyond EOD, truncated
[  171.619366][ T7333] binder: 7325:7333 ioctl c0306201 200000000100 returned -11
[  171.628100][ T7333] fuse: Bad value for 'fd'
[  171.840271][   T30] audit: type=1800 audit(1755421953.035:34): pid=7343 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.280" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[  172.373338][   T24] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  172.554221][   T24] usb 6-1: Using ep0 maxpacket: 32
[  172.567168][   T24] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  172.714302][   T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  172.756829][   T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  172.820767][   T24] usb 6-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  172.864456][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.905082][   T24] usb 6-1: config 0 descriptor??
[  172.920794][ T7347] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  172.929042][   T24] hub 6-1:0.0: USB hub found
[  173.117029][ T7356] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  173.132866][   T24] hub 6-1:0.0: config failed, can't read hub descriptor (err -22)
[  173.151930][ T7356] syzkaller0: entered promiscuous mode
[  173.184295][ T7356] syzkaller0: entered allmulticast mode
[  173.290162][ T7356] tipc: Resetting bearer <eth:syzkaller0>
[  173.317953][ T7355] tipc: Resetting bearer <eth:syzkaller0>
[  173.356898][   T24] usbhid 6-1:0.0: can't add hid device: -71
[  173.373704][   T24] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  173.427354][   T24] usb 6-1: USB disconnect, device number 5
[  173.474949][ T7355] tipc: Disabling bearer <eth:syzkaller0>
[  173.753716][ T7370] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  173.857081][ T7373] syz_tun: entered allmulticast mode
[  174.351076][ T7371] dvmrp1: entered allmulticast mode
[  174.868871][   T30] audit: type=1326 audit(1755421956.045:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7386 comm="syz.5.295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8054d8ebe9 code=0x7ffc0000
[  174.944561][   T30] audit: type=1326 audit(1755421956.045:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7386 comm="syz.5.295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8054d2add9 code=0x7ffc0000
[  174.974444][ T5932] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  175.044643][   T30] audit: type=1326 audit(1755421956.045:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7386 comm="syz.5.295" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8054d8ebe9 code=0x7ffc0000
[  175.069792][ T7398] ==================================================================
[  175.077947][ T7398] BUG: KASAN: slab-use-after-free in __se_sys_mremap+0xb33/0x1150
[  175.085805][ T7398] Read of size 8 at addr ffff888073ca4058 by task syz.1.300/7398
[  175.093546][ T7398] 
[  175.095893][ T7398] CPU: 0 UID: 0 PID: 7398 Comm: syz.1.300 Not tainted 6.17.0-rc1-next-20250814-syzkaller #0 PREEMPT(full) 
[  175.095915][ T7398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  175.095927][ T7398] Call Trace:
[  175.095935][ T7398]  <TASK>
[  175.095942][ T7398]  dump_stack_lvl+0x189/0x250
[  175.095967][ T7398]  ? __pfx_dump_stack_lvl+0x10/0x10
[  175.095986][ T7398]  ? lock_release+0x4b/0x3e0
[  175.096012][ T7398]  ? __virt_addr_valid+0x4a5/0x5c0
[  175.096043][ T7398]  print_report+0xca/0x240
[  175.096058][ T7398]  ? __se_sys_mremap+0xb33/0x1150
[  175.096075][ T7398]  kasan_report+0x118/0x150
[  175.096098][ T7398]  ? __se_sys_mremap+0xb33/0x1150
[  175.096117][ T7398]  __se_sys_mremap+0xb33/0x1150
[  175.096149][ T7398]  ? __pfx___se_sys_mremap+0x10/0x10
[  175.096180][ T7398]  ? rcu_is_watching+0x15/0xb0
[  175.096199][ T7398]  ? __x64_sys_mremap+0x20/0xc0
[  175.096221][ T7398]  do_syscall_64+0xfa/0x3b0
[  175.096241][ T7398]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.096260][ T7398]  ? clear_bhb_loop+0x60/0xb0
[  175.096281][ T7398]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.096300][ T7398] RIP: 0033:0x7f232638ebe9
[  175.096318][ T7398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.096337][ T7398] RSP: 002b:00007f23271b3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  175.096359][ T7398] RAX: ffffffffffffffda RBX: 00007f23265b6270 RCX: 00007f232638ebe9
[  175.096371][ T7398] RDX: 0000000000600000 RSI: 0000000000600000 RDI: 0000200000000000
[  175.096381][ T7398] RBP: 00007f2326411e19 R08: 0000200000a00000 R09: 0000000000000000
[  175.096392][ T7398] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  175.096401][ T7398] R13: 00007f23265b6308 R14: 00007f23265b6270 R15: 00007ffe8e09e828
[  175.096419][ T7398]  </TASK>
[  175.096424][ T7398] 
[  175.281030][ T7398] Allocated by task 7398:
[  175.285357][ T7398]  kasan_save_track+0x3e/0x80
[  175.290039][ T7398]  __kasan_slab_alloc+0x6c/0x80
[  175.294899][ T7398]  kmem_cache_alloc_noprof+0x1c1/0x3c0
[  175.300384][ T7398]  vm_area_alloc+0x24/0x140
[  175.304910][ T7398]  mmap_region+0xdc7/0x20c0
[  175.309422][ T7398]  do_mmap+0xc45/0x10d0
[  175.313774][ T7398]  vm_mmap_pgoff+0x2a6/0x4d0
[  175.318372][ T7398]  ksys_mmap_pgoff+0x587/0x760
[  175.323140][ T7398]  do_syscall_64+0xfa/0x3b0
[  175.327673][ T7398]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.333588][ T7398] 
[  175.335919][ T7398] Freed by task 7369:
[  175.339922][ T7398]  kasan_save_track+0x3e/0x80
[  175.344608][ T7398]  __kasan_save_free_info+0x46/0x50
[  175.349818][ T7398]  __kasan_slab_free+0x5b/0x80
[  175.354591][ T7398]  slab_free_after_rcu_debug+0x129/0x2a0
[  175.360247][ T7398]  rcu_core+0xca8/0x1770
[  175.364502][ T7398]  handle_softirqs+0x286/0x870
[  175.369271][ T7398]  __irq_exit_rcu+0xca/0x1f0
[  175.373875][ T7398]  irq_exit_rcu+0x9/0x30
[  175.378132][ T7398]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  175.383790][ T7398]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  175.389875][ T7398] 
[  175.392233][ T7398] Last potentially related work creation:
[  175.397964][ T7398]  kasan_save_stack+0x3e/0x60
[  175.402683][ T7398]  kasan_record_aux_stack+0xbd/0xd0
[  175.407899][ T7398]  kmem_cache_free+0x2f6/0x400
[  175.412697][ T7398]  vms_complete_munmap_vmas+0x626/0x8a0
[  175.418282][ T7398]  do_vmi_align_munmap+0x358/0x420
[  175.423432][ T7398]  do_vmi_munmap+0x253/0x2e0
[  175.428050][ T7398]  do_munmap+0xe1/0x140
[  175.432303][ T7398]  mremap_to+0x2df/0x7a0
[  175.436613][ T7398]  __se_sys_mremap+0xadf/0x1150
[  175.441484][ T7398]  do_syscall_64+0xfa/0x3b0
[  175.445987][ T7398]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.451898][ T7398] 
[  175.454227][ T7398] The buggy address belongs to the object at ffff888073ca4000
[  175.454227][ T7398]  which belongs to the cache vm_area_struct of size 256
[  175.468539][ T7398] The buggy address is located 88 bytes inside of
[  175.468539][ T7398]  freed 256-byte region [ffff888073ca4000, ffff888073ca4100)
[  175.482425][ T7398] 
[  175.484749][ T7398] The buggy address belongs to the physical page:
[  175.491221][ T7398] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x73ca4
[  175.499996][ T7398] memcg:ffff888031b71a01
[  175.504255][ T7398] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  175.511364][ T7398] page_type: f5(slab)
[  175.515368][ T7398] raw: 00fff00000000000 ffff88801bad5b40 ffffea00016db900 dead000000000008
[  175.524040][ T7398] raw: 0000000000000000 00000000000c000c 00000000f5000000 ffff888031b71a01
[  175.532624][ T7398] page dumped because: kasan: bad access detected
[  175.539059][ T7398] page_owner tracks the page as allocated
[  175.544873][ T7398] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 6812, tgid 6812 (modprobe), ts 138964058712, free_ts 138944885531
[  175.563987][ T7398]  post_alloc_hook+0x240/0x2a0
[  175.568858][ T7398]  get_page_from_freelist+0x21e4/0x22c0
[  175.574428][ T7398]  __alloc_frozen_pages_noprof+0x181/0x370
[  175.580232][ T7398]  alloc_pages_mpol+0x232/0x4a0
[  175.585087][ T7398]  allocate_slab+0x8a/0x370
[  175.589593][ T7398]  ___slab_alloc+0xbeb/0x1410
[  175.594355][ T7398]  kmem_cache_alloc_noprof+0x283/0x3c0
[  175.599951][ T7398]  vm_area_alloc+0x24/0x140
[  175.604560][ T7398]  mmap_region+0xdc7/0x20c0
[  175.609070][ T7398]  do_mmap+0xc45/0x10d0
[  175.613227][ T7398]  vm_mmap_pgoff+0x2a6/0x4d0
[  175.617827][ T7398]  do_syscall_64+0xfa/0x3b0
[  175.622377][ T7398]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.628283][ T7398] page last free pid 154 tgid 154 stack trace:
[  175.634438][ T7398]  __free_frozen_pages+0xbc4/0xd30
[  175.639576][ T7398]  __tlb_remove_table+0x2d2/0x3b0
[  175.644601][ T7398]  tlb_remove_table_rcu+0x85/0x100
[  175.649747][ T7398]  rcu_core+0xca8/0x1770
[  175.654026][ T7398]  handle_softirqs+0x286/0x870
[  175.662206][ T7398]  __irq_exit_rcu+0xca/0x1f0
[  175.666966][ T7398]  irq_exit_rcu+0x9/0x30
[  175.671236][ T7398]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  175.676898][ T7398]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  175.683038][ T7398] 
[  175.685400][ T7398] Memory state around the buggy address:
[  175.691060][ T7398]  ffff888073ca3f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  175.699208][ T7398]  ffff888073ca3f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  175.707271][ T7398] >ffff888073ca4000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  175.715327][ T7398]                                                     ^
[  175.722288][ T7398]  ffff888073ca4080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  175.730347][ T7398]  ffff888073ca4100: fc fc fc fc fc fc fc fc 00 00 00 00 00 00 00 00
[  175.738401][ T7398] ==================================================================
[  175.784368][ T7398] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  175.791611][ T7398] CPU: 1 UID: 0 PID: 7398 Comm: syz.1.300 Not tainted 6.17.0-rc1-next-20250814-syzkaller #0 PREEMPT(full) 
[  175.802980][ T7398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  175.813053][ T7398] Call Trace:
[  175.816350][ T7398]  <TASK>
[  175.819286][ T7398]  dump_stack_lvl+0x99/0x250
[  175.823902][ T7398]  ? __asan_memcpy+0x40/0x70
[  175.828608][ T7398]  ? __pfx_dump_stack_lvl+0x10/0x10
[  175.833819][ T7398]  ? __pfx__printk+0x10/0x10
[  175.838436][ T7398]  vpanic+0x281/0x750
[  175.842430][ T7398]  ? preempt_schedule+0xae/0xc0
[  175.847313][ T7398]  ? __pfx_vpanic+0x10/0x10
[  175.851821][ T7398]  ? preempt_schedule_common+0x83/0xd0
[  175.857297][ T7398]  ? preempt_schedule+0xae/0xc0
[  175.862158][ T7398]  ? __pfx_preempt_schedule+0x10/0x10
[  175.867544][ T7398]  panic+0xb9/0xc0
[  175.871281][ T7398]  ? __pfx_panic+0x10/0x10
[  175.875711][ T7398]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  175.881648][ T7398]  ? __se_sys_mremap+0xb33/0x1150
[  175.886682][ T7398]  check_panic_on_warn+0x89/0xb0
[  175.891637][ T7398]  ? __se_sys_mremap+0xb33/0x1150
[  175.896664][ T7398]  end_report+0x78/0x160
[  175.900956][ T7398]  kasan_report+0x129/0x150
[  175.905467][ T7398]  ? __se_sys_mremap+0xb33/0x1150
[  175.910640][ T7398]  __se_sys_mremap+0xb33/0x1150
[  175.915698][ T7398]  ? __pfx___se_sys_mremap+0x10/0x10
[  175.921008][ T7398]  ? rcu_is_watching+0x15/0xb0
[  175.925785][ T7398]  ? __x64_sys_mremap+0x20/0xc0
[  175.930763][ T7398]  do_syscall_64+0xfa/0x3b0
[  175.935371][ T7398]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.941447][ T7398]  ? clear_bhb_loop+0x60/0xb0
[  175.946146][ T7398]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.952058][ T7398] RIP: 0033:0x7f232638ebe9
[  175.956575][ T7398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.976285][ T7398] RSP: 002b:00007f23271b3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[  175.984734][ T7398] RAX: ffffffffffffffda RBX: 00007f23265b6270 RCX: 00007f232638ebe9
[  175.992720][ T7398] RDX: 0000000000600000 RSI: 0000000000600000 RDI: 0000200000000000
[  176.000704][ T7398] RBP: 00007f2326411e19 R08: 0000200000a00000 R09: 0000000000000000
[  176.008689][ T7398] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  176.016795][ T7398] R13: 00007f23265b6308 R14: 00007f23265b6270 R15: 00007ffe8e09e828
[  176.024798][ T7398]  </TASK>
[  176.028171][ T7398] Kernel Offset: disabled
[  176.032523][ T7398] Rebooting in 86400 seconds..