last executing test programs:

4m28.222622139s ago: executing program 0 (id=1):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x41, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f00000000c0)={0x7f, 0x0, 0xffff, 0x99fe, 0x11, ')\x00'})
write$binfmt_aout(r0, &(0x7f0000000040)=ANY=[@ANYRESOCT=r0, @ANYRESDEC=r0, @ANYRES16=r0, @ANYRES8=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYRESHEX=r0], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000280)={0x0, 0x0, 0xfffffff9, 0x7fff, 0x16, "0062007d82000000000000002240f7ffffff00"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TCXONC(r0, 0x540a, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0x17)
r3 = socket$inet6_icmp(0xa, 0x2, 0x3a)
sendmsg$inet6(r3, &(0x7f0000000240)={&(0x7f0000000180)={0xa, 0x4e23, 0x1, @mcast2, 0x38a}, 0x1c, &(0x7f0000000b00)=[{&(0x7f0000000400)="80004b77efe55463", 0x8}], 0x1, &(0x7f00000002c0)=ANY=[@ANYBLOB="120000000000000029000000", @ANYRES8=r3], 0x30}, 0x4)

4m27.307775206s ago: executing program 0 (id=11):
r0 = syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000680)='./file0\x00', 0x12148c5, &(0x7f0000000a00)=ANY=[@ANYBLOB="757466383d302c74696d655f6f66667365743d30783030303030303030311884ab303330612c73686f72746e616d653d6d697865642c757466383d312c756e695f786d6174652a302c726f6469722c71756965742c756e695f786c6174653d312c73686f72746e616d653d6d697865642c73686f72746e616d653d6c6f7765722c646973636172642c73686f72746e616d653d77696e39352c726f6469722c757466383d312c00"], 0x0, 0x2ce, &(0x7f0000000700)="$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")
r1 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
ioctl$VFAT_IOCTL_READDIR_BOTH(r0, 0x82307201, &(0x7f00000002c0)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
r2 = socket(0xa, 0x5, 0x0)
sendmsg$inet_sctp(r2, &(0x7f0000000380)={&(0x7f00000000c0)=@in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000240)="af", 0x1}], 0x1, &(0x7f0000000580)=ANY=[@ANYBLOB="180000000000000084000006712f0debeeee311e7c700008000000f7ff07001c0b0000950fd6b46f5760f84039580f4e72097fedb416d6163b3fd103aca2f54c43d3f111259295890d7fbdc5aae9a43c326a2a16083590e09d16fe3d27f2f796daaac83aaf2dbdb6ec08e6080dde598a45093b00b012330f476b48e3cc2a165395d9b27072f1da5818d0af300c00094f49bb440b043c864286cf8a3d0db41a759097892c5f104162a1d04e34b3ece789708af38481ac7f2c5466e5bfe37a9a5c106ac2ed54a457f3989e7edd"], 0x18, 0x20000001}, 0x20008000)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2f, 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333406, 0x0)
lsetxattr$security_evm(&(0x7f0000000200)='./file0\x00', &(0x7f0000000ac0), &(0x7f0000000b00)=@ng={0x4, 0x6, "e2ebad89f70d68d746c6780e56e3"}, 0x10, 0x5)
inotify_add_watch(r1, &(0x7f0000000b40)='./file0\x00', 0x24000000)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005c48, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000006c0)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x6, [@const={0x8, 0x0, 0x0, 0xa, 0x1}]}, {0x0, [0x30, 0x2e, 0x30, 0x0]}}, &(0x7f0000000200), 0x2a, 0x0, 0x1, 0xc8a8}, 0x28)
read$FUSE(r1, &(0x7f0000004c40)={0x2020}, 0x2020)

4m26.061880053s ago: executing program 0 (id=14):
unshare(0x5a060800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
name_to_handle_at(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', &(0x7f000001b2c0)=ANY=[@ANYBLOB="1000080002"], &(0x7f0000000440), 0x200)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000000)=0x2, 0x4)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f0000000400)=0x1, 0xa)
connect$inet(r1, &(0x7f00000002c0)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x58}}, 0x10)
sendto(r1, &(0x7f0000000140)='A', 0xfffff, 0x40008c1, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x10000000000000)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000002000)=""/102400, 0x19000)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000003c0)={'ip6tnl0\x00', 0x0})
pipe2$watch_queue(0x0, 0x80)
unshare(0x8000000)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
bpf$MAP_CREATE(0x0, 0x0, 0x50)
socket$inet(0x2, 0x80001, 0x84)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000340)={[{@nombcache}, {@stripe={'stripe', 0x3d, 0xdc}}, {@nomblk_io_submit}, {@noload}, {@abort}, {}]}, 0x1, 0x459, &(0x7f00000004c0)="$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")

4m24.988109393s ago: executing program 0 (id=15):
sched_setscheduler(0x0, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x200840, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x5, 0x4445, &(0x7f000000cd00)="$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")
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804071, 0x0, 0x1, 0x0, &(0x7f0000000000))
sched_setscheduler(0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x78)
kexec_load(0x0, 0x0, &(0x7f0000000340), 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r4, 0x0, r6, 0x0, 0x6, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r7, &(0x7f0000000280)=ANY=[], 0x10448)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r7, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
close(r5)
write(r3, 0x0, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x100000d, 0x6031, 0xffffffffffffffff, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_buf(r8, 0x29, 0x4, 0xfffffffffffffffd, &(0x7f00000000c0)=0xfffffecb)

4m23.992006913s ago: executing program 32 (id=15):
sched_setscheduler(0x0, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x200840, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x5, 0x4445, &(0x7f000000cd00)="$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")
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x804071, 0x0, 0x1, 0x0, &(0x7f0000000000))
sched_setscheduler(0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x78)
kexec_load(0x0, 0x0, &(0x7f0000000340), 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r4, 0x0, r6, 0x0, 0x6, 0x0)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r7, &(0x7f0000000280)=ANY=[], 0x10448)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r7, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
close(r5)
write(r3, 0x0, 0x0)
mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x100000d, 0x6031, 0xffffffffffffffff, 0x0)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_buf(r8, 0x29, 0x4, 0xfffffffffffffffd, &(0x7f00000000c0)=0xfffffecb)

4m1.391921506s ago: executing program 4 (id=72):
r0 = socket$kcm(0x2, 0x3, 0x2)
sendmsg$inet(r0, &(0x7f0000000100)={&(0x7f00000004c0)={0x2, 0x4e24, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000003a00)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev={0xac, 0x14, 0x14, 0x2a}, @multicast2}}}], 0x20}, 0x48000)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x7, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000000)=@ccm_128={{0x304}, "0457b3bf87c2db32", "a9df7ccffde8899f914d4f2c3e263509", "3c36a51c", "74910800b6b15e11"}, 0x28)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000040)=0x3, 0xac5)
syz_clone3(&(0x7f0000000900)={0x23800000, &(0x7f0000000040)=<r2=>0xffffffffffffffff, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_submit(0x0, 0x1, &(0x7f0000001300)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x6, r2, 0x0}])
sendmsg$inet(r0, &(0x7f0000000500)={&(0x7f0000000080)={0x2, 0x0, @local}, 0x10, 0x0}, 0x0)

4m0.36650899s ago: executing program 4 (id=74):
unshare(0x28000600)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r0, &(0x7f0000000340)={0x0, 0x3c, &(0x7f0000000300)={&(0x7f0000000280)={0x2c, r1, 0x100, 0x70bd27, 0x25dfd9fd, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_SEC_LEVEL={0xc, 0x2d, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_LEVELS={0x5, 0x1, 0x1}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x20000084)
r2 = fsopen(&(0x7f0000000040)='btrfs\x00', 0x0)
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000280)={0x0, 0x80000000, 0xfffffffc, 0x5b50, 0xffffffff, 0xfffc})
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000000), 0x4)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000000)={0x0, 0xb007}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r2, 0x0, 0x8e)
unshare(0x8000280)
openat(r5, &(0x7f0000000100)='./file1\x00', 0x189042, 0x1a0)

3m59.974035065s ago: executing program 4 (id=76):
timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x2}, &(0x7f0000000b80)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
pipe2(&(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x80000)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
splice(r1, 0x0, r2, 0x0, 0x6, 0xc) (fail_nth: 1)

3m59.718976605s ago: executing program 4 (id=78):
syz_mount_image$iso9660(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x804818, &(0x7f0000000100)={[{@utf8}, {@check_strict}, {@hide}, {@iocharset={'iocharset', 0x3d, 'macgreek'}}, {}, {@check_relaxed}, {@check_relaxed}, {@nocompress}]}, 0x2, 0x553, &(0x7f0000001080)="$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")
r0 = landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3, 0x3}, 0x18, 0x0)
landlock_restrict_self(r0, 0x9)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000000300)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
syz_open_dev$vcsu(&(0x7f0000000400), 0x9, 0x2)
io_uring_setup(0x309d, &(0x7f0000000440)={0x0, 0x9d42, 0x100, 0x40000, 0x3b7})
r3 = creat(&(0x7f00000000c0)='./file0\x00', 0x58)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_KEY(r3, &(0x7f00000003c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000240)={0x20, r4, 0x200, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x0)
connect$unix(r2, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
open_by_handle_at(0xffffffffffffff9c, &(0x7f0000000180)=ANY=[@ANYBLOB="20000000020000001d"], 0x0)

3m58.999248549s ago: executing program 4 (id=79):
syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000280)='./file0\x00', 0x8d0, &(0x7f0000000180)=ANY=[@ANYBLOB="7379735f696d6d757461626c652c00a99176bffea999ec4947785a4b3392b470a878b010acc5fde3f7c39533b111d92aa1e3cd9504b4aec083a038cd1b944d504716e6b8463de9dc9743fbe9e0ef9396a932024b904283205650ea735ae7adac50b5efe5244d737dc9515a51775b2fafbc85c9c1c8f62872a466192aae714a90990e0b07aa2b92e463ad98"], 0x1, 0x25f, &(0x7f0000000840)="$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")
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={0x0, 0x0, 0x0}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0xd, &(0x7f0000000180)=@assoc_value, &(0x7f0000000240)=0x8)

3m58.445892023s ago: executing program 4 (id=84):
unshare(0x400)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x842, 0x22)
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000100)=0x3)
ioctl$FUSE_DEV_IOC_BACKING_CLOSE(r0, 0x4004e502, &(0x7f00000000c0)=0x5)
syz_mount_image$fuse(0x0, &(0x7f0000000140)='./bus\x00', 0x100688d, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x200)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000500)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
syz_mount_image$fuse(0x0, &(0x7f0000000340)='./file1\x00', 0x8028c7, 0x0, 0x0, 0x0, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000400)='./file0/file1\x00', 0x0, 0x81)
syz_mount_image$fuse(0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0)
r2 = socket(0xa, 0x3, 0x87)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000300)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
sendto(r2, &(0x7f00000003c0)="e1118ce4769b", 0xfdef, 0x800, &(0x7f0000000600)=@l2tp6={0xa, 0x0, 0x7, @local, 0x5}, 0x80)
syz_mount_image$exfat(&(0x7f00000009c0), &(0x7f0000000100)='./file1\x00', 0x800800, &(0x7f00000002c0)={[{@uid={'uid', 0x3d, 0xee01}}, {@iocharset={'iocharset', 0x3d, 'cp862'}}, {@sys_tz}, {@zero_size_dir}, {@umask={'umask', 0x3d, 0x5}}, {@errors_continue}, {@keep_last_dots}, {@fmask={'fmask', 0x3d, 0x3c}}, {@errors_continue}, {@sys_tz}]}, 0x1, 0x1541, &(0x7f0000001f40)="$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")
utimensat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)={{0x77359400}, {0x0, 0x3fffffff}}, 0x0)
fsync(r1)
r4 = socket(0x15, 0x800, 0x1)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, r4}, './file0\x00'})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000020000000000000002000084ffffffff000000000300000000000000000000000200000000000000000000000000000a03000000000000000000001302"], 0x0, 0x56}, 0x20)
syz_genetlink_get_family_id$nl802154(&(0x7f0000002f00), 0xffffffffffffffff)

3m43.06283204s ago: executing program 33 (id=84):
unshare(0x400)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x842, 0x22)
ioctl$FIBMAP(r0, 0x1, &(0x7f0000000100)=0x3)
ioctl$FUSE_DEV_IOC_BACKING_CLOSE(r0, 0x4004e502, &(0x7f00000000c0)=0x5)
syz_mount_image$fuse(0x0, &(0x7f0000000140)='./bus\x00', 0x100688d, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x200)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000500)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
syz_mount_image$fuse(0x0, &(0x7f0000000340)='./file1\x00', 0x8028c7, 0x0, 0x0, 0x0, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000400)='./file0/file1\x00', 0x0, 0x81)
syz_mount_image$fuse(0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0)
r2 = socket(0xa, 0x3, 0x87)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000300)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
sendto(r2, &(0x7f00000003c0)="e1118ce4769b", 0xfdef, 0x800, &(0x7f0000000600)=@l2tp6={0xa, 0x0, 0x7, @local, 0x5}, 0x80)
syz_mount_image$exfat(&(0x7f00000009c0), &(0x7f0000000100)='./file1\x00', 0x800800, &(0x7f00000002c0)={[{@uid={'uid', 0x3d, 0xee01}}, {@iocharset={'iocharset', 0x3d, 'cp862'}}, {@sys_tz}, {@zero_size_dir}, {@umask={'umask', 0x3d, 0x5}}, {@errors_continue}, {@keep_last_dots}, {@fmask={'fmask', 0x3d, 0x3c}}, {@errors_continue}, {@sys_tz}]}, 0x1, 0x1541, &(0x7f0000001f40)="$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")
utimensat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000100)={{0x77359400}, {0x0, 0x3fffffff}}, 0x0)
fsync(r1)
r4 = socket(0x15, 0x800, 0x1)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, r4}, './file0\x00'})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c000000020000000000000002000084ffffffff000000000300000000000000000000000200000000000000000000000000000a03000000000000000000001302"], 0x0, 0x56}, 0x20)
syz_genetlink_get_family_id$nl802154(&(0x7f0000002f00), 0xffffffffffffffff)

2m30.236856703s ago: executing program 3 (id=257):
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x4b, 0x0, 0xad)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x9, &(0x7f0000000200), 0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = open(0x0, 0x4c27e, 0x4)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000880)={0xb0, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000100)={@fda={0x66646185, 0x5, 0x0, 0x20}, @fda={0x66646185, 0x7, 0x0, 0x15}, @flat=@handle={0x73682a85, 0x1101, 0x2}}, &(0x7f0000000440)={0x0, 0x20, 0x40}}}, @decrefs={0x40046307, 0x2}, @clear_death={0x400c630f, 0x3}, @reply_sg={0x40486312, {0x1, 0x0, 0x0, 0x0, 0xe00cea222b735173, 0x0, 0x0, 0x0, 0x18, 0x0, &(0x7f0000000700)={0x30, 0x30, 0x30}}, 0x400}], 0x0, 0x0, 0x0})
r1 = syz_open_dev$radio(&(0x7f00000000c0), 0xffffffffffffffff, 0x2)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
userfaultfd(0x80001)
openat$adsp1(0xffffffffffffff9c, 0x0, 0xa0301, 0x0)
r3 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r3, 0x107, 0x5, 0x0, 0x0)
syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000020940)=ANY=[@ANYRES64=0x0, @ANYRES64=r1, @ANYRES16, @ANYRES16, @ANYRES8=r3, @ANYRES16], 0x1, 0x186, &(0x7f0000000280)="$eJzskL9O+lAUx7+3lP7gNxhJnFgg0SiL0hY1xkVH3H0ASa1IBP9QEoUw1Bjj4GAcnR14AF/AxBfQwRBnNxMGJieDufeelguv4P0MPT3nfs/fw+As+AfgZ9j1sA1BAjN4YwwmgByTsYEh7T3Zd7J30uCVdDsUvyKbDdqdo0q97jfzm3lkxoER+x5JgFgTbF0aSIvE/rDr8Zp7AKQK2Ae+MgAMDFikSXyYQh9psiYwJ5YYxRqu4M4SgGKrcVoM2p3lWqNS9av+seuW1u1V215ziwe1um/Lr0V78XSxCu3D4fdKKyMkAVzT2396j2DKaPRugecmAAy7nqXcsDA/zlPaTazH8Bz3jfrwUrtYRArAecjG0b6sZEKsVAbvKh3HVOYDUjCQEg8r3klShFmU1oMZ13A+kYwdV3VKG2E06g3ZBbJlsr2p1XLWZMAUFW7JK4TRiE2HCy8qrVbT4dcTf24cc2dDPD3GhXjXB0NdDniZvqZGo9FoNBqNRqPR/D1+AwAA///uCnnp") (fail_nth: 1)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
getdents(r4, 0x0, 0x58)

2m27.777386915s ago: executing program 3 (id=262):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000001fd8)=@framed={{0xffffffb7, 0x0, 0x0, 0x0, 0x0, 0x7d}, [@ldst={0x4, 0x0, 0x4, 0xa}]}, &(0x7f0000003ff6)='GPL\x00', 0x1, 0xb579, &(0x7f000000cf3d)=""/195}, 0x32)

2m27.390536067s ago: executing program 3 (id=264):
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000000)={0xfc, {"fce3ad0eed0d07f91b50091887f70706d038e7ff7fc6e5539b0d3c0a8b089b3f353163030890e0879b0af8c6e70a9b334a959b669a240d0a0af3988f7ef319520100ffe8d178708c523c921b1b233107200773090acd3b78130daa61d8e8040040005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bde7095d6a345badc56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a91e0dad47f36fd9f73c152a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76ea0270e4c10d64cd5a62427264f2377fe763c434708337c8de98f371bb943a8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa7ea5677747430af4162b987b80c3e001cd34e1c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df11847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e30400f7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad046581927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fc83c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad83872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddba02635478d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f79400000000ddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df04b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e785419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02b7fa64b6de3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd502ac8044ae185d2ba300004e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f08df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88e4facfd4c735a20307c737afa2d60399473296b831dbd933d93990f00064279b10ea0c5833f41f157ea2302993dbe97fb1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea10c00a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeee964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac3fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2102596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e42df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed62480ec43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e069160f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df076f0ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f87296ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb90372927db6ff959c0837d2e7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef869c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d050000008926407a4eddd5d0fc5a752f900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000023dd0000000400", 0x1000}}, 0x1006)
r0 = syz_io_uring_setup(0x110, &(0x7f0000000380)={0x0, 0x1000adb, 0x8, 0x5, 0x8000080}, &(0x7f0000000400), &(0x7f0000000000), &(0x7f0000000000))
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
io_uring_register$IORING_REGISTER_NAPI(r0, 0x1b, &(0x7f0000000040)={0x0, 0x40}, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000001fd8)=@framed={{0xffffffb7, 0x0, 0x0, 0x0, 0x0, 0x7d}, [@ldst={0x4, 0x0, 0x4, 0xa}]}, &(0x7f0000003ff6)='GPL\x00', 0x1, 0xb579, &(0x7f000000cf3d)=""/195}, 0x32)
r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='ns\x00')
getdents(r1, &(0x7f0000000f40)=""/243, 0xf3)
getsockopt$inet_sctp_SCTP_GET_ASSOC_NUMBER(r1, 0x84, 0x1c, &(0x7f0000001040), &(0x7f0000001080)=0x4)

2m26.740412245s ago: executing program 3 (id=265):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$TIOCL_BLANKSCREEN(r0, 0x560e, &(0x7f0000000000))
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b400000000000000791048000000000091042b000000000095000072"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="280100002f00010000"], 0x128}], 0x1, 0x0, 0x0, 0x1}, 0x0)
r2 = socket(0x1e, 0x4, 0x0)
setsockopt$sock_int(r2, 0x1, 0x2e, &(0x7f0000000040)=0x3, 0x4)
r3 = fsopen(&(0x7f0000000040)='ramfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = fsmount(r3, 0x1, 0x0)
close(r2)
fchdir(r4)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x559203, 0x55)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x200)

2m24.859265512s ago: executing program 3 (id=270):
clock_nanosleep(0x7, 0x0, &(0x7f0000000080)={0x0, 0x3938700}, 0x0)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000080)='./binderfs/binder0\x00', 0x802, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = epoll_create1(0x0)
epoll_wait(r3, &(0x7f0000000340)=[{}], 0x1, 0x80000000)
ioctl$KDSKBMETA(r2, 0x4b63, &(0x7f0000000040)=0x4)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000000)={0xc0002003})

2m24.008116849s ago: executing program 3 (id=273):
syz_mount_image$erofs(&(0x7f0000000040), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f00000000c0)=ANY=[@ANYRES16=0x0, @ANYRESOCT, @ANYRESHEX, @ANYRESOCT=0x0], 0x5, 0x191, &(0x7f00000003c0)="$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")
prlimit64(0x0, 0xe, &(0x7f00000003c0)={0x6, 0x4000000007}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, 0x0, 0x804)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x2)
mount(&(0x7f0000000000)=@loop={'/dev/loop', 0x0}, &(0x7f00000002c0)='.\x00', &(0x7f0000000040)='ntfs3\x00', 0x218800, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = getpgrp(0xffffffffffffffff)
process_vm_writev(r1, &(0x7f0000000980)=[{&(0x7f0000000300)=""/93, 0x5d}, {&(0x7f0000000580)=""/44, 0x2c}, {&(0x7f0000000680)=""/206, 0xce}, {&(0x7f0000000780)=""/177, 0xb1}, {&(0x7f0000000840)=""/41, 0x29}, {&(0x7f0000000880)=""/25, 0x19}, {&(0x7f00000008c0)=""/155, 0x9b}], 0x7, &(0x7f0000000ac0)=[{&(0x7f0000000a00)=""/15, 0xf}, {&(0x7f0000000a40)}, {&(0x7f0000000a80)=""/45, 0x2d}], 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)=ANY=[@ANYBLOB="240000001e000100000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="0000d640061a05e90bc64e00000b7b3ef3872b1c591b4caa90d87b74a026459ff81b2d77cf1d5e4485a4b3a8326299f77f4cd97047e455787ca0a5aabe8972c25b77791a3ba201e4a9d289c952028e42d83fd62a2a3171ba0e95d99ab96f686d2d4991e7a898a9"], 0x24}}, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x80049367, &(0x7f0000000240))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f0000000080), 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a70000000002c000000030a010100000000000000000100000009000073797a32000000000900010073797a300000000050000000060a010400000000000090613db7a860d1470b40000000000900010073797a30000000002800048024000180090001006d65746100000000140002800800014000000014080002400000001814000000113a55632ff12208d30000000000000a"], 0xc4}, 0x1, 0x0, 0x0, 0x8815}, 0x24000004)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x14022, 0x0, 0x0, 0x0, 0x0)
r4 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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")
ioctl$EXT4_IOC_GROUP_ADD(r4, 0x40e8662e, &(0x7f00000000c0)={0x43a0, 0x100000000, 0x7ffffffffff00002, 0x1, 0xffffdeff})
syz_mount_image$fuse(0x0, &(0x7f0000000000)='./bus\x00', 0x30040a9, 0x0, 0xf, 0x0, 0x0)
mount$bind(&(0x7f0000000380)='./bus\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
r5 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r5, &(0x7f0000000140)='.\x00', r5, &(0x7f0000000180)='./file0\x00', 0x140)
socket$inet6(0xa, 0x2, 0x0)
mount$9p_fd(0x0, &(0x7f0000000140)='./file2/file0\x00', 0x0, 0x840, 0x0)
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001300)=@newtfilter={0xed4, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r8, {0x1, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0xea0, 0x2, [@TCA_MATCHALL_ACT={0xe9c, 0x2, [@m_pedit={0xe98, 0x1, 0x0, 0x0, {{0xa}, {0xe6c, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe68, 0x4, {{{0x5, 0x0, 0x6, 0x0, 0x2}, 0x10, 0xff, [{0x800, 0x9, 0x80000001, 0x9, 0x4, 0x7}, {0xb8, 0x5, 0x6, 0x6, 0x57, 0xe2}, {0x0, 0x3, 0x8, 0x0, 0x3, 0x5}]}, [{0x4, 0xfff, 0x100, 0x7, 0x8, 0x1b2b}, {0x6, 0x7, 0x8c, 0x4, 0x0, 0x6}, {0x7, 0xffffffff, 0x10000, 0x1, 0x6, 0x1}, {0xffffffff, 0x8, 0x7, 0x6, 0x2}, {0x0, 0x9a, 0x8, 0x6, 0x0, 0x9}, {0x5, 0x4, 0x3, 0x101, 0x7}, {0x47, 0xfffffff8, 0x7, 0x100, 0xc, 0x401}, {0xc5, 0x0, 0x5, 0x7, 0x3, 0x7fff}, {0x6, 0x9, 0x4000000, 0x5, 0xa057, 0x3ff}, {0x1, 0x6, 0x8, 0x5, 0x2, 0x8e}, {0xfffffffb, 0x7, 0xfff, 0x8, 0xffffff85, 0x4}, {0x6, 0x9, 0x4, 0x0, 0x7, 0x4}, {0x81, 0x80000001, 0x9, 0x43a, 0x8, 0x1000}, {0x7, 0xa, 0x1, 0x2, 0x0, 0xf}, {0xf, 0x401, 0xf0, 0x9, 0xffff, 0x4}, {0x7fffffff, 0x7, 0x5, 0x0, 0x7ff, 0x7}, {0x92, 0x9, 0x6, 0xe, 0xc3, 0xb}, {0x9, 0x9, 0x2, 0x1, 0x5, 0x400}, {0x4, 0xcc, 0x300000, 0x4, 0x3, 0x7}, {0x4, 0xffffffff, 0x9, 0x9, 0x3, 0xf}, {0x9, 0x8, 0x1, 0xa0, 0x468, 0x400}, {0xffffffff, 0xfffffff9, 0x0, 0x2c, 0x7fffffff, 0x8001}, {0x5, 0x8001, 0x8e27, 0x8, 0x2000000, 0x2}, {0x4, 0x4, 0x3, 0x9, 0x8, 0xeb43}, {0xb, 0x5, 0x401, 0x56, 0xcb7}, {0xef, 0x3, 0x1, 0x8001, 0x7fffffff}, {0x0, 0x10, 0xdaf1, 0x1, 0x1, 0x2}, {0xffff, 0x9, 0x3fed, 0x1, 0x80000000, 0x5}, {0xfffffff8, 0x81, 0x5, 0xfffffffe, 0x3, 0x4}, {0x1, 0x91, 0x800, 0x7, 0x5, 0xf}, {0x4, 0x2, 0xff6f, 0xe, 0xfffffffe, 0x4}, {0x53, 0x4, 0x401, 0x8, 0x5, 0x9}, {0x10001, 0xee, 0xaea, 0xfffffffe, 0x76be, 0x8}, {0x1000, 0x4, 0xd5b, 0x4, 0xe, 0x3ff}, {0x5, 0xed, 0x9, 0x3ff, 0x200, 0xffffffff}, {0x2, 0xff33, 0x9, 0x0, 0x0, 0x66d2}, {0x2a, 0xf2, 0x5, 0x1, 0xc7, 0xfffff3d6}, {0x2dc57e6, 0x5, 0x8, 0x0, 0x7, 0xfffffffc}, {0x51, 0x2, 0x8, 0x8, 0x3, 0x6}, {0x0, 0x101c, 0x40, 0x4, 0x8001, 0xc}, {0x54b, 0x7, 0xf51, 0x0, 0x9, 0x2}, {0xffffffff, 0x2, 0xfffffffc, 0x6, 0x5, 0xe}, {0x5, 0x5ed4f39, 0x0, 0x7ff, 0x81, 0xfffffff8}, {0xbe4, 0xffffffff, 0x6, 0xd4a, 0x7ff}, {0x0, 0x9, 0x8, 0xfff, 0x3, 0x4}, {0xda, 0x0, 0x2, 0x3, 0xfffff1fb}, {0xffffff42, 0x81c, 0x9, 0x3, 0x8, 0x1}, {0x3, 0xfffffff8, 0x8, 0x4, 0x54, 0x200}, {0x9, 0x8, 0x1ff, 0x52800, 0x80, 0x1}, {0x0, 0x5, 0xe8, 0x2, 0x0, 0x1}, {0x7, 0xffffff01, 0x1000, 0x8, 0x0, 0x7}, {0x4, 0x80, 0xc00, 0x200, 0x3, 0xfffffffc}, {0x1000, 0x3, 0x1, 0xff, 0xffff, 0x80000000}, {0xfffffffc, 0x2, 0x40, 0x8, 0xcb87, 0x45b5}, {0x4, 0x0, 0xc09, 0x1, 0x8, 0x7ff}, {0x401, 0x2, 0x9, 0x678, 0x6c, 0xffff}, {0xfffffffe, 0x4, 0x4, 0xfffffffe, 0x3ff, 0xf}, {0x100, 0x2, 0x9, 0x2, 0x6, 0x5b8b}, {0x4, 0xfffffffb, 0x24, 0x5, 0x31c1, 0x2}, {0x6, 0x6, 0x1e1c, 0x4, 0x6, 0x1ff}, {0x1, 0x4, 0x4, 0xd1bd, 0x0, 0x5}, {0x4, 0xfffffffa, 0xfffffffb, 0x7, 0x101, 0x1}, {0x8, 0x7, 0xd2, 0xff, 0x3, 0xcc7e}, {0x7, 0x3, 0xd65c, 0x1, 0x8, 0x4}, {0x2, 0x40, 0x9, 0x5, 0x7}, {0x858, 0xfff, 0x200, 0x9, 0x7ff, 0x9}, {0x4c07e81, 0x8a55, 0x35a, 0x3, 0xffff, 0x10001}, {0x3, 0x3, 0x0, 0x3, 0x8}, {0x2, 0x10001, 0x60000, 0x7, 0x7, 0x9}, {0x4, 0x863a, 0xffffffff, 0x7fffffff, 0x7f, 0x8}, {0x3, 0x1, 0x8, 0x98a, 0x9, 0x89}, {0x3, 0x2, 0x40, 0x9, 0x7, 0x8}, {0x4, 0x6, 0x6, 0x6, 0x3}, {0x4c, 0x0, 0x1, 0x8, 0x80000001, 0xfffffffe}, {0x3, 0x9, 0x9, 0x40, 0x80, 0x12a2}, {0x80000000, 0x1, 0x100, 0x800, 0x3, 0x8baf}, {0x2, 0xc, 0x8, 0x80000000, 0xb8, 0x60f}, {0x3, 0x5, 0x6, 0x5380, 0x7f, 0x7517}, {0x647, 0xffffffdc, 0x4, 0xffff, 0x1, 0x401}, {0xfffffff8, 0xa29, 0xf, 0x3, 0x5, 0xffff2f56}, {0x200, 0x8, 0x3b6, 0x9, 0x100, 0x7}, {0x2, 0x4, 0x81, 0x4, 0x80, 0x1}, {0x5, 0x21e7, 0xa8a5, 0x7ff, 0x6, 0xd}, {0x13, 0x7fffffff, 0x6, 0x5696cd1, 0x4a, 0x6}, {0x9, 0x1000000, 0x0, 0xfff}, {0x5, 0x40, 0xc05, 0x5, 0x8, 0x2}, {0x3, 0x6, 0x5, 0x6, 0xb, 0x8}, {0x400, 0x80000000, 0x101, 0xbe, 0x8, 0x9}, {0xb, 0xf9, 0xfffffff7, 0x0, 0x9}, {0x1e9e, 0x0, 0xb8e, 0x9, 0x9, 0xfff}, {0x3, 0x6, 0x24ab, 0x6, 0x1, 0x1}, {0x1, 0x9, 0x3, 0xa0000, 0x5, 0x8}, {0x0, 0xee5, 0x0, 0x5, 0x27, 0x8}, {0xfffffffc, 0x8e7, 0x7, 0x3ff, 0x5, 0x1}, {0x400, 0x10000, 0x4, 0x3, 0x9}, {0x4, 0x4, 0x9, 0x4, 0x0, 0x800}, {0x2, 0x1, 0x74, 0xfffffff9, 0x1, 0x5}, {0x3, 0x1fe0, 0x8, 0x8, 0x3, 0x2}, {0x6, 0x81, 0x700, 0x1, 0x7, 0x9}, {0x4, 0xa, 0x2, 0x3, 0x4000, 0x7}, {0xd, 0x2, 0x0, 0x3, 0x0, 0x5}, {0x10001, 0x7fff, 0x4, 0x9, 0x4, 0x400}, {0x7, 0x6, 0x5, 0x8, 0x20, 0x7ae2}, {0x5, 0x9, 0x1, 0x80000001, 0xd1, 0xffffff80}, {0x9, 0x81, 0x242, 0x7}, {0x9a, 0x0, 0x2, 0xd3ef, 0x9, 0x3}, {0x6, 0x7fff, 0xd6f, 0x7fffffff, 0xb2f8, 0x81}, {0x2, 0x3, 0x0, 0x12b, 0x5, 0xffffff80}, {0x7edc, 0x44cf, 0x9, 0x7ff, 0x7, 0x8}, {0x0, 0x46, 0x80, 0x7fffffff, 0x7, 0x9566}, {0x5, 0x5, 0x8, 0xfffff8de, 0x2, 0x6}, {0x1, 0x2, 0xe, 0x37, 0x2, 0x10}, {0x3, 0xc0, 0xa, 0x1, 0x7, 0x9}, {0x4d5, 0x0, 0x1, 0x0, 0x3, 0x3}, {0x180127ed, 0x45, 0x6, 0x52, 0x6, 0xfffffff3}, {0xfffffffb, 0x9, 0x4, 0x3, 0x8000}, {0xfffffff9, 0xffff932d, 0x101, 0x3, 0x10000, 0x2}, {0x1000, 0x200, 0x5901, 0x8, 0x724, 0x2d3}, {0xfffffff7, 0x1, 0xfffffff8, 0x1, 0x30, 0x8}, {0x0, 0x8, 0x3, 0x3, 0x1, 0xd453}, {0x5, 0x4, 0x1, 0x7, 0x2, 0x8001}, {0x878b, 0xfffffff9, 0x2, 0x73fe, 0x0, 0x9}, {0x4c735734, 0x5, 0xfffff8dc, 0x4, 0x5, 0x3}, {0x5af8, 0x8, 0x5, 0x5, 0x2, 0xd}, {0x2, 0x1, 0x1, 0x3ff, 0x8}, {0x0, 0xc, 0x80, 0x9, 0x6, 0xfffffffc}, {0x1, 0x1ff, 0x9, 0xf0000000, 0xad82, 0xfed}, {0x8, 0x4e9, 0x7f, 0x6, 0xffff, 0x5}], [{0x1, 0x1}, {0x2, 0x1}, {0x3}, {0x2}, {0x0, 0x1}, {0x1, 0x1}, {0x2}, {0x5}, {0x4, 0x1}, {0x2, 0x1}, {0x3}, {0x0, 0x1}, {0x1, 0x1}, {0x1}, {0x2, 0x1}, {0x7}, {0x3}, {0x0, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {}, {0x0, 0x1}, {0x2}, {0x5, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {}, {}, {0x5, 0x1}, {0x2}, {0x6c920e8d29de5635, 0x1}, {0x5, 0x1}, {0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x5}, {0x0, 0x1}, {0x3}, {0x5}, {0x2}, {0x5, 0x1}, {0x438236dffaa15198}, {0x1, 0x1}, {0x5, 0x1}, {0x3, 0x5fa8a67979573ac}, {0x3, 0x1}, {}, {0x5, 0x1}, {0x5}, {0x4}, {0x4, 0x1}, {}, {0x0, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x1}, {0x5}, {}, {0x6, 0x1}, {0x3}, {0x2, 0x1}, {0x1}, {0x1}, {0x5}, {0x0, 0x1}, {0x5}, {0x5, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x6}, {0x5}, {0x5, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x3}, {0x3, 0x1}, {0x5}, {0x3}, {0x4, 0x1}, {0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x5}, {0x4}, {0x1, 0x1}, {0x5}, {0x2}, {0x4, 0x1}, {0x1, 0x1}, {0x5}, {0x1, 0x1}, {0x5, 0x3}, {0x2}, {0x7}, {0x3}, {0x2}, {0x3}, {0x3}, {0x5, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x6, 0x1}, {0x5, 0x1}, {0x1, 0x1}, {0x5}, {0x5, 0x1}, {0x4}, {}, {0x3}, {}, {0x1}, {0x2, 0x1}, {0x4}, {0x4, 0x1}, {0x0, 0x1}, {0x1}, {0x2}, {}, {0x4}, {0x2}], 0x1}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}}]}, 0xed4}, 0x1, 0x0, 0x0, 0x10}, 0x0)
setsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000b00)={{{@in6=@loopback, @in6=@private2, 0x4e24, 0x3, 0x4e21, 0x5, 0xa, 0xa0, 0x20, 0x67, r8}, {0x80000000, 0x7, 0x5, 0x5bbd, 0xb, 0x7, 0x68b, 0x7cb3}, {0x3, 0x2, 0x4, 0x8080}, 0xffffffff, 0x6e6bbb, 0x2, 0x1, 0x2, 0x3}, {{@in6=@dev={0xfe, 0x80, '\x00', 0x30}, 0x4d5, 0x32}, 0x2, @in=@multicast1, 0x0, 0x1, 0x0, 0x8, 0x3, 0x8, 0x2}}, 0xe8)

2m8.702024076s ago: executing program 34 (id=273):
syz_mount_image$erofs(&(0x7f0000000040), &(0x7f00000001c0)='./file2\x00', 0x0, &(0x7f00000000c0)=ANY=[@ANYRES16=0x0, @ANYRESOCT, @ANYRESHEX, @ANYRESOCT=0x0], 0x5, 0x191, &(0x7f00000003c0)="$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")
prlimit64(0x0, 0xe, &(0x7f00000003c0)={0x6, 0x4000000007}, 0x0)
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, 0x0, 0x804)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x2)
mount(&(0x7f0000000000)=@loop={'/dev/loop', 0x0}, &(0x7f00000002c0)='.\x00', &(0x7f0000000040)='ntfs3\x00', 0x218800, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = getpgrp(0xffffffffffffffff)
process_vm_writev(r1, &(0x7f0000000980)=[{&(0x7f0000000300)=""/93, 0x5d}, {&(0x7f0000000580)=""/44, 0x2c}, {&(0x7f0000000680)=""/206, 0xce}, {&(0x7f0000000780)=""/177, 0xb1}, {&(0x7f0000000840)=""/41, 0x29}, {&(0x7f0000000880)=""/25, 0x19}, {&(0x7f00000008c0)=""/155, 0x9b}], 0x7, &(0x7f0000000ac0)=[{&(0x7f0000000a00)=""/15, 0xf}, {&(0x7f0000000a40)}, {&(0x7f0000000a80)=""/45, 0x2d}], 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)=ANY=[@ANYBLOB="240000001e000100000000000000000007000000", @ANYRES32=0x0, @ANYBLOB="0000d640061a05e90bc64e00000b7b3ef3872b1c591b4caa90d87b74a026459ff81b2d77cf1d5e4485a4b3a8326299f77f4cd97047e455787ca0a5aabe8972c25b77791a3ba201e4a9d289c952028e42d83fd62a2a3171ba0e95d99ab96f686d2d4991e7a898a9"], 0x24}}, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x80049367, &(0x7f0000000240))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f0000000080), 0x0, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a70000000002c000000030a010100000000000000000100000009000073797a32000000000900010073797a300000000050000000060a010400000000000090613db7a860d1470b40000000000900010073797a30000000002800048024000180090001006d65746100000000140002800800014000000014080002400000001814000000113a55632ff12208d30000000000000a"], 0xc4}, 0x1, 0x0, 0x0, 0x8815}, 0x24000004)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x14022, 0x0, 0x0, 0x0, 0x0)
r4 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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")
ioctl$EXT4_IOC_GROUP_ADD(r4, 0x40e8662e, &(0x7f00000000c0)={0x43a0, 0x100000000, 0x7ffffffffff00002, 0x1, 0xffffdeff})
syz_mount_image$fuse(0x0, &(0x7f0000000000)='./bus\x00', 0x30040a9, 0x0, 0xf, 0x0, 0x0)
mount$bind(&(0x7f0000000380)='./bus\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
r5 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r5, &(0x7f0000000140)='.\x00', r5, &(0x7f0000000180)='./file0\x00', 0x140)
socket$inet6(0xa, 0x2, 0x0)
mount$9p_fd(0x0, &(0x7f0000000140)='./file2/file0\x00', 0x0, 0x840, 0x0)
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001300)=@newtfilter={0xed4, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r8, {0x1, 0x4}, {}, {0x8}}, [@filter_kind_options=@f_matchall={{0xd}, {0xea0, 0x2, [@TCA_MATCHALL_ACT={0xe9c, 0x2, [@m_pedit={0xe98, 0x1, 0x0, 0x0, {{0xa}, {0xe6c, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe68, 0x4, {{{0x5, 0x0, 0x6, 0x0, 0x2}, 0x10, 0xff, [{0x800, 0x9, 0x80000001, 0x9, 0x4, 0x7}, {0xb8, 0x5, 0x6, 0x6, 0x57, 0xe2}, {0x0, 0x3, 0x8, 0x0, 0x3, 0x5}]}, [{0x4, 0xfff, 0x100, 0x7, 0x8, 0x1b2b}, {0x6, 0x7, 0x8c, 0x4, 0x0, 0x6}, {0x7, 0xffffffff, 0x10000, 0x1, 0x6, 0x1}, {0xffffffff, 0x8, 0x7, 0x6, 0x2}, {0x0, 0x9a, 0x8, 0x6, 0x0, 0x9}, {0x5, 0x4, 0x3, 0x101, 0x7}, {0x47, 0xfffffff8, 0x7, 0x100, 0xc, 0x401}, {0xc5, 0x0, 0x5, 0x7, 0x3, 0x7fff}, {0x6, 0x9, 0x4000000, 0x5, 0xa057, 0x3ff}, {0x1, 0x6, 0x8, 0x5, 0x2, 0x8e}, {0xfffffffb, 0x7, 0xfff, 0x8, 0xffffff85, 0x4}, {0x6, 0x9, 0x4, 0x0, 0x7, 0x4}, {0x81, 0x80000001, 0x9, 0x43a, 0x8, 0x1000}, {0x7, 0xa, 0x1, 0x2, 0x0, 0xf}, {0xf, 0x401, 0xf0, 0x9, 0xffff, 0x4}, {0x7fffffff, 0x7, 0x5, 0x0, 0x7ff, 0x7}, {0x92, 0x9, 0x6, 0xe, 0xc3, 0xb}, {0x9, 0x9, 0x2, 0x1, 0x5, 0x400}, {0x4, 0xcc, 0x300000, 0x4, 0x3, 0x7}, {0x4, 0xffffffff, 0x9, 0x9, 0x3, 0xf}, {0x9, 0x8, 0x1, 0xa0, 0x468, 0x400}, {0xffffffff, 0xfffffff9, 0x0, 0x2c, 0x7fffffff, 0x8001}, {0x5, 0x8001, 0x8e27, 0x8, 0x2000000, 0x2}, {0x4, 0x4, 0x3, 0x9, 0x8, 0xeb43}, {0xb, 0x5, 0x401, 0x56, 0xcb7}, {0xef, 0x3, 0x1, 0x8001, 0x7fffffff}, {0x0, 0x10, 0xdaf1, 0x1, 0x1, 0x2}, {0xffff, 0x9, 0x3fed, 0x1, 0x80000000, 0x5}, {0xfffffff8, 0x81, 0x5, 0xfffffffe, 0x3, 0x4}, {0x1, 0x91, 0x800, 0x7, 0x5, 0xf}, {0x4, 0x2, 0xff6f, 0xe, 0xfffffffe, 0x4}, {0x53, 0x4, 0x401, 0x8, 0x5, 0x9}, {0x10001, 0xee, 0xaea, 0xfffffffe, 0x76be, 0x8}, {0x1000, 0x4, 0xd5b, 0x4, 0xe, 0x3ff}, {0x5, 0xed, 0x9, 0x3ff, 0x200, 0xffffffff}, {0x2, 0xff33, 0x9, 0x0, 0x0, 0x66d2}, {0x2a, 0xf2, 0x5, 0x1, 0xc7, 0xfffff3d6}, {0x2dc57e6, 0x5, 0x8, 0x0, 0x7, 0xfffffffc}, {0x51, 0x2, 0x8, 0x8, 0x3, 0x6}, {0x0, 0x101c, 0x40, 0x4, 0x8001, 0xc}, {0x54b, 0x7, 0xf51, 0x0, 0x9, 0x2}, {0xffffffff, 0x2, 0xfffffffc, 0x6, 0x5, 0xe}, {0x5, 0x5ed4f39, 0x0, 0x7ff, 0x81, 0xfffffff8}, {0xbe4, 0xffffffff, 0x6, 0xd4a, 0x7ff}, {0x0, 0x9, 0x8, 0xfff, 0x3, 0x4}, {0xda, 0x0, 0x2, 0x3, 0xfffff1fb}, {0xffffff42, 0x81c, 0x9, 0x3, 0x8, 0x1}, {0x3, 0xfffffff8, 0x8, 0x4, 0x54, 0x200}, {0x9, 0x8, 0x1ff, 0x52800, 0x80, 0x1}, {0x0, 0x5, 0xe8, 0x2, 0x0, 0x1}, {0x7, 0xffffff01, 0x1000, 0x8, 0x0, 0x7}, {0x4, 0x80, 0xc00, 0x200, 0x3, 0xfffffffc}, {0x1000, 0x3, 0x1, 0xff, 0xffff, 0x80000000}, {0xfffffffc, 0x2, 0x40, 0x8, 0xcb87, 0x45b5}, {0x4, 0x0, 0xc09, 0x1, 0x8, 0x7ff}, {0x401, 0x2, 0x9, 0x678, 0x6c, 0xffff}, {0xfffffffe, 0x4, 0x4, 0xfffffffe, 0x3ff, 0xf}, {0x100, 0x2, 0x9, 0x2, 0x6, 0x5b8b}, {0x4, 0xfffffffb, 0x24, 0x5, 0x31c1, 0x2}, {0x6, 0x6, 0x1e1c, 0x4, 0x6, 0x1ff}, {0x1, 0x4, 0x4, 0xd1bd, 0x0, 0x5}, {0x4, 0xfffffffa, 0xfffffffb, 0x7, 0x101, 0x1}, {0x8, 0x7, 0xd2, 0xff, 0x3, 0xcc7e}, {0x7, 0x3, 0xd65c, 0x1, 0x8, 0x4}, {0x2, 0x40, 0x9, 0x5, 0x7}, {0x858, 0xfff, 0x200, 0x9, 0x7ff, 0x9}, {0x4c07e81, 0x8a55, 0x35a, 0x3, 0xffff, 0x10001}, {0x3, 0x3, 0x0, 0x3, 0x8}, {0x2, 0x10001, 0x60000, 0x7, 0x7, 0x9}, {0x4, 0x863a, 0xffffffff, 0x7fffffff, 0x7f, 0x8}, {0x3, 0x1, 0x8, 0x98a, 0x9, 0x89}, {0x3, 0x2, 0x40, 0x9, 0x7, 0x8}, {0x4, 0x6, 0x6, 0x6, 0x3}, {0x4c, 0x0, 0x1, 0x8, 0x80000001, 0xfffffffe}, {0x3, 0x9, 0x9, 0x40, 0x80, 0x12a2}, {0x80000000, 0x1, 0x100, 0x800, 0x3, 0x8baf}, {0x2, 0xc, 0x8, 0x80000000, 0xb8, 0x60f}, {0x3, 0x5, 0x6, 0x5380, 0x7f, 0x7517}, {0x647, 0xffffffdc, 0x4, 0xffff, 0x1, 0x401}, {0xfffffff8, 0xa29, 0xf, 0x3, 0x5, 0xffff2f56}, {0x200, 0x8, 0x3b6, 0x9, 0x100, 0x7}, {0x2, 0x4, 0x81, 0x4, 0x80, 0x1}, {0x5, 0x21e7, 0xa8a5, 0x7ff, 0x6, 0xd}, {0x13, 0x7fffffff, 0x6, 0x5696cd1, 0x4a, 0x6}, {0x9, 0x1000000, 0x0, 0xfff}, {0x5, 0x40, 0xc05, 0x5, 0x8, 0x2}, {0x3, 0x6, 0x5, 0x6, 0xb, 0x8}, {0x400, 0x80000000, 0x101, 0xbe, 0x8, 0x9}, {0xb, 0xf9, 0xfffffff7, 0x0, 0x9}, {0x1e9e, 0x0, 0xb8e, 0x9, 0x9, 0xfff}, {0x3, 0x6, 0x24ab, 0x6, 0x1, 0x1}, {0x1, 0x9, 0x3, 0xa0000, 0x5, 0x8}, {0x0, 0xee5, 0x0, 0x5, 0x27, 0x8}, {0xfffffffc, 0x8e7, 0x7, 0x3ff, 0x5, 0x1}, {0x400, 0x10000, 0x4, 0x3, 0x9}, {0x4, 0x4, 0x9, 0x4, 0x0, 0x800}, {0x2, 0x1, 0x74, 0xfffffff9, 0x1, 0x5}, {0x3, 0x1fe0, 0x8, 0x8, 0x3, 0x2}, {0x6, 0x81, 0x700, 0x1, 0x7, 0x9}, {0x4, 0xa, 0x2, 0x3, 0x4000, 0x7}, {0xd, 0x2, 0x0, 0x3, 0x0, 0x5}, {0x10001, 0x7fff, 0x4, 0x9, 0x4, 0x400}, {0x7, 0x6, 0x5, 0x8, 0x20, 0x7ae2}, {0x5, 0x9, 0x1, 0x80000001, 0xd1, 0xffffff80}, {0x9, 0x81, 0x242, 0x7}, {0x9a, 0x0, 0x2, 0xd3ef, 0x9, 0x3}, {0x6, 0x7fff, 0xd6f, 0x7fffffff, 0xb2f8, 0x81}, {0x2, 0x3, 0x0, 0x12b, 0x5, 0xffffff80}, {0x7edc, 0x44cf, 0x9, 0x7ff, 0x7, 0x8}, {0x0, 0x46, 0x80, 0x7fffffff, 0x7, 0x9566}, {0x5, 0x5, 0x8, 0xfffff8de, 0x2, 0x6}, {0x1, 0x2, 0xe, 0x37, 0x2, 0x10}, {0x3, 0xc0, 0xa, 0x1, 0x7, 0x9}, {0x4d5, 0x0, 0x1, 0x0, 0x3, 0x3}, {0x180127ed, 0x45, 0x6, 0x52, 0x6, 0xfffffff3}, {0xfffffffb, 0x9, 0x4, 0x3, 0x8000}, {0xfffffff9, 0xffff932d, 0x101, 0x3, 0x10000, 0x2}, {0x1000, 0x200, 0x5901, 0x8, 0x724, 0x2d3}, {0xfffffff7, 0x1, 0xfffffff8, 0x1, 0x30, 0x8}, {0x0, 0x8, 0x3, 0x3, 0x1, 0xd453}, {0x5, 0x4, 0x1, 0x7, 0x2, 0x8001}, {0x878b, 0xfffffff9, 0x2, 0x73fe, 0x0, 0x9}, {0x4c735734, 0x5, 0xfffff8dc, 0x4, 0x5, 0x3}, {0x5af8, 0x8, 0x5, 0x5, 0x2, 0xd}, {0x2, 0x1, 0x1, 0x3ff, 0x8}, {0x0, 0xc, 0x80, 0x9, 0x6, 0xfffffffc}, {0x1, 0x1ff, 0x9, 0xf0000000, 0xad82, 0xfed}, {0x8, 0x4e9, 0x7f, 0x6, 0xffff, 0x5}], [{0x1, 0x1}, {0x2, 0x1}, {0x3}, {0x2}, {0x0, 0x1}, {0x1, 0x1}, {0x2}, {0x5}, {0x4, 0x1}, {0x2, 0x1}, {0x3}, {0x0, 0x1}, {0x1, 0x1}, {0x1}, {0x2, 0x1}, {0x7}, {0x3}, {0x0, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {}, {0x0, 0x1}, {0x2}, {0x5, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {}, {}, {0x5, 0x1}, {0x2}, {0x6c920e8d29de5635, 0x1}, {0x5, 0x1}, {0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x5}, {0x0, 0x1}, {0x3}, {0x5}, {0x2}, {0x5, 0x1}, {0x438236dffaa15198}, {0x1, 0x1}, {0x5, 0x1}, {0x3, 0x5fa8a67979573ac}, {0x3, 0x1}, {}, {0x5, 0x1}, {0x5}, {0x4}, {0x4, 0x1}, {}, {0x0, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x1}, {0x5}, {}, {0x6, 0x1}, {0x3}, {0x2, 0x1}, {0x1}, {0x1}, {0x5}, {0x0, 0x1}, {0x5}, {0x5, 0x1}, {0x2, 0x1}, {0x1, 0x1}, {0x6}, {0x5}, {0x5, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x3}, {0x3, 0x1}, {0x5}, {0x3}, {0x4, 0x1}, {0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x0, 0x1}, {0x5}, {0x4}, {0x1, 0x1}, {0x5}, {0x2}, {0x4, 0x1}, {0x1, 0x1}, {0x5}, {0x1, 0x1}, {0x5, 0x3}, {0x2}, {0x7}, {0x3}, {0x2}, {0x3}, {0x3}, {0x5, 0x1}, {0x3, 0x1}, {0x1, 0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x6, 0x1}, {0x5, 0x1}, {0x1, 0x1}, {0x5}, {0x5, 0x1}, {0x4}, {}, {0x3}, {}, {0x1}, {0x2, 0x1}, {0x4}, {0x4, 0x1}, {0x0, 0x1}, {0x1}, {0x2}, {}, {0x4}, {0x2}], 0x1}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}}]}, 0xed4}, 0x1, 0x0, 0x0, 0x10}, 0x0)
setsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000b00)={{{@in6=@loopback, @in6=@private2, 0x4e24, 0x3, 0x4e21, 0x5, 0xa, 0xa0, 0x20, 0x67, r8}, {0x80000000, 0x7, 0x5, 0x5bbd, 0xb, 0x7, 0x68b, 0x7cb3}, {0x3, 0x2, 0x4, 0x8080}, 0xffffffff, 0x6e6bbb, 0x2, 0x1, 0x2, 0x3}, {{@in6=@dev={0xfe, 0x80, '\x00', 0x30}, 0x4d5, 0x32}, 0x2, @in=@multicast1, 0x0, 0x1, 0x0, 0x8, 0x3, 0x8, 0x2}}, 0xe8)

2.624978619s ago: executing program 1 (id=704):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNATTACHFILTER(r0, 0x401054d5, 0x0)

2.047123811s ago: executing program 7 (id=713):
sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, 0x0, 0x44)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x11, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000000000000000000000400008500000061000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000200900010073797a300000000000000000010000080900010073797a3000000000080003006e6174f1"], 0xcc}}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={r1, 0x18000000000002a0, 0x48, 0x62, &(0x7f0000000600)="b9ff03075fe9008cb89e08e086dd", 0x0, 0xfe6, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x28)

1.723908998s ago: executing program 7 (id=718):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001700)=ANY=[@ANYBLOB="160000000000000061b1000002"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r0}, 0x0, &(0x7f0000000300)}, 0x20)

1.719222838s ago: executing program 8 (id=719):
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0e00000004000000080000000b"], 0x50)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0), 0xc)

1.584851863s ago: executing program 6 (id=721):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b40)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}], {0x14}}, 0x64}}, 0x0)
close(r0)

1.569567421s ago: executing program 2 (id=722):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$unix(r1, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="28000000ffff000001"], 0x28, 0x4}, 0x0)
write(r1, 0x0, 0x0)
recvmsg(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)

1.537970569s ago: executing program 8 (id=723):
r0 = semget(0x0, 0x0, 0x0)
semop(r0, &(0x7f0000000000)=[{}], 0x1)

1.436843826s ago: executing program 1 (id=725):
r0 = socket(0x18, 0x2, 0x0)
connect(r0, &(0x7f0000000000)=@in6={0x1c, 0x18, 0x2}, 0x1c)
sendmsg(r0, &(0x7f0000003d00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000003d80)=ANY=[@ANYBLOB='H'], 0x48}, 0x400)

1.436762451s ago: executing program 7 (id=726):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000003d00010325bd7000fcffffff01"], 0x14}}, 0x0)

1.40756356s ago: executing program 6 (id=727):
r0 = open(&(0x7f0000000380)='./file0\x00', 0x80000000000206, 0x4ebfac6bbaf79e5)
write(r0, &(0x7f0000000740)="09092720a2e214dd1c3600000cfd500f000000002a8a000000519247c40a", 0x1e)
r1 = open(&(0x7f0000000380)='./file0\x00', 0x80000000000206, 0x4ebfac6bbaf7949)
writev(r1, &(0x7f0000000080)=[{&(0x7f0000000040)='#!', 0x2}], 0x1)
execve(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)

1.314297333s ago: executing program 2 (id=728):
r0 = open(&(0x7f0000000240)='./file0\x00', 0x70e, 0x24)
readv(r0, &(0x7f00000016c0)=[{&(0x7f0000000580)=""/4096, 0x1000}], 0x1)

1.257154928s ago: executing program 7 (id=729):
mkdir(&(0x7f0000000040)='./file2\x00', 0xc1)
chmod(&(0x7f0000000040)='.\x00', 0x35e)
setuid(0xee01)
mkdir(&(0x7f0000000180)='./file0\x00', 0xc3)
rename(&(0x7f0000000140)='./file0\x00', &(0x7f0000000340)='./file2\x00')

1.25698523s ago: executing program 5 (id=730):
getrlimit(0x3, &(0x7f0000000180))

1.227141041s ago: executing program 1 (id=731):
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x3, 0x5012, 0xffffffffffffffff, 0x0)
setitimer(0x0, &(0x7f0000000100)={{0x1, 0x3}, {0x0, 0xfff}}, 0x0)
setitimer(0x0, 0x0, &(0x7f0000000140))

1.066704786s ago: executing program 8 (id=732):
r0 = socket(0x18, 0x3, 0x7)
getsockopt$sock_int(r0, 0xffff, 0x1002, 0x0, 0x0)

1.066564995s ago: executing program 2 (id=733):
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
r0 = socket(0x2, 0x3, 0x8)
connect(r0, &(0x7f0000000000)=@in={0x10, 0x2}, 0x10)

1.06015836s ago: executing program 6 (id=734):
r0 = socket(0x18, 0x3, 0x0)
fsync(r0)

987.661106ms ago: executing program 7 (id=735):
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0e00000004000000080000000b"], 0x50)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0), 0xc)

904.355977ms ago: executing program 1 (id=736):
r0 = socket(0x2, 0x400000000002, 0x0)
setsockopt(r0, 0x0, 0x7, 0x0, 0x0)

904.155138ms ago: executing program 5 (id=737):
syz_emit_ethernet(0xe, &(0x7f0000000000)=ANY=[@ANYBLOB="0000000000000001"], 0x0)
writev(0xffffffffffffffff, &(0x7f0000000680)=[{&(0x7f0000000000)="6dc100167f", 0x5}], 0x1)
syz_emit_ethernet(0x138, &(0x7f0000000000)=ANY=[@ANYBLOB="ff02"], 0x0)
r0 = socket(0x2, 0x4001, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
sendto$unix(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
syz_emit_ethernet(0x138, &(0x7f0000000000)=ANY=[@ANYBLOB="ff02"], 0x0)
r1 = socket$inet(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000000)={0x10, 0x2}, 0x10)

875.040832ms ago: executing program 8 (id=738):
symlink(&(0x7f0000000300)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000d80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
open$dir(&(0x7f0000000b80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200, 0x0)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000, 0x1)
link(&(0x7f0000000940)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000d40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
link(&(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000007c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
unlink(&(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
unlink(&(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
rename(&(0x7f00000012c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000180)='./file1\x00')
rename(&(0x7f0000000fc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000010c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
r0 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000700)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', r0, &(0x7f0000000c80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
open$dir(&(0x7f0000000800)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x200, 0x10)

745.659349ms ago: executing program 2 (id=739):
r0 = socket$inet6(0x18, 0x3, 0x0)
getsockopt(r0, 0x29, 0x37, 0x0, 0x0)

640.306869ms ago: executing program 6 (id=740):
r0 = socket$inet6(0x18, 0x1, 0x6)
setsockopt$sock_int(r0, 0xffff, 0x1000, &(0x7f0000001300)=0x3, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0x1c, 0x18, 0x1}, 0x1c)
r1 = socket$inet6(0x18, 0x1, 0x6)
setsockopt$sock_int(r1, 0xffff, 0x1000, &(0x7f0000001300)=0x3, 0x4)
bind$inet6(r1, &(0x7f0000000040)={0x1c, 0x18, 0x1}, 0x1c)

640.117424ms ago: executing program 1 (id=741):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x10, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x2, 0x0, &(0x7f0000000480)=[{0x3, 0x4, 0x100b, 0x8}, {0x1, 0x4, 0xb, 0x5}], 0x10, 0x3}, 0x94)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001440)={r1, 0xe0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x3f, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x40, 0x24, 0xf0b, 0x70bd2e, 0x3f, {0x0, 0x0, 0x12, r2, {0x0, 0x6}, {0xfff1, 0xffff}, {0xfff3}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x4}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x4}]}, 0x40}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

640.031453ms ago: executing program 7 (id=742):
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mlockall(0x1)

639.978759ms ago: executing program 5 (id=743):
r0 = socket(0x18, 0x2, 0x0)
setsockopt(r0, 0x1000000000029, 0x9, &(0x7f0000000040)="03000000", 0x4)
setsockopt(r0, 0x1000000029, 0x9, &(0x7f0000001600), 0x0)

559.238827ms ago: executing program 2 (id=744):
r0 = socket$inet6(0x18, 0x1, 0x6)
setsockopt$sock_int(r0, 0xffff, 0x1000, &(0x7f0000001300)=0x3, 0x4)
bind$inet6(r0, &(0x7f0000000040)={0x1c, 0x18, 0x1}, 0x1c)
r1 = socket$inet6(0x18, 0x1, 0x6)
setsockopt$sock_int(r1, 0xffff, 0x1000, &(0x7f0000001300)=0x3, 0x4)
bind$inet6(r1, &(0x7f0000000040)={0x1c, 0x18, 0x1}, 0x1c)
r2 = socket$inet6(0x18, 0x1, 0x6)
setsockopt$sock_int(r2, 0xffff, 0x1000, &(0x7f0000001300)=0x3, 0x4)
bind$inet6(r2, &(0x7f0000000040)={0x1c, 0x18, 0x1}, 0x1c)

536.15319ms ago: executing program 8 (id=745):
mknod(&(0x7f0000000000)='./file0\x00', 0x8000, 0x40000803)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0xa)
ioctl$TIOCSETD(r0, 0x8004741b, &(0x7f0000000140)=0x10)

476.213191ms ago: executing program 5 (id=746):
r0 = semget$private(0x0, 0x1, 0x391)
semctl$GETVAL(r0, 0x3, 0x5, 0x0)

376.940166ms ago: executing program 6 (id=747):
open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
fcntl$lock(r0, 0x9, &(0x7f0000000840)={0x2, 0x1, 0x922, 0x1000100000000})
flock(r0, 0x3)
fcntl$lock(r0, 0x8, &(0x7f0000000040)={0x3, 0x0, 0x0, 0x100000001})
syz_open_pts(0xffffffffffffffff, 0x0)
syz_open_pts(0xffffffffffffffff, 0x0)
setsockopt(0xffffffffffffffff, 0x1000000000029, 0x9, 0x0, 0x0)

341.719161ms ago: executing program 1 (id=748):
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r2, r3, 0x5}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r2}, &(0x7f00000006c0), &(0x7f0000000700)=r1}, 0x20)
sendmsg$inet(r0, &(0x7f0000000980)={0x0, 0x6000, &(0x7f0000000900)=[{&(0x7f0000000640)='U', 0xa00120}], 0x1}, 0x3)

163.602318ms ago: executing program 2 (id=749):
mknod(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8000, 0x0)
poll(&(0x7f0000000000)=[{}], 0x20000000000000fe, 0x0)
r0 = open(&(0x7f0000000480)='./file0\x00', 0x80000000000206, 0xd6)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000280)='#!', 0x10}, {&(0x7f0000000000)="8d6bb85551ec8430877ae32fe9bbe42cc8f2147a3eba8e1969f0435119cf4c071c8aee7ef2921be5d7d4796c5566c95989acb3d185587234186e96b8fde9ffac51de05a87b8b893e2abd154dd886eafbe03881d25b7b13b4c32227fc9e5a86a06f59f701322b3a109a13436e486b0a", 0x6f}], 0x2)
execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)

163.40479ms ago: executing program 5 (id=750):
r0 = socket$inet(0x18, 0x3, 0x102)
sendmsg(r0, &(0x7f0000000240)={&(0x7f0000000280)=@in6={0x1c, 0x18}, 0x1c, &(0x7f00000003c0)=[{&(0x7f0000000000)="638802000000339a2dd68e59adfecf93232cffffffffef61ff6ee03e0d3cf022fe19d89952bcc22243", 0x29}], 0x1}, 0x402)

49.426905ms ago: executing program 8 (id=751):
clock_settime(0x100000000000000, &(0x7f0000000240)={0xde1ecc7f, 0x2})

49.187448ms ago: executing program 6 (id=752):
chmod(&(0x7f0000000040)='.\x00', 0x35e)
setuid(0xee01)
mkdir(&(0x7f0000000180)='./file0\x00', 0xc3)
rename(&(0x7f0000000140)='./file0\x00', &(0x7f0000000340)='./file2\x00')

0s ago: executing program 5 (id=753):
mknod(&(0x7f0000000000)='./file0\x00', 0x8000, 0x40000803)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0xa)
ioctl$TIOCSETD(r0, 0x40047463, 0x0)

kernel console output (not intermixed with test programs):

8/2026
[  247.701485][ T7555] Call Trace:
[  247.701496][ T7555]  <TASK>
[  247.701509][ T7555]  dump_stack_lvl+0xe8/0x150
[  247.701553][ T7555]  __f2fs_is_valid_blkaddr+0xe52/0x14f0
[  247.701595][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  247.701649][ T7555]  sanity_check_extent_cache+0x1a3/0x620
[  247.701690][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  247.701730][ T7555]  ? f2fs_sanity_check_inline_data+0x75/0x780
[  247.701790][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  247.701828][ T7555]  ? set_nlink+0x5f/0x170
[  247.701872][ T7555]  f2fs_iget+0x3f8a/0x5dc0
[  247.701962][ T7555]  f2fs_fill_super+0x5019/0x78f0
[  247.702062][ T7555]  get_tree_bdev_flags+0x431/0x4f0
[  247.702118][ T7555]  ? __pfx_f2fs_fill_super+0x10/0x10
[  247.702165][ T7555]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  247.702222][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  247.702268][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  247.702317][ T7555]  vfs_get_tree+0x92/0x2a0
[  247.702375][ T7555]  do_new_mount+0x341/0xd30
[  247.702418][ T7555]  ? apparmor_capable+0x126/0x170
[  247.702488][ T7555]  ? __pfx_do_new_mount+0x10/0x10
[  247.702527][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  247.702568][ T7555]  ? ns_capable+0x89/0xe0
[  247.702603][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  247.702646][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  247.702693][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  247.702734][ T7555]  ? user_path_at+0xd4/0x160
[  247.702795][ T7555]  __se_sys_mount+0x31d/0x420
[  247.702844][ T7555]  ? __pfx___se_sys_mount+0x10/0x10
[  247.702884][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  247.702935][ T7555]  ? srso_alias_return_thunk+0x5/0xfbef5
[  247.702975][ T7555]  ? __x64_sys_mount+0x20/0xc0
[  247.703021][ T7555]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.703057][ T7555]  do_syscall_64+0x15f/0xf80
[  247.703111][ T7555]  ? trace_irq_disable+0x3b/0x140
[  247.703179][ T7555]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  247.703210][ T7555] RIP: 0033:0x7f941339e04a
[  247.703238][ T7555] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  247.703271][ T7555] RSP: 002b:00007f94142a4e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  247.703306][ T7555] RAX: ffffffffffffffda RBX: 00007f94142a4ee0 RCX: 00007f941339e04a
[  247.703334][ T7555] RDX: 0000200000000100 RSI: 0000200000000180 RDI: 00007f94142a4ea0
[  247.703359][ T7555] RBP: 0000200000000100 R08: 00007f94142a4ee0 R09: 0000000000000010
[  247.703383][ T7555] R10: 0000000000000010 R11: 0000000000000246 R12: 0000200000000180
[  247.703412][ T7555] R13: 00007f94142a4ea0 R14: 00000000000105eb R15: 0000200000000280
[  247.703458][ T7555]  </TASK>
[  247.703797][ T7555] F2FS-fs (loop7): sanity_check_extent_cache: inode (ino=3) extent info [0, 0, 4128768] is incorrect, run fsck to fix
[  248.038440][ T7555] F2FS-fs (loop7): Failed to read root inode
[  248.198582][ T7577] netlink: 36 bytes leftover after parsing attributes in process `syz.1.340'.
[  248.401686][ T5777] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  248.520829][ T5631] Bluetooth: hci3: command tx timeout
[  248.576821][ T7583] netlink: 12 bytes leftover after parsing attributes in process `syz.5.343'.
[  248.681831][ T5777] usb 3-1: Using ep0 maxpacket: 16
[  248.727159][ T5777] usb 3-1: config 0 has an invalid interface number: 34 but max is 0
[  248.744938][ T5777] usb 3-1: config 0 has no interface number 0
[  248.915396][ T5777] usb 3-1: config 0 interface 34 altsetting 0 bulk endpoint 0xA has invalid maxpacket 1023
[  248.960616][ T5749] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  248.981014][ T5777] usb 3-1: config 0 interface 34 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 80
[  249.035690][ T5777] usb 3-1: New USB device found, idVendor=0b95, idProduct=772a, bcdDevice=82.73
[  249.143883][ T5777] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  249.172532][ T7588] loop1: detected capacity change from 0 to 64
[  249.230490][ T5749] usb 7-1: Using ep0 maxpacket: 32
[  249.249202][ T5777] usb 3-1: Product: syz
[  249.266136][ T5749] usb 7-1: config index 0 descriptor too short (expected 35577, got 27)
[  249.274692][ T5777] usb 3-1: Manufacturer: syz
[  249.289591][ T5777] usb 3-1: SerialNumber: syz
[  249.299726][ T5749] usb 7-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[  249.322959][ T5777] usb 3-1: config 0 descriptor??
[  249.328128][ T5749] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  249.349206][ T7566] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  249.369668][ T7566] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  249.379577][ T5749] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 92
[  249.427156][ T5749] usb 7-1: config 1 has no interface number 0
[  249.646513][ T5749] usb 7-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[  249.660604][ T5749] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  249.715064][ T5749] snd_usb_pod 7-1:1.1: Line 6 Pocket POD found
[  249.800882][ T7566] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  249.883506][ T7566] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  249.936971][ T7588] FAULT_INJECTION: forcing a failure.
[  249.936971][ T7588] name failslab, interval 1, probability 0, space 0, times 0
[  249.949988][ T7588] CPU: 1 UID: 0 PID: 7588 Comm: syz.1.345 Not tainted syzkaller #0 PREEMPT(full) 
[  249.950016][ T7588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  249.950035][ T7588] Call Trace:
[  249.950046][ T7588]  <TASK>
[  249.950057][ T7588]  dump_stack_lvl+0xe8/0x150
[  249.950101][ T7588]  should_fail_ex+0x412/0x560
[  249.950138][ T7588]  should_failslab+0xa8/0x100
[  249.950196][ T7588]  __kmalloc_noprof+0xe8/0x760
[  249.950237][ T7588]  ? stack_trace_save+0xa9/0x100
[  249.950289][ T7588]  ? hfs_find_init+0xaa/0x300
[  249.950343][ T7588]  ? __pfx_hlock_conflict+0x10/0x10
[  249.950394][ T7588]  hfs_find_init+0xaa/0x300
[  249.950430][ T7588]  hfs_readdir+0x23d/0xc10
[  249.950460][ T7588]  ? srso_alias_return_thunk+0x5/0xfbef5
[  249.950506][ T7588]  ? __pfx_hfs_readdir+0x10/0x10
[  249.950561][ T7588]  ? srso_alias_return_thunk+0x5/0xfbef5
[  249.950596][ T7588]  ? iterate_dir+0x292/0x570
[  249.950649][ T7588]  ? srso_alias_return_thunk+0x5/0xfbef5
[  249.950677][ T7588]  ? down_read_killable+0x1bb/0x340
[  249.950723][ T7588]  ? srso_alias_return_thunk+0x5/0xfbef5
[  249.950749][ T7588]  iterate_dir+0x399/0x570
[  249.950794][ T7588]  __se_sys_getdents64+0xf1/0x280
[  249.950819][ T7588]  ? srso_alias_return_thunk+0x5/0xfbef5
[  249.950851][ T7588]  ? __pfx___se_sys_getdents64+0x10/0x10
[  249.950869][ T7588]  ? ksys_write+0x242/0x270
[  249.950910][ T7588]  ? __pfx_filldir64+0x10/0x10
[  249.950938][ T7588]  ? __pfx_ksys_write+0x10/0x10
[  249.950983][ T7588]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.951009][ T7588]  do_syscall_64+0x15f/0xf80
[  249.951042][ T7588]  ? trace_irq_disable+0x3b/0x140
[  249.951097][ T7588]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  249.951122][ T7588] RIP: 0033:0x7fc586d9cdd9
[  249.951147][ T7588] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  249.951165][ T7588] RSP: 002b:00007fc587cb5028 EFLAGS: 00000246 ORIG_RAX: 00000000000000d9
[  249.951186][ T7588] RAX: ffffffffffffffda RBX: 00007fc587016090 RCX: 00007fc586d9cdd9
[  249.951200][ T7588] RDX: 00000000000000cb RSI: 0000200000000080 RDI: 000000000000000e
[  249.951215][ T7588] RBP: 00007fc587cb5090 R08: 0000000000000000 R09: 0000000000000000
[  249.951234][ T7588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  249.951250][ T7588] R13: 00007fc587016128 R14: 00007fc587016090 R15: 00007fff2d43b588
[  249.951293][ T7588]  </TASK>
[  250.007781][ T7585] loop6: detected capacity change from 0 to 4096
[  250.516761][  T157] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  250.774623][ T7585] ntfs3(loop6): ino=b, mi_enum_attr
[  250.780565][ T7585] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[  250.999110][ T7585] ntfs3(loop6): Failed to load $Extend (-22).
[  251.005324][ T7585] ntfs3(loop6): Failed to initialize $Extend.
[  251.324769][  T157] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  251.375543][ T5749] snd_usb_pod 7-1:1.1: set_interface failed
[  251.392712][ T7566] bond0: (slave batadv_slave_1): Error: Device can not be enslaved while up
[  251.408712][ T5777] asix 3-1:0.34 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  251.425316][ T5749] snd_usb_pod 7-1:1.1: Line 6 Pocket POD now disconnected
[  251.439197][ T5749] snd_usb_pod 7-1:1.1: probe with driver snd_usb_pod failed with error -71
[  251.450975][ T5777] asix 3-1:0.34 (unnamed net_device) (uninitialized): Failed to write GPIO value 0x0080: ffffffb9
[  251.499930][ T5749] usb 7-1: USB disconnect, device number 9
[  251.531943][ T5777] asix 3-1:0.34: probe with driver asix failed with error -71
[  251.632104][ T5777] usb 3-1: USB disconnect, device number 6
[  251.916936][  T157] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  252.703262][  T157] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  252.734306][ T7617] loop2: detected capacity change from 0 to 32768
[  252.741841][ T7636] FAULT_INJECTION: forcing a failure.
[  252.741841][ T7636] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  252.754987][ T7636] CPU: 1 UID: 0 PID: 7636 Comm: syz.6.356 Not tainted syzkaller #0 PREEMPT(full) 
[  252.755021][ T7636] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  252.755038][ T7636] Call Trace:
[  252.755048][ T7636]  <TASK>
[  252.755058][ T7636]  dump_stack_lvl+0xe8/0x150
[  252.755097][ T7636]  should_fail_ex+0x412/0x560
[  252.755150][ T7636]  _copy_to_user+0x31/0xb0
[  252.755198][ T7636]  simple_read_from_buffer+0xe1/0x170
[  252.755240][ T7636]  proc_fail_nth_read+0x1bb/0x230
[  252.755278][ T7636]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.755318][ T7636]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  252.755354][ T7636]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.755383][ T7636]  ? rw_verify_area+0x2a6/0x4d0
[  252.755423][ T7636]  ? tun_chr_write_iter+0xe0/0x200
[  252.755457][ T7636]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  252.755491][ T7636]  vfs_read+0x20c/0xa70
[  252.755534][ T7636]  ? __pfx___mutex_lock+0x10/0x10
[  252.755578][ T7636]  ? __pfx_vfs_read+0x10/0x10
[  252.755616][ T7636]  ? __fget_files+0x2a/0x420
[  252.755656][ T7636]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.755684][ T7636]  ? __fget_files+0x3a0/0x420
[  252.755714][ T7636]  ? __fget_files+0x2a/0x420
[  252.755749][ T7636]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.755783][ T7636]  ksys_read+0x150/0x270
[  252.755823][ T7636]  ? __pfx_ksys_read+0x10/0x10
[  252.755854][ T7636]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.755895][ T7636]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  252.755922][ T7636]  do_syscall_64+0x15f/0xf80
[  252.755958][ T7636]  ? trace_irq_disable+0x3b/0x140
[  252.756011][ T7636]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  252.756036][ T7636] RIP: 0033:0x7fa1d4f5d60e
[  252.756060][ T7636] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  252.756083][ T7636] RSP: 002b:00007fa1d5deafe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  252.756111][ T7636] RAX: ffffffffffffffda RBX: 00007fa1d5deb6c0 RCX: 00007fa1d4f5d60e
[  252.756132][ T7636] RDX: 000000000000000f RSI: 00007fa1d5deb0a0 RDI: 0000000000000005
[  252.756145][ T7636] RBP: 00007fa1d5deb090 R08: 0000000000000000 R09: 0000000000000000
[  252.756158][ T7636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  252.756171][ T7636] R13: 00007fa1d5216218 R14: 00007fa1d5216180 R15: 00007fff62b384d8
[  252.756206][ T7636]  </TASK>
[  253.097217][ T7617] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.353 (7617)
[  253.244495][ T7617] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  253.323892][ T7617] BTRFS info (device loop2): using sha256 checksum algorithm
[  253.587408][ T7510] bridge0: port 1(bridge_slave_0) entered blocking state
[  253.610072][ T7510] bridge0: port 1(bridge_slave_0) entered disabled state
[  253.628473][ T7510] bridge_slave_0: entered allmulticast mode
[  253.637998][ T7510] bridge_slave_0: entered promiscuous mode
[  253.725496][ T7510] bridge0: port 2(bridge_slave_1) entered blocking state
[  253.757598][ T7510] bridge0: port 2(bridge_slave_1) entered disabled state
[  253.779377][ T7510] bridge_slave_1: entered allmulticast mode
[  253.797757][ T7510] bridge_slave_1: entered promiscuous mode
[  253.885603][ T7617] BTRFS info (device loop2): enabling ssd optimizations
[  253.915804][ T7617] BTRFS info (device loop2): turning on async discard
[  253.939880][ T7617] BTRFS info (device loop2): enabling free space tree
[  253.975345][ T7510] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  254.005214][ T7617] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  254.019838][ T7510] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  254.745353][ T7510] team0: Port device team_slave_0 added
[  254.966485][ T7692] netlink: 4 bytes leftover after parsing attributes in process `syz.5.364'.
[  255.448382][ T5801] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  255.587378][ T7510] team0: Port device team_slave_1 added
[  255.601329][ T5801] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  255.879910][ T1309] ieee802154 phy0 wpan0: encryption failed: -22
[  255.886558][ T1309] ieee802154 phy1 wpan1: encryption failed: -22
[  256.142395][ T7699] loop6: detected capacity change from 0 to 4096
[  256.217333][ T7699] ntfs3(loop6): Different NTFS sector size (1024) and media sector size (512).
[  256.380499][ T7699] ntfs3(loop6): try to read out of volume at offset 0xffffffff0000
[  256.388548][ T7699] ntfs3(loop6): Failed to initialize $Bitmap (-5).
[  256.843795][  T157] bridge_slave_1: left allmulticast mode
[  256.863970][  T157] bridge_slave_1: left promiscuous mode
[  256.879556][  T157] bridge0: port 2(bridge_slave_1) entered disabled state
[  256.936150][ T5355] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  257.066146][  T157] bridge_slave_0: left allmulticast mode
[  257.078062][  T157] bridge_slave_0: left promiscuous mode
[  257.115979][  T157] bridge0: port 1(bridge_slave_0) entered disabled state
[  257.124145][ T5355] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  257.155595][  T157] dvmrp8: left allmulticast mode
[  258.181874][ T7725] loop1: detected capacity change from 0 to 256
[  258.244854][ T7725] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x4d7dfc9d, utbl_chksum : 0xe619d30d)
[  258.632750][ T7729] loop7: detected capacity change from 0 to 512
[  258.642423][ T7731] netlink: 44 bytes leftover after parsing attributes in process `syz.1.374'.
[  258.694205][ T7729] EXT4-fs (loop7): 1 truncate cleaned up
[  258.701357][ T7729] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  259.237033][    C1] vcan0: j1939_simple_recv: Received already invalidated message
[  259.412648][  T157] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  259.427106][ T6438] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  259.442928][  T157] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  259.484278][  T157] bond0 (unregistering): Released all slaves
[  259.524510][ T7510] batman_adv: batadv0: Adding interface: batadv_slave_0
[  259.531762][ T7510] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  259.561016][ T7510] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  259.576048][ T7740] netlink: 44 bytes leftover after parsing attributes in process `syz.6.376'.
[  259.587047][ T5284] 8021q: adding VLAN 0 to HW filter on device eth9
[  259.604359][ T7510] batman_adv: batadv0: Adding interface: batadv_slave_1
[  259.620554][    T9] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  259.642089][ T7510] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  259.747165][ T7510] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  259.900427][    T9] usb 2-1: Using ep0 maxpacket: 32
[  259.907587][    T9] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  259.956815][    T9] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  260.019658][    T9] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  260.050013][    T9] usb 2-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  260.073007][ T7510] hsr_slave_0: entered promiscuous mode
[  260.085400][ T7510] hsr_slave_1: entered promiscuous mode
[  260.098022][    T9] usb 2-1: Product: syz
[  260.103978][    T9] usb 2-1: Manufacturer: syz
[  260.124440][ T7510] debugfs: 'hsr0' already exists in 'hsr'
[  260.191600][ T7510] Cannot create hsr debugfs directory
[  260.199067][    T9] hub 2-1:4.0: USB hub found
[  260.343973][ T7756] loop6: detected capacity change from 0 to 4096
[  260.947325][    T9] hub 2-1:4.0: 2 ports detected
[  261.522261][ T7768] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  261.592956][ T7768] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  262.033080][    T9] hub 2-1:4.0: set hub depth failed
[  262.088860][    T9] usb 2-1: USB disconnect, device number 8
[  262.431237][ T7787] loop2: detected capacity change from 0 to 256
[  262.438928][ T7787] vfat: Unknown parameter '00000000000000000000000'
[  262.690733][ T5801] usb 8-1: new full-speed USB device number 2 using dummy_hcd
[  262.767129][  T157] hsr_slave_0: left promiscuous mode
[  262.780081][  T157] hsr_slave_1: left promiscuous mode
[  262.786805][  T157] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  262.801604][  T157] batman_adv: batadv0: Removing interface: batadv_slave_0
[  262.832705][  T157] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  262.840090][  T157] batman_adv: batadv0: Removing interface: batadv_slave_1
[  262.891897][  T157] veth1_macvtap: left promiscuous mode
[  262.899561][  T157] veth0_macvtap: left promiscuous mode
[  262.905141][  T157] veth1_vlan: left promiscuous mode
[  262.910405][  T157] veth0_vlan: left promiscuous mode
[  262.926152][ T5801] usb 8-1: config 0 has an invalid interface number: 255 but max is 0
[  262.940036][ T5801] usb 8-1: config 0 has no interface number 0
[  262.946994][ T5801] usb 8-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[  262.959268][ T5801] usb 8-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[  262.975055][ T5801] usb 8-1: config 0 interface 255 has no altsetting 0
[  263.014564][ T5642] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  263.025346][ T5801] usb 8-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  263.046703][ T5801] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  263.064663][ T5801] usb 8-1: Product: syz
[  263.074644][ T5801] usb 8-1: Manufacturer: syz
[  263.096039][ T5801] usb 8-1: SerialNumber: syz
[  263.115765][ T5801] usb 8-1: config 0 descriptor??
[  263.360484][  T157] team0 (unregistering): Port device team_slave_1 removed
[  263.380270][  T157] team0 (unregistering): Port device team_slave_0 removed
[  263.468790][ T5801] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  263.479669][ T5801] gspca_stk1135: reg_w 0x2 err -71
[  263.486958][ T5801] gspca_stk1135: serial bus timeout: status=0x00
[  263.493869][ T5801] gspca_stk1135: Sensor write failed
[  263.499212][ T5801] gspca_stk1135: serial bus timeout: status=0x00
[  263.509980][ T5801] gspca_stk1135: Sensor write failed
[  263.515803][ T5801] gspca_stk1135: serial bus timeout: status=0x00
[  263.524504][ T5801] gspca_stk1135: Sensor read failed
[  263.530051][ T5801] gspca_stk1135: serial bus timeout: status=0x00
[  263.536906][ T5801] gspca_stk1135: Sensor read failed
[  263.583326][ T5801] gspca_stk1135: Detected sensor type unknown (0x0)
[  263.598898][ T5801] gspca_stk1135: serial bus timeout: status=0x00
[  263.606426][ T5801] gspca_stk1135: Sensor read failed
[  263.613353][ T5801] gspca_stk1135: serial bus timeout: status=0x00
[  263.619922][ T5801] gspca_stk1135: Sensor read failed
[  263.625542][ T5801] gspca_stk1135: serial bus timeout: status=0x00
[  263.632285][ T5801] gspca_stk1135: Sensor write failed
[  263.637700][ T5801] gspca_stk1135: serial bus timeout: status=0x00
[  263.659323][ T5801] gspca_stk1135: Sensor write failed
[  263.672301][ T5642] usb 7-1: Using ep0 maxpacket: 8
[  263.677791][ T5801] stk1135 8-1:0.255: probe with driver stk1135 failed with error -71
[  263.736679][ T7813] netlink: 8 bytes leftover after parsing attributes in process `syz.2.391'.
[  263.862341][ T5801] usb 8-1: USB disconnect, device number 2
[  263.902780][ T5284] 8021q: adding VLAN 0 to HW filter on device eth10
[  263.909283][ T7813] netlink: 24 bytes leftover after parsing attributes in process `syz.2.391'.
[  264.317937][ T5642] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  264.329119][ T5642] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  264.338942][ T5642] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  264.348782][ T5642] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024
[  264.360032][ T5642] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  264.370377][ T5642] usb 7-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  264.379535][ T5642] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  264.606746][ T5642] usb 7-1: config 0 descriptor??
[  264.659786][ T7792] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  265.348007][ T7833] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  265.378409][ T7833] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  265.552447][ T7510] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  265.605431][ T7510] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  265.645439][ T7510] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  265.684694][ T5355] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  265.892417][ T7510] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  265.930200][ T7510] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  265.999748][ T7510] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  266.037595][ T7510] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  266.084631][ T7510] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  266.261511][ T7857] FAULT_INJECTION: forcing a failure.
[  266.261511][ T7857] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  266.274606][ T7857] CPU: 1 UID: 0 PID: 7857 Comm: syz.1.399 Not tainted syzkaller #0 PREEMPT(full) 
[  266.274635][ T7857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  266.274651][ T7857] Call Trace:
[  266.274660][ T7857]  <TASK>
[  266.274670][ T7857]  dump_stack_lvl+0xe8/0x150
[  266.274704][ T7857]  should_fail_ex+0x412/0x560
[  266.274746][ T7857]  _copy_from_user+0x2d/0xb0
[  266.274789][ T7857]  __sys_bpf+0x229/0x950
[  266.274835][ T7857]  ? __pfx___sys_bpf+0x10/0x10
[  266.274892][ T7857]  ? srso_alias_return_thunk+0x5/0xfbef5
[  266.274924][ T7857]  ? ksys_write+0x242/0x270
[  266.274968][ T7857]  ? __pfx_ksys_write+0x10/0x10
[  266.275010][ T7857]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.275039][ T7857]  __x64_sys_bpf+0x7c/0x90
[  266.275075][ T7857]  do_syscall_64+0x15f/0xf80
[  266.275115][ T7857]  ? trace_irq_disable+0x3b/0x140
[  266.275163][ T7857]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  266.275188][ T7857] RIP: 0033:0x7fc586d9cdd9
[  266.275209][ T7857] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  266.275231][ T7857] RSP: 002b:00007fc587cd6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  266.275256][ T7857] RAX: ffffffffffffffda RBX: 00007fc587015fa0 RCX: 00007fc586d9cdd9
[  266.275275][ T7857] RDX: 0000000000000094 RSI: 0000200000000440 RDI: 0000000000000005
[  266.275291][ T7857] RBP: 00007fc587cd6090 R08: 0000000000000000 R09: 0000000000000000
[  266.275307][ T7857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  266.275322][ T7857] R13: 00007fc587016038 R14: 00007fc587015fa0 R15: 00007fff2d43b588
[  266.275362][ T7857]  </TASK>
[  266.580735][ T7510] 8021q: adding VLAN 0 to HW filter on device bond0
[  266.608933][ T7862] loop2: detected capacity change from 0 to 512
[  266.627928][ T7862] atomic_op ffff8880772de998 conn xmit_atomic 0000000000000000
[  266.647456][ T7510] 8021q: adding VLAN 0 to HW filter on device team0
[  266.710051][  T162] bridge0: port 1(bridge_slave_0) entered blocking state
[  266.717214][  T162] bridge0: port 1(bridge_slave_0) entered forwarding state
[  266.747891][   T29] usb 7-1: USB disconnect, device number 10
[  266.774891][ T5631] Bluetooth: hci1: Opcode 0x0c03 failed: -19
[  266.788185][  T162] bridge0: port 2(bridge_slave_1) entered blocking state
[  266.795424][  T162] bridge0: port 2(bridge_slave_1) entered forwarding state
[  266.985758][ T7510] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  267.220650][ T7510] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  267.386940][ T5284] 8021q: adding VLAN 0 to HW filter on device eth11
[  267.453530][ T7874] input: syz0 as /devices/virtual/input/input7
[  267.484802][ T7877] netlink: 8 bytes leftover after parsing attributes in process `syz.6.404'.
[  267.859799][ T7884] FAULT_INJECTION: forcing a failure.
[  267.859799][ T7884] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  267.905012][ T7884] CPU: 1 UID: 0 PID: 7884 Comm: syz.6.405 Not tainted syzkaller #0 PREEMPT(full) 
[  267.905047][ T7884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  267.905063][ T7884] Call Trace:
[  267.905073][ T7884]  <TASK>
[  267.905083][ T7884]  dump_stack_lvl+0xe8/0x150
[  267.905126][ T7884]  should_fail_ex+0x412/0x560
[  267.905169][ T7884]  _copy_from_user+0x2d/0xb0
[  267.905212][ T7884]  ___sys_sendmsg+0x1c6/0x360
[  267.905250][ T7884]  ? srso_alias_return_thunk+0x5/0xfbef5
[  267.905283][ T7884]  ? __lock_acquire+0x6b5/0x2cf0
[  267.905318][ T7884]  ? __pfx____sys_sendmsg+0x10/0x10
[  267.905397][ T7884]  ? __fget_files+0x2a/0x420
[  267.905430][ T7884]  ? srso_alias_return_thunk+0x5/0xfbef5
[  267.905462][ T7884]  ? __fget_files+0x3a0/0x420
[  267.905504][ T7884]  __x64_sys_sendmsg+0x1bd/0x2a0
[  267.905543][ T7884]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  267.905589][ T7884]  ? __pfx_ksys_write+0x10/0x10
[  267.905640][ T7884]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.905668][ T7884]  do_syscall_64+0x15f/0xf80
[  267.905702][ T7884]  ? trace_irq_disable+0x3b/0x140
[  267.905751][ T7884]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  267.905776][ T7884] RIP: 0033:0x7fa1d4f9cdd9
[  267.905799][ T7884] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  267.905820][ T7884] RSP: 002b:00007fa1d5e2d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  267.905847][ T7884] RAX: ffffffffffffffda RBX: 00007fa1d5215fa0 RCX: 00007fa1d4f9cdd9
[  267.905865][ T7884] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  267.905882][ T7884] RBP: 00007fa1d5e2d090 R08: 0000000000000000 R09: 0000000000000000
[  267.905897][ T7884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  267.905913][ T7884] R13: 00007fa1d5216038 R14: 00007fa1d5215fa0 R15: 00007fff62b384d8
[  267.905953][ T7884]  </TASK>
[  269.145222][ T7901] netlink: 8 bytes leftover after parsing attributes in process `syz.2.409'.
[  269.480325][ T7911] loop7: detected capacity change from 0 to 512
[  269.515060][ T7911] EXT4-fs (loop7): couldn't mount as ext2 due to feature incompatibilities
[  269.922080][ T7923] loop7: detected capacity change from 0 to 128
[  270.211943][ T7923] netdevsim netdevsim7: Direct firmware load for .. @ failed with error -2
[  270.316681][ T7936] netlink: 4 bytes leftover after parsing attributes in process `syz.1.419'.
[  270.413215][ T7923] netdevsim netdevsim7: Falling back to sysfs fallback for: .. @
[  270.476276][ T7939] FAULT_INJECTION: forcing a failure.
[  270.476276][ T7939] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  270.489338][ T7936] team0 (unregistering): Port device team_slave_0 removed
[  270.535924][ T7939] CPU: 0 UID: 0 PID: 7939 Comm: syz.2.420 Not tainted syzkaller #0 PREEMPT(full) 
[  270.535965][ T7939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  270.535982][ T7939] Call Trace:
[  270.535994][ T7939]  <TASK>
[  270.536006][ T7939]  dump_stack_lvl+0xe8/0x150
[  270.536062][ T7939]  should_fail_ex+0x412/0x560
[  270.536111][ T7939]  _copy_from_user+0x2d/0xb0
[  270.536159][ T7939]  ___sys_sendmsg+0x1c6/0x360
[  270.536202][ T7939]  ? srso_alias_return_thunk+0x5/0xfbef5
[  270.536240][ T7939]  ? __lock_acquire+0x6b5/0x2cf0
[  270.536278][ T7939]  ? __pfx____sys_sendmsg+0x10/0x10
[  270.536354][ T7939]  ? __fget_files+0x2a/0x420
[  270.536387][ T7939]  ? srso_alias_return_thunk+0x5/0xfbef5
[  270.536419][ T7939]  ? __fget_files+0x3a0/0x420
[  270.536461][ T7939]  __x64_sys_sendmsg+0x1bd/0x2a0
[  270.536504][ T7939]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  270.536549][ T7939]  ? __pfx_ksys_write+0x10/0x10
[  270.536592][ T7939]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.536629][ T7939]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.536655][ T7939]  do_syscall_64+0x15f/0xf80
[  270.536698][ T7939]  ? trace_irq_disable+0x3b/0x140
[  270.536755][ T7939]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  270.536781][ T7939] RIP: 0033:0x7f8ff3d9cdd9
[  270.536809][ T7939] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  270.536832][ T7939] RSP: 002b:00007f8ff4c08028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  270.536860][ T7939] RAX: ffffffffffffffda RBX: 00007f8ff4015fa0 RCX: 00007f8ff3d9cdd9
[  270.536884][ T7939] RDX: 0000000000000000 RSI: 00002000000003c0 RDI: 0000000000000004
[  270.536900][ T7939] RBP: 00007f8ff4c08090 R08: 0000000000000000 R09: 0000000000000000
[  270.536915][ T7939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  270.536931][ T7939] R13: 00007f8ff4016038 R14: 00007f8ff4015fa0 R15: 00007ffc731eb2a8
[  270.536970][ T7939]  </TASK>
[  270.762287][ T7937] syz.7.417: attempt to access beyond end of device
[  270.762287][ T7937] loop7: rw=2049, sector=138, nr_sectors = 112 limit=128
[  270.806285][ T7936] team0 (unregistering): Port device team_slave_1 removed
[  270.926378][ T7944] loop2: detected capacity change from 0 to 2048
[  271.057601][ T7946] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  271.103649][ T7944] NILFS error (device loop2): nilfs_check_folio: bad entry in directory #2: rec_len is too small for name_len - offset=56, inode=12, rec_len=24, name_len=56
[  271.133492][ T5284] 8021q: adding VLAN 0 to HW filter on device eth12
[  271.173123][ T7944] Remounting filesystem read-only
[  271.309273][ T7947] NILFS error (device loop2): nilfs_check_folio: bad entry in directory #2: rec_len is too small for name_len - offset=56, inode=12, rec_len=24, name_len=56
[  271.313739][ T7510] 8021q: adding VLAN 0 to HW filter on device batadv0
[  271.531513][ T7909] loop6: detected capacity change from 0 to 40427
[  271.539151][ T7909] F2FS-fs: heap/no_heap options were deprecated
[  271.608408][ T7909] F2FS-fs (loop6): build fault injection rate: 19
[  271.644445][ T7909] F2FS-fs (loop6): build fault injection type: 0x3bfe8c
[  272.250743][ T7909] F2FS-fs (loop6): invalid crc value
[  272.422020][ T7909] F2FS-fs (loop6): Failed to initialize F2FS segment manager (-4)
[  273.364298][ T5630] Bluetooth: hci6: command 0x0406 tx timeout
[  273.814884][ T7974] binder: 7972:7974 ioctl 541b 0 returned -22
[  273.823029][ T7975] FAULT_INJECTION: forcing a failure.
[  273.823029][ T7975] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  273.895100][ T7974] binder: 7972:7974 ioctl 89f0 2000000002c0 returned -22
[  273.989527][ T7975] CPU: 1 UID: 0 PID: 7975 Comm: syz.7.426 Not tainted syzkaller #0 PREEMPT(full) 
[  273.989576][ T7975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  273.989593][ T7975] Call Trace:
[  273.989604][ T7975]  <TASK>
[  273.989617][ T7975]  dump_stack_lvl+0xe8/0x150
[  273.989668][ T7975]  should_fail_ex+0x412/0x560
[  273.989716][ T7975]  _copy_from_user+0x2d/0xb0
[  273.989769][ T7975]  ___sys_sendmsg+0x1c6/0x360
[  273.989816][ T7975]  ? srso_alias_return_thunk+0x5/0xfbef5
[  273.989858][ T7975]  ? __lock_acquire+0x6b5/0x2cf0
[  273.989897][ T7975]  ? __pfx____sys_sendmsg+0x10/0x10
[  273.989973][ T7975]  ? __fget_files+0x2a/0x420
[  273.990013][ T7975]  ? srso_alias_return_thunk+0x5/0xfbef5
[  273.990043][ T7975]  ? __fget_files+0x3a0/0x420
[  273.990085][ T7975]  __x64_sys_sendmsg+0x1bd/0x2a0
[  273.990133][ T7975]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  273.990180][ T7975]  ? __pfx_ksys_write+0x10/0x10
[  273.990234][ T7975]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.990261][ T7975]  do_syscall_64+0x15f/0xf80
[  273.990303][ T7975]  ? trace_irq_disable+0x3b/0x140
[  273.990355][ T7975]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  273.990381][ T7975] RIP: 0033:0x7f941339cdd9
[  273.990409][ T7975] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  273.990430][ T7975] RSP: 002b:00007f94142c6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  273.990461][ T7975] RAX: ffffffffffffffda RBX: 00007f9413615fa0 RCX: 00007f941339cdd9
[  273.990480][ T7975] RDX: 0000000020002880 RSI: 0000200000001640 RDI: 0000000000000003
[  273.990497][ T7975] RBP: 00007f94142c6090 R08: 0000000000000000 R09: 0000000000000000
[  273.990514][ T7975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  273.990530][ T7975] R13: 00007f9413616038 R14: 00007f9413615fa0 R15: 00007fff1a0b3088
[  273.990569][ T7975]  </TASK>
[  275.129885][ T5801] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  275.914797][ T5801] usb 2-1: Using ep0 maxpacket: 16
[  275.942177][ T5801] usb 2-1: config 252 has an invalid interface number: 15 but max is 0
[  275.983016][ T5801] usb 2-1: config 252 has no interface number 0
[  276.034166][ T5801] usb 2-1: config 252 interface 15 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  276.107269][ T5801] usb 2-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=2b.29
[  276.120386][ T5801] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  276.122832][ T7997] bond1: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  276.150471][ T5801] usb 2-1: Product: syz
[  276.166025][ T7997] bond1 (unregistering): Released all slaves
[  276.189326][ T5801] usb 2-1: Manufacturer: syz
[  276.262167][ T5801] usb 2-1: SerialNumber: syz
[  276.264406][ T8001] loop7: detected capacity change from 0 to 128
[  276.389840][ T5801] usb 2-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[  276.528432][ T8001] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  277.127364][ T8001] ext4 filesystem being mounted at /40/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  277.702934][ T8016] FAULT_INJECTION: forcing a failure.
[  277.702934][ T8016] name failslab, interval 1, probability 0, space 0, times 0
[  277.716675][ T8016] CPU: 1 UID: 0 PID: 8016 Comm: syz.6.436 Not tainted syzkaller #0 PREEMPT(full) 
[  277.716723][ T8016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  277.716742][ T8016] Call Trace:
[  277.716764][ T8016]  <TASK>
[  277.716782][ T8016]  dump_stack_lvl+0xe8/0x150
[  277.716842][ T8016]  should_fail_ex+0x412/0x560
[  277.716902][ T8016]  should_failslab+0xa8/0x100
[  277.716965][ T8016]  kmem_cache_alloc_node_noprof+0x8f/0x690
[  277.717018][ T8016]  ? preempt_schedule_thunk+0x16/0x30
[  277.717082][ T8016]  ? dup_task_struct+0x52/0x840
[  277.717124][ T8016]  ? srso_alias_return_thunk+0x5/0xfbef5
[  277.717170][ T8016]  ? preempt_schedule_common+0x82/0xd0
[  277.717218][ T8016]  dup_task_struct+0x52/0x840
[  277.717253][ T8016]  copy_process+0x89b/0x4440
[  277.717280][ T8016]  ? srso_alias_return_thunk+0x5/0xfbef5
[  277.717311][ T8016]  ? _parse_integer_limit+0x1ae/0x1f0
[  277.717352][ T8016]  ? kstrtoull+0x12f/0x1d0
[  277.717385][ T8016]  ? srso_alias_return_thunk+0x5/0xfbef5
[  277.717422][ T8016]  ? srso_alias_return_thunk+0x5/0xfbef5
[  277.717455][ T8016]  ? get_pid_task+0x20/0x1f0
[  277.717509][ T8016]  ? __pfx_copy_process+0x10/0x10
[  277.717540][ T8016]  ? get_pid_task+0x20/0x1f0
[  277.717571][ T8016]  ? get_pid_task+0x20/0x1f0
[  277.717614][ T8016]  kernel_clone+0x284/0x8f0
[  277.717645][ T8016]  ? srso_alias_return_thunk+0x5/0xfbef5
[  277.717684][ T8016]  ? __pfx_kernel_clone+0x10/0x10
[  277.717729][ T8016]  ? srso_alias_return_thunk+0x5/0xfbef5
[  277.717759][ T8016]  ? __mutex_unlock_slowpath+0x1be/0x6f0
[  277.717817][ T8016]  __x64_sys_clone+0x1b6/0x230
[  277.717855][ T8016]  ? __pfx___x64_sys_clone+0x10/0x10
[  277.717907][ T8016]  ? __pfx_ksys_write+0x10/0x10
[  277.717971][ T8016]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  277.718000][ T8016]  do_syscall_64+0x15f/0xf80
[  277.718047][ T8016]  ? srso_alias_return_thunk+0x5/0xfbef5
[  277.718083][ T8016]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  277.718118][ T8016] RIP: 0033:0x7fa1d4f9cdd9
[  277.718148][ T8016] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  277.718173][ T8016] RSP: 002b:00007fa1d5e0bfd8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  277.718205][ T8016] RAX: ffffffffffffffda RBX: 00007fa1d5216090 RCX: 00007fa1d4f9cdd9
[  277.718225][ T8016] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  277.718242][ T8016] RBP: 00007fa1d5e0c090 R08: 0000000000000000 R09: 0000000000000000
[  277.718259][ T8016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  277.718276][ T8016] R13: 00007fa1d5216128 R14: 00007fa1d5216090 R15: 00007fff62b384d8
[  277.718316][ T8016]  </TASK>
[  278.276996][ T5630] Bluetooth: hci0: command 0x0419 tx timeout
[  278.277467][ T5631] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  279.058919][   T57] usb 2-1: Failed to submit usb control message: -110
[  280.386663][ T8014] loop2: detected capacity change from 0 to 2048
[  280.429322][   T57] usb 2-1: unable to send the bmi data to the device: -110
[  280.520960][   T57] usb 2-1: unable to get target info from device
[  280.530896][ T6438] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  280.564279][   T57] usb 2-1: could not get target info (-110)
[  280.622188][   T57] usb 2-1: could not probe fw (-110)
[  280.652754][ T7510] veth0_vlan: entered promiscuous mode
[  280.692025][ T5777] usb 2-1: USB disconnect, device number 10
[  280.969616][ T7510] veth1_vlan: entered promiscuous mode
[  280.997816][ T7510] veth0_macvtap: entered promiscuous mode
[  281.008123][ T7510] veth1_macvtap: entered promiscuous mode
[  281.027651][ T7510] batman_adv: batadv0: Interface activated: batadv_slave_0
[  281.040079][ T7510] batman_adv: batadv0: Interface activated: batadv_slave_1
[  281.199387][ T8028] netlink: 212368 bytes leftover after parsing attributes in process `syz.2.440'.
[  281.244889][ T8027] loop1: detected capacity change from 0 to 32768
[  281.435987][  T162] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  281.474417][ T8027] JBD2: Ignoring recovery information on journal
[  281.554088][ T8027] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  281.807643][  T162] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  281.839904][  T162] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  281.865295][ T8041] netlink: 212368 bytes leftover after parsing attributes in process `syz.5.443'.
[  281.866319][  T162] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  282.410556][ T8027] OCFS2: ERROR (device loop1): int ocfs2_reserve_local_alloc_bits(struct ocfs2_super *, u32, struct ocfs2_alloc_context *): local alloc inode 76 says it has 9 used bits, but a count shows 8
[  282.429722][ T8027] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  282.439647][ T8027] OCFS2: File system is now read-only.
[  282.445162][ T8027] (syz.1.439,8027,0):ocfs2_reserve_local_alloc_bits:710 ERROR: status = -30
[  282.453954][ T8027] (syz.1.439,8027,0):ocfs2_reserve_clusters_with_limit:1266 ERROR: status = -30
[  282.463051][ T8027] (syz.1.439,8027,0):ocfs2_reserve_clusters_with_limit:1315 ERROR: status = -30
[  282.472664][ T8027] (syz.1.439,8027,0):ocfs2_lock_allocators:3101 ERROR: status = -30
[  282.480735][ T8027] (syz.1.439,8027,0):ocfs2_write_begin_nolock:1724 ERROR: status = -30
[  282.490813][ T8027] (syz.1.439,8027,0):ocfs2_write_begin:1888 ERROR: status = -30
[  282.907258][ T5638] ocfs2: Unmounting device (7,1) on (node local)
[  282.917754][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  282.973835][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  283.095623][ T8048] syzkaller0: entered promiscuous mode
[  283.128941][ T8048] syzkaller0: entered allmulticast mode
[  283.243091][ T6491] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  283.251000][ T6491] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  284.674360][  T805] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  285.235207][  T805] usb 8-1: device descriptor read/64, error -71
[  285.570541][  T805] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  285.650369][ T5630] Bluetooth: hci0: command 0x0419 tx timeout
[  285.696368][ T5631] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  286.012149][  T805] usb 8-1: device descriptor read/64, error -71
[  286.124227][  T805] usb usb8-port1: attempt power cycle
[  286.347534][ T8081] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  286.394365][ T8081] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  286.588950][  T805] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  286.660474][ T8081] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  286.723324][ T8081] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  286.821922][ T8081] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  286.862335][ T8081] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  287.013560][ T8081] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  287.021311][  T805] usb 8-1: device descriptor read/8, error -71
[  287.157438][ T8081] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  287.163649][ T8081] Bluetooth: hci6: Opcode 0x0406 failed: -4
[  287.311785][ T8081] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  287.317901][ T8081] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  287.411196][ T5631] Bluetooth: hci2: command 0x0406 tx timeout
[  287.493531][ T8081] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  287.798388][ T8126] loop7: detected capacity change from 0 to 512
[  287.902557][ T5355] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  287.921254][ T8126] EXT4-fs: Mount option(s) incompatible with ext3
[  288.176306][ T8134] fuse: fd is not a fuse device
[  288.479706][ T8140] FAULT_INJECTION: forcing a failure.
[  288.479706][ T8140] name failslab, interval 1, probability 0, space 0, times 0
[  288.492570][ T8140] CPU: 1 UID: 0 PID: 8140 Comm: syz.7.462 Not tainted syzkaller #0 PREEMPT(full) 
[  288.492605][ T8140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  288.492620][ T8140] Call Trace:
[  288.492634][ T8140]  <TASK>
[  288.492645][ T8140]  dump_stack_lvl+0xe8/0x150
[  288.492684][ T8140]  should_fail_ex+0x412/0x560
[  288.492724][ T8140]  ? sock_alloc_inode+0x2c/0x190
[  288.492753][ T8140]  should_failslab+0xa8/0x100
[  288.492801][ T8140]  kmem_cache_alloc_lru_noprof+0x87/0x640
[  288.492850][ T8140]  ? __pfx_sock_alloc_inode+0x10/0x10
[  288.492876][ T8140]  sock_alloc_inode+0x2c/0x190
[  288.492903][ T8140]  ? __pfx_sock_alloc_inode+0x10/0x10
[  288.492926][ T8140]  alloc_inode+0x6a/0x1b0
[  288.492960][ T8140]  __sock_create+0x12d/0x9d0
[  288.493001][ T8140]  __sys_socket+0xd6/0x1b0
[  288.493031][ T8140]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.493059][ T8140]  __x64_sys_socket+0x7a/0x90
[  288.493089][ T8140]  do_syscall_64+0x15f/0xf80
[  288.493129][ T8140]  ? srso_alias_return_thunk+0x5/0xfbef5
[  288.493168][ T8140]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  288.493194][ T8140] RIP: 0033:0x7f941339cdd9
[  288.493217][ T8140] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  288.493238][ T8140] RSP: 002b:00007f9414284028 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  288.493264][ T8140] RAX: ffffffffffffffda RBX: 00007f9413616180 RCX: 00007f941339cdd9
[  288.493283][ T8140] RDX: 0000000000000000 RSI: 0000000000000003 RDI: 000000000000000a
[  288.493298][ T8140] RBP: 00007f9414284090 R08: 0000000000000000 R09: 0000000000000000
[  288.493314][ T8140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  288.493330][ T8140] R13: 00007f9413616218 R14: 00007f9413616180 R15: 00007fff1a0b3088
[  288.493372][ T8140]  </TASK>
[  288.493436][ T8140] socket: no more sockets
[  288.741509][ T5631] Bluetooth: hci4: command 0x0406 tx timeout
[  288.860793][ T5630] Bluetooth: hci5: command 0x0c1a tx timeout
[  289.020472][ T5630] Bluetooth: hci0: command 0x0419 tx timeout
[  289.057745][ T8081] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  289.146182][ T5630] Bluetooth: hci6: command 0x0406 tx timeout
[  289.310715][ T5631] Bluetooth: hci3: command 0x0c1a tx timeout
[  289.372505][ T5355] usb 3-1: device descriptor read/all, error -71
[  289.389336][ T8153] loop1: detected capacity change from 0 to 64
[  289.470419][ T5630] Bluetooth: hci2: command 0x0406 tx timeout
[  289.546740][ T8154] loop7: detected capacity change from 0 to 1024
[  289.765598][ T8154] EXT4-fs: Ignoring removed orlov option
[  290.192685][ T8154] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  290.796047][ T8176] geneve2: entered promiscuous mode
[  290.811731][ T5630] Bluetooth: hci4: command 0x0406 tx timeout
[  290.892159][ T8176] geneve2: entered allmulticast mode
[  291.093540][ T5630] Bluetooth: hci0: command 0x0419 tx timeout
[  291.099989][ T5631] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  291.257293][ T5631] Bluetooth: hci6: command 0x0406 tx timeout
[  291.493474][ T5631] Bluetooth: hci3: command 0x0c1a tx timeout
[  291.660062][  T162] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  291.714719][ T3269] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  291.731724][ T6491] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  291.740961][ T8185] netlink: 20 bytes leftover after parsing attributes in process `syz.7.466'.
[  291.776522][ T6491] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  291.788076][   T30] audit: type=1800 audit(1777748613.629:6): pid=8172 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.466" name="bus" dev="loop7" ino=18 res=0 errno=0
[  292.828279][ T8197] loop2: detected capacity change from 0 to 512
[  293.225988][ T5631] Bluetooth: hci0: command 0x0419 tx timeout
[  293.246817][ T8197] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  293.290636][ T8197] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.476: bg 0: block 104: invalid block bitmap
[  293.303532][ T8197] loop2: lost filesystem error report for type 5 error -117
[  293.304284][ T8197] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6679: Corrupt filesystem
[  293.326591][ T8197] loop2: lost filesystem error report for type 5 error -117
[  293.332300][    C0] EXT4-fs (loop2): error count since last fsck: 2
[  293.346295][    C0] EXT4-fs (loop2): initial error at time 1777748615: ext4_validate_block_bitmap:432
[  293.356473][    C0] EXT4-fs (loop2): last error at time 1777748615: ext4_mb_clear_bb:6679
[  293.375139][ T8197] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.476: invalid indirect mapped block 1 (level 1)
[  293.388405][ T8197] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  293.397722][ T8197] EXT4-fs (loop2): 1 truncate cleaned up
[  293.414511][ T8197] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  293.446784][ T8196] netlink: 16 bytes leftover after parsing attributes in process `syz.2.476'.
[  293.599718][ T6438] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.653699][ T5631] Bluetooth: hci3: command 0x0c1a tx timeout
[  293.848903][ T5635] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  294.027069][ T8203] loop6: detected capacity change from 0 to 1024
[  294.049009][ T8203] EXT4-fs: Ignoring removed mblk_io_submit option
[  294.265242][ T8203] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  294.277623][ T8203] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  294.361513][   T30] audit: type=1800 audit(1777748616.899:7): pid=8203 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.479" name="file1" dev="loop6" ino=15 res=0 errno=0
[  294.675416][ T5631] Bluetooth: hci5: unexpected event for opcode 0x2031
[  294.812267][ T5801] usb 7-1: new full-speed USB device number 11 using dummy_hcd
[  295.321763][ T5630] Bluetooth: hci0: command 0x0419 tx timeout
[  295.322080][ T5631] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  295.353249][ T8201] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set
[  295.503597][ T8201] EXT4-fs (loop6): Remounting filesystem read-only
[  295.517169][ T5749] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  295.542836][ T5801] usb 7-1: device descriptor read/64, error -71
[  295.558004][ T5749] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  295.830596][ T5801] usb 7-1: new full-speed USB device number 12 using dummy_hcd
[  296.397676][ T5801] usb 7-1: device descriptor read/64, error -71
[  296.506966][ T5801] usb usb7-port1: attempt power cycle
[  296.655356][ T8250] netlink: 'syz.1.489': attribute type 25 has an invalid length.
[  296.686795][ T8263] FAULT_INJECTION: forcing a failure.
[  296.686795][ T8263] name failslab, interval 1, probability 0, space 0, times 0
[  296.686867][ T8263] CPU: 0 UID: 0 PID: 8263 Comm: syz.8.485 Not tainted syzkaller #0 PREEMPT(full) 
[  296.686896][ T8263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  296.686915][ T8263] Call Trace:
[  296.686926][ T8263]  <TASK>
[  296.686937][ T8263]  dump_stack_lvl+0xe8/0x150
[  296.686988][ T8263]  should_fail_ex+0x412/0x560
[  296.687046][ T8263]  should_failslab+0xa8/0x100
[  296.687113][ T8263]  ? do_getname+0x2e/0x250
[  296.687149][ T8263]  kmem_cache_alloc_noprof+0x87/0x650
[  296.687197][ T8263]  ? __pfx_vfs_write+0x10/0x10
[  296.687265][ T8263]  do_getname+0x2e/0x250
[  296.687289][ T8263]  ? getname_flags+0x11/0x20
[  296.687323][ T8263]  do_sys_openat2+0xca/0x200
[  296.687364][ T8263]  ? __pfx_do_sys_openat2+0x10/0x10
[  296.687395][ T8263]  ? ksys_write+0x242/0x270
[  296.687435][ T8263]  ? __pfx_ksys_write+0x10/0x10
[  296.687476][ T8263]  __x64_sys_openat+0x138/0x170
[  296.687510][ T8263]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.687541][ T8263]  do_syscall_64+0x15f/0xf80
[  296.687583][ T8263]  ? trace_irq_disable+0x3b/0x140
[  296.687648][ T8263]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  296.687671][ T8263] RIP: 0033:0x7fded675d60e
[  296.687697][ T8263] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  296.687719][ T8263] RSP: 002b:00007fded75d1ec8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  296.687751][ T8263] RAX: ffffffffffffffda RBX: 00007fded75d26c0 RCX: 00007fded675d60e
[  296.687770][ T8263] RDX: 0000000000000002 RSI: 00007fded75d1f90 RDI: ffffffffffffff9c
[  296.687788][ T8263] RBP: 00007fded75d2090 R08: 0000000000000000 R09: 0000000000000000
[  296.687804][ T8263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  296.687820][ T8263] R13: 00007fded6a16128 R14: 00007fded6a16090 R15: 00007ffea62334d8
[  296.687856][ T8263]  </TASK>
[  297.018471][ T5942] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  297.322009][ T8250] netlink: 4 bytes leftover after parsing attributes in process `syz.1.489'.
[  297.400999][ T5631] Bluetooth: hci0: command 0x0419 tx timeout
[  297.915510][ T8276] loop6: detected capacity change from 0 to 512
[  298.186904][ T8276] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  298.641257][ T8276] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.493: bg 0: block 104: invalid block bitmap
[  298.653938][ T8276] loop6: lost filesystem error report for type 5 error -117
[  298.656236][ T8276] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6679: Corrupt filesystem
[  298.675472][ T8276] loop6: lost filesystem error report for type 5 error -117
[  298.677574][ T8250] netlink: 'syz.1.489': attribute type 25 has an invalid length.
[  298.690446][    C0] EXT4-fs (loop6): error count since last fsck: 2
[  298.692916][ T8250] netlink: 4 bytes leftover after parsing attributes in process `syz.1.489'.
[  298.706828][    C0] EXT4-fs (loop6): initial error at time 1777748621: ext4_validate_block_bitmap:432
[  298.717679][    C0] EXT4-fs (loop6): last error at time 1777748621: ext4_mb_clear_bb:6679
[  298.747170][ T5631] Bluetooth: hci5: Controller not accepting commands anymore: ncmd = 0
[  298.750466][ T3325] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  298.776237][ T5631] Bluetooth: hci5: Injecting HCI hardware error event
[  298.787622][ T5631] Bluetooth: hci5: hardware error 0x00
[  298.797799][  T162] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  298.807935][  T162] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  298.825860][   T57] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  298.916536][ T8276] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.493: invalid indirect mapped block 1 (level 1)
[  298.929723][ T8276] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  298.999048][ T8276] EXT4-fs (loop6): 1 truncate cleaned up
[  299.016302][ T8276] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  299.053773][ T8275] netlink: 16 bytes leftover after parsing attributes in process `syz.6.493'.
[  299.163344][ T8283] loop8: detected capacity change from 0 to 512
[  300.189782][ T8287] loop2: detected capacity change from 0 to 1024
[  300.193779][ T5942] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  300.197692][ T8287] hfsplus: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿ00000000000000000000000ÿ0x0000000000000006ÿ18446744073709551615B×�8¬`í5¨¯´Áðî•
Š É0¤:¨JÕÊzÇsßåHU¾t3X†æ²F¤þÿB±£.iŠ`º9bxt0è‚.�¥?z˜ä{‚­ˆ…¥bÉÕ	;ØÏîP2M+7.P4ô¸ìR.Â*8Ì<…)ÂC ‚a–'—]Ç"oR�aFÕ³v6ø]ýa)o–'
[  300.381199][ T8283] EXT4-fs: Mount option(s) incompatible with ext3
[  300.943180][ T5631] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  302.931558][ T8293] loop1: detected capacity change from 0 to 256
[  303.335968][ T8293] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x4d7dfc9d, utbl_chksum : 0xe619d30d)
[  303.540778][ T8309] loop6: detected capacity change from 0 to 512
[  304.137770][ T8309] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  304.233505][ T8307] input: syz1 as /devices/virtual/input/input8
[  304.308969][ T8309] EXT4-fs error (device loop6): ext4_validate_block_bitmap:432: comm syz.6.498: bg 0: block 104: invalid block bitmap
[  304.321551][ T8309] loop6: lost filesystem error report for type 5 error -117
[  304.353485][ T8294] loop2: detected capacity change from 0 to 1024
[  304.377870][    C1] EXT4-fs (loop6): error count since last fsck: 1
[  304.384447][    C1] EXT4-fs (loop6): initial error at time 1777748626: ext4_validate_block_bitmap:432
[  304.393870][    C1] EXT4-fs (loop6): last error at time 1777748626: ext4_validate_block_bitmap:432
[  304.405535][ T8309] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6679: Corrupt filesystem
[  304.414298][ T8309] loop6: lost filesystem error report for type 5 error -117
[  304.446340][ T8309] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #11: comm syz.6.498: invalid indirect mapped block 1 (level 1)
[  304.466866][ T8309] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  304.471528][ T8309] EXT4-fs (loop6): 1 truncate cleaned up
[  304.505692][ T8309] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  304.570924][ T8306] netlink: 16 bytes leftover after parsing attributes in process `syz.6.498'.
[  305.187570][ T5942] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  305.362058][ T8294] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback.
[  305.423058][ T8294] ext4 filesystem being mounted at /87/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  305.632797][ T8332] loop7: detected capacity change from 0 to 256
[  305.674144][ T8331] loop6: detected capacity change from 0 to 256
[  305.747596][ T8332] exFAT-fs (loop7): failed to load upcase table (idx : 0x00012c80, chksum : 0x8ff561f5, utbl_chksum : 0xe619d30d)
[  305.829652][ T8335] loop1: detected capacity change from 0 to 1024
[  305.881191][ T8335] EXT4-fs: Ignoring removed orlov option
[  305.885593][ T8331] exfat: Deprecated parameter 'namecase'
[  305.961965][ T8331] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xfe5fe6b3, utbl_chksum : 0xe619d30d)
[  306.048017][ T8335] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  306.216048][ T8335] FAULT_INJECTION: forcing a failure.
[  306.216048][ T8335] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  306.252461][ T8335] CPU: 1 UID: 0 PID: 8335 Comm: syz.1.510 Not tainted syzkaller #0 PREEMPT(full) 
[  306.252507][ T8335] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  306.252524][ T8335] Call Trace:
[  306.252535][ T8335]  <TASK>
[  306.252548][ T8335]  dump_stack_lvl+0xe8/0x150
[  306.252595][ T8335]  should_fail_ex+0x412/0x560
[  306.252643][ T8335]  _copy_from_user+0x2d/0xb0
[  306.252691][ T8335]  do_handle_open+0xf2/0x970
[  306.252728][ T8335]  ? __pfx_do_handle_open+0x10/0x10
[  306.252755][ T8335]  ? srso_alias_return_thunk+0x5/0xfbef5
[  306.252792][ T8335]  ? ksys_write+0x242/0x270
[  306.252849][ T8335]  ? __pfx_ksys_write+0x10/0x10
[  306.252896][ T8335]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  306.252925][ T8335]  do_syscall_64+0x15f/0xf80
[  306.252967][ T8335]  ? trace_irq_disable+0x3b/0x140
[  306.253020][ T8335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  306.253045][ T8335] RIP: 0033:0x7fc586d9cdd9
[  306.253069][ T8335] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  306.253091][ T8335] RSP: 002b:00007fc587cd6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000130
[  306.253132][ T8335] RAX: ffffffffffffffda RBX: 00007fc587015fa0 RCX: 00007fc586d9cdd9
[  306.253150][ T8335] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000004
[  306.253167][ T8335] RBP: 00007fc587cd6090 R08: 0000000000000000 R09: 0000000000000000
[  306.253183][ T8335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  306.253198][ T8335] R13: 00007fc587016038 R14: 00007fc587015fa0 R15: 00007fff2d43b588
[  306.253236][ T8335]  </TASK>
[  306.568180][ T8346] loop7: detected capacity change from 0 to 1024
[  306.576389][ T8346] EXT4-fs: Ignoring removed orlov option
[  306.618386][ T5801] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  306.700985][ T8346] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  306.710707][ T5638] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.822215][ T8351] netlink: 276 bytes leftover after parsing attributes in process `syz.8.513'.
[  306.923668][ T5801] usb 7-1: config 0 has an invalid interface number: 109 but max is 0
[  306.973832][   T30] audit: type=1800 audit(1777748629.469:8): pid=8352 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.512" name="file1" dev="loop7" ino=15 res=0 errno=0
[  306.978774][ T5801] usb 7-1: config 0 has no interface number 0
[  307.120873][ T5801] usb 7-1: too many endpoints for config 0 interface 109 altsetting 97: 99, using maximum allowed: 30
[  307.152920][ T8352] netlink: 20 bytes leftover after parsing attributes in process `syz.7.512'.
[  307.197482][ T5801] usb 7-1: config 0 interface 109 altsetting 97 has 0 endpoint descriptors, different from the interface descriptor's value: 99
[  307.201943][   T30] audit: type=1800 audit(1777748629.649:9): pid=8352 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.512" name="bus" dev="loop7" ino=18 res=0 errno=0
[  307.239304][ T5801] usb 7-1: config 0 interface 109 has no altsetting 0
[  307.287484][ T5801] usb 7-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  307.313644][ T5635] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  307.338898][ T5801] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  307.419844][ T5801] usb 7-1: config 0 descriptor??
[  307.429342][ T8356] netlink: 156 bytes leftover after parsing attributes in process `syz.1.514'.
[  307.452275][ T8356] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  307.459835][ T8356] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  307.552772][ T6438] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  307.747867][ T5801] usb 7-1: string descriptor 0 read error: -71
[  307.814040][ T5801] cp210x 7-1:0.109: cp210x converter detected
[  307.863528][ T5801] cp210x 7-1:0.109: failed to get vendor val 0x370b size 1: -71
[  307.872219][ T5801] cp210x 7-1:0.109: querying part number failed
[  307.966181][ T8362] loop7: detected capacity change from 0 to 1024
[  308.248954][ T8365] loop2: detected capacity change from 0 to 1024
[  308.263077][ T8362] EXT4-fs (loop7): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  308.311585][ T5801] usb 7-1: cp210x converter now attached to ttyUSB0
[  308.322733][ T8362] ext4 filesystem being mounted at /56/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  308.336126][ T8365] EXT4-fs: Ignoring removed i_version option
[  308.338476][ T5801] usb 7-1: USB disconnect, device number 14
[  308.342302][ T8365] ext2: Unknown parameter 'dioread_no'
[  308.398695][ T8362] FAULT_INJECTION: forcing a failure.
[  308.398695][ T8362] name failslab, interval 1, probability 0, space 0, times 0
[  308.411450][ T8362] CPU: 1 UID: 0 PID: 8362 Comm: syz.7.516 Not tainted syzkaller #0 PREEMPT(full) 
[  308.411480][ T8362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  308.411494][ T8362] Call Trace:
[  308.411504][ T8362]  <TASK>
[  308.411514][ T8362]  dump_stack_lvl+0xe8/0x150
[  308.411554][ T8362]  should_fail_ex+0x412/0x560
[  308.411591][ T8362]  should_failslab+0xa8/0x100
[  308.411637][ T8362]  ? do_getname+0x2e/0x250
[  308.411660][ T8362]  kmem_cache_alloc_noprof+0x87/0x650
[  308.411696][ T8362]  ? __pfx_vfs_write+0x10/0x10
[  308.411742][ T8362]  do_getname+0x2e/0x250
[  308.411761][ T8362]  ? getname_flags+0x11/0x20
[  308.411784][ T8362]  do_sys_openat2+0xca/0x200
[  308.411811][ T8362]  ? __pfx_do_sys_openat2+0x10/0x10
[  308.411835][ T8362]  ? ksys_write+0x242/0x270
[  308.411866][ T8362]  ? __pfx_ksys_write+0x10/0x10
[  308.411895][ T8362]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.411918][ T8362]  __x64_sys_open+0x11e/0x150
[  308.411944][ T8362]  do_syscall_64+0x15f/0xf80
[  308.411976][ T8362]  ? trace_irq_disable+0x3b/0x140
[  308.412018][ T8362]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  308.412039][ T8362] RIP: 0033:0x7f941339cdd9
[  308.412062][ T8362] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  308.412078][ T8362] RSP: 002b:00007f94142c6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  308.412114][ T8362] RAX: ffffffffffffffda RBX: 00007f9413615fa0 RCX: 00007f941339cdd9
[  308.412128][ T8362] RDX: 0000000000000001 RSI: 0000000000109042 RDI: 0000200000000100
[  308.412141][ T8362] RBP: 00007f94142c6090 R08: 0000000000000000 R09: 0000000000000000
[  308.412153][ T8362] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  308.412165][ T8362] R13: 00007f9413616038 R14: 00007f9413615fa0 R15: 00007fff1a0b3088
[  308.412195][ T8362]  </TASK>
[  308.481441][ T8367] overlayfs: failed to clone upperpath
[  308.918016][ T5801] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  308.947083][ T5801] cp210x 7-1:0.109: device disconnected
[  308.981190][ T8371] FAULT_INJECTION: forcing a failure.
[  308.981190][ T8371] name failslab, interval 1, probability 0, space 0, times 0
[  309.151288][ T8371] CPU: 0 UID: 0 PID: 8371 Comm: syz.8.520 Not tainted syzkaller #0 PREEMPT(full) 
[  309.151337][ T8371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  309.151356][ T8371] Call Trace:
[  309.151367][ T8371]  <TASK>
[  309.151379][ T8371]  dump_stack_lvl+0xe8/0x150
[  309.151442][ T8371]  should_fail_ex+0x412/0x560
[  309.151486][ T8371]  should_failslab+0xa8/0x100
[  309.151550][ T8371]  __kmalloc_cache_noprof+0x88/0x660
[  309.151602][ T8371]  ? alloc_pipe_info+0xe8/0x4d0
[  309.151661][ T8371]  alloc_pipe_info+0xe8/0x4d0
[  309.151701][ T8371]  splice_direct_to_actor+0xa08/0xc70
[  309.151756][ T8371]  ? kstrtouint+0x6e/0xe0
[  309.151792][ T8371]  ? __pfx_direct_splice_actor+0x10/0x10
[  309.151828][ T8371]  ? __pfx_aa_file_perm+0x10/0x10
[  309.151882][ T8371]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  309.151928][ T8371]  do_splice_direct+0x195/0x290
[  309.151965][ T8371]  ? __pfx_do_splice_direct+0x10/0x10
[  309.152000][ T8371]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  309.152039][ T8371]  ? srso_alias_return_thunk+0x5/0xfbef5
[  309.152081][ T8371]  ? security_file_permission+0x75/0x260
[  309.152124][ T8371]  ? srso_alias_return_thunk+0x5/0xfbef5
[  309.152153][ T8371]  ? rw_verify_area+0x255/0x4d0
[  309.152195][ T8371]  ? srso_alias_return_thunk+0x5/0xfbef5
[  309.152230][ T8371]  do_sendfile+0x535/0x7d0
[  309.152270][ T8371]  ? __pfx_vfs_write+0x10/0x10
[  309.152314][ T8371]  ? __pfx_do_sendfile+0x10/0x10
[  309.152344][ T8371]  ? __fget_files+0x3a0/0x420
[  309.152396][ T8371]  __se_sys_sendfile64+0x144/0x1a0
[  309.152430][ T8371]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  309.152464][ T8371]  ? srso_alias_return_thunk+0x5/0xfbef5
[  309.152496][ T8371]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.152525][ T8371]  do_syscall_64+0x15f/0xf80
[  309.152570][ T8371]  ? trace_irq_disable+0x3b/0x140
[  309.152628][ T8371]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  309.152654][ T8371] RIP: 0033:0x7fded679cdd9
[  309.152682][ T8371] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  309.152707][ T8371] RSP: 002b:00007fded75f3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  309.152746][ T8371] RAX: ffffffffffffffda RBX: 00007fded6a15fa0 RCX: 00007fded679cdd9
[  309.152766][ T8371] RDX: 0000000000000000 RSI: 000000000000000c RDI: 000000000000000e
[  309.152782][ T8371] RBP: 00007fded75f3090 R08: 0000000000000000 R09: 0000000000000000
[  309.152799][ T8371] R10: 0000000100000000 R11: 0000000000000246 R12: 0000000000000001
[  309.152813][ T8371] R13: 00007fded6a16038 R14: 00007fded6a15fa0 R15: 00007ffea62334d8
[  309.152854][ T8371]  </TASK>
[  309.354336][ T8384] netlink: 276 bytes leftover after parsing attributes in process `syz.1.524'.
[  309.372312][ T8383] loop2: detected capacity change from 0 to 1024
[  309.392305][ T6438] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  309.524117][ T8383] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  310.388141][ T8394] No such timeout policy "syz0"
[  312.173091][ T5635] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  312.379337][   T24] usb 8-1: new full-speed USB device number 7 using dummy_hcd
[  312.412215][ T8403] loop6: detected capacity change from 0 to 2048
[  312.612132][ T8409] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  313.124554][ T5777] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  313.231184][ T8418] loop8: detected capacity change from 0 to 64
[  313.236501][   T24] usb 8-1: device not accepting address 7, error -71
[  313.979855][ T5777] usb 3-1: Using ep0 maxpacket: 16
[  314.003549][ T5777] usb 3-1: unable to get BOS descriptor or descriptor too short
[  314.038292][ T8403] FAULT_INJECTION: forcing a failure.
[  314.038292][ T8403] name failslab, interval 1, probability 0, space 0, times 0
[  314.071267][ T5777] usb 3-1: config 7 has an invalid interface number: 192 but max is 0
[  314.091741][ T5777] usb 3-1: config 7 has an invalid descriptor of length 236, skipping remainder of the config
[  314.092130][ T8403] CPU: 1 UID: 0 PID: 8403 Comm: syz.6.531 Not tainted syzkaller #0 PREEMPT(full) 
[  314.092166][ T8403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  314.092182][ T8403] Call Trace:
[  314.092194][ T8403]  <TASK>
[  314.092206][ T8403]  dump_stack_lvl+0xe8/0x150
[  314.092257][ T8403]  should_fail_ex+0x412/0x560
[  314.092312][ T8403]  should_failslab+0xa8/0x100
[  314.092381][ T8403]  __kmalloc_noprof+0xe8/0x760
[  314.092429][ T8403]  ? srso_alias_return_thunk+0x5/0xfbef5
[  314.092470][ T8403]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  314.092528][ T8403]  tomoyo_realpath_from_path+0xe3/0x5d0
[  314.092570][ T8403]  ? tomoyo_domain+0xd7/0x130
[  314.092614][ T8403]  ? tomoyo_path_number_perm+0x219/0x630
[  314.092645][ T8403]  tomoyo_path_number_perm+0x246/0x630
[  314.092681][ T8403]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  314.092708][ T8403]  ? srso_alias_return_thunk+0x5/0xfbef5
[  314.092738][ T8403]  ? __lock_acquire+0x6b5/0x2cf0
[  314.092780][ T8403]  ? srso_alias_return_thunk+0x5/0xfbef5
[  314.092821][ T8403]  ? srso_alias_return_thunk+0x5/0xfbef5
[  314.092851][ T8403]  ? __mutex_unlock_slowpath+0x1be/0x6f0
[  314.092926][ T8403]  ? __fget_files+0x2a/0x420
[  314.092969][ T8403]  ? __fget_files+0x2a/0x420
[  314.092999][ T8403]  ? __fget_files+0x3a0/0x420
[  314.093028][ T8403]  ? __fget_files+0x2a/0x420
[  314.093064][ T8403]  security_file_ioctl+0xc3/0x2a0
[  314.093100][ T8403]  __se_sys_ioctl+0x47/0x170
[  314.093161][ T8403]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.093190][ T8403]  do_syscall_64+0x15f/0xf80
[  314.093231][ T8403]  ? trace_irq_disable+0x3b/0x140
[  314.093288][ T8403]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  314.093317][ T8403] RIP: 0033:0x7fa1d4f9cdd9
[  314.093347][ T8403] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  314.093381][ T8403] RSP: 002b:00007fa1d5e2d028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  314.093415][ T8403] RAX: ffffffffffffffda RBX: 00007fa1d5215fa0 RCX: 00007fa1d4f9cdd9
[  314.093434][ T8403] RDX: 0000200000000000 RSI: 00000000c020660b RDI: 0000000000000004
[  314.093452][ T8403] RBP: 00007fa1d5e2d090 R08: 0000000000000000 R09: 0000000000000000
[  314.093468][ T8403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  314.093484][ T8403] R13: 00007fa1d5216038 R14: 00007fa1d5215fa0 R15: 00007fff62b384d8
[  314.093526][ T8403]  </TASK>
[  314.093540][ T8403] ERROR: Out of memory at tomoyo_realpath_from_path.
[  314.111930][ T5777] usb 3-1: config 7 has no interface number 0
[  314.205246][ T8409] NILFS (loop6): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[  314.333647][ T5777] usb 3-1: config 7 interface 192 has no altsetting 0
[  314.398776][ T8409] NILFS error (device loop6): nilfs_bmap_propagate: broken bmap (inode number=4)
[  314.450069][ T8409] Remounting filesystem read-only
[  314.511694][ T5942] NILFS (loop6): disposed unprocessed dirty file(s) when stopping log writer
[  314.562821][ T5777] usb 3-1: New USB device found, idVendor=0421, idProduct=0128, bcdDevice=a6.39
[  314.579259][ T5777] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  314.588369][ T5777] usb 3-1: Product: syz
[  314.592663][ T5777] usb 3-1: Manufacturer: syz
[  314.597289][ T5777] usb 3-1: SerialNumber: syz
[  314.926574][ T8427] vivid-003: disconnect
[  314.963876][ T8427] vivid-003: reconnect
[  315.034525][ T8427] loop1: detected capacity change from 0 to 256
[  315.042710][ T8427] exfat: Deprecated parameter 'namecase'
[  315.269179][ T8427] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36bd6320, utbl_chksum : 0xe619d30d)
[  316.155959][ T5777] usb 3-1: USB disconnect, device number 9
[  316.976216][ T8446] raw_sendmsg: syz.2.543 forgot to set AF_INET. Fix it!
[  317.427676][ T8448] geneve2: left promiscuous mode
[  317.432757][ T8448] geneve2: left allmulticast mode
[  317.453127][ T1309] ieee802154 phy0 wpan0: encryption failed: -22
[  317.470487][ T1309] ieee802154 phy1 wpan1: encryption failed: -22
[  317.504441][ T8446] ceph: No mds server is up or the cluster is laggy
[  317.516461][ T5355] libceph: connect (1)[c::]:6789 error -101
[  317.522904][ T5355] libceph: mon0 (1)[c::]:6789 connect error
[  318.818772][ T8443] loop6: detected capacity change from 0 to 32768
[  318.986370][ T8466] FAULT_INJECTION: forcing a failure.
[  318.986370][ T8466] name failslab, interval 1, probability 0, space 0, times 0
[  318.999670][ T8466] CPU: 0 UID: 0 PID: 8466 Comm: syz.2.549 Not tainted syzkaller #0 PREEMPT(full) 
[  318.999716][ T8466] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  318.999735][ T8466] Call Trace:
[  318.999750][ T8466]  <TASK>
[  318.999761][ T8466]  dump_stack_lvl+0xe8/0x150
[  318.999812][ T8466]  should_fail_ex+0x412/0x560
[  318.999871][ T8466]  should_failslab+0xa8/0x100
[  318.999934][ T8466]  __kmalloc_noprof+0xe8/0x760
[  318.999991][ T8466]  ? srso_alias_return_thunk+0x5/0xfbef5
[  319.000032][ T8466]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  319.000098][ T8466]  tomoyo_realpath_from_path+0xe3/0x5d0
[  319.000137][ T8466]  ? tomoyo_domain+0xd7/0x130
[  319.000184][ T8466]  ? tomoyo_path_number_perm+0x219/0x630
[  319.000215][ T8466]  tomoyo_path_number_perm+0x246/0x630
[  319.000250][ T8466]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  319.000278][ T8466]  ? srso_alias_return_thunk+0x5/0xfbef5
[  319.000317][ T8466]  ? __lock_acquire+0x6b5/0x2cf0
[  319.000363][ T8466]  ? srso_alias_return_thunk+0x5/0xfbef5
[  319.000404][ T8466]  ? srso_alias_return_thunk+0x5/0xfbef5
[  319.000434][ T8466]  ? __mutex_unlock_slowpath+0x1be/0x6f0
[  319.000506][ T8466]  ? __fget_files+0x2a/0x420
[  319.000551][ T8466]  ? __fget_files+0x2a/0x420
[  319.000581][ T8466]  ? __fget_files+0x3a0/0x420
[  319.000610][ T8466]  ? __fget_files+0x2a/0x420
[  319.000652][ T8466]  security_file_ioctl+0xc3/0x2a0
[  319.000686][ T8466]  __se_sys_ioctl+0x47/0x170
[  319.000737][ T8466]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.000767][ T8466]  do_syscall_64+0x15f/0xf80
[  319.000810][ T8466]  ? trace_irq_disable+0x3b/0x140
[  319.000870][ T8466]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  319.000896][ T8466] RIP: 0033:0x7f8ff3d9cdd9
[  319.000923][ T8466] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  319.000947][ T8466] RSP: 002b:00007f8ff4c08028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  319.000977][ T8466] RAX: ffffffffffffffda RBX: 00007f8ff4015fa0 RCX: 00007f8ff3d9cdd9
[  319.000997][ T8466] RDX: 0000000000000000 RSI: 0000000000004141 RDI: 0000000000000005
[  319.001014][ T8466] RBP: 00007f8ff4c08090 R08: 0000000000000000 R09: 0000000000000000
[  319.001030][ T8466] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  319.001048][ T8466] R13: 00007f8ff4016038 R14: 00007f8ff4015fa0 R15: 00007ffc731eb2a8
[  319.001089][ T8466]  </TASK>
[  319.011281][ T8443] XFS (loop6): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a
[  319.030092][ T8466] ERROR: Out of memory at tomoyo_realpath_from_path.
[  319.261810][ T8443] workqueue: Failed to create a rescuer kthread for wq "xfs-cil/loop6": -EINTR
[  319.282449][ T8443] XFS (loop6): log mount failed
[  319.862746][ T8479] binder_alloc: binder_alloc_mmap_handler: 8477 200000522000-200000524000 already mapped failed -16
[  320.119263][ T8479] netlink: 24 bytes leftover after parsing attributes in process `syz.8.551'.
[  320.589229][ T8485] loop2: detected capacity change from 0 to 256
[  321.263247][ T8485] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x4d7dfc9d, utbl_chksum : 0xe619d30d)
[  321.318009][ T8503] overlayfs: failed to clone upperpath
[  321.385367][ T8505] FAULT_INJECTION: forcing a failure.
[  321.385367][ T8505] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  321.490132][ T8505] CPU: 0 UID: 0 PID: 8505 Comm: syz.6.557 Not tainted syzkaller #0 PREEMPT(full) 
[  321.490165][ T8505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  321.490179][ T8505] Call Trace:
[  321.490186][ T8505]  <TASK>
[  321.490195][ T8505]  dump_stack_lvl+0xe8/0x150
[  321.490231][ T8505]  should_fail_ex+0x412/0x560
[  321.490268][ T8505]  _copy_from_user+0x2d/0xb0
[  321.490305][ T8505]  ___sys_sendmsg+0x1c6/0x360
[  321.490344][ T8505]  ? srso_alias_return_thunk+0x5/0xfbef5
[  321.490375][ T8505]  ? __lock_acquire+0x6b5/0x2cf0
[  321.490410][ T8505]  ? __pfx____sys_sendmsg+0x10/0x10
[  321.490470][ T8505]  ? __fget_files+0x2a/0x420
[  321.490497][ T8505]  ? srso_alias_return_thunk+0x5/0xfbef5
[  321.490520][ T8505]  ? __fget_files+0x3a0/0x420
[  321.490552][ T8505]  __x64_sys_sendmsg+0x1bd/0x2a0
[  321.490582][ T8505]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  321.490618][ T8505]  ? __pfx_ksys_write+0x10/0x10
[  321.490663][ T8505]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.490685][ T8505]  do_syscall_64+0x15f/0xf80
[  321.490717][ T8505]  ? trace_irq_disable+0x3b/0x140
[  321.490760][ T8505]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  321.490779][ T8505] RIP: 0033:0x7fa1d4f9cdd9
[  321.490798][ T8505] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  321.490815][ T8505] RSP: 002b:00007fa1d5e2d028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  321.490836][ T8505] RAX: ffffffffffffffda RBX: 00007fa1d5215fa0 RCX: 00007fa1d4f9cdd9
[  321.490851][ T8505] RDX: 0000000004000080 RSI: 0000200000000300 RDI: 0000000000000003
[  321.490864][ T8505] RBP: 00007fa1d5e2d090 R08: 0000000000000000 R09: 0000000000000000
[  321.490876][ T8505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  321.490888][ T8505] R13: 00007fa1d5216038 R14: 00007fa1d5215fa0 R15: 00007fff62b384d8
[  321.490918][ T8505]  </TASK>
[  321.854264][   T30] audit: type=1326 audit(1777748644.329:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8460 comm="syz.1.548" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc586d9cdd9 code=0x7fc00000
[  322.347241][   T24] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  322.394447][ T8492] loop7: detected capacity change from 0 to 32768
[  323.601414][ T5355] usb 7-1: new high-speed USB device number 15 using dummy_hcd
[  323.721098][ T5936] udevd[5936]: incorrect btrfs checksum on /dev/loop7
[  323.989860][ T8535] FAULT_INJECTION: forcing a failure.
[  323.989860][ T8535] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  324.003030][ T8535] CPU: 1 UID: 0 PID: 8535 Comm: syz.2.567 Not tainted syzkaller #0 PREEMPT(full) 
[  324.003070][ T8535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  324.003087][ T8535] Call Trace:
[  324.003106][ T8535]  <TASK>
[  324.003122][ T8535]  dump_stack_lvl+0xe8/0x150
[  324.003293][ T8535]  should_fail_ex+0x412/0x560
[  324.003337][ T8535]  _copy_from_user+0x2d/0xb0
[  324.003378][ T8535]  __se_sys_sendfile64+0xac/0x1a0
[  324.003408][ T8535]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  324.003435][ T8535]  ? srso_alias_return_thunk+0x5/0xfbef5
[  324.003463][ T8535]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.003484][ T8535]  do_syscall_64+0x15f/0xf80
[  324.003516][ T8535]  ? trace_irq_disable+0x3b/0x140
[  324.003560][ T8535]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.003581][ T8535] RIP: 0033:0x7f8ff3d9cdd9
[  324.003604][ T8535] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  324.003622][ T8535] RSP: 002b:00007f8ff4c08028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  324.003644][ T8535] RAX: ffffffffffffffda RBX: 00007f8ff4015fa0 RCX: 00007f8ff3d9cdd9
[  324.003658][ T8535] RDX: 00002000000000c0 RSI: 0000000000000005 RDI: 0000000000000006
[  324.003671][ T8535] RBP: 00007f8ff4c08090 R08: 0000000000000000 R09: 0000000000000000
[  324.003683][ T8535] R10: 000000000000000a R11: 0000000000000246 R12: 0000000000000001
[  324.003695][ T8535] R13: 00007f8ff4016038 R14: 00007f8ff4015fa0 R15: 00007ffc731eb2a8
[  324.003725][ T8535]  </TASK>
[  324.339713][ T8538] loop7: detected capacity change from 0 to 1024
[  324.348106][ T8538] EXT4-fs: Ignoring removed orlov option
[  324.415429][ T8543] loop2: detected capacity change from 0 to 164
[  324.453828][ T5355] usb 7-1: Using ep0 maxpacket: 8
[  324.600503][ T8543] iso9660: Corrupted directory entry in block 2 of inode 1920
[  324.649481][ T8538] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  324.688925][   T24] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  324.699309][   T24] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  324.710336][   T24] usb 9-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  324.729262][ T8537] xt_ecn: cannot match TCP bits for non-tcp packets
[  325.142290][ T5355] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  325.153727][ T5355] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  325.163550][ T5355] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  325.173300][ T5355] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024
[  325.184737][ T5355] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[  325.194877][ T5355] usb 7-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  325.519290][ T5355] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  325.661698][ T8562] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  325.708667][   T24] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  325.717923][   T24] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  325.756097][ T5355] usb 7-1: config 0 descriptor??
[  325.821908][   T24] usb 9-1: can't set config #1, error -71
[  325.831498][   T24] usb 9-1: USB disconnect, device number 2
[  325.855423][ T5355] usb 7-1: can't set config #0, error -71
[  325.933129][  T805] usb 3-1: new full-speed USB device number 10 using dummy_hcd
[  325.955523][ T5355] usb 7-1: USB disconnect, device number 15
[  325.972592][ T6438] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  326.789306][ T8573] loop7: detected capacity change from 0 to 256
[  327.149101][ T8573] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x4d7dfc9d, utbl_chksum : 0xe619d30d)
[  327.510426][  T805] usb 3-1: unable to get BOS descriptor or descriptor too short
[  327.668882][ T8576] loop8: detected capacity change from 0 to 512
[  327.731478][  T805] usb 3-1: not running at top speed; connect to a high speed hub
[  327.746073][ T8576] EXT4-fs: inline encryption not supported
[  327.783975][ T8576] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  327.793176][ T8576] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[  328.365371][ T8576] Quota error (device loop8): do_insert_tree: Free block already used in tree: block 1
[  328.378879][ T8576] Quota error (device loop8): qtree_write_dquot: Error -5 occurred while creating quota
[  328.470585][ T8576] EXT4-fs error (device loop8): ext4_acquire_dquot:7034: comm syz.8.579: Failed to acquire dquot type 1
[  328.511615][  T805] usb 3-1: unable to read config index 0 descriptor/all
[  328.518718][  T805] usb 3-1: can't read configurations, error -71
[  328.525147][ T8576] loop8: lost filesystem error report for type 5 error -5
[  328.533771][ T8576] EXT4-fs (loop8): Remounting filesystem read-only
[  328.560401][    C0] EXT4-fs (loop8): error count since last fsck: 1
[  328.566957][    C0] EXT4-fs (loop8): initial error at time 1777748651: ext4_acquire_dquot:7034
[  328.575903][    C0] EXT4-fs (loop8): last error at time 1777748651: ext4_acquire_dquot:7034
[  328.587819][ T8576] EXT4-fs (loop8): 1 truncate cleaned up
[  328.603516][ T8576] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  328.989473][  T805] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  328.998577][   T30] audit: type=1326 audit(1777748651.439:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8563 comm="syz.6.575" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1d4f9cdd9 code=0x7fc00000
[  329.033158][ T7510] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  329.797421][ T8596] loop8: detected capacity change from 0 to 512
[  330.021567][ T8596] EXT4-fs (loop8): mounting ext2 file system using the ext4 subsystem
[  330.257057][ T8596] EXT4-fs error (device loop8): ext4_validate_block_bitmap:432: comm syz.8.582: bg 0: block 104: invalid block bitmap
[  330.269774][ T8596] loop8: lost filesystem error report for type 5 error -117
[  330.270548][ T8596] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6679: Corrupt filesystem
[  330.286734][ T8596] loop8: lost filesystem error report for type 5 error -117
[  330.294049][ T8596] EXT4-fs error (device loop8): ext4_free_branches:1023: inode #11: comm syz.8.582: invalid indirect mapped block 1 (level 1)
[  330.314753][    C0] EXT4-fs (loop8): error count since last fsck: 2
[  330.314797][    C0] EXT4-fs (loop8): initial error at time 1777748652: ext4_validate_block_bitmap:432
[  330.314833][    C0] EXT4-fs (loop8): last error at time 1777748652: ext4_mb_clear_bb:6679
[  330.341722][ T8596] loop8: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  330.356612][ T8596] EXT4-fs (loop8): 1 truncate cleaned up
[  330.376912][ T8596] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  333.459780][ T7510] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  333.673621][  T805] usb 3-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice=f6.00
[  333.683112][  T805] usb 3-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  333.691225][  T805] usb 3-1: Product: syz
[  333.746222][  T805] usb 3-1: config 0 descriptor??
[  333.792711][  T805] usb 3-1: can't set config #0, error -71
[  333.797610][ T8614] loop2: detected capacity change from 0 to 8
[  333.802404][  T805] usb 3-1: USB disconnect, device number 11
[  333.855329][ T8614] MTD: Attempt to mount non-MTD device "/dev/loop2"
[  333.872436][ T6062] udevd[6062]: incorrect cramfs checksum on /dev/loop2
[  334.059812][ T8622] FAULT_INJECTION: forcing a failure.
[  334.059812][ T8622] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  334.147354][ T8622] CPU: 0 UID: 0 PID: 8622 Comm: syz.8.588 Not tainted syzkaller #0 PREEMPT(full) 
[  334.147504][ T8622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  334.147528][ T8622] Call Trace:
[  334.147545][ T8622]  <TASK>
[  334.147561][ T8622]  dump_stack_lvl+0xe8/0x150
[  334.147609][ T8622]  should_fail_ex+0x412/0x560
[  334.147656][ T8622]  _copy_from_user+0x2d/0xb0
[  334.147708][ T8622]  ucma_write+0x15d/0x2f0
[  334.147749][ T8622]  ? srso_alias_return_thunk+0x5/0xfbef5
[  334.147791][ T8622]  ? __pfx_ucma_write+0x10/0x10
[  334.147818][ T8622]  ? srso_alias_return_thunk+0x5/0xfbef5
[  334.147848][ T8622]  ? security_file_permission+0x75/0x260
[  334.147878][ T8622]  ? srso_alias_return_thunk+0x5/0xfbef5
[  334.147907][ T8622]  ? rw_verify_area+0x255/0x4d0
[  334.147955][ T8622]  vfs_writev+0x4bd/0x990
[  334.147985][ T8622]  ? srso_alias_return_thunk+0x5/0xfbef5
[  334.148022][ T8622]  ? __pfx_ucma_write+0x10/0x10
[  334.148058][ T8622]  ? __pfx_vfs_writev+0x10/0x10
[  334.148098][ T8622]  ? srso_alias_return_thunk+0x5/0xfbef5
[  334.148128][ T8622]  ? __fget_files+0x2a/0x420
[  334.148166][ T8622]  ? srso_alias_return_thunk+0x5/0xfbef5
[  334.148195][ T8622]  ? __fget_files+0x3a0/0x420
[  334.148228][ T8622]  ? __fget_files+0x2a/0x420
[  334.148263][ T8622]  ? srso_alias_return_thunk+0x5/0xfbef5
[  334.148299][ T8622]  do_writev+0x154/0x2e0
[  334.148329][ T8622]  ? __pfx_do_writev+0x10/0x10
[  334.148378][ T8622]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.148405][ T8622]  do_syscall_64+0x15f/0xf80
[  334.148445][ T8622]  ? trace_irq_disable+0x3b/0x140
[  334.148499][ T8622]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  334.148525][ T8622] RIP: 0033:0x7fded679cdd9
[  334.148551][ T8622] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  334.148573][ T8622] RSP: 002b:00007fded75d2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[  334.148601][ T8622] RAX: ffffffffffffffda RBX: 00007fded6a16090 RCX: 00007fded679cdd9
[  334.148621][ T8622] RDX: 0000000000000002 RSI: 0000200000000040 RDI: 0000000000000003
[  334.148637][ T8622] RBP: 00007fded75d2090 R08: 0000000000000000 R09: 0000000000000000
[  334.148653][ T8622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  334.148668][ T8622] R13: 00007fded6a16128 R14: 00007fded6a16090 R15: 00007ffea62334d8
[  334.148707][ T8622]  </TASK>
[  334.480363][ T5646] udevd[5646]: incorrect cramfs checksum on /dev/loop2
[  334.656828][ T8629] netlink: 16 bytes leftover after parsing attributes in process `syz.1.593'.
[  334.665844][ T8629] openvswitch: netlink: Flow key attr not present in new flow.
[  334.851585][    T9] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  335.152832][   T29] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  335.165101][    T9] usb 8-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  335.186385][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  335.215307][    T9] usb 8-1: config 0 descriptor??
[  335.247210][    T9] cp210x 8-1:0.0: cp210x converter detected
[  335.420954][ T8648] netlink: 8 bytes leftover after parsing attributes in process `syz.1.598'.
[  335.443665][ T8648] netlink: 48 bytes leftover after parsing attributes in process `syz.1.598'.
[  335.669264][ T8657] FAULT_INJECTION: forcing a failure.
[  335.669264][ T8657] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  335.698863][ T8657] CPU: 0 UID: 0 PID: 8657 Comm: syz.8.600 Not tainted syzkaller #0 PREEMPT(full) 
[  335.698912][ T8657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  335.698934][ T8657] Call Trace:
[  335.698947][ T8657]  <TASK>
[  335.698959][ T8657]  dump_stack_lvl+0xe8/0x150
[  335.699010][ T8657]  should_fail_ex+0x412/0x560
[  335.699087][ T8657]  _copy_to_user+0x31/0xb0
[  335.699139][ T8657]  simple_read_from_buffer+0xe1/0x170
[  335.699186][ T8657]  proc_fail_nth_read+0x1bb/0x230
[  335.699230][ T8657]  ? srso_alias_return_thunk+0x5/0xfbef5
[  335.699276][ T8657]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  335.699314][ T8657]  ? srso_alias_return_thunk+0x5/0xfbef5
[  335.699338][ T8657]  ? rw_verify_area+0x2a6/0x4d0
[  335.699382][ T8657]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  335.699413][ T8657]  vfs_read+0x20c/0xa70
[  335.699452][ T8657]  ? __pfx___mutex_lock+0x10/0x10
[  335.699495][ T8657]  ? __pfx_vfs_read+0x10/0x10
[  335.699531][ T8657]  ? __fget_files+0x2a/0x420
[  335.699572][ T8657]  ? srso_alias_return_thunk+0x5/0xfbef5
[  335.699602][ T8657]  ? __fget_files+0x3a0/0x420
[  335.699632][ T8657]  ? __fget_files+0x2a/0x420
[  335.699667][ T8657]  ? srso_alias_return_thunk+0x5/0xfbef5
[  335.699703][ T8657]  ksys_read+0x150/0x270
[  335.699744][ T8657]  ? __pfx_ksys_read+0x10/0x10
[  335.699790][ T8657]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.699820][ T8657]  do_syscall_64+0x15f/0xf80
[  335.699858][ T8657]  ? trace_irq_disable+0x3b/0x140
[  335.699914][ T8657]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  335.699939][ T8657] RIP: 0033:0x7fded675d60e
[  335.699964][ T8657] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  335.699986][ T8657] RSP: 002b:00007fded75f2fe8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  335.700016][ T8657] RAX: ffffffffffffffda RBX: 00007fded75f36c0 RCX: 00007fded675d60e
[  335.700034][ T8657] RDX: 000000000000000f RSI: 00007fded75f30a0 RDI: 0000000000000004
[  335.700050][ T8657] RBP: 00007fded75f3090 R08: 0000000000000000 R09: 0000000000000000
[  335.700066][ T8657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  335.700082][ T8657] R13: 00007fded6a16038 R14: 00007fded6a15fa0 R15: 00007ffea62334d8
[  335.700122][ T8657]  </TASK>
[  336.019328][ T8659] loop7: detected capacity change from 0 to 2048
[  336.197703][ T8633] loop6: detected capacity change from 0 to 32768
[  336.246302][ T8659] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  336.277878][ T8633] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.595 (8633)
[  336.507775][   T29] usb 3-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0x6C, changing to 0xC
[  336.519265][   T29] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0xC has an invalid bInterval 0, changing to 7
[  336.530081][   T29] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0xC has invalid maxpacket 8306, setting to 1024
[  336.541065][   T29] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  336.717824][ T8633] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  336.797177][    T9] cp210x 8-1:0.0: failed to get vendor val 0x000e size 3: -32
[  336.863716][  T805] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  337.068859][ T8633] BTRFS info (device loop6): using crc32c checksum algorithm
[  337.445038][   T29] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40
[  337.468910][   T29] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  337.677660][ T8633] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  337.679765][ T8633] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  337.719920][ T8633] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  337.794812][   T30] audit: type=1326 audit(1777748660.309:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8634 comm="syz.5.596" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f791f59cdd9 code=0x7fc00000
[  337.920394][ T8662] loop8: detected capacity change from 0 to 256
[  338.140861][ T8633] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  338.159205][ T8633] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  338.348748][   T29] usb 3-1: can't set config #1, error -71
[  338.392485][ T8633] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  338.414124][ T8633] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  338.610458][   T29] usb 3-1: USB disconnect, device number 12
[  338.977888][ T8633] BTRFS error (device loop6): open_ctree failed: -12
[  341.327889][ T8681] loop1: detected capacity change from 0 to 512
[  341.334540][ T8683] mmap: syz.5.604 (8683) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  341.335968][ T8681] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  341.526296][ T8681] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.602: bg 0: block 104: invalid block bitmap
[  341.538814][ T8681] loop1: lost filesystem error report for type 5 error -117
[  341.539420][ T8681] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6679: Corrupt filesystem
[  341.546820][    C0] EXT4-fs (loop1): error count since last fsck: 1
[  341.546846][    C0] EXT4-fs (loop1): initial error at time 1777748664: ext4_validate_block_bitmap:432
[  341.546878][    C0] EXT4-fs (loop1): last error at time 1777748664: ext4_validate_block_bitmap:432
[  341.582868][ T8681] loop1: lost filesystem error report for type 5 error -117
[  341.639537][    T9] usb 8-1: cp210x converter now attached to ttyUSB0
[  341.653970][ T8681] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.602: invalid indirect mapped block 1 (level 1)
[  341.667027][ T8681] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  341.667749][ T8681] EXT4-fs (loop1): 1 truncate cleaned up
[  341.685977][ T8681] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  341.704457][  T805] usb 9-1: unable to get BOS descriptor or descriptor too short
[  341.779591][ T5631] Bluetooth: hci3: command 0x0c1a tx timeout
[  341.792660][    T9] usb 8-1: USB disconnect, device number 9
[  341.924474][    T9] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  341.939840][    T9] cp210x 8-1:0.0: device disconnected
[  342.125903][ T5638] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  342.152065][  T805] usb 9-1: unable to read config index 0 descriptor/start: -71
[  342.159729][  T805] usb 9-1: can't read configurations, error -71
[  342.303435][ T8691] FAULT_INJECTION: forcing a failure.
[  342.303435][ T8691] name failslab, interval 1, probability 0, space 0, times 0
[  342.393146][ T8691] CPU: 1 UID: 0 PID: 8691 Comm: syz.8.605 Not tainted syzkaller #0 PREEMPT(full) 
[  342.393180][ T8691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  342.393196][ T8691] Call Trace:
[  342.393205][ T8691]  <TASK>
[  342.393215][ T8691]  dump_stack_lvl+0xe8/0x150
[  342.393251][ T8691]  should_fail_ex+0x412/0x560
[  342.393298][ T8691]  should_failslab+0xa8/0x100
[  342.393345][ T8691]  kmem_cache_alloc_node_noprof+0x8f/0x690
[  342.393385][ T8691]  ? __alloc_skb+0x186/0x7d0
[  342.393417][ T8691]  ? __alloc_skb+0x1d0/0x7d0
[  342.393445][ T8691]  ? __local_bh_enable_ip+0xd0/0x130
[  342.393477][ T8691]  __alloc_skb+0x1d0/0x7d0
[  342.393506][ T8691]  ? srso_alias_return_thunk+0x5/0xfbef5
[  342.393538][ T8691]  ? __lock_acquire+0x6b5/0x2cf0
[  342.393569][ T8691]  alloc_skb_with_frags+0xc8/0x760
[  342.393608][ T8691]  ? __pfx_aa_label_sk_perm+0x10/0x10
[  342.393649][ T8691]  sock_alloc_send_pskb+0x878/0x990
[  342.393711][ T8691]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  342.393747][ T8691]  ? srso_alias_return_thunk+0x5/0xfbef5
[  342.393782][ T8691]  ? srso_alias_return_thunk+0x5/0xfbef5
[  342.393810][ T8691]  ? aa_sk_perm+0x6d5/0x900
[  342.393848][ T8691]  hci_sock_sendmsg+0x208/0xf40
[  342.393883][ T8691]  ? __pfx_aa_sk_perm+0x10/0x10
[  342.393917][ T8691]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  342.393948][ T8691]  ? srso_alias_return_thunk+0x5/0xfbef5
[  342.393977][ T8691]  ? aa_sock_msg_perm+0xf1/0x1b0
[  342.394013][ T8691]  ? srso_alias_return_thunk+0x5/0xfbef5
[  342.394041][ T8691]  ? srso_alias_return_thunk+0x5/0xfbef5
[  342.394071][ T8691]  ? __pfx_hci_sock_sendmsg+0x10/0x10
[  342.394098][ T8691]  sock_write_iter+0x49b/0x4f0
[  342.394149][ T8691]  ? __pfx_sock_write_iter+0x10/0x10
[  342.394201][ T8691]  ? srso_alias_return_thunk+0x5/0xfbef5
[  342.394229][ T8691]  ? srso_alias_return_thunk+0x5/0xfbef5
[  342.394257][ T8691]  ? security_file_permission+0x75/0x260
[  342.394295][ T8691]  vfs_write+0x61d/0xb90
[  342.394347][ T8691]  ? __pfx_vfs_write+0x10/0x10
[  342.394395][ T8691]  ? __fget_files+0x2a/0x420
[  342.394434][ T8691]  ? srso_alias_return_thunk+0x5/0xfbef5
[  342.394468][ T8691]  ksys_write+0x150/0x270
[  342.394507][ T8691]  ? __pfx_ksys_write+0x10/0x10
[  342.394554][ T8691]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.394582][ T8691]  do_syscall_64+0x15f/0xf80
[  342.394617][ T8691]  ? trace_irq_disable+0x3b/0x140
[  342.394665][ T8691]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.394690][ T8691] RIP: 0033:0x7fded679cdd9
[  342.394713][ T8691] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  342.394735][ T8691] RSP: 002b:00007fded75f3028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  342.394762][ T8691] RAX: ffffffffffffffda RBX: 00007fded6a15fa0 RCX: 00007fded679cdd9
[  342.394780][ T8691] RDX: 000000000000000d RSI: 0000200000000000 RDI: 0000000000000013
[  342.394797][ T8691] RBP: 00007fded75f3090 R08: 0000000000000000 R09: 0000000000000000
[  342.394813][ T8691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  342.394828][ T8691] R13: 00007fded6a16038 R14: 00007fded6a15fa0 R15: 00007ffea62334d8
[  342.394867][ T8691]  </TASK>
[  343.232892][ T8703] FAULT_INJECTION: forcing a failure.
[  343.232892][ T8703] name failslab, interval 1, probability 0, space 0, times 0
[  343.246420][ T8703] CPU: 0 UID: 0 PID: 8703 Comm: syz.6.608 Not tainted syzkaller #0 PREEMPT(full) 
[  343.246450][ T8703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  343.246465][ T8703] Call Trace:
[  343.246475][ T8703]  <TASK>
[  343.246485][ T8703]  dump_stack_lvl+0xe8/0x150
[  343.246522][ T8703]  should_fail_ex+0x412/0x560
[  343.246563][ T8703]  should_failslab+0xa8/0x100
[  343.246612][ T8703]  kmem_cache_alloc_node_noprof+0x8f/0x690
[  343.246654][ T8703]  ? __alloc_skb+0x1d0/0x7d0
[  343.246694][ T8703]  __alloc_skb+0x1d0/0x7d0
[  343.246731][ T8703]  tcp_stream_alloc_skb+0x3f/0x580
[  343.246763][ T8703]  tcp_sendmsg_locked+0x1345/0x5360
[  343.246806][ T8703]  ? srso_alias_return_thunk+0x5/0xfbef5
[  343.246840][ T8703]  ? __lock_acquire+0x6b5/0x2cf0
[  343.246874][ T8703]  ? srso_alias_return_thunk+0x5/0xfbef5
[  343.246904][ T8703]  ? __lock_acquire+0x6b5/0x2cf0
[  343.246967][ T8703]  ? __pfx_tcp_sendmsg_locked+0x10/0x10
[  343.246999][ T8703]  ? srso_alias_return_thunk+0x5/0xfbef5
[  343.247031][ T8703]  ? tcp_sendmsg+0x21/0x50
[  343.247061][ T8703]  ? __local_bh_enable_ip+0xd0/0x130
[  343.247087][ T8703]  ? srso_alias_return_thunk+0x5/0xfbef5
[  343.247122][ T8703]  tcp_sendmsg+0x2f/0x50
[  343.247149][ T8703]  ? __pfx_inet6_sendmsg+0x10/0x10
[  343.247173][ T8703]  sock_write_iter+0x333/0x4f0
[  343.247222][ T8703]  ? __pfx_sock_write_iter+0x10/0x10
[  343.247274][ T8703]  ? srso_alias_return_thunk+0x5/0xfbef5
[  343.247303][ T8703]  ? srso_alias_return_thunk+0x5/0xfbef5
[  343.247333][ T8703]  ? security_file_permission+0x75/0x260
[  343.247375][ T8703]  vfs_write+0x61d/0xb90
[  343.247426][ T8703]  ? __pfx_vfs_write+0x10/0x10
[  343.247476][ T8703]  ? __fget_files+0x2a/0x420
[  343.247514][ T8703]  ? srso_alias_return_thunk+0x5/0xfbef5
[  343.247549][ T8703]  ksys_write+0x150/0x270
[  343.247589][ T8703]  ? __pfx_ksys_write+0x10/0x10
[  343.247638][ T8703]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.247665][ T8703]  do_syscall_64+0x15f/0xf80
[  343.247700][ T8703]  ? trace_irq_disable+0x3b/0x140
[  343.247749][ T8703]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.247774][ T8703] RIP: 0033:0x7fa1d4f9cdd9
[  343.247797][ T8703] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  343.247818][ T8703] RSP: 002b:00007fa1d5deb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  343.247843][ T8703] RAX: ffffffffffffffda RBX: 00007fa1d5216180 RCX: 00007fa1d4f9cdd9
[  343.247862][ T8703] RDX: 00000000fffffdcf RSI: 00002000000004c0 RDI: 0000000000000006
[  343.247879][ T8703] RBP: 00007fa1d5deb090 R08: 0000000000000000 R09: 0000000000000000
[  343.247895][ T8703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  343.247911][ T8703] R13: 00007fa1d5216218 R14: 00007fa1d5216180 R15: 00007fff62b384d8
[  343.247950][ T8703]  </TASK>
[  343.930023][ T8687] FAULT_INJECTION: forcing a failure.
[  343.930023][ T8687] name failslab, interval 1, probability 0, space 0, times 0
[  343.942644][ T8687] CPU: 1 UID: 0 PID: 8687 Comm: syz.2.603 Not tainted syzkaller #0 PREEMPT(full) 
[  343.942678][ T8687] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  343.942694][ T8687] Call Trace:
[  343.942705][ T8687]  <TASK>
[  343.942716][ T8687]  dump_stack_lvl+0xe8/0x150
[  343.942753][ T8687]  should_fail_ex+0x412/0x560
[  343.942796][ T8687]  should_failslab+0xa8/0x100
[  343.942845][ T8687]  __kmalloc_noprof+0xe8/0x760
[  343.942885][ T8687]  ? srso_alias_return_thunk+0x5/0xfbef5
[  343.942920][ T8687]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  343.942968][ T8687]  tomoyo_realpath_from_path+0xe3/0x5d0
[  343.943008][ T8687]  ? tomoyo_domain+0xd7/0x130
[  343.943054][ T8687]  ? tomoyo_path_number_perm+0x219/0x630
[  343.943084][ T8687]  tomoyo_path_number_perm+0x246/0x630
[  343.943119][ T8687]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  343.943147][ T8687]  ? srso_alias_return_thunk+0x5/0xfbef5
[  343.943177][ T8687]  ? __lock_acquire+0x6b5/0x2cf0
[  343.943213][ T8687]  ? srso_alias_return_thunk+0x5/0xfbef5
[  343.943254][ T8687]  ? srso_alias_return_thunk+0x5/0xfbef5
[  343.943284][ T8687]  ? __mutex_unlock_slowpath+0x1be/0x6f0
[  343.943354][ T8687]  ? __fget_files+0x2a/0x420
[  343.943394][ T8687]  ? __fget_files+0x2a/0x420
[  343.943424][ T8687]  ? __fget_files+0x3a0/0x420
[  343.943455][ T8687]  ? __fget_files+0x2a/0x420
[  343.943492][ T8687]  security_file_ioctl+0xc3/0x2a0
[  343.943524][ T8687]  __se_sys_ioctl+0x47/0x170
[  343.943569][ T8687]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.943598][ T8687]  do_syscall_64+0x15f/0xf80
[  343.943636][ T8687]  ? srso_alias_return_thunk+0x5/0xfbef5
[  343.943673][ T8687]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  343.943699][ T8687] RIP: 0033:0x7f8ff3d9cdd9
[  343.943723][ T8687] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  343.943744][ T8687] RSP: 002b:00007f8ff4c08028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  343.943771][ T8687] RAX: ffffffffffffffda RBX: 00007f8ff4015fa0 RCX: 00007f8ff3d9cdd9
[  343.943790][ T8687] RDX: 0000000000000000 RSI: 0000000000005437 RDI: 0000000000000008
[  343.943806][ T8687] RBP: 00007f8ff4c08090 R08: 0000000000000000 R09: 0000000000000000
[  343.943823][ T8687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  343.943838][ T8687] R13: 00007f8ff4016038 R14: 00007f8ff4015fa0 R15: 00007ffc731eb2a8
[  343.943878][ T8687]  </TASK>
[  343.943900][ T8687] ERROR: Out of memory at tomoyo_realpath_from_path.
[  345.062911][ T5631] Bluetooth: hci0: command 0x0419 tx timeout
[  345.065049][ T5630] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  345.230923][    T9] usb 7-1: new high-speed USB device number 16 using dummy_hcd
[  345.569518][    T9] usb 7-1: Using ep0 maxpacket: 8
[  345.616821][    T9] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  345.641924][    T9] usb 7-1: New USB device found, idVendor=0421, idProduct=0335, bcdDevice=5f.0e
[  345.683010][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  345.750565][    T9] usb 7-1: config 0 descriptor??
[  345.785528][    T9] rndis_host 7-1:0.0: missing cdc header descriptor
[  345.806788][    T9] cdc_acm 7-1:0.0: Control and data interfaces are not separated!
[  345.836280][    T9] cdc_acm 7-1:0.0: This needs exactly 3 endpoints
[  345.859400][    T9] cdc_acm 7-1:0.0: probe with driver cdc_acm failed with error -22
[  346.028782][ T8712] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  346.046718][ T8729] overlayfs: failed to clone upperpath
[  346.083841][ T8712] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  346.985799][ T8747] loop7: detected capacity change from 0 to 128
[  347.018518][ T8747] udf: Unknown parameter '00000000000000000003'
[  347.225743][ T8753] netlink: 156 bytes leftover after parsing attributes in process `syz.5.623'.
[  347.581291][ T8758] loop2: detected capacity change from 0 to 512
[  347.588636][ T8758] EXT4-fs: Ignoring removed i_version option
[  347.647429][ T8758] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2860: Unable to expand inode 17. Delete some EAs or run e2fsck.
[  347.661034][ T8758] EXT4-fs (loop2): 1 truncate cleaned up
[  347.668779][ T8758] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  347.730428][   T10] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  348.757718][   T10] usb 8-1: Using ep0 maxpacket: 8
[  348.942709][   T10] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  348.980761][   T10] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  349.012026][   T10] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  349.043649][ T5770] usb 7-1: USB disconnect, device number 16
[  349.058422][   T10] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  349.102458][   T10] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  349.111670][ T5635] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  349.184573][   T10] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  349.200427][   T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  349.481334][ T8771] FAULT_INJECTION: forcing a failure.
[  349.481334][ T8771] name failslab, interval 1, probability 0, space 0, times 0
[  349.494246][ T8771] CPU: 0 UID: 0 PID: 8771 Comm: syz.8.628 Not tainted syzkaller #0 PREEMPT(full) 
[  349.494279][ T8771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  349.494292][ T8771] Call Trace:
[  349.494301][ T8771]  <TASK>
[  349.494312][ T8771]  dump_stack_lvl+0xe8/0x150
[  349.494345][ T8771]  should_fail_ex+0x412/0x560
[  349.494384][ T8771]  should_failslab+0xa8/0x100
[  349.494426][ T8771]  __kmalloc_noprof+0xe8/0x760
[  349.494457][ T8771]  ? srso_alias_return_thunk+0x5/0xfbef5
[  349.494485][ T8771]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  349.494524][ T8771]  tomoyo_realpath_from_path+0xe3/0x5d0
[  349.494553][ T8771]  ? tomoyo_domain+0xd7/0x130
[  349.494586][ T8771]  ? tomoyo_path_number_perm+0x219/0x630
[  349.494609][ T8771]  tomoyo_path_number_perm+0x246/0x630
[  349.494634][ T8771]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  349.494654][ T8771]  ? srso_alias_return_thunk+0x5/0xfbef5
[  349.494676][ T8771]  ? __lock_acquire+0x6b5/0x2cf0
[  349.494706][ T8771]  ? srso_alias_return_thunk+0x5/0xfbef5
[  349.494736][ T8771]  ? srso_alias_return_thunk+0x5/0xfbef5
[  349.494758][ T8771]  ? __mutex_unlock_slowpath+0x1be/0x6f0
[  349.494810][ T8771]  ? __fget_files+0x2a/0x420
[  349.494840][ T8771]  ? __fget_files+0x2a/0x420
[  349.494862][ T8771]  ? __fget_files+0x3a0/0x420
[  349.494884][ T8771]  ? __fget_files+0x2a/0x420
[  349.494911][ T8771]  security_file_ioctl+0xc3/0x2a0
[  349.494936][ T8771]  __se_sys_ioctl+0x47/0x170
[  349.494973][ T8771]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  349.494993][ T8771]  do_syscall_64+0x15f/0xf80
[  349.495029][ T8771]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  349.495048][ T8771] RIP: 0033:0x7fded679cdd9
[  349.495066][ T8771] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  349.495082][ T8771] RSP: 002b:00007fded75d2028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  349.495103][ T8771] RAX: ffffffffffffffda RBX: 00007fded6a16090 RCX: 00007fded679cdd9
[  349.495117][ T8771] RDX: 0000200000000080 RSI: 00000000c0306201 RDI: 0000000000000007
[  349.495130][ T8771] RBP: 00007fded75d2090 R08: 0000000000000000 R09: 0000000000000000
[  349.495141][ T8771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  349.495153][ T8771] R13: 00007fded6a16128 R14: 00007fded6a16090 R15: 00007ffea62334d8
[  349.495183][ T8771]  </TASK>
[  349.495270][ T8771] ERROR: Out of memory at tomoyo_realpath_from_path.
[  353.157656][ T5642] usb 8-1: USB disconnect, device number 10
[  354.899825][ T8805] netlink: 'syz.5.637': attribute type 1 has an invalid length.
[  355.846421][ T8805] netlink: 20 bytes leftover after parsing attributes in process `syz.5.637'.
[  356.372090][ T5355] usb 9-1: new full-speed USB device number 5 using dummy_hcd
[  356.600549][    T9] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  356.819267][    T9] usb 2-1: config 0 has an invalid interface number: 32 but max is 0
[  356.853611][    T9] usb 2-1: config 0 has no interface number 0
[  356.875560][ T8829] netlink: 288 bytes leftover after parsing attributes in process `syz.7.647'.
[  356.885924][    T9] usb 2-1: config 0 interface 32 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  356.907315][    T9] usb 2-1: config 0 interface 32 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  356.923512][    T9] usb 2-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00
[  356.965586][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  357.005370][    T9] usb 2-1: config 0 descriptor??
[  357.384674][ T5642] usb 7-1: new full-speed USB device number 17 using dummy_hcd
[  358.033904][    T9] usbhid 2-1:0.32: can't add hid device: -71
[  358.077101][ T8851] FAULT_INJECTION: forcing a failure.
[  358.077101][ T8851] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  358.096353][ T8851] CPU: 0 UID: 0 PID: 8851 Comm: syz.7.654 Not tainted syzkaller #0 PREEMPT(full) 
[  358.096388][ T8851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  358.096403][ T8851] Call Trace:
[  358.096411][ T8851]  <TASK>
[  358.096419][ T8851]  dump_stack_lvl+0xe8/0x150
[  358.096452][ T8851]  should_fail_ex+0x412/0x560
[  358.096487][ T8851]  _copy_from_user+0x2d/0xb0
[  358.096522][ T8851]  __sys_bpf+0x229/0x950
[  358.096558][ T8851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  358.096587][ T8851]  ? __pfx___sys_bpf+0x10/0x10
[  358.096630][ T8851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  358.096654][ T8851]  ? __pfx_sched_clock_cpu+0x10/0x10
[  358.096678][ T8851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  358.096700][ T8851]  ? rcu_is_watching+0x15/0xb0
[  358.096727][ T8851]  ? srso_alias_return_thunk+0x5/0xfbef5
[  358.096751][ T8851]  ? __pfx___rdmsr_safe_on_cpu+0x10/0x10
[  358.096779][ T8851]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.096799][ T8851]  __x64_sys_bpf+0x7c/0x90
[  358.096827][ T8851]  do_syscall_64+0x15f/0xf80
[  358.096863][ T8851]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.096882][ T8851] RIP: 0033:0x7f941339cdd9
[  358.096902][ T8851] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  358.096918][ T8851] RSP: 002b:00007f9414284028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  358.096940][ T8851] RAX: ffffffffffffffda RBX: 00007f9413616180 RCX: 00007f941339cdd9
[  358.096954][ T8851] RDX: 0000000000000048 RSI: 0000200000000140 RDI: 2000000000000000
[  358.096967][ T8851] RBP: 00007f9414284090 R08: 0000000000000000 R09: 0000000000000000
[  358.096980][ T8851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  358.096991][ T8851] R13: 00007f9413616218 R14: 00007f9413616180 R15: 00007fff1a0b3088
[  358.097020][ T8851]  </TASK>
[  358.175247][ T5355] usb 9-1: config 0 has an invalid descriptor of length 45, skipping remainder of the config
[  358.179152][    T9] usbhid 2-1:0.32: probe with driver usbhid failed with error -71
[  358.181918][ T5355] usb 9-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  358.261501][    T9] usb 2-1: USB disconnect, device number 11
[  359.791276][ T5642] usb 7-1: config 0 has an invalid interface number: 55 but max is 0
[  359.800124][ T5642] usb 7-1: config 0 has no interface number 0
[  359.807075][ T5642] usb 7-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  360.017269][ T5355] usb 9-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 0.00
[  360.026426][ T5355] usb 9-1: New USB device strings: Mfr=0, Product=149, SerialNumber=35
[  360.034703][ T5355] usb 9-1: Product: syz
[  360.067860][ T5642] usb 7-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  360.079671][ T5642] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  360.090831][ T5642] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 64
[  360.101826][ T5642] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  360.115202][ T5642] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  360.124406][ T5642] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  360.188207][ T8869] FAULT_INJECTION: forcing a failure.
[  360.188207][ T8869] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  360.201359][ T8869] CPU: 1 UID: 0 PID: 8869 Comm: syz.8.659 Not tainted syzkaller #0 PREEMPT(full) 
[  360.201388][ T8869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  360.201404][ T8869] Call Trace:
[  360.201415][ T8869]  <TASK>
[  360.201425][ T8869]  dump_stack_lvl+0xe8/0x150
[  360.201463][ T8869]  should_fail_ex+0x412/0x560
[  360.201507][ T8869]  _copy_from_user+0x2d/0xb0
[  360.201551][ T8869]  ___sys_sendmsg+0x1c6/0x360
[  360.201592][ T8869]  ? srso_alias_return_thunk+0x5/0xfbef5
[  360.201625][ T8869]  ? __lock_acquire+0x6b5/0x2cf0
[  360.201660][ T8869]  ? __pfx____sys_sendmsg+0x10/0x10
[  360.201701][ T8869]  ? srso_alias_return_thunk+0x5/0xfbef5
[  360.201730][ T8869]  ? finish_task_switch+0x41f/0xbe0
[  360.201787][ T8869]  ? __fget_files+0x2a/0x420
[  360.201821][ T8869]  ? srso_alias_return_thunk+0x5/0xfbef5
[  360.201850][ T8869]  ? __fget_files+0x3a0/0x420
[  360.201893][ T8869]  __x64_sys_sendmsg+0x1bd/0x2a0
[  360.201932][ T8869]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  360.201978][ T8869]  ? srso_alias_return_thunk+0x5/0xfbef5
[  360.202007][ T8869]  ? rcu_is_watching+0x15/0xb0
[  360.202052][ T8869]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.202080][ T8869]  do_syscall_64+0x15f/0xf80
[  360.202117][ T8869]  ? trace_irq_disable+0x3b/0x140
[  360.202171][ T8869]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  360.202197][ T8869] RIP: 0033:0x7fded679cdd9
[  360.202219][ T8869] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  360.202239][ T8869] RSP: 002b:00007fded75b1028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  360.202265][ T8869] RAX: ffffffffffffffda RBX: 00007fded6a16180 RCX: 00007fded679cdd9
[  360.202284][ T8869] RDX: 0000000000000000 RSI: 0000200000000380 RDI: 0000000000000005
[  360.202300][ T8869] RBP: 00007fded75b1090 R08: 0000000000000000 R09: 0000000000000000
[  360.202317][ T8869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  360.202333][ T8869] R13: 00007fded6a16218 R14: 00007fded6a16180 R15: 00007ffea62334d8
[  360.202372][ T8869]  </TASK>
[  360.777724][ T5642] usb 7-1: config 0 descriptor??
[  360.784371][ T5355] usb 9-1: config 0 descriptor??
[  360.853806][ T8843] raw-gadget.2 gadget.6: fail, usb_ep_enable returned -22
[  360.883903][ T5355] usb 9-1: can't set config #0, error -71
[  360.930877][ T5355] usb 9-1: USB disconnect, device number 5
[  361.399125][ T8878] loop7: detected capacity change from 0 to 128
[  361.715641][ T8883] xt_hashlimit: overflow, rate too high: 0
[  361.721873][ T8878] EXT4-fs (loop7): Test dummy encryption mode enabled
[  361.786840][ T8878] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a806c018, mo2=0042]
[  361.808331][ T5642] ldusb 7-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  361.835629][ T8878] System zones: 1-3, 19-19, 35-36
[  361.902344][ T5642] usb 7-1: USB disconnect, device number 17
[  361.973023][ T8878] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  361.981116][ T5642] ldusb 7-1:0.55: LD USB Device #0 now disconnected
[  362.025723][ T8878] ext4 filesystem being mounted at /75/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  362.160712][ T8864] loop1: detected capacity change from 0 to 32768
[  362.366166][ T8864] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  362.439217][ T6438] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  362.446929][ T8906] veth1_macvtap: left promiscuous mode
[  362.450500][ T8864] XFS (loop1): Ending clean mount
[  362.453725][ T8906] macsec0: entered promiscuous mode
[  362.656080][ T8864] netlink: 44 bytes leftover after parsing attributes in process `syz.1.658'.
[  362.665024][ T8864] IPVS: Unknown mcast interface: vetN1_macvtap
[  362.834212][ T8916] XFS (loop1): User initiated shutdown received.
[  362.858971][ T8916] XFS (loop1): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x71/0x150 (fs/xfs/xfs_fsops.c:466).  Shutting down filesystem.
[  362.874223][ T8916] XFS (loop1): Please unmount the filesystem and rectify the problem(s)
[  362.925197][ T8920] netlink: 8 bytes leftover after parsing attributes in process `syz.8.675'.
[  363.270443][  T162] tipc: Subscription rejected, illegal request
[  363.290787][ T5638] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  363.596768][ T8943] netlink: 'syz.2.683': attribute type 2 has an invalid length.
[  364.266432][ T8959] netlink: 'syz.5.691': attribute type 29 has an invalid length.
[  364.343968][ T8959] netlink: 'syz.5.691': attribute type 29 has an invalid length.
[  364.353047][ T8959] netlink: 'syz.5.691': attribute type 29 has an invalid length.
[  365.712175][ T8994] netlink: 'syz.5.708': attribute type 29 has an invalid length.
[  365.795280][ T8999] netlink: 'syz.5.708': attribute type 29 has an invalid length.
[  365.804424][ T8994] netlink: 'syz.5.708': attribute type 29 has an invalid length.
[  365.818864][ T8994] netlink: 'syz.5.708': attribute type 29 has an invalid length.
[  365.913911][ T9003] netlink: 212348 bytes leftover after parsing attributes in process `syz.6.712'.
[  366.199470][ T9013] netlink: 8 bytes leftover after parsing attributes in process `syz.2.714'.
[  366.327322][ T9021] netlink: 4 bytes leftover after parsing attributes in process `syz.6.721'.
[  366.798834][ T9040] syz.1.731 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  472.880393][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  472.887474][    C0] rcu: 	1-...!: (1 GPs behind) idle=a27c/1/0x4000000000000000 softirq=36022/36023 fqs=9
[  472.899912][    C0] rcu: 	(detected by 0, t=10506 jiffies, g=32337, q=1350 ncpus=2)
[  472.907744][    C0] Sending NMI from CPU 0 to CPUs 1:
[  472.907786][    C1] NMI backtrace for cpu 1
[  472.907808][    C1] CPU: 1 UID: 0 PID: 4989 Comm: udevd Not tainted syzkaller #0 PREEMPT(full) 
[  472.907834][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  472.907850][    C1] RIP: 0010:lock_acquire+0xfc/0x350
[  472.907888][    C1] Code: 97 11 45 31 c9 4c 89 7c 24 08 41 f7 c7 00 02 00 00 41 0f 94 c1 4c 89 ef 89 de 8b 54 24 04 44 89 e1 45 89 f0 6a 00 6a 00 6a 00 <55> ff 74 24 30 e8 da 02 00 00 48 83 c4 28 48 c7 c7 d3 89 21 8e e8
[  472.907909][    C1] RSP: 0018:ffffc90000a08cb0 EFLAGS: 00000046
[  472.907930][    C1] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000000
[  472.907944][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff9a6fe2b0
[  472.907960][    C1] RBP: ffffffff84bc7cfc R08: 0000000000000001 R09: 0000000000000001
[  472.907975][    C1] R10: dffffc0000000000 R11: ffffed10059c6c63 R12: 0000000000000000
[  472.907992][    C1] R13: ffffffff9a6fe2b0 R14: 0000000000000001 R15: 0000000000000046
[  472.908011][    C1] FS:  00007f5f3e141880(0000) GS:ffff888125390000(0000) knlGS:0000000000000000
[  472.908031][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  472.908046][    C1] CR2: 000000110c3add93 CR3: 0000000022703000 CR4: 0000000000350ef0
[  472.908066][    C1] Call Trace:
[  472.908080][    C1]  <IRQ>
[  472.908107][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.908144][    C1]  ? do_raw_spin_unlock+0xf5/0x210
[  472.908190][    C1]  _raw_spin_lock_irqsave+0x40/0x60
[  472.908222][    C1]  ? debug_object_deactivate+0x6c/0x3a0
[  472.908258][    C1]  debug_object_deactivate+0x6c/0x3a0
[  472.908288][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.908318][    C1]  __hrtimer_run_queues+0x23a/0xa20
[  472.908370][    C1]  hrtimer_interrupt+0x44b/0x950
[  472.908420][    C1]  __sysvec_apic_timer_interrupt+0x102/0x430
[  472.908458][    C1]  sysvec_apic_timer_interrupt+0xa1/0xc0
[  472.908493][    C1]  </IRQ>
[  472.908501][    C1]  <TASK>
[  472.908509][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  472.908536][    C1] RIP: 0010:check_preemption_disabled+0x3/0xe0
[  472.908573][    C1] Code: 28 8c 48 c7 c6 40 ac 28 8c eb 1c 66 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 55 41 57 <41> 56 53 65 8b 05 b7 af 90 07 65 8b 0d ac af 90 07 f7 c1 ff ff ff
[  472.908592][    C1] RSP: 0018:ffffc900037b7c70 EFLAGS: 00000283
[  472.908613][    C1] RAX: 0000000000000001 RBX: 0000000000000cc0 RCX: 0000000000000046
[  472.908628][    C1] RDX: 00000000f50e6a00 RSI: ffffffff8c28ac40 RDI: ffffffff8c28ac00
[  472.908645][    C1] RBP: 0000000000000cc0 R08: ffffffff8222d60c R09: ffffffff8ea9a0e0
[  472.908662][    C1] R10: dffffc0000000000 R11: fffff520006f6fc2 R12: ffffffff82457dce
[  472.908679][    C1] R13: ffffffff8222d60c R14: ffffffff8ea9a0e0 R15: ffff88801bef8280
[  472.908698][    C1]  ? fs_reclaim_acquire+0x7c/0x100
[  472.908742][    C1]  ? do_getname+0x2e/0x250
[  472.908770][    C1]  ? fs_reclaim_acquire+0x7c/0x100
[  472.908811][    C1]  rcu_is_watching+0x15/0xb0
[  472.908845][    C1]  lock_release+0x4b/0x3c0
[  472.908870][    C1]  ? fs_reclaim_acquire+0x7c/0x100
[  472.908902][    C1]  ? do_getname+0x2e/0x250
[  472.908925][    C1]  ? do_getname+0x2e/0x250
[  472.908949][    C1]  kmem_cache_alloc_noprof+0x40/0x650
[  472.908993][    C1]  ? kasan_quarantine_put+0xbb/0x1f0
[  472.909037][    C1]  do_getname+0x2e/0x250
[  472.909059][    C1]  ? getname_flags+0x11/0x20
[  472.909084][    C1]  do_sys_openat2+0xca/0x200
[  472.909122][    C1]  ? __pfx_do_sys_openat2+0x10/0x10
[  472.909147][    C1]  ? do_readlinkat+0x451/0x510
[  472.909184][    C1]  ? __pfx_do_readlinkat+0x10/0x10
[  472.909214][    C1]  ? __pfx_ksys_read+0x10/0x10
[  472.909254][    C1]  __x64_sys_openat+0x138/0x170
[  472.909285][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.909308][    C1]  do_syscall_64+0x15f/0xf80
[  472.909348][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.909372][    C1] RIP: 0033:0x7f5f3daa7407
[  472.909393][    C1] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[  472.909413][    C1] RSP: 002b:00007ffc8e0b91f0 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[  472.909435][    C1] RAX: ffffffffffffffda RBX: 00007f5f3e141880 RCX: 00007f5f3daa7407
[  472.909453][    C1] RDX: 0000000000080000 RSI: 00007ffc8e0b9370 RDI: ffffffffffffff9c
[  472.909469][    C1] RBP: 0000000000000008 R08: 0000000000000000 R09: 0000000000000000
[  472.909484][    C1] R10: 0000000000000000 R11: 0000000000000202 R12: 000055b6782b07f5
[  472.909499][    C1] R13: 000055b6782b07f5 R14: 0000000000000001 R15: 00007ffc8e0bd9c0
[  472.909527][    C1]  </TASK>
[  472.909774][    C0] rcu: rcu_preempt kthread starved for 10460 jiffies! g32337 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  473.367674][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  473.377675][    C0] rcu: RCU grace-period kthread stack dump:
[  473.383601][    C0] task:rcu_preempt     state:R  running task     stack:27968 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00080000
[  473.397251][    C0] Call Trace:
[  473.400530][    C0]  <TASK>
[  473.403467][    C0]  __schedule+0x17b4/0x5680
[  473.408002][    C0]  ? __lock_acquire+0x6b5/0x2cf0
[  473.413029][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  473.418812][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  473.424548][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  473.430344][    C0]  ? __pfx___schedule+0x10/0x10
[  473.435220][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  473.440868][    C0]  ? schedule+0x90/0x360
[  473.445127][    C0]  schedule+0x164/0x360
[  473.449291][    C0]  schedule_timeout+0x158/0x2c0
[  473.454186][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  473.459869][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[  473.465812][    C0]  ? __pfx_process_timeout+0x10/0x10
[  473.471167][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  473.476856][    C0]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[  473.482760][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  473.488438][    C0]  ? prepare_to_swait_event+0x340/0x370
[  473.494024][    C0]  rcu_gp_fqs_loop+0x312/0x11d0
[  473.498935][    C0]  ? __pfx_rcu_watching_snap_recheck+0x10/0x10
[  473.505186][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  473.510510][    C0]  ? _raw_spin_unlock_irq+0x2e/0x50
[  473.515734][    C0]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  473.521553][    C0]  rcu_gp_kthread+0x9e/0x2b0
[  473.526156][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  473.531358][    C0]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[  473.537176][    C0]  ? __kthread_parkme+0x7a/0x1f0
[  473.542122][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  473.547769][    C0]  ? __kthread_parkme+0x19c/0x1f0
[  473.552815][    C0]  kthread+0x388/0x470
[  473.556898][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  473.562097][    C0]  ? __pfx_kthread+0x10/0x10
[  473.566698][    C0]  ret_from_fork+0x514/0xb70
[  473.571303][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  473.576425][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  473.582082][    C0]  ? __switch_to+0xc79/0x1410
[  473.586800][    C0]  ? __pfx_kthread+0x10/0x10
[  473.591445][    C0]  ret_from_fork_asm+0x1a/0x30
[  473.596281][    C0]  </TASK>
[  473.599305][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  473.605690][    C0] CPU: 0 UID: 0 PID: 5942 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  473.615215][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  473.625326][    C0] RIP: 0010:smp_call_function_many_cond+0xfcd/0x13d0
[  473.632061][    C0] Code: c0 75 79 45 8b 2e 44 89 ee 83 e6 01 31 ff e8 7a 05 0c 00 41 83 e5 01 49 bd 00 00 00 00 00 fc ff df 75 07 e8 25 01 0c 00 eb 37 <f3> 90 43 0f b6 04 2c 84 c0 75 10 41 f7 06 01 00 00 00 74 1e e8 0a
[  473.651680][    C0] RSP: 0018:ffffc9000597f560 EFLAGS: 00000293
[  473.657845][    C0] RAX: ffffffff81b9ab16 RBX: ffff8880b863c148 RCX: ffff88801f355c40
[  473.665829][    C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  473.673811][    C0] RBP: ffffc9000597f688 R08: ffffffff9030a7f7 R09: 1ffffffff20614fe
[  473.681784][    C0] R10: dffffc0000000000 R11: fffffbfff20614ff R12: 1ffff110170e8169
[  473.689760][    C0] R13: dffffc0000000000 R14: ffff8880b8740b48 R15: 0000000000000001
[  473.697748][    C0] FS:  000055558d603500(0000) GS:ffff888125290000(0000) knlGS:0000000000000000
[  473.706716][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  473.713340][    C0] CR2: 00002000009fa000 CR3: 0000000079ed3000 CR4: 0000000000350ef0
[  473.721591][    C0] Call Trace:
[  473.724870][    C0]  <TASK>
[  473.727797][    C0]  ? smp_call_function_many_cond+0x7d1/0x13d0
[  473.733880][    C0]  ? __pfx_flush_tlb_func+0x10/0x10
[  473.739121][    C0]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  473.745483][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  473.751209][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  473.756922][    C0]  ? __pfx_flush_tlb_func+0x10/0x10
[  473.762195][    C0]  on_each_cpu_cond_mask+0x3f/0x80
[  473.767315][    C0]  flush_tlb_mm_range+0x5c3/0x10b0
[  473.772487][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  473.778169][    C0]  ? up_write+0x1ab/0x410
[  473.782529][    C0]  dup_mmap+0x17a2/0x1d90
[  473.786906][    C0]  ? __pfx_dup_mmap+0x10/0x10
[  473.791607][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  473.797255][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  473.802917][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  473.808565][    C0]  copy_mm+0x13b/0x4a0
[  473.812685][    C0]  copy_process+0x1f1c/0x4440
[  473.817431][    C0]  ? copy_process+0xd87/0x4440
[  473.822400][    C0]  ? __pfx_copy_process+0x10/0x10
[  473.827505][    C0]  kernel_clone+0x284/0x8f0
[  473.832036][    C0]  ? __pfx_kernel_clone+0x10/0x10
[  473.837096][    C0]  __x64_sys_clone+0x1b6/0x230
[  473.841881][    C0]  ? __pfx___x64_sys_clone+0x10/0x10
[  473.847197][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[  473.852934][    C0]  ? do_user_addr_fault+0xc6f/0x1340
[  473.858248][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  473.864322][    C0]  do_syscall_64+0x15f/0xf80
[  473.868940][    C0]  ? trace_irq_disable+0x3b/0x140
[  473.874000][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  473.879901][    C0] RIP: 0033:0x7fa1d4fc5852
[  473.884351][    C0] Code: 89 e7 e8 71 8b f7 ff 45 31 c0 31 d2 31 f6 64 48 8b 04 25 10 00 00 00 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 89 c5 85 c0 75 3b 64 48 8b 04 25 10 00 00
[  473.904119][    C0] RSP: 002b:00007fff62b386f0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  473.912574][    C0] RAX: ffffffffffffffda RBX: 00007fff62b386f0 RCX: 00007fa1d4fc5852
[  473.920559][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  473.928593][    C0] RBP: 00007fff62b3887c R08: 0000000000000000 R09: 0000000000000001
[  473.936596][    C0] R10: 000055558d6037d0 R11: 0000000000000246 R12: 0000000000000001
[  473.944569][    C0] R13: 00000000000927c0 R14: 0000000000059cdb R15: 00007fff62b388d0
[  473.952575][    C0]  </TASK>