last executing test programs:

3m30.718323791s ago: executing program 4 (id=102):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000180)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r2, &(0x7f00000077c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000000100)={0x50, 0x0, r3, {0x7, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000015000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000001f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a10000000000000000000000000000000000000000000000000000000000000000000000000000000093160000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000018000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fffffff3000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f40000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007f0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001b000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff0000000000000000000000000000002000", 0x2000, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
fsync(r4)
close_range(r1, 0xffffffffffffffff, 0x0)

3m29.609284844s ago: executing program 4 (id=108):
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYRESDEC, @ANYRESDEC], 0x48)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ppoll(&(0x7f00000000c0)=[{}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x0, 0x0, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)=@arm64={0x1, 0x80, 0x9, '\x00', 0xa779})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000000c0)=0xffff)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

3m27.785822663s ago: executing program 4 (id=111):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000140), 0x4000000004002, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x0, 0x0})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000005c0)='sched_switch\x00'}, 0x10)
timer_settime(0x0, 0x0, &(0x7f00000008c0)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x800)
fcntl$lock(0xffffffffffffffff, 0x5, 0x0)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000140)=ANY=[])

3m26.898351536s ago: executing program 4 (id=114):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000300)={[{@noauto_da_alloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@dioread_lock}, {@norecovery}, {@discard}, {@lazytime}, {@noload}, {@usrquota}, {@noauto_da_alloc}]}, 0xfe, 0x54d, &(0x7f0000000400)="$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")
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
chdir(&(0x7f00000000c0)='./bus\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000180)='./bus\x00', 0x0)
renameat2(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0)
chdir(&(0x7f0000001440)='./bus\x00')
mkdir(&(0x7f0000000140)='./control\x00', 0x0)
inotify_init1(0x0)
rmdir(&(0x7f0000000100)='./control\x00')

3m25.744793221s ago: executing program 4 (id=116):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
creat(&(0x7f0000000100)='./file0/file0\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
link(&(0x7f0000000040)='./file0\x00', &(0x7f00000001c0)='./file1\x00')
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0x2000008, &(0x7f00000000c0), 0x3, 0x53b, &(0x7f0000000880)="$eJzs3e9rJGcdAPDvzGXvcne5JlVfaKG12spd0e5eGtsGhbaC6KuCWN+fMdmEcJtsyG7oJRTN/QWCiAq+0je+EfwDBDnwjS9FKOhrhYoielVQQTsyu7NJuplt9uome918PjA3z/PMj+/3yTGzM7sPMwGcW09GxCsR8U6WZc9ExGzRnhZT7HenfL2377+xnE9JZNlrf00iKdp6+0qK+dVis+mI+OqXI76RHI/b2t27vdRo1LeLeq29sVVr7e49u76xtFZfq28uLMy/sPji4vOLN0fSz2sR8dIX//i9b//kSy/94jOv/+HWn298M09rplh+tB8PaKo7e7l0YbfrlUvTfRtsv89gD6O8P5Ve5fJw29w9xXwAABgsv8b/UER8MiKeidm40LucBQAAACZG9vJM/CeJyMpdHNAOAAAAfICknTGwSVotxgLMRJpWq90xvB+JK2mj2Wp/erW5s7nSHSs7F5V0db1Rv1mMFZ6LSpLX5zvlw/pzffWFiHg0Ir47e7lTry43Gyvj/vIDAAAAzomrfff//5jt3v8DAAAAE2Zu3AkAAAAAp879PwAAAEw+9/8AAAAw0b7y6qv5lB2+/7r7xuqVeut2dWNnubrc3N6qrjWba51n9m2ctL9Gs7n12djcuVNr11vtWmt379ZGc2ezfWs9pk+9MwAAAECpRz9+73f5Hf/+5y53ptzFcScFnImpg1JSzEuO/t8/0p2/dUZJAWfiwhDrvHWpvN11AnywTfU3DDjWgclTGXcCwNglJywfOHjn18X8E6PNBwAAGL3rHyv//f/k3wX20zNIDzhFDmI4v/o+57PZcSUCnLnO7//DDuRxsQATpTLUCEBgkv3fv/+fKMseKCEAAGDkZjpTklaLr/dmIk2r1YhrndcCVJLV9Ub9ZkQ8EhG/na1cyuvznS2TE+8ZAAAAAAAAAAAAAAAAAAAAAAAAAICuLEsiAwAAACZaRPqn5JfdZ/lfn316pv/7gYvJvzqvBL4YEa//8LXv31lqt7fn8/a/HbS3f1C0PzeObzAAAACAfr379M78n+POBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBJ8/b9N5Z70xCrXx5V3L98ISLmyuJPxXRnPh2ViLjy9ySmjmyXRMSFEcTfvxsRHy2Ln+RpHYQsiz+KP8IJ8WOu+CuUxb86gvhwnt3Lzz+vlB1/aTzZmZcff1MR76q/X4PPf3Fw/rsw4Pi/9u5dfX5QjMfe/FltYPy7EY9NlZ9/evGT0vjTQ/fx61/b2xu0LPtRxPXe50/njHcY4Wip1t7YqrV2955d31haq6/VNxcW5l9YfHHx+cWbtdX1Rr34tzTGdx7/+Tvv1f8rpZ9/SZHNoP5HPF2yv7LPpP++eef+h3uV/ePxbzxVEv9XPy7WOB4/LeJ8qijny6/3yvvd8lFP/PQ3T7xX/1cO+18Z/v8/4sagnfY7dqA8/tSwmwIAo9fa3bu91GjUtye2kN+lPwRpKDyEhW+NdIdZlmX5MdVp+XfW1V10LyKG2U8SI+5p2stn0DoDzwDjPjMBAACjdnjR/4AbpqeUEAAAAAAAAAAAAAAAAAAAAJxDZ/GUtf6Yh49ATkbxCG0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgJH4XwAAAP//YPnVog==")
unlink(&(0x7f0000000000)='./file1\x00')

3m21.644517031s ago: executing program 4 (id=131):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
socket$netlink(0x10, 0x3, 0x15)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000100)='%', 0x1}], 0x1, 0x9)
tee(r3, r2, 0x8, 0x0)
write$binfmt_script(r4, 0x0, 0xfffffe48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

3m18.838864468s ago: executing program 32 (id=131):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
socket$netlink(0x10, 0x3, 0x15)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000100)='%', 0x1}], 0x1, 0x9)
tee(r3, r2, 0x8, 0x0)
write$binfmt_script(r4, 0x0, 0xfffffe48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

3m17.560592862s ago: executing program 2 (id=136):
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000380)=@security={'security\x00', 0xe, 0x4, 0x2a8, 0xffffffff, 0x1e0, 0xc0, 0xc0, 0xffffffff, 0xffffffff, 0x168, 0x330, 0x330, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@STANDARD={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, 0x0, 0x0, 'pimreg\x00', 'veth1_to_hsr\x00'}, 0x0, 0x70, 0xa8}, @common=@inet=@SET3={0x38}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x308)
open(&(0x7f0000000140)='./file0\x00', 0xec40, 0x12)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[], 0x15)
r2 = dup(r1)
write$P9_RLERRORu(r2, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
open$dir(&(0x7f0000000080)='./file0\x00', 0x1, 0x0)

3m16.40691242s ago: executing program 2 (id=138):
ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(0xffffffffffffffff, 0x8982, &(0x7f0000000000)={0x6, 'pimreg1\x00', {0x5}, 0x5})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x8000040000000000, 0xffffffffffffffff})
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

3m14.177498472s ago: executing program 2 (id=143):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000240)='./file1\x00', 0x10, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYRES64=0x0, @ANYRES16=0x0, @ANYRES32, @ANYRES64=0x0, @ANYRES32, @ANYBLOB="013f5e0c4eaa6035b286a05ad2cbf6ceb6b4f8857887209c639f55bd4ca21768b42eeee1fe270b10650dec195399e97b5c92203937a3783cb425f2e75f5b798de95c5127ab7b7d5dcc5a7d075fa0c84271bd431467c0a9182239a790"], 0x1, 0x1fb, &(0x7f0000000280)="$eJzskk9rE08Yxz+zu0n296OlQaKiCEUtWg9tNqnGPwcFLwb1JBVqQTAkaQ2m/mkCNaGHCEIRL4JVaBEPoqSIB/ENmIOn3hSKt1LouYcevEjryuxOtpN34GE+h/3uzDzP99nn2blbe1RLALvb80VIInFI8V0IHGBQBFuU7FBdpdeVxtX5FSvUjtLfSnfPNicmQVSOreeszsHSUZGkL/VrdYMiA7c5//bapx83Yotr+7Y+fJXxV282viBOlgbevfn84vJSf2Avbk3qPnbnyLIrjYCXOxPrG84hUl2vyuLafvfPgdWn7Y+5Z7KD11MIb9kFRr+NLF30+p9byrPWaN4rVKvl2dqlJxZbQamf2/NF+XInAb7v+0HvQB7QY2T7K+zFHHZgHLDxoxiHPdL1mYfpWqM5UpkpTJeny/ez2bGcd9rzzmTTU5Xq+1fyWfaEVkJNEKmnAPmb/tPOY8COivkfWlo1hPZp6lzouXHt1w0fpwdLy+2qoBPlJlScHME4J5CjnWsJbXcocHEIWsojsOfCRcbRvi+s5QYHo8UH1dICAtFNa+NEHplNYtEiqy/GzkVtLygdUppX2la6qXTQ7b2pTuBgqfs83II4jwv1+mwmDit9KkvtZeXgwrdkSx+YrJq0e5u7YGMwGAwGg8FgMBgM/wx/AwAA//+2K50Q")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000040)={'wlan1\x00', {0x2, 0x4e23, @broadcast}})
ioctl$sock_inet_SIOCSIFADDR(r0, 0x891c, &(0x7f0000000080)={'wlan1\x00', {0x2, 0x4000, @empty=0xfe000000}})
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0xfe, 0x85, 0x71, 0x8, 0xb48, 0x3007, 0x4f64, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x38, 0x0, 0x0, 0x23, 0x52, 0x26}}]}}]}}, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f00000000c0)='./file1\x00', 0x4810, &(0x7f0000000140)=ANY=[], 0x11, 0x693, &(0x7f0000000f40)="$eJzs3c1vHGcdB/DvrNcvm0qO26ZpQJUwjVQQEYkdK4VwSUAIBalCVThwthqnseKkwXFR2gNxAYkrB/6AcggXOIEQEhJSpHKGW8XN4lQJiUtPaQ8MmtlZe+3u2ptXO/TziWaf55ln5pnf/OZlXyJrAnxuXTiR9t10cuHEa7eq9sadhZWNOwvXevUkk0laSbtbpLieFB8k59Od8oVqZjNcMWw7v14+e/HDjzc+6rba2RqveukMD7A9yl6sN1Nmk4w15UPYNt4bDzbe5Fa12MxMlbDjvcTBfhtPUm7z46NbPYOUY32Nodc78PQouu+bfbrX/0xyKMlU7w1tvdvZevIR7um+7kXrjy8OAAAAODAO37ud3Mr0fscBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAT5Pm+f9FM7V69dkUvef/T/Q9Y39in8MdbvfIpnqVu60nEQwAAAAAAAAAPF5fupffXSzL6V67LOr/83+5bhypX5/J27mZpazmZG5lMWtZy2rmk8z0DTRxa3FtbXW+t+anZVkOWfP0wDVPjxhw51HsNQAAAAAAAAD83zjXlD/LhUzvcywAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALBNkYx1i3o60qvPpNVOMpVkolpuPflHr/40u7vfAQAAAMATcPhe7uVWpnvtsqi/8x+tv/dP5e1cz1qWs5aVLOVS/VtA91t/a+POwsrGnYVr1fTZcb/9n636H6f3DKMeMd3fHgZv+Vi9RCeXs1zPOZk38lZWcimtes3KsV48g+N6r4qpONdVlqMl6FJTVnv+q6Y8GGbqjIxvZmSuia3KxrO7Z6L/6DzAlubT2vzl58h95Pzcrlsp/ts7Jod6c5Jnvr93zsfva2ceys5MnO47+47unonkK3/6/Y+urFy/eqVYP3FwTqP7MPmvratmZyYW+jLx4siZuHzz6czETq28sFm/kO/lhzmR2bye1SznJ1nMWpYym+/WtcXmfK5eZ3bP1Pltrdf3imKiOS5jO2L68uFuuVtML9frTmc5P8hbuZSlvFr/O535fCNnciZn+47wCyNc9a0BV/2fhwd//KtNpZPkl015MFR5fbYvr/333Jm6r39OK+Vkd73nHtm9cVP7i02lOhI/b8qDYTMTU9l8l+hF93wvA+MDM/Gb+rZyc+X61dUrizd2jFusD97eK9m++wfnRlKdL89VB6tubT87qr7nB/bN131HNvtaO/t+29ns2+tKnWg+w312pNN134sD+xbqvmN9fVuftz4ty7L7eQuAA+/Q1w5NdP7d+Xvn/c4vOlc6r019Z/Kbky9NZPxv499qz4290nqp+EPez0+z9zd0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgTzffeffq4srK0uqOSlmWt4d0PZZK2sm2OX/9S98ySeqHAY0+YLX0+VZSz2mnqdxfYLcfbHfee9Ak/LM5Jk8k4Y+kMjX0/NlZ+aQsy4MR8yiVsnFQ4tmPyr7eloAn4NTatRunbr7z7teXry2+ufTm0vWzZ86cnTt75tWFU5eXV5bmuq/7HSXwOPR9AgcAAAAAAAAAAACeEqP9cU7xcH/bAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPAQLpxI+26KzM+dnKvaG3cWVqqpV99a8pMkrSTFbFJ8kJxPd8pM33DFsO2sJxc//Hjjo26r3Uz18q3d1hvNejNlNslYUw4wNWhmeXvYeEU9zo3h442o2NzDKmHHe4mD/fa/AAAA///tbhq7")
ioctl$SIOCGSKNS(r1, 0x894c, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
timer_create(0x2, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x10012, r2, 0x1000)
utimensat(0xffffffffffffffff, 0x0, &(0x7f0000000040)={{0x0, 0x2710}, {0x0, 0x3ffffffe}}, 0x0)

3m11.595229894s ago: executing program 2 (id=147):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000180)='./file1\x00', 0x4000, &(0x7f0000000740)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000011,fileset=00000000000000000011,uid=', @ANYRESDEC, @ANYBLOB=',session=0000\x00000000000000005,\x00'], 0x90, 0xc38, &(0x7f0000001080)="$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")
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r0, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPCONNADD(r1, 0x400448c8, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
sendmsg$NL80211_CMD_AUTHENTICATE(0xffffffffffffffff, 0x0, 0x0)
bpf$ITER_CREATE(0xb, 0x0, 0x0)
fanotify_init(0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000240)='devtmpfs\x00', 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2a00a9, &(0x7f0000000080)={[{@nr_blocks={'nr_blocks', 0x3d, [0x38]}}, {@nr_inodes={'nr_inodes', 0x3d, [0x35]}}]})

3m9.294345675s ago: executing program 2 (id=152):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, r1)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in={0x2, 0x4e20, @empty}], 0x10)
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x10)
socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000080)={0x0, 0x4}, 0x8)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x4e20, @local}]}, &(0x7f0000000100)=0x10)

3m8.187570174s ago: executing program 2 (id=155):
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$rds(0x15, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$packet(0x11, 0x4000000000002, 0x300)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000034c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000840)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="93630100200501001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES8=r1], 0x4c}}, 0x0)

3m5.702097518s ago: executing program 33 (id=155):
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$rds(0x15, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$packet(0x11, 0x4000000000002, 0x300)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000034c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000840)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="93630100200501001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES8=r1], 0x4c}}, 0x0)

16.735753269s ago: executing program 1 (id=669):
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000000)={0x5, 0x0, 0x3000, 0x1000, &(0x7f0000fff000/0x1000)=nil})
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendfile(0xffffffffffffffff, r0, 0x0, 0x12f)
r1 = socket$rds(0x15, 0x5, 0x0)
socket$inet(0x2, 0x6, 0xfffffff8) (async)
r2 = socket$inet(0x2, 0x6, 0xfffffff8)
fgetxattr(r2, &(0x7f0000000040)=@known='trusted.syz\x00', &(0x7f0000000080)=""/139, 0x8b)
r3 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
connect$llc(r3, &(0x7f0000000140)={0x1a, 0x200, 0x8, 0x4, 0x85, 0x8, @random="5f570540e0c7"}, 0x10)
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) (async)
r4 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
mmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x100010, r4, 0x3cb8000)
unshare(0x4000000) (async)
unshare(0x4000000)
ioctl$BTRFS_IOC_GET_FEATURES(r1, 0x80189439, &(0x7f0000000180))
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r5=>r0, {0x2}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r5, 0xc018937b, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r6=>r3, {<r7=>0x0}}, './file0\x00'})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r5, 0xc018937b, &(0x7f0000000240)={{0x1, 0x1, 0x18, r1, {0xffffffffffffffff, 0xffffffffffffffff}}, './file0\x00'}) (async)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r5, 0xc018937b, &(0x7f0000000240)={{0x1, 0x1, 0x18, <r8=>r1, {<r9=>0xffffffffffffffff, 0xffffffffffffffff}}, './file0\x00'})
setreuid(r7, r9) (async)
setreuid(r7, r9)
setsockopt$inet6_IPV6_RTHDR(r5, 0x29, 0x39, &(0x7f0000000280)={0x6, 0x8, 0x1, 0xde, 0x0, [@mcast1, @empty, @private2, @ipv4={'\x00', '\xff\xff', @multicast2}]}, 0x48) (async)
setsockopt$inet6_IPV6_RTHDR(r5, 0x29, 0x39, &(0x7f0000000280)={0x6, 0x8, 0x1, 0xde, 0x0, [@mcast1, @empty, @private2, @ipv4={'\x00', '\xff\xff', @multicast2}]}, 0x48)
getsockopt$inet6_tcp_buf(r5, 0x6, 0x1a, &(0x7f0000000300)=""/64, &(0x7f0000000340)=0x40)
ioctl$SNDCTL_SEQ_RESET(r6, 0x5100)
timer_create(0x0, &(0x7f0000000480)={0x0, 0x10, 0x1, @thr={&(0x7f0000000380)="826f84b8a0663dafebf86905ab238436eb964444421d80", &(0x7f00000003c0)="59506ecf6d48f0860d934fdc84a1b137356b11214d6ef7c8b3b9e4a0b63fd3b4673784395c5b66973f9a0e12a222d5d187088adb78fa973968c85eb3c3c19942e38feaf01b22bd39846b0dcd8cfe637c8247b6dfe64ec3a40fb8603bc82a3db5cc8f46f6c25858500a8ba68e233a942d57205be611607a5ce4c28b9412ec83b62dc266bc2b35"}}, &(0x7f00000004c0)=<r10=>0x0)
timer_settime(r10, 0x1, &(0x7f0000000500)={{0x0, 0x3938700}, {0x0, 0x989680}}, &(0x7f0000000540))
openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x92c41, 0x2) (async)
r11 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x92c41, 0x2)
r12 = signalfd4(r11, &(0x7f00000005c0)={[0xcd4]}, 0x8, 0x80800)
recvmmsg(r6, &(0x7f0000000600), 0x0, 0x10021, 0x0)
close_range(r11, r4, 0x2) (async)
close_range(r11, r4, 0x2)
r13 = gettid()
ioctl$KVM_GET_CLOCK(r12, 0x8030ae7c, &(0x7f0000000640))
ioctl$INCFS_IOC_CREATE_FILE(r0, 0xc058671e, &(0x7f0000000a40)={{'\x00', 0x1}, {0x3}, 0x0, 0x0, 0x0, &(0x7f0000000680)='./file0\x00', &(0x7f00000006c0)='./file0\x00', &(0x7f0000000700)="66c5da3aef9bf84f5216cf1fb627fbdface35a0e3b9d6d963d5397b8f85c900eb6609d911b4a766eb91a2ae16fcc0070b84a1edb3592ac87fbb8afee9ce33c3af660d4c719ada94d375cff6a7917a447a3703db2ce6257e63ee2d091f1dee28af7c84173730d629146a23a1367a2f66b2cf8e4cfeeba8fb0a57e057fe73500bee05c641bcc1189fbc4c5b41b2611073756916786ee36509e6ed6aed451e3b51b18e484ff8b577a239e4a8a2951a86ebc605ebd7464991f8694c0aa10283a29645aa6b57b75e37baebc9d4a252433658f00bcfb20cdab2a969b880d5e96243203934dddfc53b269f259bcf81a69ba8d8c1328a57319c337991524af37068ba2", 0xff, 0x0, &(0x7f0000000800)={0x2, 0x1a1, {0x2, 0xc, 0xe5, "66aca457d8331418f47c5baa953549f637386f37304476eee4d7ed76b10eae53283d8392a2d2f7c1d5fa543029e5efc31762b15d7d7e1d864ac5e23c6ae2d1a26acdf7777b21c9eb271d991c26fcf5f7430c5a1c1c9857870f3736cb65b29bd249c836a23624c34d53cbe14e34eb95680a9991d3b8b6eba2c2214702e23e463a301c9319d4a732d8663585f25c151a22c112756d4876be849634cb3d1305c4d651613283cbf6db8b1103ff8376208afc25d77d7c7e97ecc9a412217e437159a8b3b0238ea1649dab1801018db744334079e8cf32cb1d7be8401991bc17ac4551975630e33d", 0xaf, "71f9932659f750f4bdbe67cf263521cfcda9563576fe24b2f5d6320f1b0cd871c8f08710eef32c618cb43ab93efb626afa1d6a01fefe30b1e173c0d47939e352d46453f7041d500645f37730ed32d2f946739126a992cc998bccdd760597e344f8c03960da8bbdf9a1c220f4f356280424f962ba06b3634f8daf3c69ea2ad2f8f5182a82ac3a1fccc6b3b8953712ef6fe228895d8dd52fa44456a67dcd0eaf16c06adccef04f199b45a5a934386077"}, 0x70, "8a3497ddd89af7ebb3b3f158f7403efff809412dcf5aa7ffe9b90329eef8efbf5affbd8e341c9e907b0c0c7e3b5ff351e57124aa7908360ec4d9c12bc5f8f604310737522c251be215cbcb854ee301ffe8cb700cdfb6f7cf7be8ff9ea09e246ce55d2d45df8c109fcee6a2f98a90c884"}, 0x21d})
bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x1e, 0x40, &(0x7f0000000ac0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x62d, 0x0, 0x0, 0x0, 0x3}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r6}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r12}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7ff}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x100}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r8}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x10000}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r8}}, @map_fd={0x18, 0xb, 0x1, 0x0, r8}, @generic={0x2, 0x6, 0x6, 0x4, 0x4}, @func={0x85, 0x0, 0x1, 0x0, 0xffffffffffffffff}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x400}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}, @cb_func={0x18, 0x6, 0x4, 0x0, 0xfffffffffffffffb}, @btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f0000000cc0)='syzkaller\x00', 0x41, 0x74, &(0x7f0000000d00)=""/116, 0x41000, 0x20, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000d80)={0x1, 0x4, 0x1, 0x7}, 0x10, 0x0, r5, 0x7, 0x0, &(0x7f0000000dc0)=[{0x1, 0x1, 0x8, 0xb}, {0x3, 0x5, 0x1, 0x3}, {0x5, 0x1, 0x2, 0x6}, {0x2, 0x1, 0x7, 0x5}, {0x2, 0x5, 0x10, 0xc}, {0x3, 0x4, 0x2, 0x9}, {0x1, 0x5, 0xe, 0xd}], 0x10, 0x1, @void, @value}, 0x94) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x1e, 0x40, &(0x7f0000000ac0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x62d, 0x0, 0x0, 0x0, 0x3}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r6}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r12}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7ff}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x100}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r8}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x10000}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r8}}, @map_fd={0x18, 0xb, 0x1, 0x0, r8}, @generic={0x2, 0x6, 0x6, 0x4, 0x4}, @func={0x85, 0x0, 0x1, 0x0, 0xffffffffffffffff}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x400}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}}, @cb_func={0x18, 0x6, 0x4, 0x0, 0xfffffffffffffffb}, @btf_id={0x18, 0xa, 0x3, 0x0, 0x4}]}, &(0x7f0000000cc0)='syzkaller\x00', 0x41, 0x74, &(0x7f0000000d00)=""/116, 0x41000, 0x20, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000d80)={0x1, 0x4, 0x1, 0x7}, 0x10, 0x0, r5, 0x7, 0x0, &(0x7f0000000dc0)=[{0x1, 0x1, 0x8, 0xb}, {0x3, 0x5, 0x1, 0x3}, {0x5, 0x1, 0x2, 0x6}, {0x2, 0x1, 0x7, 0x5}, {0x2, 0x5, 0x10, 0xc}, {0x3, 0x4, 0x2, 0x9}, {0x1, 0x5, 0xe, 0xd}], 0x10, 0x1, @void, @value}, 0x94)
ptrace(0x4207, r13) (async)
ptrace(0x4207, r13)

15.539767625s ago: executing program 1 (id=675):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)}], 0x1}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

14.39518229s ago: executing program 1 (id=679):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x30, 0x0, 0x0)

13.826500876s ago: executing program 1 (id=683):
syz_mount_image$ext4(&(0x7f0000000d40)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x2, &(0x7f00000000c0)={[{@grpjquota}, {@init_itable_val={'init_itable', 0x3d, 0x7}}, {@dioread_nolock}]}, 0x3, 0x4ee, &(0x7f0000002680)="$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")
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_procfs(r0, &(0x7f0000000040)='coredump_filter\x00')
tkill(r0, 0x41)
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x42, 0x0)
pwritev2(r1, &(0x7f0000000540)=[{&(0x7f0000000200)="df", 0x1}], 0x1, 0x800005, 0xb02, 0x0)
r2 = syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', 0x17080, &(0x7f0000000300)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x1000}, 0x2c, {'user_id', 0x3d, 0xee00}, 0x2c, {'group_id', 0x3d, 0xee00}, 0x2c, {[{@allow_other}, {@blksize}, {@default_permissions}], [{@subj_type={'subj_type', 0x3d, '.'}}, {@seclabel}, {@fsmagic={'fsmagic', 0x3d, 0x8000}}, {@smackfshat={'smackfshat', 0x3d, '-'}}, {@subj_role={'subj_role', 0x3d, ',\\)#:,*\xd3y'}}, {@uid_gt={'uid>', 0xee01}}]}}, 0x1, 0x0, &(0x7f0000000140)="5d168806fe64b1f20568fc1e3d5f91ffa3125a268a496dbaa28b46069ef772412c8e0f79ff3a4c2830a270cd123e69db5d6f0e906842e3729d04c0759cc1faeadd3fb6fbe5069a5b0f37a90d0b89420f46f284e01da76c03e93c5a0d59859355adec3f654d55376dc947a78d44b7cbf676")
r3 = openat(r2, &(0x7f0000000080)='./file1\x00', 0x115140, 0x84)
unlinkat(0xffffffffffffff9c, &(0x7f0000000c40)='./file1\x00', 0x0)
write$binfmt_aout(r3, &(0x7f00000001c0)=ANY=[], 0x1001)

12.369168439s ago: executing program 1 (id=690):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x1})
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x90)

11.720335305s ago: executing program 1 (id=693):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x30, 0x0, 0x0)

8.958715134s ago: executing program 34 (id=693):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x30, 0x0, 0x0)

7.347560799s ago: executing program 5 (id=704):
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
socket$rds(0x15, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$packet(0x11, 0x4000000000002, 0x300)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000840)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="93630100200501001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES8=r1], 0x4c}}, 0x0)

7.046652319s ago: executing program 6 (id=706):
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000400), 0x101800, 0x0)
syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00') (async)
r0 = syz_io_uring_setup(0x951, &(0x7f00000000c0)={0x0, 0x0, 0x1000, 0xc, 0x249}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) (async, rerun: 64)
r3 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0) (rerun: 64)
fcntl$setlease(r3, 0x400, 0x1) (async)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/locks\x00', 0x0, 0x0)
pread64(r4, &(0x7f0000001440)=""/126, 0x7e, 0x2)
open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86) (async)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) (async)
r5 = socket$tipc(0x1e, 0x5, 0x0)
ioctl$int_in(r5, 0x5421, &(0x7f0000000040)=0xf0) (async)
listen(r5, 0x0) (async, rerun: 64)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r4, 0xc018937d, &(0x7f0000000240)={{0x1, 0x1, 0x18, <r6=>r5, {0xffff1805}}, './file1\x00'}) (rerun: 64)
write$binfmt_aout(r6, &(0x7f0000000900)={{0x10b, 0x9, 0x4, 0x250, 0x267, 0x3, 0x2f6, 0x3dbc}, "4716c0ebe571e1d0857f55cdcf9c744de91dff2158ca3d2a64286e0595254708439b52160e548ea8861e09bfbfbb0bfab03c5b3fcc3eb590eb6fcbdf1ee9acfe1f5ca1ce848a113ccc363b530cfd15fdcc2cc6cd372e2af28e801d79a9865b4b641edd6eef6216837a01d84b5dd43bab5d6a56715f06ddae785e5dab73a43ab81fbf9769a86631540a644c4f020fbbd742e20ce777db5742deb5ddd3159b4a071f739eb3447d86992a2f", ['\x00', '\x00', '\x00', '\x00']}, 0x4ca)
accept4(r5, 0x0, 0x0, 0x800) (async, rerun: 32)
io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0) (async, rerun: 32)
r7 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r7, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x3, 0x0, @mcast1}}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(r7, 0x29, 0x30, &(0x7f00000007c0)=ANY=[@ANYBLOB="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"], 0x310) (async)
setsockopt$inet6_group_source_req(r7, 0x29, 0x2c, &(0x7f00000005c0)={0x1, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108)
keyctl$get_persistent(0x16, 0xffffffffffffffff, 0x0) (async, rerun: 64)
syz_usb_connect(0x5, 0x24, &(0x7f0000001c80)=ANY=[@ANYBLOB="12010003f02b6708ac054a0228740102030109021200010806602209042b010003451208"], &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0}) (rerun: 64)

6.760107003s ago: executing program 0 (id=707):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
modify_ldt$write(0x1, 0x0, 0x0)
syz_usb_connect(0x0, 0x3f, 0x0, 0x0)

6.486539115s ago: executing program 3 (id=708):
r0 = landlock_create_ruleset(&(0x7f0000000040)={0x8, 0x3}, 0x18, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)

6.4111361s ago: executing program 5 (id=709):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)}], 0x1}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

6.216069147s ago: executing program 6 (id=710):
r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000ec0)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_KEY(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000480)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000ffdbdf251800000008000300", @ANYRES32=r2, @ANYBLOB="100030800c0003"], 0x2c}, 0x1, 0x0, 0x0, 0x4080}, 0x810)
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x88, &(0x7f00000005c0)={[{@nogrpid}, {@min_batch_time}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@nobarrier}, {@nodiscard}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
setxattr(&(0x7f0000000180)='./file0/file0\x00', &(0x7f0000000080)=ANY=[@ANYBLOB='security.e'], 0x0, 0x0, 0x1)
rename(&(0x7f0000000000)='./file1\x00', &(0x7f00000000c0)='./file0/file0\x00')

5.876886738s ago: executing program 3 (id=711):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000000180)=0x800, 0x4)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(r0, &(0x7f0000000100), 0x10)
getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, &(0x7f0000000200), &(0x7f0000000240)=0x30)

5.716841243s ago: executing program 0 (id=712):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
close(0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200010, &(0x7f0000000300)={[{@jqfmt_vfsold}]}, 0xfe, 0x55d, &(0x7f0000000980)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800006, 0x11, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)

5.232302108s ago: executing program 5 (id=713):
r0 = socket$kcm(0x10, 0x2, 0x0)
add_key(&(0x7f0000000280)='rxrpc\x00', 0x0, 0x0, 0x0, 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r1)
sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010026bd7000ffdbdf252b00000005002b000100000005002e00b20000000c0005000201aaaaaaaaaaaa08000200", @ANYRES32=r1, @ANYBLOB="05002b"], 0x40}, 0x1, 0x0, 0x0, 0x20000001}, 0x850)
sendmsg$kcm(r0, &(0x7f0000000080), 0x84)

5.082431337s ago: executing program 6 (id=714):
r0 = socket$xdp(0x2c, 0x3, 0x0) (async)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0) (async)
syz_usb_control_io$hid(r1, &(0x7f0000001540)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0xf, {[@main=@item_4={0x3, 0x0, 0x8, "a8407a73"}, @local=@item_4={0x3, 0x2, 0x5, "febf0280"}, @main=@item_4={0x3, 0x0, 0xb, "0000fe85"}]}}, 0x0}, 0x0)
r2 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0) (async)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = socket$key(0xf, 0x3, 0x2) (async)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=@newtaction={0x64, 0x30, 0x9e54f29ff072a93b, 0x70bd2d, 0x25dfdbfc, {}, [{0x50, 0x1, [@m_csum={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0xfffffffffffffe5d, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x6}, 0x2}}]}, {0xffffffffffffffb9}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0) (async)
sendmsg$key(r4, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0207a20802"], 0x10}}, 0x0) (async)
r6 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
mmap(&(0x7f0000b5f000/0x4000)=nil, 0x4000, 0x100000d, 0x2012, r6, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x200, @remote}, 0x10) (async)
futex(&(0x7f0000000180)=0x2, 0xa, 0x0, &(0x7f0000000200)={0x0, 0x989680}, &(0x7f0000000240)=0x1, 0x2)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10) (async)
setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@private1={0xfc, 0x1, '\x00', 0x1}, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee00}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffff7, 0x0, 0xfffffffffffffffc}, {}, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, {{@in=@rand_addr=0x64010101, 0x4d2, 0x32}, 0x0, @in=@rand_addr=0x64010100, 0x3505, 0x0, 0x0, 0xb7, 0xae, 0xffffffff}}, 0xe8) (async, rerun: 32)
sendmmsg(r3, &(0x7f0000000180), 0x400000000000077, 0x0) (async, rerun: 32)
ioctl$HIDIOCGREPORT(r2, 0x4805, 0x0) (async)
close_range(r0, 0xffffffffffffffff, 0x0)

4.666553973s ago: executing program 3 (id=715):
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x10, &(0x7f0000000140)={[{@norecovery}]}, 0xee, 0x474, &(0x7f00000004c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="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", @ANYRES32], 0x1, 0x4468, &(0x7f0000010780)="$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")
r1 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r2 = open(&(0x7f00000002c0)='./bus\x00', 0x60102, 0x0)
splice(r1, 0x0, r2, 0x0, 0xffffffe1, 0x0)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r2, 0x4020565a, &(0x7f0000000000)={0x9075572258a93c68, 0x8})
r3 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./bus\x00', 0x1001a, &(0x7f0000000280)={[{@quota}, {@resuid={'resuid', 0x3d, 0xee01}}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x1, 0x42e, &(0x7f0000000940)="$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")
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.events\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r4, 0x40305829, &(0x7f0000000080)={0x17c04, r4, 0xbf44, 0x100000000, 0x80003, 0xfffffffffffffffe})
ioctl$EXT4_IOC_GROUP_ADD(r3, 0xc0185879, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000080)={0xf4b, 0x1, 0x9, 0x3, 0x4, 0xd})

4.564384564s ago: executing program 5 (id=716):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x1})
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x90)

3.740115156s ago: executing program 5 (id=717):
socket$pppoe(0x18, 0x1, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x1, 0x803, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r3}, &(0x7f0000000240), &(0x7f00000003c0)=r5}, 0x20)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000200)={r4, r1, 0x25, 0x2, @val=@tcx={@void, @value}}, 0x1c)
syz_emit_ethernet(0xf2, &(0x7f00000005c0)=ANY=[], 0x0)

3.374471935s ago: executing program 0 (id=718):
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$rds(0x15, 0x5, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$packet(0x11, 0x4000000000002, 0x300)
socket$inet6_sctp(0xa, 0x5, 0x84)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$alg(0x26, 0x5, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000840)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="93630100200501001c00128009000100766c616e000000000c000280060001000000000008000500", @ANYRES32=r2, @ANYBLOB='\b\x00\n\x00', @ANYRES8=r1], 0x4c}}, 0x0)

2.815056182s ago: executing program 3 (id=719):
r0 = io_uring_setup(0x1de0, &(0x7f0000000040)={0x0, 0x10000000, 0x40, 0xfffffffd, 0x40043})
syz_clone(0x100000, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000016c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000040)="d80000001e0081054e81f782db4cb9040a1d080006007c095dd2086518000a800d00000003600e1208000f0000000406a80016c0080009", 0x37}], 0x1}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000180081064e81f782db44b904021d080006007c09e8fe55a10a0015400900142603600e1208000600000004010400160040", 0x35}], 0x1}, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="563f00001a00599c"], 0xfe33)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000040)={0x0, <r4=>0x0}, &(0x7f00000000c0)=0xc)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x1c, 0x18, 0x229, 0x0, 0x0, {0x2}, [@typed={0x8, 0x800, 0x0, 0x0, @uid=r4}]}, 0x1c}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000140)={{0x1, 0x1, 0x18, r1, {0xee00, <r5=>0x0}}, './file0\x00'})
mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x2021, &(0x7f0000000240)={{}, 0x2c, {'rootmode', 0x3d, 0x8000}, 0x2c, {'user_id', 0x3d, r4}, 0x2c, {'group_id', 0x3d, r5}, 0x2c, {[{@default_permissions}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x6}}, {@blksize={'blksize', 0x3d, 0x1000}}, {@blksize={'blksize', 0x3d, 0xa00}}]}})
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0x1b, 0x20000002, r2)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@updpolicy={0x23c, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast2, @in6=@ipv4={'\x00', '\xff\xff', @multicast1}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x20, 0x0, 0x0, 0x0, 0xffffffffffffffff}}, [@tmpl={0x184, 0x5, [{{@in6=@dev={0xfe, 0x80, '\x00', 0x7}, 0x0, 0x3c}, 0x0, @in=@broadcast, 0xfffffffe}, {{@in=@multicast2, 0x0, 0x6c}, 0x0, @in=@loopback}, {{@in=@broadcast, 0x0, 0x6c}, 0x0, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {{@in6=@mcast1, 0x0, 0x33}, 0x0, @in6=@ipv4={'\x00', '\xff\xff', @remote}, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x33}, 0x0, @in=@private}, {{@in6=@mcast2}, 0xa, @in6=@private1, 0x0, 0x2}]}]}, 0x23c}}, 0x0)

2.692281467s ago: executing program 6 (id=720):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1)

2.489490903s ago: executing program 5 (id=721):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
modify_ldt$write(0x1, 0x0, 0x0)
syz_usb_connect(0x0, 0x3f, &(0x7f0000000000)=ANY=[], 0x0)

2.116756678s ago: executing program 0 (id=722):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000200)}], 0x1}, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f326635004000000f300f20e06635800000000f22e0f30fa6c8", 0x50}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.905361345s ago: executing program 6 (id=723):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x4)
syz_mount_image$bcachefs(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000940)=ANY=[@ANYBLOB="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", @ANYRESHEX, @ANYRES32, @ANYRESDEC, @ANYRESHEX], 0xff, 0x5959, &(0x7f0000002040)="$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")
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file2\x00', 0x183143, 0x75)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb01001800000000000000340000003400000008000000060000000200ff0f000000000000000000000000020000000300000000000000100000008f54b7000000000000000f01000000400000000100006100"], 0x0, 0x54, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
listen(r0, 0x800002)
syz_emit_ethernet(0x6e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb88a835008100480086dd600a3ff200300600fe8000000000000000000000000000bbfe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="c0c20004907800091d12fb6b9acd8f4e1c92833a2f1e90339d1822085c16d4efb1500000"], 0x0)

1.504149688s ago: executing program 0 (id=724):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000000180)=0x800, 0x4)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000580)={'batadv_slave_0\x00', <r1=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(r0, &(0x7f0000000100)={0x2c, 0x0, r1}, 0x10)
getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, &(0x7f0000000200), &(0x7f0000000240)=0x30)

1.413218186s ago: executing program 3 (id=725):
r0 = socket(0x10, 0xa, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'veth0_vlan\x00', <r1=>0x0})
sendto$rxrpc(r0, &(0x7f0000000000)="f19692d0dacdaa8b28419ea6bd2b2dc9303070b2bfa02c36cd93590607f2d9a47fff6e17cd9ab8cd3cbd1dc0874d8a600c72f8a5026af10a01159e73ff857edd12d584cb1542b7206735f888abf5f586195e94d707afcd3956becde8224e8729ad76c1833a4bb4d4ea71357e4e0f59d9", 0x70, 0x1, &(0x7f0000000080)=@in4={0x21, 0x2, 0x2, 0x10, {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x24)
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000001540)=@newqdisc={0x40, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x10}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_etf={{0x8}, {0x14, 0x2, @TCA_ETF_PARMS={0x10, 0x1, {0x0, 0xb, 0x4}}}}]}, 0x40}}, 0x0)

764.960324ms ago: executing program 3 (id=726):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x90)

124.101769ms ago: executing program 0 (id=727):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000440)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58) (async)
r1 = accept$alg(r0, 0x0, 0x0)
r2 = dup(r1)
r3 = socket$packet(0x11, 0x2, 0x300) (async)
r4 = socket$packet(0x11, 0x3, 0x300)
r5 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000000), 0x8) (async)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000000)={0x200}, 0x4) (async)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000000), 0x8) (async)
write$FUSE_INIT(r2, &(0x7f0000000080)={0x4f}, 0xbac6f8b1)
r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x11, r2, 0x8000000)
syz_io_uring_complete(r6) (async)
setsockopt(r2, 0x1, 0x20, &(0x7f0000000040)="c04bfa0a", 0x4) (async)
read$FUSE(r2, &(0x7f0000002000)={0x2020}, 0xfffffc7c) (async)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x1d, 0x3, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) (async)
r8 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r8, &(0x7f0000000280)={0x26, 'hash\x00', 0x0, 0x0, 'digest_null-generic\x00'}, 0x58) (async)
r9 = accept$alg(r8, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r8, 0x117, 0x1, 0x0, 0x0) (async)
sendmmsg$alg(r9, &(0x7f0000003340)=[{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="4d7003", 0x3}], 0x1, 0x0, 0x0, 0x96c812e55c409009}], 0x1, 0x2c0080c1) (async)
accept4(r9, 0x0, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r7, 0x0, 0x12, 0x0, &(0x7f0000000380)="263abd030e98ff4dc870bd6688a8640888a8", 0x0, 0x1200}, 0x28)

0s ago: executing program 6 (id=728):
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x10, &(0x7f0000000140)={[{@norecovery}]}, 0xee, 0x474, &(0x7f00000004c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6572726f72733d72656d6f756e742d726f2c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c6c6f63616c666c6f636b732c696e74722c6e6f61636c2c00598f2f223a0a12f76404ad3bd59a04fbd75d1008c039c51a2a013e63af1c9ed7416faa1e2ea98d0f1c7337a5c81920988a4299a77054cdb12285fd7a0e5b43382d962372b73042593a5bd6b7db4a1b3721c62f11018727c29f3a1bd1e554474ea0d1da2a20b205df342a04a34b65e16a23e8e7811a984963073ebcbead85f9e4332bdef4c1ce54a1c6f7a47b75aa95b9e8cb616be40a0000b1309ee426d1803ef09abb9509846c34b9ac0bf109cedbd12c850effda9ae677566159f9c83da7ff6e247e3ac43c0a663c8c83650692e474bac2c047b238601bd5187d6bed82fe2034512ef11b74a98252198c4402bcf3165561157678e9d50831c27d1094a04d8c7607d7164033cda7a81704824d3107f232de8c31f57de3f78727828e8206403db4", @ANYRES32], 0x1, 0x4468, &(0x7f0000010780)="$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")
r1 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r2 = open(&(0x7f00000002c0)='./bus\x00', 0x60102, 0x0)
splice(r1, 0x0, r2, 0x0, 0xffffffe1, 0x0)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r2, 0x4020565a, &(0x7f0000000000)={0x9075572258a93c68, 0x8})
r3 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./bus\x00', 0x1001a, &(0x7f0000000280)={[{@quota}, {@resuid={'resuid', 0x3d, 0xee01}}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x1, 0x42e, &(0x7f0000000940)="$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")
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.events\x00', 0x275a, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r4, 0x40305829, &(0x7f0000000080)={0x17c04, r4, 0xbf44, 0x100000000, 0x80003, 0xfffffffffffffffe})
ioctl$EXT4_IOC_GROUP_ADD(r3, 0xc0185879, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000080)={0xf4b, 0x1, 0x9, 0x3, 0x4, 0xd})

kernel console output (not intermixed with test programs):

orker/u8:18: attempt to access beyond end of device
[  362.433718][ T3962] loop6: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  362.449346][ T3962] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  362.458066][ T3962] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  362.906431][ T7139] devpts: called with bogus options
[  363.517953][ T5847] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  363.741540][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.776961][ T5847] usb 6-1: Using ep0 maxpacket: 8
[  363.897366][ T5847] usb 6-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  363.907298][ T5847] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  363.915538][ T5847] usb 6-1: Product: syz
[  363.920127][ T5847] usb 6-1: Manufacturer: syz
[  363.924942][ T5847] usb 6-1: SerialNumber: syz
[  364.048485][ T5847] usb 6-1: config 0 descriptor??
[  364.302226][ T5847] usb 6-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  364.423278][ T7158] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  364.430777][ T7158] overlayfs: failed to set xattr on upper
[  364.436867][ T7158] overlayfs: ...falling back to redirect_dir=nofollow.
[  364.443876][ T7158] overlayfs: ...falling back to index=off.
[  364.449969][ T7158] overlayfs: ...falling back to uuid=null.
[  365.716543][ T5843] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  365.965140][ T5843] usb 4-1: New USB device found, idVendor=05ac, idProduct=0224, bcdDevice= 0.40
[  365.974741][ T5843] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  365.985662][ T5843] usb 4-1: Product: syz
[  365.990143][ T5843] usb 4-1: Manufacturer: syz
[  365.994963][ T5843] usb 4-1: SerialNumber: syz
[  366.311025][ T7172] loop6: detected capacity change from 0 to 1024
[  366.328899][ T7174] loop1: detected capacity change from 0 to 1024
[  366.429844][ T7172] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  366.448022][ T7164] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  366.460149][ T7164] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  366.469492][ T5847] dvb_usb_rtl28xxu 6-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -32
[  366.495147][ T5847] usb 6-1: USB disconnect, device number 2
[  366.564481][ T5843] input: bcm5974 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/input/input8
[  366.578251][ T5130] bcm5974 4-1:1.0: could not read from device
[  366.589704][ T7174] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  366.611360][ T5130] bcm5974 4-1:1.0: could not read from device
[  366.675585][ T5130] bcm5974 4-1:1.0: could not read from device
[  366.690864][ T5843] usb 4-1: USB disconnect, device number 5
[  367.255404][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  367.570404][ T6532] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  367.854977][ T7195] 9pnet_fd: Insufficient options for proto=fd
[  368.200688][ T7198] loop1: detected capacity change from 0 to 1024
[  368.277375][ T7198] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  368.287710][ T7198] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  368.406604][ T7198] EXT4-fs (loop1): invalid journal inode
[  368.412555][ T7198] EXT4-fs (loop1): can't get journal size
[  368.495134][ T7198] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  368.496006][ T7201] loop6: detected capacity change from 0 to 1024
[  368.637606][ T7209] FAULT_INJECTION: forcing a failure.
[  368.637606][ T7209] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  368.652135][ T7209] CPU: 1 UID: 0 PID: 7209 Comm: syz.5.308 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  368.652265][ T7209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  368.652334][ T7209] Call Trace:
[  368.652378][ T7209]  <TASK>
[  368.652420][ T7209]  dump_stack_lvl+0x216/0x2d0
[  368.652554][ T7209]  dump_stack+0x1e/0x24
[  368.652660][ T7209]  should_fail_ex+0x767/0x830
[  368.652838][ T7209]  should_fail+0x2a/0x40
[  368.652989][ T7209]  should_fail_usercopy+0x2e/0x40
[  368.653158][ T7209]  _copy_from_user+0x35/0x110
[  368.653336][ T7209]  ___sys_sendmsg+0x120/0x3c0
[  368.653479][ T7209]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  368.653633][ T7209]  ? __rcu_read_unlock+0x7b/0xe0
[  368.653795][ T7209]  ? __fget_files+0x42b/0x500
[  368.653943][ T7209]  ? kmsan_get_metadata+0x13e/0x1c0
[  368.654079][ T7209]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  368.654231][ T7209]  __x64_sys_sendmsg+0x212/0x3c0
[  368.654369][ T7209]  ? kmsan_get_metadata+0x13e/0x1c0
[  368.654501][ T7209]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  368.654639][ T7209]  ? kmsan_get_metadata+0x13e/0x1c0
[  368.654783][ T7209]  x64_sys_call+0x2ed6/0x3c30
[  368.654913][ T7209]  do_syscall_64+0xcd/0x1e0
[  368.655022][ T7209]  ? clear_bhb_loop+0x25/0x80
[  368.655179][ T7209]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  368.655332][ T7209] RIP: 0033:0x7fe80e38cda9
[  368.655422][ T7209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  368.655526][ T7209] RSP: 002b:00007fe80f1ad038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  368.655638][ T7209] RAX: ffffffffffffffda RBX: 00007fe80e5a5fa0 RCX: 00007fe80e38cda9
[  368.655726][ T7209] RDX: 0000000000000000 RSI: 0000000020000480 RDI: 0000000000000003
[  368.655798][ T7209] RBP: 00007fe80f1ad090 R08: 0000000000000000 R09: 0000000000000000
[  368.655873][ T7209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  368.655942][ T7209] R13: 0000000000000000 R14: 00007fe80e5a5fa0 R15: 00007fff34cc2dd8
[  368.656039][ T7209]  </TASK>
[  368.882577][ T7207] loop3: detected capacity change from 0 to 1024
[  369.169164][ T7201] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  369.399750][ T7219] FAULT_INJECTION: forcing a failure.
[  369.399750][ T7219] name failslab, interval 1, probability 0, space 0, times 0
[  369.412964][ T7219] CPU: 0 UID: 0 PID: 7219 Comm: syz.5.310 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  369.413086][ T7219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  369.413160][ T7219] Call Trace:
[  369.413204][ T7219]  <TASK>
[  369.413246][ T7219]  dump_stack_lvl+0x216/0x2d0
[  369.413381][ T7219]  dump_stack+0x1e/0x24
[  369.413499][ T7219]  should_fail_ex+0x767/0x830
[  369.413677][ T7219]  should_failslab+0x17f/0x210
[  369.413821][ T7219]  __kmalloc_cache_noprof+0xc5/0xdf0
[  369.413994][ T7219]  ? kmsan_get_metadata+0x13e/0x1c0
[  369.414132][ T7219]  ? __se_sys_memfd_create+0x534/0x1210
[  369.414290][ T7219]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  369.414427][ T7219]  ? kmsan_get_metadata+0x13e/0x1c0
[  369.414564][ T7219]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  369.414714][ T7219]  __se_sys_memfd_create+0x534/0x1210
[  369.414887][ T7219]  __x64_sys_memfd_create+0x6c/0xa0
[  369.415048][ T7219]  x64_sys_call+0x3b63/0x3c30
[  369.415185][ T7219]  do_syscall_64+0xcd/0x1e0
[  369.415299][ T7219]  ? clear_bhb_loop+0x25/0x80
[  369.415452][ T7219]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  369.415606][ T7219] RIP: 0033:0x7fe80e38cda9
[  369.415698][ T7219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  369.415800][ T7219] RSP: 002b:00007fe80f1ace18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  369.415914][ T7219] RAX: ffffffffffffffda RBX: 0000000000000474 RCX: 00007fe80e38cda9
[  369.415998][ T7219] RDX: 00007fe80f1acef0 RSI: 0000000000000000 RDI: 00007fe80e40ec51
[  369.416079][ T7219] RBP: 00000000200004c0 R08: 00007fe80f1acbb7 R09: 00007fe80f1ace40
[  369.416167][ T7219] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000480
[  369.416239][ T7219] R13: 00007fe80f1acef0 R14: 00007fe80f1aceb0 R15: 0000000020000140
[  369.416340][ T7219]  </TASK>
[  369.739051][ T3962] hfsplus: b-tree write err: -5, ino 4
[  369.747776][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  370.233217][ T7224] FAULT_INJECTION: forcing a failure.
[  370.233217][ T7224] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  370.246774][ T7224] CPU: 0 UID: 0 PID: 7224 Comm: syz.3.311 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  370.246911][ T7224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  370.246978][ T7224] Call Trace:
[  370.247018][ T7224]  <TASK>
[  370.247058][ T7224]  dump_stack_lvl+0x216/0x2d0
[  370.247196][ T7224]  dump_stack+0x1e/0x24
[  370.247299][ T7224]  should_fail_ex+0x767/0x830
[  370.247469][ T7224]  should_fail+0x2a/0x40
[  370.247618][ T7224]  should_fail_usercopy+0x2e/0x40
[  370.247787][ T7224]  _copy_from_user+0x35/0x110
[  370.247958][ T7224]  __sys_connect+0x12c/0x690
[  370.248082][ T7224]  ? fput+0x359/0x400
[  370.248232][ T7224]  ? ksys_write+0x408/0x4b0
[  370.248344][ T7224]  ? kmsan_get_metadata+0x13e/0x1c0
[  370.248492][ T7224]  __x64_sys_connect+0x91/0xe0
[  370.248618][ T7224]  x64_sys_call+0x28a9/0x3c30
[  370.248751][ T7224]  do_syscall_64+0xcd/0x1e0
[  370.248864][ T7224]  ? clear_bhb_loop+0x25/0x80
[  370.249017][ T7224]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.249178][ T7224] RIP: 0033:0x7fa60b18cda9
[  370.249269][ T7224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  370.249372][ T7224] RSP: 002b:00007fa608ff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  370.249486][ T7224] RAX: ffffffffffffffda RBX: 00007fa60b3a5fa0 RCX: 00007fa60b18cda9
[  370.249574][ T7224] RDX: 0000000000000008 RSI: 0000000020000080 RDI: 0000000000000004
[  370.249647][ T7224] RBP: 00007fa608ff6090 R08: 0000000000000000 R09: 0000000000000000
[  370.249721][ T7224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  370.249792][ T7224] R13: 0000000000000000 R14: 00007fa60b3a5fa0 R15: 00007ffe5a53f5a8
[  370.249890][ T7224]  </TASK>
[  370.534100][ T7225] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  370.637789][ T7229] FAULT_INJECTION: forcing a failure.
[  370.637789][ T7229] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  370.651393][ T7229] CPU: 1 UID: 0 PID: 7229 Comm: syz.5.313 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  370.651515][ T7229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  370.651584][ T7229] Call Trace:
[  370.651627][ T7229]  <TASK>
[  370.651670][ T7229]  dump_stack_lvl+0x216/0x2d0
[  370.651805][ T7229]  dump_stack+0x1e/0x24
[  370.651911][ T7229]  should_fail_ex+0x767/0x830
[  370.652099][ T7229]  should_fail+0x2a/0x40
[  370.652252][ T7229]  should_fail_usercopy+0x2e/0x40
[  370.652419][ T7229]  _copy_from_user+0x35/0x110
[  370.652588][ T7229]  ___sys_sendmsg+0x120/0x3c0
[  370.652730][ T7229]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  370.652883][ T7229]  ? __rcu_read_unlock+0x7b/0xe0
[  370.653052][ T7229]  ? __fget_files+0x42b/0x500
[  370.653203][ T7229]  ? kmsan_get_metadata+0x13e/0x1c0
[  370.653341][ T7229]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  370.653492][ T7229]  __x64_sys_sendmsg+0x212/0x3c0
[  370.653633][ T7229]  ? kmsan_get_metadata+0x13e/0x1c0
[  370.653772][ T7229]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  370.653913][ T7229]  ? kmsan_get_metadata+0x13e/0x1c0
[  370.654069][ T7229]  x64_sys_call+0x2ed6/0x3c30
[  370.654205][ T7229]  do_syscall_64+0xcd/0x1e0
[  370.654321][ T7229]  ? clear_bhb_loop+0x25/0x80
[  370.654475][ T7229]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  370.654631][ T7229] RIP: 0033:0x7fe80e38cda9
[  370.654723][ T7229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  370.654826][ T7229] RSP: 002b:00007fe80f1ad038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  370.654941][ T7229] RAX: ffffffffffffffda RBX: 00007fe80e5a5fa0 RCX: 00007fe80e38cda9
[  370.655034][ T7229] RDX: 0000000034004000 RSI: 0000000020000240 RDI: 0000000000000003
[  370.655111][ T7229] RBP: 00007fe80f1ad090 R08: 0000000000000000 R09: 0000000000000000
[  370.655187][ T7229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  370.655259][ T7229] R13: 0000000000000000 R14: 00007fe80e5a5fa0 R15: 00007fff34cc2dd8
[  370.655359][ T7229]  </TASK>
[  370.872022][ T7225] loop1: detected capacity change from 0 to 256
[  371.019961][ T6532] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  371.341010][ T7225] FAT-fs (loop1): IO charset cpush not found
[  371.448074][ T7225] smb3: Unexpected value for 'acl'
[  371.834229][ T7243] loop6: detected capacity change from 0 to 1024
[  371.909616][ T7243] EXT4-fs: Ignoring removed nobh option
[  372.050252][ T7243] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  372.124509][ T7243] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  372.176985][ T5847] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  372.212487][ T7243] EXT4-fs error (device loop6): ext4_ext_check_inode:524: inode #11: comm syz.6.314: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  372.249190][ T7243] EXT4-fs error (device loop6): ext4_orphan_get:1394: comm syz.6.314: couldn't read orphan inode 11 (err -117)
[  372.368843][ T5847] usb 6-1: Using ep0 maxpacket: 8
[  372.389507][ T7243] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  372.414205][ T7243] capability: warning: `syz.6.314' uses 32-bit capabilities (legacy support in use)
[  372.437751][ T5847] usb 6-1: config 0 has an invalid interface number: 55 but max is 0
[  372.446404][ T5847] usb 6-1: config 0 has no interface number 0
[  372.452725][ T5847] usb 6-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  372.466934][ T5847] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0xE has an invalid bInterval 127, changing to 10
[  372.479160][ T5847] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 49430, setting to 1024
[  372.490786][ T5847] usb 6-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  372.502781][ T5847] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  372.514173][ T5847] usb 6-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  372.524390][ T5847] usb 6-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  372.537921][ T5847] usb 6-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  372.547835][ T5847] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  372.599779][ T7255] loop3: detected capacity change from 0 to 1024
[  372.679446][ T5847] usb 6-1: config 0 descriptor??
[  372.712690][ T7255] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  372.814782][ T5847] ldusb 6-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  373.000649][ T7264] FAULT_INJECTION: forcing a failure.
[  373.000649][ T7264] name failslab, interval 1, probability 0, space 0, times 0
[  373.014248][ T7264] CPU: 0 UID: 0 PID: 7264 Comm: syz.1.322 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  373.014372][ T7264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  373.014444][ T7264] Call Trace:
[  373.014488][ T7264]  <TASK>
[  373.014530][ T7264]  dump_stack_lvl+0x216/0x2d0
[  373.014666][ T7264]  dump_stack+0x1e/0x24
[  373.014774][ T7264]  should_fail_ex+0x767/0x830
[  373.014957][ T7264]  should_failslab+0x17f/0x210
[  373.015102][ T7264]  kmem_cache_alloc_lru_noprof+0xf5/0xe20
[  373.015288][ T7264]  ? __d_alloc+0x69/0x9e0
[  373.015446][ T7264]  ? kmsan_get_metadata+0x13e/0x1c0
[  373.015592][ T7264]  __d_alloc+0x69/0x9e0
[  373.015738][ T7264]  ? kmsan_get_metadata+0x13e/0x1c0
[  373.015875][ T7264]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  373.016030][ T7264]  d_alloc_parallel+0x9f/0x2660
[  373.016191][ T7264]  ? kmsan_get_metadata+0x13e/0x1c0
[  373.016320][ T7264]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  373.016466][ T7264]  ? _raw_spin_unlock_irqrestore+0x3f/0x60
[  373.016617][ T7264]  ? kmsan_get_metadata+0x13e/0x1c0
[  373.016762][ T7264]  ? kmsan_get_metadata+0x13e/0x1c0
[  373.016896][ T7264]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  373.017053][ T7264]  proc_sys_fill_cache+0x3cf/0x860
[  373.017248][ T7264]  proc_sys_link_fill_cache+0x1ff/0x470
[  373.017438][ T7264]  proc_sys_readdir+0xd89/0x11e0
[  373.017629][ T7264]  ? __pfx_proc_sys_readdir+0x10/0x10
[  373.017797][ T7264]  iterate_dir+0x740/0x930
[  373.017922][ T7264]  ? kmsan_get_metadata+0x13e/0x1c0
[  373.018061][ T7264]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  373.018213][ T7264]  __se_sys_getdents64+0x170/0x540
[  373.018346][ T7264]  ? __pfx_filldir64+0x10/0x10
[  373.018476][ T7264]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  373.018627][ T7264]  __x64_sys_getdents64+0x96/0xe0
[  373.018762][ T7264]  x64_sys_call+0x3b0f/0x3c30
[  373.018911][ T7264]  do_syscall_64+0xcd/0x1e0
[  373.019030][ T7264]  ? clear_bhb_loop+0x25/0x80
[  373.019184][ T7264]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  373.019341][ T7264] RIP: 0033:0x7faa1978cda9
[  373.019434][ T7264] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  373.019539][ T7264] RSP: 002b:00007faa1a6cf038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  373.019655][ T7264] RAX: ffffffffffffffda RBX: 00007faa199a5fa0 RCX: 00007faa1978cda9
[  373.019744][ T7264] RDX: 0000000000000036 RSI: 0000000020000440 RDI: 0000000000000004
[  373.019818][ T7264] RBP: 00007faa1a6cf090 R08: 0000000000000000 R09: 0000000000000000
[  373.019893][ T7264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  373.019992][ T7264] R13: 0000000000000000 R14: 00007faa199a5fa0 R15: 00007ffcf492bae8
[  373.020097][ T7264]  </TASK>
[  373.597068][ T5791] Bluetooth: hci1: command 0x0405 tx timeout
[  373.657210][ T7181] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 10: padding at end of block bitmap is not set
[  374.236494][ T5847] usb 6-1: USB disconnect, device number 3
[  374.265399][ T5847] ldusb 6-1:0.55: LD USB Device #0 now disconnected
[  374.435210][ T6532] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.683339][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  375.014343][ T7285] loop5: detected capacity change from 0 to 8
[  375.144500][ T7285] cramfs: empty filesystem
[  375.351062][ T5847] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  375.395959][ T7286] dvmrp0: entered allmulticast mode
[  375.610596][ T5847] usb 7-1: Using ep0 maxpacket: 32
[  375.679245][ T5847] usb 7-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  375.690885][ T5847] usb 7-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  375.716641][ T7281] loop1: detected capacity change from 0 to 40427
[  375.755688][ T7281] F2FS-fs (loop1): build fault injection attr: rate: 0, type: 0x7
[  375.768996][ T7281] F2FS-fs (loop1): invalid crc value
[  375.810835][ T7281] F2FS-fs (loop1): Found nat_bits in checkpoint
[  375.834394][ T5847] usb 7-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  375.847030][ T5847] usb 7-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  375.855615][ T5847] usb 7-1: Product: syz
[  375.861153][ T5847] usb 7-1: Manufacturer: syz
[  376.030389][ T5847] hub 7-1:4.0: USB hub found
[  376.165109][ T7281] F2FS-fs (loop1): Start checkpoint disabled!
[  376.194169][ T7281] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  376.361147][ T5847] hub 7-1:4.0: 2 ports detected
[  376.857956][ T7284] netlink: 76 bytes leftover after parsing attributes in process `syz.5.327'.
[  377.444855][ T5847] hub 7-1:4.0: set hub depth failed
[  377.587345][ T5840] hub 7-1:4.0: hub_ext_port_status failed (err = -71)
[  377.623434][ T5847] usb 7-1: USB disconnect, device number 3
[  378.225111][   T51] Bluetooth: hci3: SCO packet for unknown connection handle 1039
[  378.610392][ T5847] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  378.843858][ T7319] loop6: detected capacity change from 0 to 128
[  378.906836][ T5847] usb 6-1: device descriptor read/64, error -71
[  379.164098][ T5847] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  379.367663][ T5847] usb 6-1: device descriptor read/64, error -71
[  379.508236][ T5847] usb usb6-port1: attempt power cycle
[  379.702978][ T7331] netlink: 8 bytes leftover after parsing attributes in process `syz.0.340'.
[  379.888583][ T5847] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  379.911796][ T5840] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  380.786984][ T7337] loop3: detected capacity change from 0 to 40427
[  380.819813][ T5847] usb 6-1: device descriptor read/8, error -71
[  380.844300][ T7337] F2FS-fs (loop3): build fault injection attr: rate: 0, type: 0x7
[  380.891770][ T7337] F2FS-fs (loop3): invalid crc value
[  380.904656][ T7337] F2FS-fs (loop3): Found nat_bits in checkpoint
[  381.097919][ T7346] netlink: 16 bytes leftover after parsing attributes in process `syz.0.344'.
[  381.205140][ T5840] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  381.216988][ T5840] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  381.227190][ T5840] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  381.240610][ T5840] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  381.250133][ T5840] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  381.263029][ T7337] F2FS-fs (loop3): Start checkpoint disabled!
[  381.294852][ T5847] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  381.325292][ T5840] usb 7-1: config 0 descriptor??
[  381.374450][ T7337] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  381.638871][ T5847] usb 6-1: device descriptor read/8, error -71
[  381.749136][ T5847] usb usb6-port1: unable to enumerate USB device
[  382.000373][ T5840] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[  382.079050][ T5840] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  382.528387][ T7350] loop1: detected capacity change from 0 to 4096
[  382.578567][ T7350] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512).
[  382.675246][ T7356] loop6: detected capacity change from 0 to 1164
[  382.698549][ T7356] iso9660: Unknown parameter 'subj_role'
[  383.185313][ T7362] FAULT_INJECTION: forcing a failure.
[  383.185313][ T7362] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  383.198082][ T5843] usb 7-1: USB disconnect, device number 4
[  383.198874][ T7362] CPU: 1 UID: 0 PID: 7362 Comm: syz.5.350 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  383.199001][ T7362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  383.199069][ T7362] Call Trace:
[  383.199111][ T7362]  <TASK>
[  383.199152][ T7362]  dump_stack_lvl+0x216/0x2d0
[  383.199285][ T7362]  dump_stack+0x1e/0x24
[  383.199389][ T7362]  should_fail_ex+0x767/0x830
[  383.199562][ T7362]  should_fail+0x2a/0x40
[  383.199709][ T7362]  should_fail_usercopy+0x2e/0x40
[  383.199876][ T7362]  strncpy_from_user+0x39/0x540
[  383.200035][ T7362]  ? __msan_memcpy+0x108/0x1c0
[  383.200162][ T7362]  __se_sys_memfd_create+0x5ae/0x1210
[  383.200335][ T7362]  __x64_sys_memfd_create+0x6c/0xa0
[  383.200492][ T7362]  x64_sys_call+0x3b63/0x3c30
[  383.200623][ T7362]  do_syscall_64+0xcd/0x1e0
[  383.200736][ T7362]  ? clear_bhb_loop+0x25/0x80
[  383.200886][ T7362]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  383.201044][ T7362] RIP: 0033:0x7fe80e38cda9
[  383.201134][ T7362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  383.201237][ T7362] RSP: 002b:00007fe80f1ace18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  383.201349][ T7362] RAX: ffffffffffffffda RBX: 0000000000000474 RCX: 00007fe80e38cda9
[  383.201433][ T7362] RDX: 00007fe80f1acef0 RSI: 0000000000000000 RDI: 00007fe80e40ec51
[  383.201512][ T7362] RBP: 00000000200004c0 R08: 00007fe80f1acbb7 R09: 00007fe80f1ace40
[  383.201594][ T7362] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000480
[  383.201666][ T7362] R13: 00007fe80f1acef0 R14: 00007fe80f1aceb0 R15: 0000000020000140
[  383.201766][ T7362]  </TASK>
[  383.949575][ T7366] netlink: 'syz.0.351': attribute type 3 has an invalid length.
[  384.105114][ T7369] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  384.112545][ T7369] overlayfs: failed to set xattr on upper
[  384.118685][ T7369] overlayfs: ...falling back to redirect_dir=nofollow.
[  384.125707][ T7369] overlayfs: ...falling back to index=off.
[  384.131811][ T7369] overlayfs: ...falling back to uuid=null.
[  384.882616][ T7381] FAULT_INJECTION: forcing a failure.
[  384.882616][ T7381] name failslab, interval 1, probability 0, space 0, times 0
[  384.895802][ T7381] CPU: 1 UID: 0 PID: 7381 Comm: syz.1.356 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  384.895919][ T7381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  384.895987][ T7381] Call Trace:
[  384.896027][ T7381]  <TASK>
[  384.896069][ T7381]  dump_stack_lvl+0x216/0x2d0
[  384.896209][ T7381]  dump_stack+0x1e/0x24
[  384.896312][ T7381]  should_fail_ex+0x767/0x830
[  384.896480][ T7381]  should_failslab+0x17f/0x210
[  384.896623][ T7381]  __kmalloc_noprof+0x176/0x1230
[  384.896790][ T7381]  ? kmsan_get_metadata+0x13e/0x1c0
[  384.896920][ T7381]  ? tomoyo_encode+0x5f8/0xa40
[  384.897052][ T7381]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  384.897195][ T7381]  ? kmsan_get_metadata+0x13e/0x1c0
[  384.897323][ T7381]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  384.897463][ T7381]  tomoyo_encode+0x5f8/0xa40
[  384.897610][ T7381]  tomoyo_realpath_from_path+0x9dd/0xaa0
[  384.897774][ T7381]  tomoyo_path_number_perm+0x1d9/0x8f0
[  384.897952][ T7381]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[  384.898142][ T7381]  ? kmsan_get_metadata+0x13e/0x1c0
[  384.898278][ T7381]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  384.898448][ T7381]  tomoyo_file_ioctl+0x3f/0x50
[  384.898592][ T7381]  security_file_ioctl+0x145/0x590
[  384.898765][ T7381]  __se_sys_ioctl+0xd0/0x440
[  384.898887][ T7381]  __x64_sys_ioctl+0x96/0xe0
[  384.899006][ T7381]  x64_sys_call+0x19f0/0x3c30
[  384.899145][ T7381]  do_syscall_64+0xcd/0x1e0
[  384.899260][ T7381]  ? clear_bhb_loop+0x25/0x80
[  384.899414][ T7381]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  384.899567][ T7381] RIP: 0033:0x7faa1978cda9
[  384.899655][ T7381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  384.899758][ T7381] RSP: 002b:00007faa1a68d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  384.899872][ T7381] RAX: ffffffffffffffda RBX: 00007faa199a6160 RCX: 00007faa1978cda9
[  384.899961][ T7381] RDX: 0000000000000000 RSI: 000000000000894b RDI: 0000000000000003
[  384.900032][ T7381] RBP: 00007faa1a68d090 R08: 0000000000000000 R09: 0000000000000000
[  384.900115][ T7381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  384.900185][ T7381] R13: 0000000000000001 R14: 00007faa199a6160 R15: 00007ffcf492bae8
[  384.900284][ T7381]  </TASK>
[  385.132729][ T7381] ERROR: Out of memory at tomoyo_realpath_from_path.
[  385.809244][ T7390] FAULT_INJECTION: forcing a failure.
[  385.809244][ T7390] name failslab, interval 1, probability 0, space 0, times 0
[  385.825826][ T7390] CPU: 0 UID: 0 PID: 7390 Comm: syz.5.359 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  385.825955][ T7390] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  385.826025][ T7390] Call Trace:
[  385.826068][ T7390]  <TASK>
[  385.826111][ T7390]  dump_stack_lvl+0x216/0x2d0
[  385.826243][ T7390]  dump_stack+0x1e/0x24
[  385.826350][ T7390]  should_fail_ex+0x767/0x830
[  385.826525][ T7390]  should_failslab+0x17f/0x210
[  385.826670][ T7390]  __kmalloc_noprof+0x176/0x1230
[  385.826843][ T7390]  ? tomoyo_encode2+0x4b6/0x8a0
[  385.826980][ T7390]  ? kmsan_get_metadata+0x13e/0x1c0
[  385.827117][ T7390]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  385.827266][ T7390]  tomoyo_encode2+0x4b6/0x8a0
[  385.827415][ T7390]  tomoyo_check_unix_address+0x46b/0x940
[  385.827582][ T7390]  tomoyo_socket_bind_permission+0x2b1/0x370
[  385.827746][ T7390]  tomoyo_socket_bind+0x3d/0x50
[  385.827906][ T7390]  security_socket_bind+0x14a/0x5a0
[  385.828065][ T7390]  __sys_bind+0x384/0x5d0
[  385.828201][ T7390]  __x64_sys_bind+0x91/0xe0
[  385.828319][ T7390]  x64_sys_call+0x2631/0x3c30
[  385.828452][ T7390]  do_syscall_64+0xcd/0x1e0
[  385.828566][ T7390]  ? clear_bhb_loop+0x25/0x80
[  385.828718][ T7390]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  385.828913][ T7390] RIP: 0033:0x7fe80e38cda9
[  385.829004][ T7390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  385.829107][ T7390] RSP: 002b:00007fe80f1ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  385.829222][ T7390] RAX: ffffffffffffffda RBX: 00007fe80e5a5fa0 RCX: 00007fe80e38cda9
[  385.829309][ T7390] RDX: 000000000000006e RSI: 0000000020000300 RDI: 0000000000000003
[  385.829382][ T7390] RBP: 00007fe80f1ad090 R08: 0000000000000000 R09: 0000000000000000
[  385.829457][ T7390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  385.829528][ T7390] R13: 0000000000000000 R14: 00007fe80e5a5fa0 R15: 00007fff34cc2dd8
[  385.829627][ T7390]  </TASK>
[  386.073538][ T7391] loop3: detected capacity change from 0 to 64
[  386.359701][ T7391] MINIX-fs: file system does not have enough zmap blocks allocated.  Refusing to mount.
[  386.369900][ T7391] MINIX-fs: bad superblock or unable to read bitmaps
[  386.703641][ T5840] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  387.076548][ T5840] usb 7-1: Using ep0 maxpacket: 32
[  387.102436][ T5840] usb 7-1: config 4 has an invalid interface number: 237 but max is 0
[  387.113447][ T5840] usb 7-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[  387.124502][ T5840] usb 7-1: config 4 has no interface number 0
[  387.131337][ T5840] usb 7-1: config 4 interface 237 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  387.143649][ T5840] usb 7-1: config 4 interface 237 altsetting 0 endpoint 0xC has invalid maxpacket 1024, setting to 64
[  387.155837][ T5840] usb 7-1: config 4 interface 237 altsetting 0 endpoint 0x1 has invalid maxpacket 2014, setting to 64
[  387.168247][ T5840] usb 7-1: config 4 interface 237 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  387.178919][ T5840] usb 7-1: config 4 interface 237 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 5
[  387.192478][ T5840] usb 7-1: New USB device found, idVendor=0711, idProduct=0902, bcdDevice=32.25
[  387.202340][ T5840] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  387.747764][ T7406] xt_cgroup: xt_cgroup: no path or classid specified
[  387.873257][ T7406] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  388.086844][ T5840] usb 7-1: can't set config #4, error -71
[  388.174887][ T5840] usb 7-1: USB disconnect, device number 5
[  388.238654][ T7408] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  388.589191][ T7417] FAULT_INJECTION: forcing a failure.
[  388.589191][ T7417] name failslab, interval 1, probability 0, space 0, times 0
[  388.602251][ T7417] CPU: 1 UID: 0 PID: 7417 Comm: syz.6.366 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  388.602380][ T7417] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  388.602449][ T7417] Call Trace:
[  388.602493][ T7417]  <TASK>
[  388.602536][ T7417]  dump_stack_lvl+0x216/0x2d0
[  388.602679][ T7417]  dump_stack+0x1e/0x24
[  388.602786][ T7417]  should_fail_ex+0x767/0x830
[  388.602962][ T7417]  should_failslab+0x17f/0x210
[  388.603107][ T7417]  __kmalloc_noprof+0x176/0x1230
[  388.603277][ T7417]  ? io_cache_alloc_new+0x54/0x140
[  388.603422][ T7417]  ? kmsan_get_metadata+0x13e/0x1c0
[  388.603558][ T7417]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  388.603715][ T7417]  io_cache_alloc_new+0x54/0x140
[  388.603854][ T7417]  ? io_prep_rw+0x75f/0x12c0
[  388.604008][ T7417]  io_prep_rw+0x853/0x12c0
[  388.604160][ T7417]  ? kmsan_get_metadata+0x13e/0x1c0
[  388.604306][ T7417]  io_prep_rwv+0xb3/0x510
[  388.604467][ T7417]  io_prep_readv+0x37/0x50
[  388.604620][ T7417]  io_submit_sqes+0x1082/0x2f80
[  388.604822][ T7417]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[  388.605028][ T7417]  __se_sys_io_uring_enter+0x41d/0x4da0
[  388.605205][ T7417]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  388.605386][ T7417]  ? kmsan_get_metadata+0x13e/0x1c0
[  388.605526][ T7417]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  388.605711][ T7417]  ? kmsan_get_metadata+0x13e/0x1c0
[  388.605856][ T7417]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  388.606045][ T7417]  ? fput+0x359/0x400
[  388.606192][ T7417]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  388.606336][ T7417]  __x64_sys_io_uring_enter+0x11f/0x1a0
[  388.606529][ T7417]  x64_sys_call+0xce5/0x3c30
[  388.606670][ T7417]  do_syscall_64+0xcd/0x1e0
[  388.606789][ T7417]  ? clear_bhb_loop+0x25/0x80
[  388.606942][ T7417]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  388.607101][ T7417] RIP: 0033:0x7f121318cda9
[  388.607193][ T7417] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  388.607302][ T7417] RSP: 002b:00007f1214078038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  388.607420][ T7417] RAX: ffffffffffffffda RBX: 00007f12133a5fa0 RCX: 00007f121318cda9
[  388.607512][ T7417] RDX: 0000000000000000 RSI: 00000000000047ba RDI: 0000000000000005
[  388.607586][ T7417] RBP: 00007f1214078090 R08: 0000000000000000 R09: 0000000000000000
[  388.607668][ T7417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  388.607742][ T7417] R13: 0000000000000000 R14: 00007f12133a5fa0 R15: 00007ffe9f6c46e8
[  388.607843][ T7417]  </TASK>
[  390.018385][ T7433] overlayfs: missing 'lowerdir'
[  390.634369][ T7439] netlink: 8 bytes leftover after parsing attributes in process `syz.0.373'.
[  391.017875][ T7448] netlink: 'syz.6.375': attribute type 21 has an invalid length.
[  391.026280][ T7448] netlink: 156 bytes leftover after parsing attributes in process `syz.6.375'.
[  391.445993][ T7445] loop6: detected capacity change from 0 to 2048
[  391.623011][ T7445] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  391.707889][ T5843] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  391.864444][ T7448] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.375: bg 0: block 234: padding at end of block bitmap is not set
[  391.888932][ T7448] EXT4-fs (loop6): Remounting filesystem read-only
[  391.973505][ T5843] usb 2-1: config 0 has an invalid interface number: 115 but max is 0
[  391.982156][ T5843] usb 2-1: config 0 has no interface number 0
[  391.989149][ T5843] usb 2-1: too many endpoints for config 0 interface 115 altsetting 192: 91, using maximum allowed: 30
[  392.000624][ T5843] usb 2-1: config 0 interface 115 altsetting 192 has 0 endpoint descriptors, different from the interface descriptor's value: 91
[  392.014363][ T5843] usb 2-1: config 0 interface 115 has no altsetting 0
[  392.023264][ T5843] usb 2-1: New USB device found, idVendor=055f, idProduct=c420, bcdDevice=6a.33
[  392.033330][ T5843] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  392.127998][ T7463] overlayfs: failed to clone upperpath
[  392.232964][ T5843] usb 2-1: config 0 descriptor??
[  392.275946][ T7460] loop3: detected capacity change from 0 to 1024
[  392.351141][ T7466] loop5: detected capacity change from 0 to 3
[  392.388758][ T7466] squashfs: Unknown parameter ''
[  392.449299][ T7460] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  392.537698][ T6532] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  392.958808][ T5843] usb 2-1: string descriptor 0 read error: -71
[  392.972820][ T5843] gspca_main: sunplus-2.14.0 probing 055f:c420
[  393.107271][ T5843] gspca_sunplus: reg_w_riv err -71
[  393.112905][ T5843] sunplus 2-1:0.115: probe with driver sunplus failed with error -71
[  393.252255][ T5843] usb 2-1: USB disconnect, device number 3
[  393.429153][ T7480] overlayfs: missing 'workdir'
[  393.472698][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.871122][ T7490] loop3: detected capacity change from 0 to 32768
[  394.922368][ T7490] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  395.375406][ T7490] XFS (loop3): Ending clean mount
[  395.492400][ T7490] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  395.769204][ T7515] loop1: detected capacity change from 0 to 16
[  395.790357][ T7515] erofs (device loop1): mounted with root inode @ nid 36.
[  395.885593][ T7515] sp0: Synchronizing with TNC
[  395.988198][ T7513] loop6: detected capacity change from 0 to 4096
[  396.032154][ T5794] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  396.054571][ T7513] ntfs3(loop6): Different NTFS sector size (2048) and media sector size (512).
[  396.806862][ T5847] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  397.046827][ T5847] usb 6-1: Using ep0 maxpacket: 8
[  397.062641][ T5847] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8D has invalid maxpacket 3
[  397.073556][ T5847] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x5 has an invalid bInterval 0, changing to 7
[  397.084923][ T5847] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 141
[  397.095317][ T5847] usb 6-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  397.105161][ T5847] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  397.114506][ T7529] loop1: detected capacity change from 0 to 1024
[  397.250199][ T5847] usb 6-1: config 0 descriptor??
[  397.264129][ T7527] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  397.327615][ T7529] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  397.351220][ T7527] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  397.481145][ T7536] loop6: detected capacity change from 0 to 64
[  397.684105][ T5847] usb 6-1: string descriptor 0 read error: -71
[  397.756849][ T5847] usb 6-1: USB disconnect, device number 8
[  398.083235][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  398.901211][ T7552] FAULT_INJECTION: forcing a failure.
[  398.901211][ T7552] name failslab, interval 1, probability 0, space 0, times 0
[  398.914374][ T7552] CPU: 0 UID: 0 PID: 7552 Comm: syz.5.403 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  398.914500][ T7552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  398.914571][ T7552] Call Trace:
[  398.914608][ T7552]  <TASK>
[  398.914646][ T7552]  dump_stack_lvl+0x216/0x2d0
[  398.914774][ T7552]  dump_stack+0x1e/0x24
[  398.914878][ T7552]  should_fail_ex+0x767/0x830
[  398.915054][ T7552]  should_failslab+0x17f/0x210
[  398.915197][ T7552]  __kmalloc_noprof+0x176/0x1230
[  398.915377][ T7552]  ? kmsan_get_metadata+0x13e/0x1c0
[  398.915513][ T7552]  ? unix_bind+0x33e/0x1d60
[  398.915642][ T7552]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  398.915803][ T7552]  unix_bind+0x33e/0x1d60
[  398.915933][ T7552]  ? aa_sk_perm+0x881/0xd90
[  398.916120][ T7552]  ? __pfx_unix_bind+0x10/0x10
[  398.916260][ T7552]  __sys_bind+0x44e/0x5d0
[  398.916399][ T7552]  __x64_sys_bind+0x91/0xe0
[  398.916521][ T7552]  x64_sys_call+0x2631/0x3c30
[  398.916651][ T7552]  do_syscall_64+0xcd/0x1e0
[  398.916769][ T7552]  ? clear_bhb_loop+0x25/0x80
[  398.916928][ T7552]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  398.917084][ T7552] RIP: 0033:0x7fe80e38cda9
[  398.917176][ T7552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  398.917292][ T7552] RSP: 002b:00007fe80f1ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  398.917406][ T7552] RAX: ffffffffffffffda RBX: 00007fe80e5a5fa0 RCX: 00007fe80e38cda9
[  398.917493][ T7552] RDX: 000000000000006e RSI: 0000000020000300 RDI: 0000000000000003
[  398.917565][ T7552] RBP: 00007fe80f1ad090 R08: 0000000000000000 R09: 0000000000000000
[  398.917643][ T7552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  398.917716][ T7552] R13: 0000000000000000 R14: 00007fe80e5a5fa0 R15: 00007fff34cc2dd8
[  398.917818][ T7552]  </TASK>
[  399.133742][ T7544] loop3: detected capacity change from 0 to 4096
[  399.998987][ T7544] [syz.3.394/7544] FS: loop3 File: /file1 would truncate fibmap result
[  400.159738][   T29] audit: type=1800 audit(1738657840.580:14): pid=7544 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.394" name="bus" dev="loop3" ino=34 res=0 errno=0
[  400.196741][ T5847] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  400.412545][ T5847] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  400.425577][ T5847] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 8
[  400.436576][ T5847] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  400.446777][ T5847] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  400.689594][ T5847] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  400.699257][ T5847] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  400.707702][ T5847] usb 6-1: Product: ᐊ
[  400.712350][ T5847] usb 6-1: Manufacturer: 便⾱䎤콕簤칬缀䡆웸驏ﻛꁠ鸃몜쭩ᇁ굘䒈韪詢㹔խ聼⠥鯟⃹없ꅟ㽅‖悀䳟羟ﳘ滼䰍駶樋첗ׄࢽ핍輥౮鶪衭斸햽땾㪎澠₋ģ샰谜ਲ᳖ﱺ
[  400.737695][ T5847] usb 6-1: SerialNumber: ꂩ쌬ꩫ騲⳩鴷㧖岧柭辨愑ꈺ츔ᕆ幢깐汃븻睢賈䆥퍃ు䖍㢿ഌ䏈
[  400.968184][ T7579] loop1: detected capacity change from 0 to 1024
[  401.200079][ T7579] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  401.224857][   T29] audit: type=1800 audit(1738657841.630:15): pid=7544 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.394" name="bus" dev="loop3" ino=34 res=0 errno=0
[  401.356588][ T5847] cdc_ncm 6-1:1.0: bind() failure
[  401.373649][ T5847] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[  401.380993][ T5847] cdc_ncm 6-1:1.1: bind() failure
[  401.585179][ T5847] usb 6-1: USB disconnect, device number 9
[  402.321418][ T7596] loop6: detected capacity change from 0 to 1164
[  402.459088][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  402.858387][ T5847] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  403.107321][ T5847] usb 4-1: unable to get BOS descriptor or descriptor too short
[  403.160167][ T5847] usb 4-1: config 4 has an invalid interface number: 235 but max is 0
[  403.169062][ T5847] usb 4-1: config 4 has no interface number 0
[  403.175397][ T5847] usb 4-1: config 4 interface 235 altsetting 177 endpoint 0x3 has invalid maxpacket 512, setting to 64
[  403.190277][ T5847] usb 4-1: config 4 interface 235 has no altsetting 0
[  403.245884][ T7610] loop5: detected capacity change from 0 to 128
[  403.369209][ T5847] usb 4-1: New USB device found, idVendor=3980, idProduct=0003, bcdDevice=67.2a
[  403.380178][ T5847] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  403.390940][ T5847] usb 4-1: Product: syz
[  403.395323][ T5847] usb 4-1: Manufacturer: syz
[  403.400778][ T5847] usb 4-1: SerialNumber: syz
[  403.474159][ T7592] 9pnet: Could not find request transport: f
[  403.609230][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  403.616427][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  403.738432][ T7601] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  403.748542][ T7601] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  403.844080][ T7613] loop6: detected capacity change from 0 to 1024
[  403.880442][ T5847] rtl8150 4-1:4.235: couldn't find required endpoints
[  403.888432][ T5847] rtl8150 4-1:4.235: probe with driver rtl8150 failed with error -5
[  404.009454][ T5847] usb 4-1: USB disconnect, device number 6
[  404.077746][ T7613] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  404.090922][ T7613] ext4 filesystem being mounted at /31/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  404.203028][ T7621] loop5: detected capacity change from 0 to 16
[  404.270506][ T7621] erofs (device loop5): mounted with root inode @ nid 36.
[  404.314055][ T5843] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  404.556290][ T5843] usb 2-1: Using ep0 maxpacket: 8
[  404.589779][ T5843] usb 2-1: config 7 has an invalid interface number: 64 but max is 0
[  404.598525][ T5843] usb 2-1: config 7 has no interface number 0
[  404.604919][ T5843] usb 2-1: config 7 interface 64 has no altsetting 0
[  404.682285][ T5843] usb 2-1: New USB device found, idVendor=0ccd, idProduct=0093, bcdDevice=b6.f7
[  404.691809][ T5843] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  404.700324][ T5843] usb 2-1: Product: syz
[  404.704721][ T5843] usb 2-1: Manufacturer: syz
[  404.709692][ T5843] usb 2-1: SerialNumber: syz
[  405.251352][ T5843] usb 2-1: USB disconnect, device number 4
[  405.296671][ T7631] vlan2: entered promiscuous mode
[  405.327939][ T6532] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  405.428270][ T7629] netlink: 32 bytes leftover after parsing attributes in process `syz.3.422'.
[  405.791885][ T7637] FAULT_INJECTION: forcing a failure.
[  405.791885][ T7637] name failslab, interval 1, probability 0, space 0, times 0
[  405.805603][ T7637] CPU: 0 UID: 0 PID: 7637 Comm: syz.6.425 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  405.805729][ T7637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  405.805801][ T7637] Call Trace:
[  405.805850][ T7637]  <TASK>
[  405.805894][ T7637]  dump_stack_lvl+0x216/0x2d0
[  405.806028][ T7637]  dump_stack+0x1e/0x24
[  405.806135][ T7637]  should_fail_ex+0x767/0x830
[  405.806309][ T7637]  should_failslab+0x17f/0x210
[  405.806451][ T7637]  kmem_cache_alloc_noprof+0xee/0xe10
[  405.806625][ T7637]  ? security_inode_alloc+0x7d/0x6d0
[  405.806781][ T7637]  ? kmsan_get_metadata+0x13e/0x1c0
[  405.806940][ T7637]  security_inode_alloc+0x7d/0x6d0
[  405.807084][ T7637]  inode_init_always_gfp+0x7d7/0x890
[  405.807233][ T7637]  alloc_inode+0x12a/0x460
[  405.807381][ T7637]  new_inode+0x38/0x480
[  405.807514][ T7637]  ? kmsan_get_metadata+0x13e/0x1c0
[  405.807643][ T7637]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  405.807791][ T7637]  shmem_get_inode+0x705/0x1c50
[  405.807980][ T7637]  __shmem_file_setup+0x249/0x4d0
[  405.808136][ T7637]  shmem_file_setup+0x61/0x80
[  405.808284][ T7637]  __se_sys_memfd_create+0x80a/0x1210
[  405.808469][ T7637]  __x64_sys_memfd_create+0x6c/0xa0
[  405.808630][ T7637]  x64_sys_call+0x3b63/0x3c30
[  405.808762][ T7637]  do_syscall_64+0xcd/0x1e0
[  405.808887][ T7637]  ? clear_bhb_loop+0x25/0x80
[  405.809040][ T7637]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  405.809196][ T7637] RIP: 0033:0x7f121318cda9
[  405.809290][ T7637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  405.809398][ T7637] RSP: 002b:00007f1214077e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  405.809516][ T7637] RAX: ffffffffffffffda RBX: 0000000000000b9e RCX: 00007f121318cda9
[  405.809601][ T7637] RDX: 00007f1214077ef0 RSI: 0000000000000000 RDI: 00007f121320ec51
[  405.809684][ T7637] RBP: 0000000020000c80 R08: 00007f1214077bb7 R09: 00007f1214077e40
[  405.809769][ T7637] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000c00
[  405.809854][ T7637] R13: 00007f1214077ef0 R14: 00007f1214077eb0 R15: 0000000020000c40
[  405.809958][ T7637]  </TASK>
[  406.024493][    C0] vkms_vblank_simulate: vblank timer overrun
[  406.641805][ T7641] loop5: detected capacity change from 0 to 1024
[  406.871568][ T7641] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  406.936511][ T5843] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  407.127255][ T5843] usb 4-1: Using ep0 maxpacket: 32
[  407.169795][ T5843] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  407.182249][ T5843] usb 4-1: config 0 has no interfaces?
[  407.188719][ T5843] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  407.198198][ T5843] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  407.337813][ T5843] usb 4-1: config 0 descriptor??
[  407.553285][ T7642] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  407.634353][ T7642] netlink: 12 bytes leftover after parsing attributes in process `syz.3.428'.
[  407.717689][ T7642] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  407.727517][ T7642] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  407.777444][ T7667] loop6: detected capacity change from 0 to 128
[  407.817877][ T5843] usb 4-1: USB disconnect, device number 7
[  407.958552][ T6439] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  408.328099][ T7644] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  409.290984][ T7681] overlayfs: failed to resolve './file0': -2
[  409.438845][ T7687] loop5: detected capacity change from 0 to 16
[  409.516537][ T7687] erofs (device loop5): mounted with root inode @ nid 36.
[  409.606715][ T7687] netlink: 8 bytes leftover after parsing attributes in process `syz.5.438'.
[  409.687884][ T7687] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  409.695940][ T7687] batadv_slave_0: entered promiscuous mode
[  409.792195][ T7689] loop6: detected capacity change from 0 to 2048
[  410.725877][ T7707] FAULT_INJECTION: forcing a failure.
[  410.725877][ T7707] name failslab, interval 1, probability 0, space 0, times 0
[  410.739167][ T7707] CPU: 1 UID: 0 PID: 7707 Comm: syz.3.445 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  410.739291][ T7707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  410.739362][ T7707] Call Trace:
[  410.739406][ T7707]  <TASK>
[  410.739447][ T7707]  dump_stack_lvl+0x216/0x2d0
[  410.739589][ T7707]  dump_stack+0x1e/0x24
[  410.739698][ T7707]  should_fail_ex+0x767/0x830
[  410.739871][ T7707]  should_failslab+0x17f/0x210
[  410.740019][ T7707]  kmem_cache_alloc_noprof+0xee/0xe10
[  410.740187][ T7707]  ? security_inode_alloc+0x7d/0x6d0
[  410.740330][ T7707]  ? kmsan_get_metadata+0x13e/0x1c0
[  410.740471][ T7707]  security_inode_alloc+0x7d/0x6d0
[  410.740623][ T7707]  inode_init_always_gfp+0x7d7/0x890
[  410.740778][ T7707]  alloc_inode+0x12a/0x460
[  410.740920][ T7707]  new_inode+0x38/0x480
[  410.741052][ T7707]  ? kmsan_get_metadata+0x13e/0x1c0
[  410.741191][ T7707]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  410.741340][ T7707]  shmem_get_inode+0x705/0x1c50
[  410.741536][ T7707]  __shmem_file_setup+0x249/0x4d0
[  410.741698][ T7707]  shmem_file_setup+0x61/0x80
[  410.741846][ T7707]  __se_sys_memfd_create+0x80a/0x1210
[  410.742023][ T7707]  __x64_sys_memfd_create+0x6c/0xa0
[  410.742184][ T7707]  x64_sys_call+0x3b63/0x3c30
[  410.742317][ T7707]  do_syscall_64+0xcd/0x1e0
[  410.742434][ T7707]  ? clear_bhb_loop+0x25/0x80
[  410.742591][ T7707]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  410.742749][ T7707] RIP: 0033:0x7fa60b18cda9
[  410.742839][ T7707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  410.742947][ T7707] RSP: 002b:00007fa608ff5e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  410.743062][ T7707] RAX: ffffffffffffffda RBX: 0000000000000474 RCX: 00007fa60b18cda9
[  410.743147][ T7707] RDX: 00007fa608ff5ef0 RSI: 0000000000000000 RDI: 00007fa60b20ec51
[  410.743230][ T7707] RBP: 00000000200004c0 R08: 00007fa608ff5bb7 R09: 00007fa608ff5e40
[  410.743311][ T7707] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000480
[  410.743383][ T7707] R13: 00007fa608ff5ef0 R14: 00007fa608ff5eb0 R15: 0000000020000140
[  410.743483][ T7707]  </TASK>
[  410.804297][ T7709] loop6: detected capacity change from 0 to 64
[  410.913337][    C0] vkms_vblank_simulate: vblank timer overrun
[  411.562597][ T7718] loop5: detected capacity change from 0 to 8
[  411.704905][ T7718] cramfs: bad root offset 4190284
[  412.522909][ T7729] loop1: detected capacity change from 0 to 512
[  412.583249][ T7729] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  412.633750][ T7729] EXT4-fs (loop1): invalid journal inode
[  412.639910][ T7729] EXT4-fs (loop1): can't get journal size
[  412.703478][ T7736] loop6: detected capacity change from 0 to 16
[  412.743491][ T7729] EXT4-fs (loop1): 1 truncate cleaned up
[  412.751676][ T7729] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  412.810527][ T7738] xt_cgroup: xt_cgroup: no path or classid specified
[  412.837519][ T7736] erofs (device loop6): mounted with root inode @ nid 36.
[  412.942616][ T7736] netlink: 8 bytes leftover after parsing attributes in process `syz.6.454'.
[  413.765769][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  413.806685][ T7750] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  413.956475][ T5847] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  414.136821][ T5847] usb 4-1: Using ep0 maxpacket: 8
[  414.181680][ T5847] usb 4-1: config 2 has an invalid interface number: 31 but max is 0
[  414.190525][ T5847] usb 4-1: config 2 has no interface number 0
[  414.197117][ T5847] usb 4-1: config 2 interface 31 has no altsetting 0
[  414.249954][ T5847] usb 4-1: New USB device found, idVendor=1a86, idProduct=e092, bcdDevice=53.3f
[  414.259660][ T5847] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  414.268401][ T5847] usb 4-1: Product: syz
[  414.272781][ T5847] usb 4-1: Manufacturer: syz
[  414.277639][ T7759] FAULT_INJECTION: forcing a failure.
[  414.277639][ T7759] name failslab, interval 1, probability 0, space 0, times 0
[  414.277728][ T5847] usb 4-1: SerialNumber: syz
[  414.298017][ T7759] CPU: 0 UID: 0 PID: 7759 Comm: syz.1.459 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  414.298141][ T7759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  414.298215][ T7759] Call Trace:
[  414.298266][ T7759]  <TASK>
[  414.298310][ T7759]  dump_stack_lvl+0x216/0x2d0
[  414.298445][ T7759]  dump_stack+0x1e/0x24
[  414.298550][ T7759]  should_fail_ex+0x767/0x830
[  414.298722][ T7759]  should_failslab+0x17f/0x210
[  414.298868][ T7759]  kmem_cache_alloc_noprof+0xee/0xe10
[  414.299039][ T7759]  ? kmsan_get_metadata+0x13e/0x1c0
[  414.299169][ T7759]  ? getname_kernel+0x84/0x560
[  414.299320][ T7759]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  414.299463][ T7759]  ? kmsan_get_metadata+0x13e/0x1c0
[  414.299610][ T7759]  getname_kernel+0x84/0x560
[  414.299768][ T7759]  kern_path_create+0x41/0x3d0
[  414.299900][ T7759]  unix_bind+0x418/0x1d60
[  414.300029][ T7759]  ? aa_sk_perm+0x881/0xd90
[  414.300212][ T7759]  ? __pfx_unix_bind+0x10/0x10
[  414.300349][ T7759]  __sys_bind+0x44e/0x5d0
[  414.300483][ T7759]  __x64_sys_bind+0x91/0xe0
[  414.300602][ T7759]  x64_sys_call+0x2631/0x3c30
[  414.300740][ T7759]  do_syscall_64+0xcd/0x1e0
[  414.300853][ T7759]  ? clear_bhb_loop+0x25/0x80
[  414.301006][ T7759]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  414.301162][ T7759] RIP: 0033:0x7faa1978cda9
[  414.301263][ T7759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  414.301368][ T7759] RSP: 002b:00007faa1a6cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000031
[  414.301485][ T7759] RAX: ffffffffffffffda RBX: 00007faa199a5fa0 RCX: 00007faa1978cda9
[  414.301573][ T7759] RDX: 000000000000006e RSI: 0000000020000300 RDI: 0000000000000003
[  414.301647][ T7759] RBP: 00007faa1a6cf090 R08: 0000000000000000 R09: 0000000000000000
[  414.301718][ T7759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  414.301788][ T7759] R13: 0000000000000000 R14: 00007faa199a5fa0 R15: 00007ffcf492bae8
[  414.301884][ T7759]  </TASK>
[  414.753919][ T7761] loop6: detected capacity change from 0 to 1024
[  414.871870][ T7761] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  415.102989][ T7768] vivid-000: disconnect
[  415.205006][ T7753] capability: warning: `syz.3.458' uses deprecated v2 capabilities in a way that may be insecure
[  415.253755][ T7753] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  415.265496][ T7753] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  415.272323][ T7767] vivid-000: reconnect
[  415.456027][ T5847] ch9200 4-1:2.31: probe with driver ch9200 failed with error -22
[  415.547634][ T5847] usb 4-1: USB disconnect, device number 8
[  415.897484][ T5791] Bluetooth: hci3: command 0x0406 tx timeout
[  416.055856][ T6532] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  416.139577][ T7783] xt_cgroup: xt_cgroup: no path or classid specified
[  416.435470][ T7786] netlink: 76 bytes leftover after parsing attributes in process `syz.5.469'.
[  416.644345][ T7790] loop3: detected capacity change from 0 to 16
[  416.729996][ T7790] erofs (device loop3): mounted with root inode @ nid 36.
[  416.802426][ T7790] netlink: 8 bytes leftover after parsing attributes in process `syz.3.470'.
[  418.311340][ T7817] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  419.412806][ T7835] netlink: 32 bytes leftover after parsing attributes in process `syz.1.483'.
[  419.422168][ T7835] netlink: 32 bytes leftover after parsing attributes in process `syz.1.483'.
[  419.683107][ T7840] netlink: 8 bytes leftover after parsing attributes in process `syz.0.486'.
[  419.936387][ T7842] loop6: detected capacity change from 0 to 1024
[  420.049335][ T7842] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  420.059750][ T7842] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  420.209725][ T7842] EXT4-fs (loop6): invalid journal inode
[  420.215793][ T7842] EXT4-fs (loop6): can't get journal size
[  420.292940][ T7842] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  420.769299][ T7859] x_tables: duplicate underflow at hook 2
[  420.846448][ T6532] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  420.873562][ T7859] fuse: Unknown parameter 'u����id'
[  421.028083][ T7859] loop3: detected capacity change from 0 to 512
[  421.039933][ T7859] EXT4-fs: Ignoring removed nobh option
[  421.045771][ T7859] EXT4-fs: Ignoring removed mblk_io_submit option
[  421.054057][ T5847] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  421.108231][ T7859] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  421.172840][ T7865] loop1: detected capacity change from 0 to 512
[  421.183634][ T7865] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  421.200179][ T7859] fs-verity: sha512 using implementation "sha512-generic"
[  421.209394][ T7859] EXT4-fs warning (device loop3): ext4_begin_enable_verity:135: inode #13: comm syz.3.490: verity is only allowed on extent-based files
[  421.216588][ T5847] usb 6-1: Using ep0 maxpacket: 32
[  421.252826][ T5847] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  421.263630][ T5847] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  421.280672][ T7865] EXT4-fs (loop1): invalid journal inode
[  421.286768][ T7865] EXT4-fs (loop1): can't get journal size
[  421.334046][ T7865] EXT4-fs (loop1): 1 truncate cleaned up
[  421.342959][ T7865] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  421.357064][ T5847] usb 6-1: New USB device found, idVendor=0421, idProduct=0335, bcdDevice=db.74
[  421.367260][ T5847] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  421.375498][ T5847] usb 6-1: Product: syz
[  421.380653][ T5847] usb 6-1: Manufacturer: syz
[  421.385474][ T5847] usb 6-1: SerialNumber: syz
[  421.403843][ T5847] usb 6-1: config 0 descriptor??
[  421.418471][ T5847] rndis_host 6-1:0.0: skipping garbage
[  421.424176][ T5847] rndis_host 6-1:0.0: skipping garbage
[  421.430089][ T5847] usb 6-1: bad CDC descriptors
[  421.436783][ T5847] cdc_acm 6-1:0.0: skipping garbage
[  421.442206][ T5847] cdc_acm 6-1:0.0: skipping garbage
[  421.677149][ T7858] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  421.744502][ T7858] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  421.838979][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  421.843080][ T7858] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  421.954133][ T5847] usb 6-1: USB disconnect, device number 10
[  422.258758][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  422.281142][ T7879] FAULT_INJECTION: forcing a failure.
[  422.281142][ T7879] name failslab, interval 1, probability 0, space 0, times 0
[  422.295115][ T7879] CPU: 0 UID: 0 PID: 7879 Comm: syz.3.494 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  422.295244][ T7879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  422.295316][ T7879] Call Trace:
[  422.295359][ T7879]  <TASK>
[  422.295403][ T7879]  dump_stack_lvl+0x216/0x2d0
[  422.295539][ T7879]  dump_stack+0x1e/0x24
[  422.295646][ T7879]  should_fail_ex+0x767/0x830
[  422.295831][ T7879]  should_failslab+0x17f/0x210
[  422.295974][ T7879]  kmem_cache_alloc_lru_noprof+0xf5/0xe20
[  422.296154][ T7879]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  422.296290][ T7879]  ? __d_alloc+0x69/0x9e0
[  422.296445][ T7879]  ? kmsan_get_metadata+0x13e/0x1c0
[  422.296586][ T7879]  __d_alloc+0x69/0x9e0
[  422.296737][ T7879]  ? kmsan_get_metadata+0x13e/0x1c0
[  422.296866][ T7879]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  422.297009][ T7879]  d_alloc_pseudo+0x3e/0x1a0
[  422.297170][ T7879]  alloc_file_pseudo+0x110/0x350
[  422.297342][ T7879]  __shmem_file_setup+0x3bf/0x4d0
[  422.297503][ T7879]  shmem_file_setup+0x61/0x80
[  422.297651][ T7879]  __se_sys_memfd_create+0x80a/0x1210
[  422.297828][ T7879]  __x64_sys_memfd_create+0x6c/0xa0
[  422.297973][ T7879]  x64_sys_call+0x3b63/0x3c30
[  422.298101][ T7879]  do_syscall_64+0xcd/0x1e0
[  422.298214][ T7879]  ? clear_bhb_loop+0x25/0x80
[  422.298365][ T7879]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  422.298518][ T7879] RIP: 0033:0x7fa60b18cda9
[  422.298611][ T7879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  422.298724][ T7879] RSP: 002b:00007fa608ff5e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  422.298833][ T7879] RAX: ffffffffffffffda RBX: 0000000000000174 RCX: 00007fa60b18cda9
[  422.298918][ T7879] RDX: 00007fa608ff5ef0 RSI: 0000000000000000 RDI: 00007fa60b20ec51
[  422.298999][ T7879] RBP: 0000000020000240 R08: 00007fa608ff5bb7 R09: 00007fa608ff5e40
[  422.299084][ T7879] R10: 000000000000000a R11: 0000000000000202 R12: 00000000200001c0
[  422.299159][ T7879] R13: 00007fa608ff5ef0 R14: 00007fa608ff5eb0 R15: 0000000020000200
[  422.299263][ T7879]  </TASK>
[  422.508780][    C0] vkms_vblank_simulate: vblank timer overrun
[  422.960128][ T7885] loop3: detected capacity change from 0 to 16
[  423.035345][ T7885] erofs (device loop3): mounted with root inode @ nid 36.
[  423.125414][ T7885] netlink: 8 bytes leftover after parsing attributes in process `syz.3.498'.
[  423.205668][ T7890] loop1: detected capacity change from 0 to 1024
[  423.465582][ T7888] kvm: kvm [7886]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x86b
[  423.516373][ T7890] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  424.157874][ T7905] FAULT_INJECTION: forcing a failure.
[  424.157874][ T7905] name failslab, interval 1, probability 0, space 0, times 0
[  424.171367][ T7905] CPU: 1 UID: 0 PID: 7905 Comm: syz.3.502 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  424.171495][ T7905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  424.171569][ T7905] Call Trace:
[  424.171611][ T7905]  <TASK>
[  424.171652][ T7905]  dump_stack_lvl+0x216/0x2d0
[  424.171788][ T7905]  dump_stack+0x1e/0x24
[  424.171893][ T7905]  should_fail_ex+0x767/0x830
[  424.172069][ T7905]  should_failslab+0x17f/0x210
[  424.172212][ T7905]  kmem_cache_alloc_lru_noprof+0xf5/0xe20
[  424.172393][ T7905]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  424.172539][ T7905]  ? __d_alloc+0x69/0x9e0
[  424.172687][ T7905]  ? kmsan_get_metadata+0x13e/0x1c0
[  424.172833][ T7905]  __d_alloc+0x69/0x9e0
[  424.172981][ T7905]  ? kmsan_get_metadata+0x13e/0x1c0
[  424.173120][ T7905]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  424.173269][ T7905]  d_alloc_pseudo+0x3e/0x1a0
[  424.173438][ T7905]  alloc_file_pseudo+0x110/0x350
[  424.173606][ T7905]  __shmem_file_setup+0x3bf/0x4d0
[  424.173763][ T7905]  shmem_file_setup+0x61/0x80
[  424.173908][ T7905]  __se_sys_memfd_create+0x80a/0x1210
[  424.174082][ T7905]  __x64_sys_memfd_create+0x6c/0xa0
[  424.174236][ T7905]  x64_sys_call+0x3b63/0x3c30
[  424.174376][ T7905]  do_syscall_64+0xcd/0x1e0
[  424.174490][ T7905]  ? clear_bhb_loop+0x25/0x80
[  424.174642][ T7905]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  424.174798][ T7905] RIP: 0033:0x7fa60b18cda9
[  424.174891][ T7905] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  424.175001][ T7905] RSP: 002b:00007fa608ff5e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  424.175121][ T7905] RAX: ffffffffffffffda RBX: 000000000000017a RCX: 00007fa60b18cda9
[  424.175208][ T7905] RDX: 00007fa608ff5ef0 RSI: 0000000000000000 RDI: 00007fa60b20ec51
[  424.175291][ T7905] RBP: 0000000020000240 R08: 00007fa608ff5bb7 R09: 00007fa608ff5e40
[  424.175383][ T7905] R10: 000000000000000a R11: 0000000000000202 R12: 00000000200001c0
[  424.175457][ T7905] R13: 00007fa608ff5ef0 R14: 00007fa608ff5eb0 R15: 0000000020000200
[  424.175558][ T7905]  </TASK>
[  424.755413][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  425.311792][ T7918] loop5: detected capacity change from 0 to 512
[  425.369742][ T7918] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  425.404375][ T7918] EXT4-fs (loop5): invalid journal inode
[  425.410693][ T7918] EXT4-fs (loop5): can't get journal size
[  425.417946][ T5850] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  425.456779][ T5847] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  425.500061][ T7918] EXT4-fs (loop5): 1 truncate cleaned up
[  425.511576][ T7918] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  425.591286][ T5850] usb 2-1: Using ep0 maxpacket: 32
[  425.621196][ T5850] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  425.633305][ T5850] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  425.643611][ T5850] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  425.653023][ T5850] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  425.666349][ T5847] usb 4-1: Using ep0 maxpacket: 32
[  425.746575][ T5847] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  425.755975][ T5847] usb 4-1: config 1 has no interface number 1
[  425.762496][ T5847] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  425.829190][ T5850] usb 2-1: config 0 descriptor??
[  425.839330][ T7924] loop6: detected capacity change from 0 to 128
[  425.868767][ T7924] omfs: Invalid superblock (7b3184f9)
[  425.910429][ T5850] hub 2-1:0.0: USB hub found
[  425.933175][ T5847] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  425.942987][ T5847] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  425.951494][ T5847] usb 4-1: Product: syz
[  425.955867][ T5847] usb 4-1: Manufacturer: syz
[  425.960844][ T5847] usb 4-1: SerialNumber: syz
[  426.073184][ T5850] hub 2-1:0.0: 1 port detected
[  426.375997][ T5847] usb 4-1: 2:1 : no UAC_FORMAT_TYPE desc
[  426.489500][ T7917] x_tables: unsorted underflow at hook 1
[  426.575957][ T5847] usb 4-1: USB disconnect, device number 9
[  426.751873][ T5850] hub 2-1:0.0: activate --> -90
[  426.869745][ T6439] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  426.891607][ T6139] udevd[6139]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  426.964393][ T5850] hub 2-1:0.0: hub_ext_port_status failed (err = -71)
[  426.972322][ T5849] usb 2-1: USB disconnect, device number 5
[  427.306583][ T7934] netlink: 8 bytes leftover after parsing attributes in process `syz.0.512'.
[  427.863112][ T7940] loop6: detected capacity change from 0 to 1024
[  427.970318][ T7942] loop3: detected capacity change from 0 to 1024
[  428.045841][ T7940] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  428.056316][ T7940] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  428.124804][ T7948] loop5: detected capacity change from 0 to 512
[  428.194498][ T7940] EXT4-fs (loop6): invalid journal inode
[  428.202206][ T7940] EXT4-fs (loop6): can't get journal size
[  428.211021][ T7942] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  428.302505][ T7940] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  428.876273][ T6532] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  429.625322][ T7969] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  429.638998][ T7969] netlink: 12 bytes leftover after parsing attributes in process `syz.0.519'.
[  429.733836][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  430.449468][ T7972] loop6: detected capacity change from 0 to 32768
[  430.520193][ T7972] XFS (loop6): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  430.621491][ T7975] loop5: detected capacity change from 0 to 1024
[  431.750492][ T7972] XFS (loop6): Ending clean mount
[  431.973795][ T7972] XFS (loop6): Quotacheck needed: Please wait.
[  432.021711][ T7996] netlink: 28 bytes leftover after parsing attributes in process `syz.1.525'.
[  432.031199][ T7996] netlink: 28 bytes leftover after parsing attributes in process `syz.1.525'.
[  432.040669][ T7996] netlink: 20 bytes leftover after parsing attributes in process `syz.1.525'.
[  432.544623][ T8001] loop3: detected capacity change from 0 to 16
[  432.708008][ T8001] erofs (device loop3): mounted with root inode @ nid 36.
[  432.907916][ T8001] netlink: 8 bytes leftover after parsing attributes in process `syz.3.526'.
[  432.989618][ T7972] XFS (loop6): Quotacheck: Done.
[  433.403973][ T6532] XFS (loop6): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  433.511235][ T8008] x_tables: unsorted underflow at hook 1
[  433.639708][ T8007] loop1: detected capacity change from 0 to 1024
[  433.863952][ T8007] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  434.190053][ T8013] loop3: detected capacity change from 0 to 1024
[  434.247494][    C1] vcan0: j1939_tp_rxtimer: 0xffff8880223c1e00: rx timeout, send abort
[  434.303214][ T8013] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  434.316622][ T8013] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  434.387506][ T8018] loop5: detected capacity change from 0 to 256
[  434.452786][ T8013] EXT4-fs (loop3): invalid journal inode
[  434.460348][ T8013] EXT4-fs (loop3): can't get journal size
[  434.543206][ T8013] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  434.761243][    C1] vcan0: j1939_tp_rxtimer: 0xffff8880223c1e00: abort rx timeout. Force session deactivation
[  434.820174][ T8018] FAT-fs (loop5): Directory bread(block 64) failed
[  434.828813][ T8018] FAT-fs (loop5): Directory bread(block 65) failed
[  434.835708][ T8018] FAT-fs (loop5): Directory bread(block 66) failed
[  434.843090][ T8018] FAT-fs (loop5): Directory bread(block 67) failed
[  434.850300][ T8018] FAT-fs (loop5): Directory bread(block 68) failed
[  434.857242][ T8018] FAT-fs (loop5): Directory bread(block 69) failed
[  434.864136][ T8018] FAT-fs (loop5): Directory bread(block 70) failed
[  434.871008][ T8018] FAT-fs (loop5): Directory bread(block 71) failed
[  434.878052][ T8018] FAT-fs (loop5): Directory bread(block 72) failed
[  434.884794][ T8018] FAT-fs (loop5): Directory bread(block 73) failed
[  435.006797][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.112457][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.415486][   T29] audit: type=1326 audit(1738657875.830:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8028 comm="syz.0.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf6b38cda9 code=0x7ffc0000
[  435.536998][   T29] audit: type=1326 audit(1738657875.890:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8028 comm="syz.0.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbf6b38b710 code=0x7ffc0000
[  435.561504][   T29] audit: type=1326 audit(1738657875.890:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8028 comm="syz.0.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbf6b38b710 code=0x7ffc0000
[  435.584775][   T29] audit: type=1326 audit(1738657875.890:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8028 comm="syz.0.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf6b38cda9 code=0x7ffc0000
[  435.608603][   T29] audit: type=1326 audit(1738657875.890:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8028 comm="syz.0.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf6b38cda9 code=0x7ffc0000
[  435.631323][   T29] audit: type=1326 audit(1738657875.900:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8028 comm="syz.0.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7fbf6b38cda9 code=0x7ffc0000
[  435.655051][   T29] audit: type=1326 audit(1738657875.900:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8028 comm="syz.0.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf6b38cda9 code=0x7ffc0000
[  435.677870][   T29] audit: type=1326 audit(1738657875.920:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8028 comm="syz.0.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fbf6b38cda9 code=0x7ffc0000
[  435.703466][   T29] audit: type=1326 audit(1738657875.920:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8028 comm="syz.0.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf6b38cda9 code=0x7ffc0000
[  435.726613][   T29] audit: type=1326 audit(1738657875.950:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8028 comm="syz.0.534" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fbf6b38cda9 code=0x7ffc0000
[  436.640382][ T8051] loop3: detected capacity change from 0 to 16
[  436.655973][ T8053] FAULT_INJECTION: forcing a failure.
[  436.655973][ T8053] name failslab, interval 1, probability 0, space 0, times 0
[  436.671490][ T8053] CPU: 1 UID: 0 PID: 8053 Comm: syz.1.539 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  436.671614][ T8053] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  436.671686][ T8053] Call Trace:
[  436.671729][ T8053]  <TASK>
[  436.671776][ T8053]  dump_stack_lvl+0x216/0x2d0
[  436.671913][ T8053]  dump_stack+0x1e/0x24
[  436.672019][ T8053]  should_fail_ex+0x767/0x830
[  436.672197][ T8053]  should_failslab+0x17f/0x210
[  436.672340][ T8053]  __kmalloc_noprof+0x176/0x1230
[  436.672508][ T8053]  ? kfree+0x20/0xdb0
[  436.672654][ T8053]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  436.672799][ T8053]  ? tomoyo_realpath_from_path+0x104/0xaa0
[  436.672954][ T8053]  ? kmsan_get_metadata+0x13e/0x1c0
[  436.673100][ T8053]  tomoyo_realpath_from_path+0x104/0xaa0
[  436.673261][ T8053]  ? __srcu_read_lock+0x76/0xd0
[  436.673388][ T8053]  tomoyo_path_number_perm+0x1d9/0x8f0
[  436.673568][ T8053]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[  436.673764][ T8053]  ? kmsan_get_metadata+0x13e/0x1c0
[  436.673900][ T8053]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  436.674074][ T8053]  tomoyo_file_ioctl+0x3f/0x50
[  436.674249][ T8053]  security_file_ioctl+0x145/0x590
[  436.674443][ T8053]  __se_sys_ioctl+0xd0/0x440
[  436.674576][ T8053]  __x64_sys_ioctl+0x96/0xe0
[  436.674723][ T8053]  x64_sys_call+0x19f0/0x3c30
[  436.674872][ T8053]  do_syscall_64+0xcd/0x1e0
[  436.675001][ T8053]  ? clear_bhb_loop+0x25/0x80
[  436.675153][ T8053]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  436.675309][ T8053] RIP: 0033:0x7faa1978cda9
[  436.675401][ T8053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  436.675521][ T8053] RSP: 002b:00007faa1a6cf038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  436.675631][ T8053] RAX: ffffffffffffffda RBX: 00007faa199a5fa0 RCX: 00007faa1978cda9
[  436.675719][ T8053] RDX: 0000000020000140 RSI: 00000000c01064b5 RDI: 0000000000000003
[  436.675804][ T8053] RBP: 00007faa1a6cf090 R08: 0000000000000000 R09: 0000000000000000
[  436.675879][ T8053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  436.675953][ T8053] R13: 0000000000000000 R14: 00007faa199a5fa0 R15: 00007ffcf492bae8
[  436.676058][ T8053]  </TASK>
[  436.901680][ T8053] ERROR: Out of memory at tomoyo_realpath_from_path.
[  436.937486][ T8051] erofs (device loop3): mounted with root inode @ nid 36.
[  437.147577][ T8051] netlink: 8 bytes leftover after parsing attributes in process `syz.3.540'.
[  437.171690][ T8055] 9pnet_fd: Insufficient options for proto=fd
[  437.347899][ T8055] loop5: detected capacity change from 0 to 512
[  437.385721][ T8055] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  437.822709][ T8067] loop3: detected capacity change from 0 to 256
[  438.187909][ T8055] EXT4-fs (loop5): failed to open journal device unknown-block(0,0) -6
[  438.226617][ T1724] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  438.507192][ T1724] usb 4-1: config 0 interface 0 has no altsetting 0
[  438.515915][ T1724] usb 4-1: New USB device found, idVendor=046d, idProduct=0a0e, bcdDevice=94.75
[  438.527173][ T1724] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  438.678831][ T1724] usb 4-1: config 0 descriptor??
[  438.850634][ T8080] 9pnet_fd: Insufficient options for proto=fd
[  439.116788][ T8086] FAULT_INJECTION: forcing a failure.
[  439.116788][ T8086] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  439.132918][ T8086] CPU: 1 UID: 0 PID: 8086 Comm: syz.1.548 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  439.133045][ T8086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  439.133118][ T8086] Call Trace:
[  439.133162][ T8086]  <TASK>
[  439.133204][ T8086]  dump_stack_lvl+0x216/0x2d0
[  439.133342][ T8086]  dump_stack+0x1e/0x24
[  439.133451][ T8086]  should_fail_ex+0x767/0x830
[  439.133615][ T8086]  ? kmsan_get_metadata+0x13e/0x1c0
[  439.133776][ T8086]  should_fail_alloc_page+0x235/0x2b0
[  439.133929][ T8086]  __alloc_frozen_pages_noprof+0x343/0xe00
[  439.134117][ T8086]  alloc_pages_mpol+0x4cd/0x890
[  439.134264][ T8086]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  439.134423][ T8086]  alloc_pages_noprof+0x1b5/0x250
[  439.134579][ T8086]  get_free_pages_noprof+0x34/0xc0
[  439.134743][ T8086]  __pollwait+0x20c/0x6b0
[  439.134880][ T8086]  ? __pfx___pollwait+0x10/0x10
[  439.135028][ T8086]  pipe_poll+0x215/0x700
[  439.135165][ T8086]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  439.135313][ T8086]  ? kmsan_get_metadata+0x13e/0x1c0
[  439.135450][ T8086]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  439.135601][ T8086]  ? __pfx_pipe_poll+0x10/0x10
[  439.135749][ T8086]  do_sys_poll+0xece/0x2090
[  439.135931][ T8086]  ? kmsan_get_metadata+0x13e/0x1c0
[  439.136079][ T8086]  ? __pfx___pollwait+0x10/0x10
[  439.136205][ T8086]  ? __pfx_pollwake+0x10/0x10
[  439.136334][ T8086]  ? __pfx_pollwake+0x10/0x10
[  439.136477][ T8086]  ? __pfx_pollwake+0x10/0x10
[  439.136612][ T8086]  ? __pfx_pollwake+0x10/0x10
[  439.136757][ T8086]  ? __pfx_pollwake+0x10/0x10
[  439.136891][ T8086]  ? __pfx_pollwake+0x10/0x10
[  439.137030][ T8086]  ? __pfx_pollwake+0x10/0x10
[  439.137170][ T8086]  ? __pfx_pollwake+0x10/0x10
[  439.137316][ T8086]  ? __pfx_pollwake+0x10/0x10
[  439.137486][ T8086]  ? __se_sys_ppoll+0x62/0x530
[  439.137615][ T8086]  ? __x64_sys_ppoll+0xe4/0x150
[  439.137756][ T8086]  __se_sys_ppoll+0x452/0x530
[  439.137890][ T8086]  ? kmsan_get_metadata+0x13e/0x1c0
[  439.138040][ T8086]  __x64_sys_ppoll+0xe4/0x150
[  439.138183][ T8086]  x64_sys_call+0x3623/0x3c30
[  439.138319][ T8086]  do_syscall_64+0xcd/0x1e0
[  439.138438][ T8086]  ? clear_bhb_loop+0x25/0x80
[  439.138591][ T8086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  439.138756][ T8086] RIP: 0033:0x7faa1978cda9
[  439.138849][ T8086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  439.138959][ T8086] RSP: 002b:00007faa1a6cf038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f
[  439.139076][ T8086] RAX: ffffffffffffffda RBX: 00007faa199a5fa0 RCX: 00007faa1978cda9
[  439.139167][ T8086] RDX: 0000000000000000 RSI: 20000000000000dc RDI: 00000000200000c0
[  439.139250][ T8086] RBP: 00007faa1a6cf090 R08: 0000000000000000 R09: 0000000000000000
[  439.139328][ T8086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  439.139402][ T8086] R13: 0000000000000000 R14: 00007faa199a5fa0 R15: 00007ffcf492bae8
[  439.139502][ T8086]  </TASK>
[  439.471584][ T8087] loop5: detected capacity change from 0 to 512
[  439.569267][ T8087] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  439.652158][ T8087] EXT4-fs (loop5): invalid journal inode
[  439.658341][ T8087] EXT4-fs (loop5): can't get journal size
[  439.877759][ T8087] EXT4-fs (loop5): 1 truncate cleaned up
[  439.885407][ T8087] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  439.980820][ T8067] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  439.991941][ T8067] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  440.073882][ T1724] video4linux radio48: keene_cmd_set failed (-71)
[  440.081716][ T1724] radio-keene 4-1:0.0: V4L2 device registered as radio48
[  440.202309][ T1724] usb 4-1: USB disconnect, device number 10
[  440.309352][ T8100] process 'syz.5.549' launched '/dev/fd/8/./file2' with NULL argv: empty string added
[  440.496790][ T8102] EXT4-fs warning (device loop5): verify_group_input:137: Cannot add at group 3915 (only 1 groups)
[  440.956528][ T1724] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  440.960078][ T8111] loop1: detected capacity change from 0 to 16
[  441.079283][ T8111] erofs (device loop1): mounted with root inode @ nid 36.
[  441.114502][ T6439] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  441.186447][ T1724] usb 7-1: Using ep0 maxpacket: 16
[  441.189672][ T8111] netlink: 8 bytes leftover after parsing attributes in process `syz.1.554'.
[  441.276987][ T1724] usb 7-1: New USB device found, idVendor=0d49, idProduct=7010, bcdDevice= c.90
[  441.286627][ T1724] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  441.294862][ T1724] usb 7-1: Product: syz
[  441.299432][ T1724] usb 7-1: Manufacturer: syz
[  441.304235][ T1724] usb 7-1: SerialNumber: syz
[  441.392533][ T1724] usb 7-1: config 0 descriptor??
[  441.470731][ T1724] ums-onetouch 7-1:0.0: USB Mass Storage device detected
[  441.708608][ T5849] usb 7-1: USB disconnect, device number 6
[  441.956431][ T1724] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  442.108595][ T8126] 9pnet_fd: Insufficient options for proto=fd
[  442.156466][ T1724] usb 6-1: Using ep0 maxpacket: 8
[  442.203509][ T1724] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8D has invalid maxpacket 3
[  442.213981][ T1724] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x5 has an invalid bInterval 0, changing to 7
[  442.225957][ T1724] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 141
[  442.236602][ T1724] usb 6-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  442.245893][ T1724] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  442.288443][ T8127] loop1: detected capacity change from 0 to 1024
[  442.403384][ T8127] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  442.419349][ T1724] usb 6-1: config 0 descriptor??
[  442.427213][ T8120] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  442.475178][ T8120] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  442.869051][ T1724] usb 6-1: string descriptor 0 read error: -71
[  442.968471][ T1724] usb 6-1: USB disconnect, device number 11
[  443.548700][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.963371][ T8150] loop5: detected capacity change from 0 to 512
[  444.034464][ T8150] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  444.079226][ T8150] EXT4-fs (loop5): invalid journal inode
[  444.085250][ T8150] EXT4-fs (loop5): can't get journal size
[  444.215745][ T8150] EXT4-fs (loop5): 1 truncate cleaned up
[  444.223815][ T8150] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  444.334755][ T8153] loop1: detected capacity change from 0 to 256
[  444.535786][   T29] kauditd_printk_skb: 20 callbacks suppressed
[  444.535855][   T29] audit: type=1326 audit(1738657884.950:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.5.566" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe80e38cda9 code=0x0
[  444.598046][ T8163] loop6: detected capacity change from 0 to 16
[  444.648432][ T8163] erofs (device loop6): mounted with root inode @ nid 36.
[  444.707203][ T5847] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  444.744779][ T8163] netlink: 8 bytes leftover after parsing attributes in process `syz.6.569'.
[  444.916557][ T5847] usb 2-1: Using ep0 maxpacket: 8
[  444.949796][ T5847] usb 2-1: config 32 has an invalid interface number: 97 but max is 0
[  444.958534][ T5847] usb 2-1: config 32 has an invalid descriptor of length 0, skipping remainder of the config
[  444.970850][ T5847] usb 2-1: config 32 has no interface number 0
[  444.977709][ T5847] usb 2-1: too many endpoints for config 32 interface 97 altsetting 97: 97, using maximum allowed: 30
[  444.989216][ T5847] usb 2-1: config 32 interface 97 altsetting 97 has 0 endpoint descriptors, different from the interface descriptor's value: 97
[  445.003001][ T5847] usb 2-1: config 32 interface 97 has no altsetting 0
[  445.113173][ T5847] usb 2-1: New USB device found, idVendor=0979, idProduct=0280, bcdDevice=32.aa
[  445.123687][ T5847] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  445.133220][ T5847] usb 2-1: Product: syz
[  445.137987][ T5847] usb 2-1: Manufacturer: syz
[  445.142806][ T5847] usb 2-1: SerialNumber: syz
[  445.171937][ T6439] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  445.259765][ T8172] 9pnet_fd: Insufficient options for proto=fd
[  445.431339][ T5847] gspca_main: jeilinj-2.14.0 probing 0979:0280
[  445.525127][ T5847] usb 2-1: USB disconnect, device number 6
[  445.623380][ T8177] FAULT_INJECTION: forcing a failure.
[  445.623380][ T8177] name failslab, interval 1, probability 0, space 0, times 0
[  445.636793][ T8177] CPU: 1 UID: 0 PID: 8177 Comm: syz.6.574 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  445.636916][ T8177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  445.636988][ T8177] Call Trace:
[  445.637032][ T8177]  <TASK>
[  445.637074][ T8177]  dump_stack_lvl+0x216/0x2d0
[  445.637209][ T8177]  dump_stack+0x1e/0x24
[  445.637324][ T8177]  should_fail_ex+0x767/0x830
[  445.637504][ T8177]  should_failslab+0x17f/0x210
[  445.637648][ T8177]  kmem_cache_alloc_noprof+0xee/0xe10
[  445.637820][ T8177]  ? alloc_empty_file+0x1e9/0x530
[  445.637973][ T8177]  ? kmsan_get_metadata+0x13e/0x1c0
[  445.638119][ T8177]  alloc_empty_file+0x1e9/0x530
[  445.638288][ T8177]  alloc_file_pseudo+0x1f1/0x350
[  445.638456][ T8177]  __shmem_file_setup+0x3bf/0x4d0
[  445.638614][ T8177]  shmem_file_setup+0x61/0x80
[  445.638763][ T8177]  __se_sys_memfd_create+0x80a/0x1210
[  445.638935][ T8177]  __x64_sys_memfd_create+0x6c/0xa0
[  445.639095][ T8177]  x64_sys_call+0x3b63/0x3c30
[  445.639226][ T8177]  do_syscall_64+0xcd/0x1e0
[  445.639349][ T8177]  ? clear_bhb_loop+0x25/0x80
[  445.639501][ T8177]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  445.639658][ T8177] RIP: 0033:0x7f121318cda9
[  445.639751][ T8177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  445.639861][ T8177] RSP: 002b:00007f1214077e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  445.639978][ T8177] RAX: ffffffffffffffda RBX: 0000000000000b9e RCX: 00007f121318cda9
[  445.640064][ T8177] RDX: 00007f1214077ef0 RSI: 0000000000000000 RDI: 00007f121320ec51
[  445.640146][ T8177] RBP: 0000000020000c80 R08: 00007f1214077bb7 R09: 00007f1214077e40
[  445.640237][ T8177] R10: 000000000000000a R11: 0000000000000202 R12: 0000000020000c00
[  445.640311][ T8177] R13: 00007f1214077ef0 R14: 00007f1214077eb0 R15: 0000000020000c40
[  445.640414][ T8177]  </TASK>
[  445.834939][    C1] vkms_vblank_simulate: vblank timer overrun
[  445.841123][    C1] hrtimer: interrupt took 195074038 ns
[  445.941190][    C1] vkms_vblank_simulate: vblank timer overrun
[  446.905012][ T8196] netlink: 'syz.1.577': attribute type 29 has an invalid length.
[  446.995859][ T8196] netlink: 'syz.1.577': attribute type 29 has an invalid length.
[  447.088949][ T8196] netlink: 'syz.1.577': attribute type 29 has an invalid length.
[  447.191256][ T8196] netlink: 'syz.1.577': attribute type 29 has an invalid length.
[  447.873343][ T8210] loop1: detected capacity change from 0 to 16
[  447.943901][ T8210] erofs (device loop1): mounted with root inode @ nid 36.
[  448.041046][ T8210] netlink: 8 bytes leftover after parsing attributes in process `syz.1.584'.
[  448.380335][ T8212] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  448.422757][ T8218] 9pnet_fd: Insufficient options for proto=fd
[  448.548301][ T5847] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[  448.549183][ T8214] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  448.780768][ T5847] usb 6-1: Using ep0 maxpacket: 16
[  448.790813][ T8212] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  448.835037][ T5847] usb 6-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  448.844722][ T5847] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  448.857073][ T5847] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  448.926012][ T8223] loop1: detected capacity change from 0 to 8
[  448.985735][ T5847] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  448.995407][ T5847] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  449.003864][ T5847] usb 6-1: Product: syz
[  449.008431][ T5847] usb 6-1: Manufacturer: syz
[  449.013284][ T5847] usb 6-1: SerialNumber: syz
[  449.072583][ T8223] squashfs: Unknown parameter 'cZ�LkTuݒ��WCq�6s.a̖c�.i�J?���;�-�gs�L'
[  449.492698][ T8229] loop6: detected capacity change from 0 to 512
[  449.580319][ T8229] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  449.623983][ T5847] usb 6-1: 0:2 : does not exist
[  449.654798][ T8229] EXT4-fs (loop6): invalid journal inode
[  449.675237][ T8229] EXT4-fs (loop6): can't get journal size
[  449.778650][ T8229] EXT4-fs (loop6): 1 truncate cleaned up
[  449.789333][ T8229] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  449.886592][ T8229] EXT4-fs warning (device loop6): verify_group_input:137: Cannot add at group 3915 (only 1 groups)
[  450.106902][ T5847] usb 6-1: 1:0: cannot get min/max values for control 4 (id 1)
[  450.138211][ T6532] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  450.246001][ T5847] usb 6-1: USB disconnect, device number 12
[  450.533273][ T5972] udevd[5972]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  451.409113][ T8251] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  451.534435][ T8251] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  451.627401][ T8251] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  451.709617][ T8256] loop1: detected capacity change from 0 to 724
[  452.100457][ T8264] loop5: detected capacity change from 0 to 16
[  452.165237][ T8264] erofs (device loop5): mounted with root inode @ nid 36.
[  452.272268][ T8264] netlink: 8 bytes leftover after parsing attributes in process `syz.5.598'.
[  453.401101][ T8284] loop1: detected capacity change from 0 to 512
[  453.479230][ T8284] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  453.706630][ T8284] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2863: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  453.771321][ T8284] EXT4-fs (loop1): 1 truncate cleaned up
[  453.779675][ T8284] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  454.532896][ T8299] loop6: detected capacity change from 0 to 1024
[  454.732498][ T8299] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  455.059460][ T8307] FAULT_INJECTION: forcing a failure.
[  455.059460][ T8307] name failslab, interval 1, probability 0, space 0, times 0
[  455.073663][ T8307] CPU: 1 UID: 0 PID: 8307 Comm: syz.3.609 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  455.073790][ T8307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  455.073861][ T8307] Call Trace:
[  455.073903][ T8307]  <TASK>
[  455.073945][ T8307]  dump_stack_lvl+0x216/0x2d0
[  455.074082][ T8307]  dump_stack+0x1e/0x24
[  455.074192][ T8307]  should_fail_ex+0x767/0x830
[  455.074366][ T8307]  should_failslab+0x17f/0x210
[  455.074511][ T8307]  __kmalloc_node_noprof+0x183/0x1250
[  455.074692][ T8307]  ? kmsan_get_metadata+0x13e/0x1c0
[  455.074832][ T8307]  ? qdisc_alloc+0xb6/0xb90
[  455.074975][ T8307]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[  455.075158][ T8307]  ? kmsan_get_metadata+0x13e/0x1c0
[  455.075297][ T8307]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  455.075449][ T8307]  qdisc_alloc+0xb6/0xb90
[  455.075595][ T8307]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  455.075782][ T8307]  qdisc_create+0x215/0x1cc0
[  455.075917][ T8307]  ? kmsan_get_metadata+0x13e/0x1c0
[  455.076060][ T8307]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  455.076204][ T8307]  tc_modify_qdisc+0x126d/0x2e30
[  455.076350][ T8307]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  455.076509][ T8307]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  455.076636][ T8307]  ? __pfx_tc_modify_qdisc+0x10/0x10
[  455.076753][ T8307]  rtnetlink_rcv_msg+0x12fc/0x1410
[  455.076888][ T8307]  ? stack_depot_save_flags+0x2c/0x750
[  455.077050][ T8307]  ? kmsan_get_metadata+0x13e/0x1c0
[  455.077207][ T8307]  netlink_rcv_skb+0x375/0x650
[  455.077377][ T8307]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  455.077528][ T8307]  ? __pfx_rtnetlink_rcv+0x10/0x10
[  455.077665][ T8307]  rtnetlink_rcv+0x34/0x40
[  455.077795][ T8307]  netlink_unicast+0xf52/0x1260
[  455.077956][ T8307]  netlink_sendmsg+0x10da/0x11e0
[  455.078129][ T8307]  ? __pfx_netlink_sendmsg+0x10/0x10
[  455.078286][ T8307]  ? __pfx_netlink_sendmsg+0x10/0x10
[  455.078447][ T8307]  __sock_sendmsg+0x30f/0x380
[  455.078623][ T8307]  ____sys_sendmsg+0x877/0xb60
[  455.078782][ T8307]  ___sys_sendmsg+0x28d/0x3c0
[  455.078929][ T8307]  ? __rcu_read_unlock+0x7b/0xe0
[  455.079093][ T8307]  ? __fget_files+0x42b/0x500
[  455.079243][ T8307]  ? kmsan_get_metadata+0x13e/0x1c0
[  455.079382][ T8307]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  455.079534][ T8307]  __x64_sys_sendmsg+0x212/0x3c0
[  455.079689][ T8307]  ? kmsan_get_metadata+0x13e/0x1c0
[  455.079836][ T8307]  x64_sys_call+0x2ed6/0x3c30
[  455.079970][ T8307]  do_syscall_64+0xcd/0x1e0
[  455.080086][ T8307]  ? clear_bhb_loop+0x25/0x80
[  455.080240][ T8307]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  455.080396][ T8307] RIP: 0033:0x7fa60b18cda9
[  455.080488][ T8307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  455.080602][ T8307] RSP: 002b:00007fa608ff6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  455.080722][ T8307] RAX: ffffffffffffffda RBX: 00007fa60b3a5fa0 RCX: 00007fa60b18cda9
[  455.080812][ T8307] RDX: 0000000000000000 RSI: 00000000200007c0 RDI: 0000000000000003
[  455.080889][ T8307] RBP: 00007fa608ff6090 R08: 0000000000000000 R09: 0000000000000000
[  455.080966][ T8307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  455.081037][ T8307] R13: 0000000000000000 R14: 00007fa60b3a5fa0 R15: 00007ffe5a53f5a8
[  455.081137][ T8307]  </TASK>
[  455.435349][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  455.910192][ T8314] loop5: detected capacity change from 0 to 16
[  455.982654][ T8314] erofs (device loop5): mounted with root inode @ nid 36.
[  456.147656][ T8314] netlink: 8 bytes leftover after parsing attributes in process `syz.5.612'.
[  456.175135][ T8316] loop1: detected capacity change from 0 to 128
[  456.422597][ T6532] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  456.439997][ T8316] loop1: detected capacity change from 0 to 512
[  457.683411][ T8347] FAULT_INJECTION: forcing a failure.
[  457.683411][ T8347] name failslab, interval 1, probability 0, space 0, times 0
[  457.696987][ T8347] CPU: 0 UID: 0 PID: 8347 Comm: syz.6.622 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  457.697113][ T8347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  457.697184][ T8347] Call Trace:
[  457.697228][ T8347]  <TASK>
[  457.697270][ T8347]  dump_stack_lvl+0x216/0x2d0
[  457.697410][ T8347]  dump_stack+0x1e/0x24
[  457.697517][ T8347]  should_fail_ex+0x767/0x830
[  457.697693][ T8347]  should_failslab+0x17f/0x210
[  457.697837][ T8347]  kmem_cache_alloc_noprof+0xee/0xe10
[  457.698011][ T8347]  ? alloc_empty_file+0x1e9/0x530
[  457.698165][ T8347]  ? kmsan_get_metadata+0x13e/0x1c0
[  457.698314][ T8347]  alloc_empty_file+0x1e9/0x530
[  457.698482][ T8347]  alloc_file_pseudo+0x1f1/0x350
[  457.698650][ T8347]  __shmem_file_setup+0x3bf/0x4d0
[  457.698811][ T8347]  shmem_file_setup+0x61/0x80
[  457.698961][ T8347]  __se_sys_memfd_create+0x80a/0x1210
[  457.699131][ T8347]  __x64_sys_memfd_create+0x6c/0xa0
[  457.699286][ T8347]  x64_sys_call+0x3b63/0x3c30
[  457.699424][ T8347]  do_syscall_64+0xcd/0x1e0
[  457.699538][ T8347]  ? clear_bhb_loop+0x25/0x80
[  457.699690][ T8347]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  457.699846][ T8347] RIP: 0033:0x7f121318cda9
[  457.699936][ T8347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  457.700044][ T8347] RSP: 002b:00007f1214077e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  457.700160][ T8347] RAX: ffffffffffffffda RBX: 0000000000000167 RCX: 00007f121318cda9
[  457.700247][ T8347] RDX: 00007f1214077ef0 RSI: 0000000000000000 RDI: 00007f121320ec51
[  457.700328][ T8347] RBP: 0000000020000240 R08: 00007f1214077bb7 R09: 00007f1214077e40
[  457.700421][ T8347] R10: 000000000000000a R11: 0000000000000202 R12: 00000000200001c0
[  457.700497][ T8347] R13: 00007f1214077ef0 R14: 00007f1214077eb0 R15: 0000000020000200
[  457.700601][ T8347]  </TASK>
[  457.894791][    C0] vkms_vblank_simulate: vblank timer overrun
[  459.153747][ T8354] loop6: detected capacity change from 0 to 4096
[  459.389491][ T8364] loop1: detected capacity change from 0 to 512
[  459.574113][ T8364] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  459.587635][ T8364] ext4 filesystem being mounted at /134/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  459.884857][ T8354] [syz.6.624/8354] FS: loop6 File: /file1 would truncate fibmap result
[  459.983791][   T29] audit: type=1800 audit(1738657900.400:47): pid=8354 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.624" name="bus" dev="loop6" ino=34 res=0 errno=0
[  460.369255][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  460.586626][ T8382] netlink: 76 bytes leftover after parsing attributes in process `syz.3.632'.
[  460.726847][   T29] audit: type=1800 audit(1738657901.140:48): pid=8354 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.624" name="bus" dev="loop6" ino=34 res=0 errno=0
[  460.804174][ T8384] loop5: detected capacity change from 0 to 1024
[  460.879832][ T8387] FAULT_INJECTION: forcing a failure.
[  460.879832][ T8387] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  460.894463][ T8387] CPU: 0 UID: 0 PID: 8387 Comm: syz.1.634 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  460.894588][ T8387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  460.894659][ T8387] Call Trace:
[  460.894702][ T8387]  <TASK>
[  460.894745][ T8387]  dump_stack_lvl+0x216/0x2d0
[  460.894878][ T8387]  dump_stack+0x1e/0x24
[  460.894986][ T8387]  should_fail_ex+0x767/0x830
[  460.895158][ T8387]  should_fail+0x2a/0x40
[  460.895315][ T8387]  should_fail_usercopy+0x2e/0x40
[  460.895481][ T8387]  _copy_from_user+0x35/0x110
[  460.895651][ T8387]  copy_clone_args_from_user+0x240/0xc20
[  460.895811][ T8387]  ? __se_sys_clone3+0x60/0x580
[  460.895948][ T8387]  ? filter_irq_stacks+0x60/0x1a0
[  460.896101][ T8387]  ? stack_depot_save_flags+0x2c/0x750
[  460.896264][ T8387]  ? kmsan_get_metadata+0x13e/0x1c0
[  460.896411][ T8387]  ? kmsan_get_metadata+0x13e/0x1c0
[  460.896548][ T8387]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  460.896697][ T8387]  __se_sys_clone3+0x90/0x580
[  460.896828][ T8387]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[  460.897014][ T8387]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  460.897202][ T8387]  ? fput+0x359/0x400
[  460.897351][ T8387]  ? ksys_write+0x408/0x4b0
[  460.897463][ T8387]  ? kmsan_get_metadata+0x13e/0x1c0
[  460.897595][ T8387]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  460.897743][ T8387]  __x64_sys_clone3+0x6c/0xa0
[  460.897879][ T8387]  x64_sys_call+0x3b78/0x3c30
[  460.898013][ T8387]  do_syscall_64+0xcd/0x1e0
[  460.898130][ T8387]  ? clear_bhb_loop+0x25/0x80
[  460.898291][ T8387]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  460.898448][ T8387] RIP: 0033:0x7faa1978cda9
[  460.898536][ T8387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  460.898641][ T8387] RSP: 002b:00007faa1a6cef08 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  460.898756][ T8387] RAX: ffffffffffffffda RBX: 0000000000000058 RCX: 00007faa1978cda9
[  460.898838][ T8387] RDX: 00007faa1a6cef20 RSI: 0000000000000058 RDI: 00007faa1a6cef20
[  460.898922][ T8387] RBP: 00007faa1a6cf090 R08: 0000000000000000 R09: 0000000000000058
[  460.898997][ T8387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  460.899070][ T8387] R13: 0000000000000000 R14: 00007faa199a5fa0 R15: 00007ffcf492bae8
[  460.899171][ T8387]  </TASK>
[  460.900349][ T8384] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  462.126428][ T6439] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  462.642275][ T8414] overlayfs: conflicting options: nfs_export=on,metacopy=on
[  463.572801][ T8426] loop6: detected capacity change from 0 to 1024
[  463.707173][ T8426] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  463.717391][ T8426] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  463.841453][ T8422] kvm: kvm [8421]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x86b
[  463.858475][ T8426] EXT4-fs (loop6): invalid journal inode
[  463.864489][ T8426] EXT4-fs (loop6): can't get journal size
[  463.930565][ T8426] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  464.291369][ T8440] loop5: detected capacity change from 0 to 1024
[  464.459525][ T6532] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  464.529774][ T8440] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  464.915102][ T8438] loop1: detected capacity change from 0 to 4096
[  465.050240][ T1288] ieee802154 phy0 wpan0: encryption failed: -22
[  465.057736][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  465.320540][ T8458] netlink: 8 bytes leftover after parsing attributes in process `syz.3.653'.
[  465.398893][ T8465] netlink: 8 bytes leftover after parsing attributes in process `syz.3.653'.
[  465.746594][   T29] audit: type=1800 audit(1738657906.130:49): pid=8438 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.648" name="bus" dev="loop1" ino=34 res=0 errno=0
[  465.948193][ T6439] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  466.460917][ T8478] FAULT_INJECTION: forcing a failure.
[  466.460917][ T8478] name failslab, interval 1, probability 0, space 0, times 0
[  466.475876][ T8478] CPU: 1 UID: 0 PID: 8478 Comm: syz.5.656 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  466.475993][ T8478] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  466.476068][ T8478] Call Trace:
[  466.476110][ T8478]  <TASK>
[  466.476150][ T8478]  dump_stack_lvl+0x216/0x2d0
[  466.476284][ T8478]  dump_stack+0x1e/0x24
[  466.476389][ T8478]  should_fail_ex+0x767/0x830
[  466.476561][ T8478]  should_failslab+0x17f/0x210
[  466.476706][ T8478]  __kmalloc_noprof+0x176/0x1230
[  466.476862][ T8478]  ? kmsan_get_metadata+0x13e/0x1c0
[  466.476993][ T8478]  ? tomoyo_encode+0x5f8/0xa40
[  466.477122][ T8478]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  466.477262][ T8478]  ? kmsan_get_metadata+0x13e/0x1c0
[  466.477392][ T8478]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  466.477533][ T8478]  tomoyo_encode+0x5f8/0xa40
[  466.477690][ T8478]  tomoyo_realpath_from_path+0x9dd/0xaa0
[  466.477858][ T8478]  tomoyo_path_number_perm+0x1d9/0x8f0
[  466.478030][ T8478]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[  466.478215][ T8478]  ? kmsan_get_metadata+0x13e/0x1c0
[  466.478346][ T8478]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  466.478515][ T8478]  tomoyo_file_ioctl+0x3f/0x50
[  466.478661][ T8478]  security_file_ioctl+0x145/0x590
[  466.478825][ T8478]  __se_sys_ioctl+0xd0/0x440
[  466.478949][ T8478]  __x64_sys_ioctl+0x96/0xe0
[  466.479059][ T8478]  x64_sys_call+0x19f0/0x3c30
[  466.479191][ T8478]  do_syscall_64+0xcd/0x1e0
[  466.479301][ T8478]  ? clear_bhb_loop+0x25/0x80
[  466.479448][ T8478]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  466.479606][ T8478] RIP: 0033:0x7fe80e38cda9
[  466.479692][ T8478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  466.479798][ T8478] RSP: 002b:00007fe80f1ad038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  466.479908][ T8478] RAX: ffffffffffffffda RBX: 00007fe80e5a5fa0 RCX: 00007fe80e38cda9
[  466.479996][ T8478] RDX: 0000000000000000 RSI: 00000000c0189436 RDI: 0000000000000003
[  466.480070][ T8478] RBP: 00007fe80f1ad090 R08: 0000000000000000 R09: 0000000000000000
[  466.480141][ T8478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  466.480214][ T8478] R13: 0000000000000000 R14: 00007fe80e5a5fa0 R15: 00007fff34cc2dd8
[  466.480310][ T8478]  </TASK>
[  466.711521][ T8478] ERROR: Out of memory at tomoyo_realpath_from_path.
[  466.774448][   T29] audit: type=1800 audit(1738657907.160:50): pid=8438 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.648" name="bus" dev="loop1" ino=34 res=0 errno=0
[  467.226634][ T5849] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  467.456465][ T5849] usb 7-1: Using ep0 maxpacket: 16
[  467.481248][ T5849] usb 7-1: config 1 has an invalid descriptor of length 111, skipping remainder of the config
[  467.492649][ T5849] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  467.586766][ T5849] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  467.596794][ T5849] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  467.605046][ T5849] usb 7-1: Product: syz
[  467.609661][ T5849] usb 7-1: Manufacturer: syz
[  467.614484][ T5849] usb 7-1: SerialNumber: syz
[  468.202628][ T8498] loop1: detected capacity change from 0 to 1024
[  468.303382][ T8498] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  468.315483][ T8498] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  468.468152][ T8498] EXT4-fs (loop1): invalid journal inode
[  468.474104][ T8498] EXT4-fs (loop1): can't get journal size
[  468.567931][ T8498] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  468.895208][ T5847] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  469.048328][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  469.116430][ T5847] usb 6-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  469.125988][ T5847] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  469.178186][ T5847] usb 6-1: config 0 descriptor??
[  469.223951][ T5847] cp210x 6-1:0.0: cp210x converter detected
[  469.241174][ T5849] usb 7-1: 0:2 : does not exist
[  469.309221][ T8508] netlink: 8 bytes leftover after parsing attributes in process `syz.0.665'.
[  469.360322][ T5849] usb 7-1: 5:0: failed to get current value for ch 0 (-22)
[  469.419552][ T8508] netlink: 8 bytes leftover after parsing attributes in process `syz.0.665'.
[  469.604806][ T5849] usb 7-1: USB disconnect, device number 7
[  469.607098][ T5847] cp210x 6-1:0.0: failed to get vendor val 0x370b size 1: -71
[  469.618775][ T5847] cp210x 6-1:0.0: querying part number failed
[  469.701791][ T5847] usb 6-1: cp210x converter now attached to ttyUSB0
[  469.732780][ T8515] loop1: detected capacity change from 0 to 64
[  469.770890][ T5847] usb 6-1: USB disconnect, device number 13
[  469.877668][ T5847] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  469.888402][ T5847] cp210x 6-1:0.0: device disconnected
[  470.004611][ T5972] udevd[5972]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  470.406832][ T5785] Trying to free block not in datazone
[  470.569494][ T5785] Trying to free block not in datazone
[  470.630008][ T5785] Trying to free block not in datazone
[  470.660705][ T5785] Trying to free block not in datazone
[  470.667091][ T5785] Trying to free block not in datazone
[  470.681653][ T5785] Trying to free block not in datazone
[  470.687456][ T5785] minix_free_inode: bit 6 already cleared
[  470.772524][ T5785] Trying to free block not in datazone
[  470.778748][ T5785] minix_free_inode: bit 7 already cleared
[  470.870473][ T8526] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(5)
[  470.877271][ T8526] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  470.885453][ T8526] vhci_hcd vhci_hcd.0: Device attached
[  471.107039][ T5849] vhci_hcd: vhci_device speed not set
[  471.196656][ T5849] usb 45-1: new full-speed USB device number 2 using vhci_hcd
[  471.246765][ T5850] usb 7-1: new low-speed USB device number 8 using dummy_hcd
[  471.490944][ T5850] usb 7-1: config 0 has no interfaces?
[  471.497326][ T5850] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  471.507176][ T5850] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  471.570378][ T8539] loop5: detected capacity change from 0 to 128
[  471.595805][ T5850] usb 7-1: config 0 descriptor??
[  471.625114][ T8539] omfs: Invalid superblock (7b3184f9)
[  471.821877][ T5850] usb 7-1: USB disconnect, device number 8
[  471.847101][ T8528] vhci_hcd: connection reset by peer
[  471.858555][ T3505] vhci_hcd: stop threads
[  471.863010][ T3505] vhci_hcd: release socket
[  471.867949][ T3505] vhci_hcd: disconnect device
[  471.928728][ T5849] vhci_hcd: vhci_device speed not set
[  472.978465][ T8557] loop6: detected capacity change from 0 to 16
[  473.052520][ T8557] erofs (device loop6): mounted with root inode @ nid 36.
[  473.142163][ T8557] netlink: 8 bytes leftover after parsing attributes in process `syz.6.678'.
[  473.192945][ T8557] netlink: 8 bytes leftover after parsing attributes in process `syz.6.678'.
[  473.551475][ T8568] loop5: detected capacity change from 0 to 128
[  473.702822][ T8570] loop1: detected capacity change from 0 to 512
[  473.790981][ T8570] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  473.893416][ T8570] EXT4-fs error (device loop1): ext4_get_branch:178: inode #11: block 4294967295: comm syz.1.683: invalid block
[  473.967196][ T8570] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.683: invalid indirect mapped block 4294967295 (level 1)
[  474.024753][ T8570] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.683: invalid indirect mapped block 4294967295 (level 1)
[  474.057594][ T8570] EXT4-fs (loop1): 2 truncates cleaned up
[  474.065253][ T8570] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  474.231764][ T8579] loop6: detected capacity change from 0 to 1024
[  474.374849][ T8579] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  474.437929][ T8575] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  474.721219][ T5785] EXT4-fs error (device loop1): ext4_lookup:1813: inode #17: comm syz-executor: iget: bad extended attribute block 6904
[  474.842635][ T5785] EXT4-fs error (device loop1): ext4_lookup:1813: inode #17: comm syz-executor: iget: bad extended attribute block 6904
[  474.959040][ T8590] vlan2: entered promiscuous mode
[  475.293446][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  475.613951][ T6532] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  476.047627][ T8609] syz.3.694 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  476.151102][ T8608] loop6: detected capacity change from 0 to 16
[  476.158610][ T3962] bridge_slave_1: left allmulticast mode
[  476.164470][ T3962] bridge_slave_1: left promiscuous mode
[  476.171639][ T3962] bridge0: port 2(bridge_slave_1) entered disabled state
[  476.227389][ T8608] erofs (device loop6): mounted with root inode @ nid 36.
[  476.307458][ T3962] bridge_slave_0: left allmulticast mode
[  476.313364][ T3962] bridge_slave_0: left promiscuous mode
[  476.320085][ T3962] bridge0: port 1(bridge_slave_0) entered disabled state
[  476.787260][ T3962] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  476.835975][ T3962] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  476.890208][ T3962] bond0 (unregistering): Released all slaves
[  476.928897][ T8608] netlink: 8 bytes leftover after parsing attributes in process `syz.6.695'.
[  476.939512][ T8612] netlink: 8 bytes leftover after parsing attributes in process `syz.6.695'.
[  477.070272][ T3962] tipc: Left network mode
[  477.474798][ T3962] hsr_slave_0: left promiscuous mode
[  477.487266][ T3962] hsr_slave_1: left promiscuous mode
[  477.494901][ T3962] batman_adv: batadv0: Removing interface: batadv_slave_0
[  477.560800][ T3962] batman_adv: batadv0: Removing interface: batadv_slave_1
[  477.925008][ T3962] team0 (unregistering): Port device team_slave_1 removed
[  477.957488][ T3962] team0 (unregistering): Port device team_slave_0 removed
[  479.459380][ T5791] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  479.474578][ T5791] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  479.496194][ T5791] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  479.527927][ T5791] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  479.570207][ T5791] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  479.583796][ T5791] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  480.119520][ T8654] vlan2: entered promiscuous mode
[  480.827104][ T8645] chnl_net:caif_netlink_parms(): no params data found
[  481.296701][ T8678] loop6: detected capacity change from 0 to 512
[  481.346732][ T8678] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  481.477462][ T8678] EXT4-fs (loop6): 1 truncate cleaned up
[  481.485160][ T8678] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  481.657552][ T5791] Bluetooth: hci0: command tx timeout
[  482.083247][ T6532] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  482.622056][ T8645] bridge0: port 1(bridge_slave_0) entered blocking state
[  482.632267][ T8645] bridge0: port 1(bridge_slave_0) entered disabled state
[  482.641670][ T8645] bridge_slave_0: entered allmulticast mode
[  482.651638][ T8645] bridge_slave_0: entered promiscuous mode
[  482.725220][ T8645] bridge0: port 2(bridge_slave_1) entered blocking state
[  482.733205][ T8645] bridge0: port 2(bridge_slave_1) entered disabled state
[  482.741151][ T8645] bridge_slave_1: entered allmulticast mode
[  482.750913][ T8645] bridge_slave_1: entered promiscuous mode
[  483.007407][ T5847] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  483.048413][ T8645] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  483.120374][ T8645] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  483.184225][ T5847] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  483.196023][ T5847] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  483.206330][ T5847] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  483.220166][ T5847] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  483.229614][ T5847] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  483.508956][ T5847] usb 7-1: config 0 descriptor??
[  483.714903][ T8645] team0: Port device team_slave_0 added
[  483.737135][ T5791] Bluetooth: hci0: command tx timeout
[  483.799009][ T5847] plantronics 0003:047F:FFFF.0004: No inputs registered, leaving
[  483.853128][ T8645] team0: Port device team_slave_1 added
[  483.906298][ T5847] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  483.959929][ T8703] netlink: 60 bytes leftover after parsing attributes in process `syz.6.714'.
[  483.969455][ T8703] netlink: 60 bytes leftover after parsing attributes in process `syz.6.714'.
[  484.342534][ T5847] usb 7-1: USB disconnect, device number 9
[  484.450164][ T8716] vlan2: entered promiscuous mode
[  484.496006][ T8645] batman_adv: batadv0: Adding interface: batadv_slave_0
[  484.504063][ T8645] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  484.530284][    C1] vkms_vblank_simulate: vblank timer overrun
[  484.537159][ T8645] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  484.730598][ T8645] batman_adv: batadv0: Adding interface: batadv_slave_1
[  484.738327][ T8645] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  484.764579][    C1] vkms_vblank_simulate: vblank timer overrun
[  484.771369][ T8645] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  484.899128][ T8720] netlink: 'syz.3.719': attribute type 21 has an invalid length.
[  485.127554][ T5847] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  485.212050][ T8645] hsr_slave_0: entered promiscuous mode
[  485.227484][ T8645] hsr_slave_1: entered promiscuous mode
[  485.236700][ T8645] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  485.244475][ T8645] Cannot create hsr debugfs directory
[  485.280888][ T5847] usb 6-1: device descriptor read/64, error -71
[  485.820397][ T5791] Bluetooth: hci0: command tx timeout
[  486.208114][ T8733] loop6: detected capacity change from 0 to 32768
[  486.226358][ T5847] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  486.396314][ T5847] usb 6-1: device descriptor read/64, error -71
[  486.542104][ T8733] bcachefs (loop6): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=gzip,erasure_code,norecovery,nojournal_transaction_names,reconstruct_alloc,nocow
[  486.563513][ T8733] bcachefs (loop6): recovering from clean shutdown, journal seq 10
[  486.573116][ T8733] bcachefs (loop6): Version upgrade required:
[  486.573116][ T8733] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  486.573116][ T8733] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.20: directory_size
[  486.573116][ T8733]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  486.643499][    C1] vkms_vblank_simulate: vblank timer overrun
[  486.653203][ T8733] bcachefs (loop6): dropping and reconstructing all alloc info
[  486.664249][ T5847] usb usb6-port1: attempt power cycle
[  486.889666][ T8733] bcachefs (loop6): accounting_read... done
[  486.899182][ T8733] bcachefs (loop6): alloc_read... done
[  486.900432][ T8645] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  486.905028][ T8733] bcachefs (loop6): stripes_read... done
[  486.922415][ T8733] bcachefs (loop6): snapshots_read... done
[  486.947067][ T8733] bcachefs (loop6): done starting filesystem
[  487.097920][ T8733] syz.6.723 (8733) used greatest stack depth: 3960 bytes left
[  487.137427][ T4265] =====================================================
[  487.144744][ T4265] BUG: KMSAN: uninit-value in bch2_write_inode+0x9fa/0xf80
[  487.148403][ T8645] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  487.152795][ T4265]  bch2_write_inode+0x9fa/0xf80
[  487.163998][ T4265]  bch2_vfs_write_inode+0x8a/0x150
[  487.166378][ T5847] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  487.169328][ T4265]  __writeback_single_inode+0x8da/0x1290
[  487.182668][ T4265]  writeback_sb_inodes+0xac4/0x1c90
[  487.189446][ T4265]  wb_writeback+0x4df/0xcb0
[  487.194138][ T4265]  wb_workfn+0x40b/0x1940
[  487.200044][ T4265]  process_scheduled_works+0xae0/0x1c40
[  487.206990][ T4265]  worker_thread+0xea7/0x14f0
[  487.211885][ T4265]  kthread+0x6b9/0xef0
[  487.217523][ T4265]  ret_from_fork+0x6d/0x90
[  487.222109][ T4265]  ret_from_fork_asm+0x1a/0x30
[  487.224179][ T5847] usb 6-1: device descriptor read/8, error -71
[  487.227176][ T4265] 
[  487.227204][ T4265] Local variable io_opts.i117 created at:
[  487.227240][ T4265]  bch2_write_inode+0x696/0xf80
[  487.246745][ T4265]  bch2_vfs_write_inode+0x8a/0x150
[  487.252553][ T4265] 
[  487.254976][ T4265] CPU: 0 UID: 0 PID: 4265 Comm: kworker/u8:22 Not tainted 6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  487.267688][ T4265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  487.278447][ T4265] Workqueue: writeback wb_workfn (flush-bcachefs-7)
[  487.285278][ T4265] =====================================================
[  487.292448][ T4265] Disabling lock debugging due to kernel taint
[  487.298879][ T4265] Kernel panic - not syncing: kmsan.panic set ...
[  487.305539][ T4265] CPU: 0 UID: 0 PID: 4265 Comm: kworker/u8:22 Tainted: G    B              6.14.0-rc1-syzkaller-00020-g0de63bb7d919 #0
[  487.318159][ T4265] Tainted: [B]=BAD_PAGE
[  487.322413][ T4265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  487.332621][ T4265] Workqueue: writeback wb_workfn (flush-bcachefs-7)
[  487.339462][ T4265] Call Trace:
[  487.342844][ T4265]  <TASK>
[  487.345868][ T4265]  dump_stack_lvl+0x216/0x2d0
[  487.350697][ T4265]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  487.356687][ T4265]  dump_stack+0x1e/0x24
[  487.360978][ T4265]  panic+0x4e2/0xcf0
[  487.365069][ T4265]  ? kmsan_get_metadata+0xa1/0x1c0
[  487.370391][ T4265]  kmsan_report+0x2c7/0x2d0
[  487.375088][ T4265]  ? kmsan_get_metadata+0xa0/0x1c0
[  487.380397][ T4265]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  487.386490][ T4265]  ? __msan_warning+0x95/0x120
[  487.391425][ T4265]  ? bch2_write_inode+0x9fa/0xf80
[  487.396659][ T4265]  ? bch2_vfs_write_inode+0x8a/0x150
[  487.402115][ T4265]  ? __writeback_single_inode+0x8da/0x1290
[  487.408145][ T4265]  ? writeback_sb_inodes+0xac4/0x1c90
[  487.413708][ T4265]  ? wb_writeback+0x4df/0xcb0
[  487.418568][ T4265]  ? wb_workfn+0x40b/0x1940
[  487.423232][ T4265]  ? process_scheduled_works+0xae0/0x1c40
[  487.429152][ T4265]  ? worker_thread+0xea7/0x14f0
[  487.434208][ T4265]  ? kthread+0x6b9/0xef0
[  487.438601][ T4265]  ? ret_from_fork+0x6d/0x90
[  487.443355][ T4265]  ? ret_from_fork_asm+0x1a/0x30
[  487.448453][ T4265]  ? kmsan_get_metadata+0x13e/0x1c0
[  487.453827][ T4265]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[  487.460375][ T4265]  ? kmsan_get_metadata+0x13e/0x1c0
[  487.465744][ T4265]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  487.471813][ T4265]  ? kmsan_get_metadata+0x13e/0x1c0
[  487.477181][ T4265]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  487.483166][ T4265]  ? bch2_inode_opts_get+0xce3/0xe40
[  487.488656][ T4265]  ? kmsan_get_metadata+0x13e/0x1c0
[  487.494019][ T4265]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  487.500005][ T4265]  __msan_warning+0x95/0x120
[  487.504746][ T4265]  bch2_write_inode+0x9fa/0xf80
[  487.509805][ T4265]  ? __bch2_inode_peek+0x221/0x890
[  487.515112][ T4265]  ? kmsan_report+0x240/0x2d0
[  487.519953][ T4265]  ? __pfx_inode_update_times_fn+0x10/0x10
[  487.525966][ T4265]  bch2_vfs_write_inode+0x8a/0x150
[  487.531253][ T4265]  ? __pfx_bch2_vfs_write_inode+0x10/0x10
[  487.537148][ T4265]  __writeback_single_inode+0x8da/0x1290
[  487.542996][ T4265]  writeback_sb_inodes+0xac4/0x1c90
[  487.548451][ T4265]  ? kmsan_get_metadata+0x13e/0x1c0
[  487.553819][ T4265]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  487.559809][ T4265]  wb_writeback+0x4df/0xcb0
[  487.564532][ T4265]  ? queue_io+0x481/0x780
[  487.569085][ T4265]  wb_workfn+0x40b/0x1940
[  487.573603][ T4265]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  487.579622][ T4265]  ? __pfx_wb_workfn+0x10/0x10
[  487.584581][ T4265]  process_scheduled_works+0xae0/0x1c40
[  487.590385][ T4265]  worker_thread+0xea7/0x14f0
[  487.595296][ T4265]  kthread+0x6b9/0xef0
[  487.599523][ T4265]  ? __pfx_worker_thread+0x10/0x10
[  487.604845][ T4265]  ? __pfx_kthread+0x10/0x10
[  487.609590][ T4265]  ret_from_fork+0x6d/0x90
[  487.614176][ T4265]  ? __pfx_kthread+0x10/0x10
[  487.618951][ T4265]  ret_from_fork_asm+0x1a/0x30
[  487.623889][ T4265]  </TASK>
[  487.628244][ T4265] Kernel Offset: disabled
[  487.632637][ T4265] Rebooting in 86400 seconds..