last executing test programs: 1m29.158567282s ago: executing program 0 (id=36): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000700)=""/255, 0xff}], 0x1}, 0x1f00) (fail_nth: 3) 1m28.845116513s ago: executing program 0 (id=41): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000700)=""/255, 0xff}], 0x1}, 0x1f00) 1m28.649359991s ago: executing program 0 (id=48): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000040)={0xffffffffffffffff}, 0x106, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000680)={0x15, 0x110, 0xfa00, {r1, 0x0, 0x0, 0x30, 0x0, @in={0x1b, 0x0, @local}, @ib={0x1b, 0x0, 0x0, {"00000000000000000000000000000001"}, 0x0, 0x0, 0xeb}}}, 0x118) write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f0000000400)={0x13, 0x10, 0xfa00, {&(0x7f0000000200), r1}}, 0x18) r2 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341) ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000200)) r3 = socket(0x10, 0x3, 0x1000) sendmsg$can_bcm(r3, 0x0, 0x8800) sendmsg$kcm(r3, 0x0, 0x80) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) openat$sequencer(0xffffff9c, 0x0, 0x2000, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r5 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, 0x0) ioctl$KDSETMODE(r4, 0x4b3a, 0x1) ioctl$TCXONC(r4, 0x4b3a, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000080), 0x0) ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect) setxattr$trusted_overlay_upper(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100), &(0x7f00000007c0)=ANY=[@ANYBLOB="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"], 0xed, 0x1) 1m27.767075703s ago: executing program 0 (id=65): r0 = fsopen(&(0x7f0000000080)='devtmpfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) symlinkat(&(0x7f0000000000)='.\x00', r1, &(0x7f0000000140)='./file0\x00') ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wg1\x00', 0x0}) r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000200), 0x880, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0a00000001000100018000000300000004230000", @ANYRES32=r1, @ANYBLOB="e5868c7500"/20, @ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="0400000001000000050000000000000000000000000000000000000035fc18ac03f37120c7f1aa3420f8298e12f26e651476e339110219fd40bfc61e965c35649342c87d11325f3b57e0bc68393154a27d3362a773a98c0ff07fc6c253117a97fe949eddaab8fe8af0b0c32a6ac8876a9e1225dbef317e66f00ffd015d7bdf3bb62e5300000000000000"], 0x50) r4 = socket$kcm(0x29, 0x2, 0x0) syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x14711, &(0x7f0000000100)={[{@lazytime}, {@inlinecrypt}, {@noblock_validity}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@mblk_io_submit}, {@dioread_nolock}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x222a}}, {@nouid32}, {@test_dummy_encryption}, {@bsdgroups}]}, 0x3, 0x453, &(0x7f0000000c40)="$eJzs281vFOUfAPDvzLbw+/HWivgColbR2PjS0oLKwYtGEw+amOgBj7UtBFmooTUR0mg1Bo+GxLvxaOJf4EkvRj2ZeNW7ISHaC+hpzczOlO2yu7R06xb280kGnmfm2T7Pt888O8/MMw2gb41k/yQRuyLit4gYqmdXFxip/3dteXH67+XF6SRqtTf/TPJyV5cXp8ui5ed2FpnRNCL9NCkqWW3+/IXTU9Xq7LkiP75w5r3x+fMXnjl1Zurk7MnZs5PHjh09MvH8c5PPrj2YJGl7aHfW1gMfzh3c/+rbl16fPn7pnZ++yUrvKo43xrERaUN6JAv8r1quudzj3ahsC9ndkE4Gbl6GraESEVl3Debjfygqcb3zhuKVT3raOGBTZdem7e0PL9VaqbTcC9x2kuh1C4DeKC/02f1vuf1HU48t4cqL9Rugq8ni9LXl+lY/MrByLz+4ifeuIxFxfOmfL7MtuvgcAgCgne+y+c/TreZ/adzbUG5PsTY0HBF3RcTeiLg7IvZFxD0Redn7IuL+G2pIO9bfvDR04/wnvXzLwa1BNv97oVjbWj3/W2n3cKXI7c7jH0xOnKrOHi5+J6MxuD3LT3So4/uXf/283bHG+V+2ZfWXc8GiHZcHmh7QzUwtTOWT0i648nHEgYFW8ScrKwFJROyPiAPr+9F7ysSpJ78+2K7QzePvoM0603rUvop4Iuv/WrIUTfGXks7rk+P/i+rs4fHyrLjRz79cfKNd/RuKvwuy/t+x+vxvLjKcNK7Xzq+/jou/f9b2nuZWz/9tyVt5v2wr9n0wtbBwbiJiW/Janl+1f/L6Z8t8WT6Lf/RQ6/G/t/hMVs8DEZGdxA9GxEMR8XDR9kci4tGIONQh/h9feuzdW49/c2Xxz7T8/ls5/5v6f/2Jyukfvm1X/9r6/2ieGi325N9/N7HWBm7kdwcAAAC3izR/Bz5Jx1bSaTo2Vn+Hf1/sSKtz8wtPnZh7/+xM/V354RhMyyddQw3PQyeSpeIn1vOTxbPi8viR4rnxF5X/5/mx6bnqTI9jh363s834z/xR6XXrgE3XhXU04DbVPP47v7IB3Elc/6F/Gf/Qv4x/6F+txv9HTXlrAXBncv2H/mX8Q/8y/qF/Gf/Qlzbyd/0S/ZyIdEs0Y5MSQ1ujGT1M9PqbCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoDv+DQAA//82merZ") r5 = openat(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0x100, 0x62) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r5, 0x40086610, &(0x7f00000004c0)={@desc={0x1, 0x0, @desc3}}) r6 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r6, 0x80044940, &(0x7f00000010c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000340)='.\x00', 0x126a4b5, &(0x7f00000020c0)=ANY=[@ANYRES16=r13, @ANYRES64=r11, @ANYRES16=r10, @ANYRES16=r13, @ANYRESDEC=r12, @ANYRES16=r9, @ANYRESOCT=r4, @ANYBLOB="9a7f40ad4c7145903a868b9020e1e8899ed5747db23004fc9d248900abcaa6b065cf0800930a71dcd8b8955d93c78b9d4e5e06d8d5c9ac9b75d177754d6eba23e6d2be546c0dfecdf61baf732950a5729c01fbdc11e36cb411be200a9135657acd97d21ee46aac313ebdddd9265af16558dd3e5ba4836659a6abfe08aad84276acf949bdaa34bdf7f7b2dfb2fe8b9d6d225dcecebeb6e15f649994728842bd99fc94897d24315ac2d17bf6c2acfbfa8464d80f36304f88b906b78ab359be3479db5b0e7555f04416807c2202d6551f2425440be741dbe053e0bfeb845623e722a9293843f1cf0a71119dcadf7e353af4da52aed3086d6e5a095774248be9a1b1418dec1c03a2cb0ece0840ebeaaf7b67867da45943b700e2d6dad775ae6f33e55aa86ca84c336c91e3b7d7224f7a9a10d5b45a6ce0769d875415bea136b5508e5e0a88290792da3b11b2284a3d757c301cec78b55d3fcfa073615ccb089f66c5b9a5c84f6c1bb78c3370c4687eab260711fa05525687c7709e15cddea061f70798cbf940ad929eb80f33ad8bb4fcd322dd0558f111d7d01351147976b425a27e573402490055054cf3d80bebde6a89f3086170633740f08780aac3a73f17eaeda8deb642c2887962596b4d78c0ffffb28d0e64073b0641f89cf83a69afaaea03ba6070838fdbdaccb81630a6fdaa77fc10146013b9fd79e965a320daf81c1a51f032a3f462f2740e579eb116cad80b4e233326bf94fea52184517accf608b1fbfb395942869841b9ca0f314beff6b2dc0a74d7599012274b24775f0382e72907c1f0c571b994f048c0266feb775d893fec84e5733cd66a96cd45b60f63743b17b05d99c427a2d00a27fef17cadf128059a2e227b80701755b0bc706f32255c8cd619fa995cc7649f28337361a62cff46669fa4cf095a2d148987a9fafa6e1fb9f59b5ac5ff10a4c62e0187a3c75a983f7f5211142c6c09170a13e29c2044e5568bda8055cee4722e445e83ea01307c42cbe63a5bc529e1200e5874f7500275abacd6cc0e3bf8fd38ab7bab39f54d180d60892e2e3a713a3e654c89b8e9ba4474909991844514c04b655c66ccd6f2a17e29ff69d343ebac7ac5e1510ad4ff52e6a932a97bb0d814259da6545022152dd63f06219a1d66ec2278b694876ed6195b0543b8c9289b8438e8ee57dd38bcdb045a6fc4cede28effaa0354afbd4190fcbccd9a0e91508e4399e0e30a0bfdedcc19454b6dd7c2785a6e4fe74a0ece1d683ad07d76eafec02fb0d88debfeacd3531413185da0ffa4fb9b5e6d5a916f7bb5d51efc8ab61e4953fc6b2d1e670769f3ca56d51b804ceb118278acc90422e1f51e448a27d2fe4f93c88cf7c6148474bf650902dd6dd96541044113d244cf938150ec426e7ed63e1f153bbe328f4232552b104c8dee60b0c4e4c25f2605e97cc6f4263d32e8340be2d167137682373ae4cd501fdc9c5359b40f52803a5e4c0e04a5de0412c5cbd4d05e6135a1209d4b2dff50d39e481f1d1b01ed71004fb0c18e736af8ab176f833a439a85c9132e6d2296f665771c6a284eadc08c94ffa520dcc37fd6426c152364699514b15d4df6732fff39834e8ba29688b19db27a970d9d7fbee973c76bee04fb6164963969ebde0f785606781d63726736d8b60a713d5f72207a23f6f00420fdf24d14c069f36a7e236620481cc7a63857cc1355bac8d4f9a3f32785ad4d9d81719077a816b33b98006c322ee473aa9f8f83fae86a4d421104b298a9e42357c44b773e3504b3f9eb5b29330411b776b78fdb6dd9713dd1aee0cc9c7ee8bd23a50d4c8babaf6d74bc25377009a8c57c941f80e58ac08c93a275656cbad3864df9e791305d66103ab30983b07553ede5b5d5b0aab157f805eb6c11c75dd7f297c2cc9110551131a797164dec422b13799f1c261464c765a62c201eb9c8686eee94642d59f429cd137cba0d1a8126dcdfc28ea5c201526c61164a86f480dfde0c60fdf6afd3cd64719de1d89b5a362e058054a9db73aaffac324b04e8903060e1f14ca4ac31c82183066e6d581685efbe3452a20a665166b03808220770d66051971b61d8114376e22a4511cae9fdf7bbed68bb9f45b57eee1c15775730ef1434731d7b82a7cbcd6155396263984edfcea62196189da0ba9908d7d5ef514d75a3e1d4ae42654365083873fc4ce969fa4fac51d640be8d948bb9464d1a7e494c8df98bd5a569ff7fe1aca542c34610148a8f1dc9d60ff0f761270577f286a362f32164184ffce3ad132637e9f0381e9ce76a11f296f9d1e835cdc44926104e1df4d0a282a84b9fbc23064bfcab0d221c6e3124ae8ba6022e62f170dcc2d655f73b40f83fd65f5c705bc1f9e8df13adeadff9e1fe4660a55be7dc969cfffaed607190162dcd09d0cd86a297b22142b88f0eb28dd1a45152a4f4f2dca0d96d39fa594349040f486cd486af619b7083236cf90324cddc6f1ed0f6a103c8d936d7f2f31d420ef50931838e66721bff7494617b6b4bc385f3e51b3f81cf5d6953ac7fddc0f3466682911b38bc7f082e0c18e3ae0badf7f3fd3e186ebc2bab71fa26f77bb14cd97e6761c93c8c25887c0ef1f3dc1d8d86ce0fb73190f66f4deca77977e8d6064bfeeac3fad2bc50488c144e2a1a82fcc1e1c12ac54bf3e2d468e8f53241e4a6ad9e466746a45b053452ded5caa20461881d78d8235e986ba8b77e83601655d2650bf1b64ce17c75314216b43bbd1101a2e12e57525bb7d3b136a70635bdac8af24367a24ce2fe2a72ef2b0e56ff8dc62a82946f86f9b6b1418a89b1971372dfe7d5ce2e6611befff721f04a19bce7f90b1551a4cdead136662c50513fdde6f9d4a199c3907ed8799f231f54dd8347c71d829ff8ddc5d96b5aac2fe58652c81ff7f54e2568119dff2763ef435aa420630dacc7e9414340ee8688f46c7a8ab96d860937641042b3cdf6857ff1d2d4e47cec1f23e65fe541f38cb96b132666f999002e89cd1896ca58c2e63b87382e1a6c1ee9afa56cf3ba923fa9c989e20bff313f37252632fdcff03fbdd2d334ee93baf75c1bdae30feaa81fb2ac1b63c42dda06f20ce8c9d003eb3efed7931def342fb874fce92763f6f477c7f589b75d2129419fc4cb7a8893a1d3f94533ed9fdf9f21fc254fd80aa74750833d390327a2107e761240928d35a36c5eaca61fd848116b8dd7ec8157928bc2dd87f7756aa517cf6a61d2009fd4ba0579ca3b3129cfd5403546f5ab6d0575799a008fc67da9658427636d8f806d9b8cad64aee438d0a9b45957f31a5afe3ed894add9acadfd347246099c6ff0b4ec6f19ac61557daf8739e528185ab1468ca72d6d72e4f026e371e540b774b6576df3014dcc9e91b2cd1f0403a4fcaa6627b22682bb54f92150c2917acaee1972b2b03bc2bd37fdb9e7352c654d94ef196b7229e4da5ee62b7d395ecdd5177f2563242ea49ff78151a4a816a94e89b03f41c7e6684f8be3e5802e9338e7cbd3b43f708c062f944a59f31b02ca9a177e6b681accee8785d2467d2d78636be4330febaa3f6907db07992a2de74e459f3ae8ee6adae20cbc75aabd2d5d3424de0ddcc3ddd981c3a4966c57f8fdb1c42db87395f0bc800ff8ddb4c228a7d793d8a997885494a8578f5433d3f82886ea573641bf16065efbc25718c88f7277ce04c94af560d8deb7968496f849d3fad78741272b08bf7aec3f3c777428d3b8b897333ae5afb6823af63cb7347601ee2e8d4e21b21a12e6d42f66a1aac26d296bc68a998d8ba179ed5f756c2efd8a7acc0e3f08093bb4a83d37f15b4fe07c90858058ad1ff0e21bb7bf4363079c5d452dba5972b21c8f41daf6f11a51d321d3c1d544190238036d907d965ff469ce4895eb7675f3e94a15f83b837b892a40390d87d76e9b15eda02366299d3dd93943466bceeb2f9e465adccc08e1a02c3ac01815931627ed327e0ffbe09563221a365b88c4f2449bd3634920d5bfbde7cdc92c4cb16a579f35f07dafc87ce6ce4de7bf9e8ff0e80b81cdab8f2164a25a0a6929679ce9ae0dc2ac7ed41a787446676f091597551dc2e8c054224bac6652bba5fb675c0b2c94d2faac160f11b7b96fc96415aca8a47fa03658b8afa24b6bd97f7dbeead9ae5f7ec1cb0d000055f41a5043c6c4c97212398b168b5cb9ee650726eabcc31b6712e815fdaae77885350884fb36d6d5444d5e5500a7d636d4eced14b9d411c765b36a4be06ca9be2965d6d6c06c3b6bcb38babeb2999ee71295d48926bf6e39363fabf74de5e57aa0b59f9dddeca142d0c50ab7ff198196c69c971e6ab591220f4e42d6525e2dbd99b6c57949c854e4ee0e4581f9e3e160b3f66b01f23f4d0472c0a1f307837ac8dac0a257d09ab82975148dcd764fe6359a5f21b9cbe2ae7b9b277489a8b3285b8289a84ff854508b4488ffcf68f47ec7a5c18a8c3d06e26b32f754ac74ea8e93a554147fd3b3daf1fbe924e2e389cac13a5f80f3a21dbd250d3917f7b5acfc739a63f2b3d6b3f099efb4be7a842215c89fc87bd8550d11ba2a4af0f111ab124503b26feeae3be3ee24168dd4553a226b9168edb11c3e61bc850adf995b4d6f1aace6db0b91f805c3d1789a3e6b470e5470968f429d5b05c8f76ca2981e37f5bde4ad00a09755c76774ead7d93f3f41255b1d56152e3699b133b2e0b277427c992323d1b4d8c438434e9e901ddd43788f80cb9a975e9dd1671ce16be5ff8033d5da824f00fd78b540edbcd69a2e9aff03e31af9afefb809434f52b4a1239fdd241ed3a268258addde19d1724155a1a4c877bd59b0659b7a786886f6ffcb5999d1f9c007d615020926f7165a9ddd4aaa3c7b631d30cc951e328131d99282ac06a18f88373092320ea5308f06c376e711aecda4cd1c2b639d9ea7a2613d4e9eaa9a0ef72774fdec622f7d131b45135d577897bf686b460a371083070139ea544bda15012251d6c8e7163c25412841faefba76765648ca7cd1b423403a654b6b5754588ae6c309621477db20f7c9236af1e422ebd3fb6d6a712e7a6d00d58416b7d65a53a2514bf51bedfe9207f16a4d79418600389b98ea8b9e06b8da708a86f191e567925af39a09ac9fd7902e8f8e77567baf1b75c05ba1eb7089b424801405afc982a8d79c80fada184a1ab3bab526a3b0a5e20d2dc6bcdd2c5cb7c49f735f3e8f4d36a388ca805876ae08f0e3acca5dd864c1fa1552068bf799095221480374fd2dcaeddb74be93470eff4fe278e190f0a131f32340ada9cca518af769f42943875f4c5707beee2179771da21cd66405b9973648bd047a516d1cf902fa1f0fcdcbc3f4c1f20fc22f9a7e9f4c3a52576399604c46f83ede44f542d06d54e6e8a1e693a2cfcbb16c178d1bace976133e72cc4533bd02b1c4ec2cc22097435aff5a682ca7227414895450831560fa682493f4814ce8fbdb190f8ce2b533ed9582638511bda93aeae5d0690f745b788db622864ba3fb60952f119427fbe66754c5c038c5fb2cb87c326d65862e353c14950bd1fa7c70e36323e9cf90c81f6275e59c7926acac1560a0b6bbc7a850817f2effa19d485315a219d49e293f871278294d02765cf72caa2f438de3337ed205bf68ff6ddaaa5e4b80de5fba022dfcf9cf074a319678df11eb77b3ef66e512b67ba5182265a60eaf457691e973d23cbaf6000537f886695074ebb616f9cdad9de7c6fe9ecfbd13d537d64c34a7c90ca56b50e60d6a7067e391e63561793edf6ed3c2eeb8555909a59ce73da1f096d41fb42de44494128324a9", @ANYRESHEX=r7, @ANYRES32=r8], 0x5, 0x0, &(0x7f0000000000)) r14 = socket(0xa, 0x800, 0x6) socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r14, 0x8933, &(0x7f0000000040)={'lo\x00', 0x0}) r16 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r16, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r15, {}, {0xffff, 0xffff}, {0x5, 0x6}}, [@TCA_RATE={0x6, 0x5, {0x0, 0x9}}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) ioctl$BTRFS_IOC_TREE_SEARCH(r5, 0xd0009411, &(0x7f00000010c0)={{r8, 0x3, 0x3, 0xc, 0x4, 0xfffffffffffffffe, 0x3, 0x8, 0xad, 0x3, 0x5, 0xfff, 0x5, 0x2, 0x4}}) ioctl$sock_kcm_SIOCKCMCLONE(r4, 0x89e2, &(0x7f0000000000)={r4}) ioctl$sock_kcm_SIOCKCMCLONE(r17, 0x89e2, &(0x7f0000000040)={r17}) ioctl$sock_kcm_SIOCKCMCLONE(r4, 0x89e2, &(0x7f0000000080)) kexec_load(0x9, 0x1, &(0x7f0000000600)=[{&(0x7f0000000000)="e69b9dee426d7ecef679122cb2", 0xd, 0xc, 0x8000000000000001}], 0x80000) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x40}, 0x1, 0x0, 0x0, 0x8040}, 0x20040050) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xc}, 0x94) setsockopt$packet_drop_memb(0xffffffffffffffff, 0x107, 0x2, &(0x7f0000000040)={0x0, 0x1, 0x6, @broadcast}, 0x10) sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000000040)=@in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x40084}, 0x1) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) 1m27.508156733s ago: executing program 0 (id=67): sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f8480d0000005e14", 0x1a}], 0x1}, 0x0) r0 = socket$kcm(0x10, 0x400000002, 0x0) write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="1c0000005e"], 0xfe33) 1m23.939532576s ago: executing program 0 (id=125): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000040)={0xffffffffffffffff}, 0x106, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000680)={0x15, 0x110, 0xfa00, {r1, 0x0, 0x0, 0x30, 0x0, @in={0x1b, 0x0, @local}, @ib={0x1b, 0x0, 0x0, {"00000000000000000000000000000001"}, 0x0, 0x0, 0xeb}}}, 0x118) write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f0000000400)={0x13, 0x10, 0xfa00, {&(0x7f0000000200), r1}}, 0x18) r2 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341) ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000200)) r3 = socket(0x10, 0x3, 0x1000) sendmsg$can_bcm(r3, 0x0, 0x8800) sendmsg$kcm(r3, 0x0, 0x80) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) openat$sequencer(0xffffff9c, 0x0, 0x2000, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, 0x0) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, 0x0) ioctl$KDSETMODE(r4, 0x4b3a, 0x1) ioctl$TCXONC(r4, 0x4b3a, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000080), 0x0) ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect) setxattr$trusted_overlay_upper(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100), &(0x7f00000007c0)=ANY=[@ANYBLOB="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"], 0xed, 0x1) 1m23.812389941s ago: executing program 32 (id=125): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000040)={0xffffffffffffffff}, 0x106, 0x2}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000680)={0x15, 0x110, 0xfa00, {r1, 0x0, 0x0, 0x30, 0x0, @in={0x1b, 0x0, @local}, @ib={0x1b, 0x0, 0x0, {"00000000000000000000000000000001"}, 0x0, 0x0, 0xeb}}}, 0x118) write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f0000000400)={0x13, 0x10, 0xfa00, {&(0x7f0000000200), r1}}, 0x18) r2 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341) ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000200)) r3 = socket(0x10, 0x3, 0x1000) sendmsg$can_bcm(r3, 0x0, 0x8800) sendmsg$kcm(r3, 0x0, 0x80) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) openat$sequencer(0xffffff9c, 0x0, 0x2000, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, 0x0) ioctl$PIO_UNISCRNMAP(r4, 0x4b6a, 0x0) ioctl$KDSETMODE(r4, 0x4b3a, 0x1) ioctl$TCXONC(r4, 0x4b3a, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000080), 0x0) ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect) setxattr$trusted_overlay_upper(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100), &(0x7f00000007c0)=ANY=[@ANYBLOB="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"], 0xed, 0x1) 1.856216801s ago: executing program 3 (id=695): mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) msync(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x6) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) seccomp$SECCOMP_GET_ACTION_AVAIL(0x2, 0x0, &(0x7f00000001c0)=0x80000000) syz_socket_connect_nvme_tcp() r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'veth0_to_bond\x00', 0x0}) sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="340000001a00010028bd70000000000002202000000000070000000008000300", @ANYRES32=r4, @ANYBLOB="08090000ac1414bb080002000a010100613db2d2249b78bbb22d1520efbb0264f23355c3841a61c54fb8dda48fd3588e5f46486cb41335e4617b8fd52fa3e13f2602ef893b3f207ab7f27bba23eb77"], 0x34}}, 0xea5bc50b6199d77e) r5 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000001440)={&(0x7f0000000540)=ANY=[@ANYBLOB="38000000480021032cbd7000fbdbdf250a000000", @ANYRES32=0x0, @ANYBLOB="0400000008000200bcd763e3c8684294da761b26"], 0x38}, 0x1, 0x0, 0x0, 0x4010}, 0x0) openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x0, 0x0) ioctl$PPPIOCNEWUNIT(r5, 0xc004743e, &(0x7f0000000040)=0x4) socket$key(0xf, 0x3, 0x2) r7 = socket$netlink(0x10, 0x3, 0x0) setsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000280)={@rand_addr=0x64010102, @loopback}, 0x8) sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@newlink={0x38, 0x10, 0x801, 0x4000020, 0xfffffffc, {0x0, 0x0, 0x4c, 0x0, 0x204e9, 0x500}, [@IFLA_TXQLEN={0x8, 0xd, 0x40}, @IFLA_OPERSTATE={0x5, 0x10, 0x8}, @IFLA_GSO_MAX_SEGS={0x8, 0x28, 0x4529}]}, 0x38}, 0x1, 0xffffa888}, 0x20000801) 1.853426921s ago: executing program 5 (id=698): mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0x42795000) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000340)={[{@barrier}, {@journal_dev={'journal_dev', 0x3d, 0x80}}, {@noquota}, {@errors_remount}, {@auto_da_alloc}, {@discard}]}, 0x1, 0x5c3, &(0x7f0000001000)="$eJzs3U9oW/cdAPDve7JiJ/HmDDbYRg5hG2QQItv5s2U7OdexQCCHwWBsRlZMsGwFy95iY5hzD2M7jLbkkt566bGlh1JKLz322ktLz4XQmAbiHFoVSU+O4kiO7MRWYn0+IOn3e/++v997+j7pPd7jBTCwTtXf0ohfRMTVJGKsbdxQZCNPNafb3FgrPt5YKyZRq137JokkIh5trBVb0yfZ5/GIWI+In0fEJ/mIM+nWIo+0CtWV1bnpcrm0mNXHl+ZvjldXVs/emJ+eLc2WFs7//g8XL124OHlusr25j2vttfzu+nrny//9585nf7o3Fe+eXC/+fzqJqRjNxrX342VqrpN8TG0bfmE/gvVR0u8GsCe5LM/rqfSzGItclvWd1Np3DsMH0jxgH9WGI2pb2orAAEgkPQyo1v+A+vFv63WQ/z/uX24egNTjbm6sFf8drfhDzXMTMdI4Njn2bfLUkUn9ePPEQTaUQ2n9duNj6Nnvf5J9//Zu4sWbxz77+HJzQz27/dOt/U902P+Mts6dvqDW/m8z2/9tdoify+KPtM1X3/9d7THGd3/96q2u8W8Pxy87xk+24icd+p9GxD96jH/3Lx9c6jau9nbE6egcvyXZ+fzw+PUb5dJE871jjA9Pn/xj9/5HHOsSv3nOdqTRkPb+H6mNNdqU9tj/9z9971frO8T/7a933v6d1v/RiPhvj/F/8uidP3cbd/928qD+L6Dr9m9thmd+f/Nxr8f4v5s69UVWdNYQAAAAAAAAAABeorRxLVuSFrbKaVooNO/h/WkcS8uV6tKZ65XlhZnmNW8nIp+2rrQaa9aTen0yux63VT+3rX4+lwXMHW3UC8VKeabPfQcAAAAAAAAAAAAAAAAAAIBXxfFt9/8/zDXu/9/+uGrgsOr+yO8OHv6t5wcfAa++XeU/cKg8nf9J39oBHDy//zCwavIfBpf8h8El/2FwyX8YXO35/1Ef2wEcPL//MLjkPwAAAAAAAAAAAAAAAAAAAAAAAAAA7IurV67UX7XHG2vFen1maGV5rvLPszOl6lxhfrlYKFYWbxZmK5XZcqlQrMw/b3lJpXJzIhaWb40vlapL49WV1b/PV5YXWs8ULeX3vUcAAAAAAAAAAAAAAAAAAADw+hltvJK0EJFv1tO0UIj4UUScSCK5fqNcmoiIH0fE57n8cL0+2e9GAwAAAAAAAAAAAAAAAAAAwCFTXVmdmy6XS4udC+PZZDtN87zCULaMPc6++8JIdJ9maDcLjIj1l9vC+hJ3PVc+W4EHsOoOfyF3cN/D17vQpx0SAAAAAAAAAAAAAAAAAAAMsCc3/fY6x/f72yAAAAAAAAAAAAAAAAAAAAAYSOnXSUTUX6fHfjO6feyRZDPX+IyIf9299sat6aWlxcn68Adbw5fezIaf60f7gV618jSNiHoeAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAE9UV1bnpsvl0uIeC8M9TNPvPgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADsxQ8BAAD//6D5zB0=") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0) 1.817970492s ago: executing program 2 (id=699): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x8, 0x4}}]}}]}, 0x48}}, 0x20040084) r4 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newqdisc={0x24, 0x28, 0x4ee4e6a52ff56741, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r5, {0x4}, {0xffff, 0xffff}, {0x2, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x400dc}, 0x0) 1.724277026s ago: executing program 5 (id=701): r0 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$inet6_int(r0, 0x29, 0x19, &(0x7f0000000000)=0x84, 0xfde1) socket$inet_udp(0x2, 0x2, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10) sendto$inet(r1, &(0x7f0000000240)="eeacd1590a1b7c1800116f0e1c50d349646202606b1af541010001003a6ba290e7f9ab7d54bcf4266995d23517390e1c6ee325f819a8ee6f31d3598dc7e86c14417361c619662c730a92ce6509ffffff7f9d858257717c343c44060e8a6ff69a7de0f400000000496efc367cd7f8228b", 0xfffffffffffffcc4, 0x40841, 0x0, 0xffffffffffffff32) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000380)='htcp', 0x4) recvfrom$inet(r1, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25) 1.396249328s ago: executing program 2 (id=703): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x10}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x9}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x40480c0}, 0x20040084) r4 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) r6 = openat$tun(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) close(r6) socket$packet(0x11, 0x3, 0x300) ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r7 = socket$kcm(0x11, 0x3, 0x0) sendmsg$kcm(r7, &(0x7f00000000c0)={&(0x7f0000000500)=@xdp={0x2c, 0x0, r5, 0xc}, 0x80, &(0x7f00000006c0)=[{&(0x7f0000000180)="2703", 0x2}], 0x1}, 0x4) 1.315870571s ago: executing program 5 (id=705): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWTABLE={0x28, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x8}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x6}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}}, 0x50}, 0x1, 0x0, 0x0, 0x24040010}, 0x20000080) 1.255197943s ago: executing program 5 (id=707): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0b00000000010000081100000900000001"], 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000000), &(0x7f00000002c0), 0xb, r3}, 0x38) bpf$MAP_LOOKUP_BATCH(0x1b, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000100), 0x0, 0x3, r3}, 0x38) 807.83449ms ago: executing program 1 (id=711): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4) syz_emit_ethernet(0x2a, &(0x7f00000001c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @random="4bb7e00d2cac", @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x100, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e20, 0x8}}}}}, 0x0) 744.236032ms ago: executing program 1 (id=712): sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001240)=[{{&(0x7f0000000040)=@vsock={0x28, 0x0, 0x0, @my=0x1}, 0x80, &(0x7f0000001140)=[{&(0x7f00000000c0)="804420ca7ad3791a8ba798f5e9649352e511032166fc7abb67861bdc47f2e72c8d30c4391be9de14a8afa199066bc3e7aa48eb525c1ffff3fcb6a06d967920715f8208995574f54e439921f2f7fa9f2f67b24bb30bcc2eed6d66952b42055af5d7b1df44596c53111507c6529d7e51d8f16d39bfe19db06eb1abd1c0ff34a6dcf99c8fbf91f4f5b7b81a0b9badfef2c21f68bf47c155adfd75be1fb336840ebd48875a4fc28fdf5b03bde74c967255d8f890dc1a06ae2b1816ca95b4c8a4769d1560105278ffc021a23459a62cdd4fef", 0xd0}, {0x0}], 0x2, &(0x7f0000001180)=[@mark={{0x14, 0x1, 0x24, 0x800}}, @mark={{0x14, 0x1, 0x24, 0x9}}, @mark={{0x14, 0x1, 0x24, 0x6}}, @txtime={{0x18, 0x1, 0x3d, 0x401}}, @txtime={{0x18, 0x1, 0x3d, 0x4}}, @mark={{0x14, 0x1, 0x24, 0xaf5e}}, @timestamping={{0x14, 0x1, 0x25, 0x8000}}], 0xa8}}], 0x1, 0x8000) 744.020752ms ago: executing program 1 (id=713): shmat(0x0, &(0x7f0000f62000/0x1000)=nil, 0x7000) syz_clone3(&(0x7f0000000400)={0x6200, 0x0, 0x0, 0x0, {0xa}, 0x0, 0x0, 0x0, &(0x7f0000000040)=[0x0], 0x1}, 0x58) 724.467623ms ago: executing program 2 (id=715): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000840)={0x38, r1, 0x1, 0x3, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x2}, @NLBL_CIPSOV4_A_TAGLST={0x14, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x2}, {0x5, 0x3, 0x7}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x2}]}, 0x38}, 0x1, 0x0, 0x0, 0xc082}, 0x20004080) 712.061854ms ago: executing program 1 (id=716): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000280)={[{@max_batch_time}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@nombcache}]}, 0x1, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV") setxattr$incfs_metadata(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380), 0x0, 0x0, 0x0) removexattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@known='user.incfs.metadata\x00') 620.086917ms ago: executing program 3 (id=718): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=@newsa={0x138, 0x10, 0x1, 0x0, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@dev={0xac, 0x14, 0x14, 0x3c}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x64}, {@in, 0x0, 0x32}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, {}, {0x0, 0x0, 0x8000000, 0x200}, {0x0, 0x0, 0x2}, 0x0, 0x0, 0xa, 0x0, 0x0, 0xcd}, [@algo_crypt={0x48, 0x2, {{'cbc(aes)\x00'}}}]}, 0x138}}, 0x800) 619.900037ms ago: executing program 2 (id=719): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfe, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x10}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x9}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x40480c0}, 0x20040084) r5 = socket(0x400000000010, 0x3, 0x0) r6 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0x7}, {}, {0x7, 0xe}}, [@filter_kind_options=@f_fw={{0x7}, {0xc, 0x2, [@TCA_FW_CLASSID={0x8, 0x1, {0x1, 0x7}}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x84}, 0x8000) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r8, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x5, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0) 611.367007ms ago: executing program 1 (id=720): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x24040084) sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000400)=@newqdisc={0x34, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r4, {0xffff}, {0xffff, 0xffff}, {0x2, 0xa}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x400dc}, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=@newqdisc={0x30, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_cbq={{0x8}, {0x4}}]}, 0x30}, 0x1, 0x0, 0x0, 0x400dc}, 0x0) r8 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) close_range(r8, 0xffffffffffffffff, 0x0) 596.360938ms ago: executing program 3 (id=721): getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) syz_clone(0xa220480, 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket(0x10, 0x3, 0x0) recvmmsg(r0, &(0x7f0000005180), 0x400000000000166, 0x1a000, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8) 475.236472ms ago: executing program 4 (id=724): sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001240)=[{{&(0x7f0000000040)=@vsock={0x28, 0x0, 0x0, @my=0x1}, 0x80, &(0x7f0000001140)=[{&(0x7f00000000c0)="804420ca7ad3791a8ba798f5e9649352e511032166fc7abb67861bdc47f2e72c8d30c4391be9de14a8afa199066bc3e7aa48eb525c1ffff3fcb6a06d967920715f8208995574f54e439921f2f7fa9f2f67b24bb30bcc2eed6d66952b42055af5d7b1df44596c53111507c6529d7e51d8f16d39bfe19db06eb1abd1c0ff34a6dcf99c8fbf91f4f5b7b81a0b9badfef2c21f68bf47c155adfd75be1fb336840ebd48875a4fc28fdf5b03bde74c967255d8f890dc1a06ae2b1816ca95b4c8a4769d1560105278ffc021a23459a62cdd4fef", 0xd0}, {0x0}], 0x2, &(0x7f0000001180)=[@mark={{0x14, 0x1, 0x24, 0x800}}, @mark={{0x14, 0x1, 0x24, 0x9}}, @mark={{0x14, 0x1, 0x24, 0x6}}, @txtime={{0x18, 0x1, 0x3d, 0x401}}, @txtime={{0x18, 0x1, 0x3d, 0x4}}, @mark={{0x14, 0x1, 0x24, 0xaf5e}}, @timestamping={{0x14, 0x1, 0x25, 0x8000}}], 0xa8}}], 0x1, 0x8000) 455.965613ms ago: executing program 4 (id=725): r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f0000000740)={@broadcast, @loopback}, 0xc) 396.167406ms ago: executing program 4 (id=726): r0 = socket$inet_udp(0x2, 0x2, 0x0) openat$sysfs(0xffffff9c, &(0x7f0000000040)='/sys/firmware/fdt', 0x0, 0x90) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f0000000300)={0x0, {0x2, 0x0, @dev}, {0x2, 0x4e24, @remote}, {0x2, 0x0, @multicast1}, 0xaf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x200}) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48) socket$nl_route(0x10, 0x3, 0x0) socket$packet(0x11, 0xa, 0x300) syz_open_procfs$namespace(0x0, &(0x7f0000003000)='ns/uts\x00') socket$netlink(0x10, 0x3, 0x0) socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)) socket$inet6(0xa, 0x802, 0x0) socket$nl_route(0x10, 0x3, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000000c0), 0x111, 0x6}}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000940), 0x2, 0x0) r2 = socket$unix(0x1, 0x2, 0x0) ppoll(&(0x7f0000000300)=[{r2, 0x4236}], 0x1, 0x0, 0x0, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300), 0x2, 0x4}}, 0x20) writev(r1, &(0x7f0000000040)=[{&(0x7f0000000100), 0x86}], 0x2) 372.800016ms ago: executing program 5 (id=727): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r1 = socket$kcm(0x2, 0xa, 0x2) socket(0x10, 0x803, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000280)={'syzkaller1\x00', @link_local}) write$tun(r0, &(0x7f0000000380)=ANY=[@ANYBLOB="0000ce7bffffffffffffaaaaaaaa93aa81002f0008004500001c4000e000062f90787f00e901040000e2ff000000"], 0x32) 164.274824ms ago: executing program 1 (id=728): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket$unix(0x1, 0x1, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x2, 0x7f61, 0x1, 0xc5, 0xe23, 0x3, 0x1, 0x7fff, 0x1}}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x8001}, 0x0) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r4) socket$unix(0x1, 0x1, 0x0) ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r5 = socket$packet(0x11, 0x3, 0x300) r6 = socket$netlink(0x10, 0x3, 0x0) setsockopt$packet_int(r5, 0x107, 0xf, &(0x7f0000000100)=0x207, 0x4) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000080)={'syzkaller0\x00', 0x0}) sendto$packet(r5, &(0x7f00000002c0)="0503d6fcd3fc140000004788031c09102c28", 0xfdef, 0x4, &(0x7f0000000140)={0x11, 0x8100, r7, 0x1, 0x0, 0x6, @multicast}, 0x14) 150.272474ms ago: executing program 2 (id=729): unshare(0x24020400) r0 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt(r0, 0x65, 0x1, 0x0, 0x0) 92.256766ms ago: executing program 3 (id=730): openat$nci(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0) openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) close(0x3) 92.016986ms ago: executing program 4 (id=731): syz_create_resource$binfmt(&(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r0, &(0x7f00000006c0), &(0x7f0000000000)=""/3, 0x2}, 0x20) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000400)={r0, &(0x7f0000000380), &(0x7f0000000500)=""/166}, 0x20) 89.781227ms ago: executing program 4 (id=732): r0 = fsopen(&(0x7f0000000200)='configfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) unshare(0x24020400) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f00000000c0)={r1, 0x0, 0x0}, 0x20) 74.072928ms ago: executing program 2 (id=733): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@newlink={0x54, 0x10, 0x1, 0x70bd2b, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x2d24d, 0x11f04}, [@IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}, @IFLA_VFINFO_LIST={0x20, 0x16, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN_LIST={0x18, 0xc, 0x0, 0x1, [{0x14, 0x1, {0x1, 0xa75, 0x40, 0x88a8}}]}]}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x240000c1}, 0x0) 52.639628ms ago: executing program 5 (id=734): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x21081e, &(0x7f0000000080)={[{@grpquota}, {@nodioread_nolock}, {@debug}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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") setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, 0x0, 0x0) r0 = socket$unix(0x1, 0x1, 0x0) bind$unix(r0, &(0x7f0000000300)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) setresgid(0xffffffffffffffff, 0xee00, 0xffffffffffffffff) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x9c37611dc13d0d83) fchown(r1, 0xffffffffffffffff, 0x0) 303.75µs ago: executing program 3 (id=735): sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001240)=[{{&(0x7f0000000040)=@vsock={0x28, 0x0, 0x0, @my=0x1}, 0x80, &(0x7f0000001140)=[{&(0x7f00000000c0)="804420ca7ad3791a8ba798f5e9649352e511032166fc7abb67861bdc47f2e72c8d30c4391be9de14a8afa199066bc3e7aa48eb525c1ffff3fcb6a06d967920715f8208995574f54e439921f2f7fa9f2f67b24bb30bcc2eed6d66952b42055af5d7b1df44596c53111507c6529d7e51d8f16d39bfe19db06eb1abd1c0ff34a6dcf99c8fbf91f4f5b7b81a0b9badfef2c21f68bf47c155adfd75be1fb336840ebd48875a4fc28fdf5b03bde74c967255d8f890dc1a06ae2b1816ca95b4c8a4769d1560105278ffc021a23459a62cdd4fef", 0xd0}, {0x0}], 0x2, &(0x7f0000001180)=[@mark={{0x14, 0x1, 0x24, 0x800}}, @mark={{0x14, 0x1, 0x24, 0x9}}, @mark={{0x14, 0x1, 0x24, 0x6}}, @txtime={{0x18, 0x1, 0x3d, 0x401}}, @txtime={{0x18, 0x1, 0x3d, 0x4}}, @mark={{0x14, 0x1, 0x24, 0xaf5e}}, @timestamping={{0x14, 0x1, 0x25, 0x8000}}], 0xa8}}], 0x1, 0x8000) 142.26µs ago: executing program 4 (id=736): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[@ANYBLOB="500000000102030000000000000000000a0000093c0001800c000280050001fd600000002c00018014000300fe800000000000000000000000000023140004"], 0x50}, 0x1, 0x0, 0x0, 0x40}, 0x0) 0s ago: executing program 3 (id=737): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000b40)={[{@data_err_ignore}, {@dioread_nolock}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@prjquota}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@min_batch_time={'min_batch_time', 0x3d, 0x3}}]}, 0x1, 0x47a, &(0x7f00000006c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000040)={0x2007, 0x5, 0xf, 0x6, 0x1, 0x9}) kernel console output (not intermixed with test programs): 47.619238][ T4837] should_fail_ex+0x3c0/0x518 [ 47.619914][ T4837] __should_failslab+0xc0/0x120 [ 47.620640][ T4837] should_failslab+0x10/0x28 [ 47.621375][ T4837] kmem_cache_alloc_node+0x8c/0x33c [ 47.622224][ T4837] __alloc_skb+0x128/0x714 [ 47.622953][ T4837] netlink_sendmsg+0x52c/0x9c0 [ 47.623795][ T4837] ____sys_sendmsg+0x5c8/0x938 [ 47.624606][ T4837] __sys_sendmmsg+0x344/0x834 [ 47.625379][ T4837] __arm64_sys_sendmmsg+0xa0/0xbc [ 47.626167][ T4837] invoke_syscall+0x98/0x2b4 [ 47.626965][ T4837] el0_svc_common+0x138/0x258 [ 47.627803][ T4837] do_el0_svc+0x58/0x130 [ 47.628537][ T4837] el0_svc+0x58/0x128 [ 47.629185][ T4837] el0t_64_sync_handler+0x84/0xf0 [ 47.630031][ T4837] el0t_64_sync+0x18c/0x190 [ 47.635191][ T4789] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 47.641673][ T4789] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 47.653174][ T4789] team0: Port device team_slave_0 added [ 47.705675][ T4848] Dev loop8: unable to read RDB block 7 [ 47.706726][ T4848] loop8: unable to read partition table [ 47.710434][ T4848] loop8: partition table beyond EOD, truncated [ 47.711407][ T4848] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 47.726501][ T4826] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop4 scanned by syz.4.139 (4826) [ 47.741932][ T4826] BTRFS info (device loop4): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 47.743687][ T4826] BTRFS info (device loop4): using sha256 (sha256-ce) checksum algorithm [ 47.744979][ T4826] BTRFS info (device loop4): enabling ssd optimizations [ 47.746088][ T4826] BTRFS info (device loop4): not using ssd optimizations [ 47.760169][ T4826] BTRFS info (device loop4): turning off barriers [ 47.761682][ T4826] BTRFS info (device loop4): using free space tree [ 47.829460][ T4855] hub 8-0:1.0: USB hub found [ 47.830533][ T4855] hub 8-0:1.0: 8 ports detected [ 47.902201][ T4789] team0: Port device team_slave_1 added [ 47.903445][ T4861] netlink: 'syz.2.146': attribute type 39 has an invalid length. [ 47.937307][ T4789] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 47.938514][ T4789] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 47.940805][ T4866] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 47.944925][ T4866] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 47.950502][ T4789] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 47.954596][ T4866] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 48.092191][ T4888] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 48.101836][ T4882] hub 8-0:1.0: USB hub found [ 48.102823][ T4882] hub 8-0:1.0: 8 ports detected [ 48.109165][ T4825] mmap: syz.4.139 (4825): VmData 37625856 exceed data ulimit 4. Update limits or use boot option ignore_rlimit_data. [ 48.141150][ T4888] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 0, start 22000003) [ 48.156557][ T4789] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 48.158000][ T4789] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 48.164125][ T4789] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 48.183410][ T4330] BTRFS info (device loop4): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 48.271750][ T4905] FAULT_INJECTION: forcing a failure. [ 48.271750][ T4905] name failslab, interval 1, probability 0, space 0, times 0 [ 48.279429][ T4905] CPU: 1 PID: 4905 Comm: syz.4.152 Not tainted syzkaller #0 [ 48.280633][ T4905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 48.282299][ T4905] Call trace: [ 48.282789][ T4905] dump_backtrace+0x1c0/0x1ec [ 48.283488][ T4905] show_stack+0x2c/0x3c [ 48.284128][ T4905] __dump_stack+0x30/0x40 [ 48.284815][ T4905] dump_stack_lvl+0xf4/0x15c [ 48.285538][ T4905] dump_stack+0x1c/0x5c [ 48.286205][ T4905] should_fail_ex+0x3c0/0x518 [ 48.286887][ T4905] __should_failslab+0xc0/0x120 [ 48.287642][ T4905] should_failslab+0x10/0x28 [ 48.288368][ T4905] kmem_cache_alloc_node+0x8c/0x33c [ 48.289236][ T4905] __alloc_skb+0x128/0x714 [ 48.289985][ T4905] netlink_sendmsg+0x52c/0x9c0 [ 48.290829][ T4905] ____sys_sendmsg+0x5c8/0x938 [ 48.291579][ T4905] __sys_sendmsg+0x288/0x374 [ 48.292346][ T4905] __arm64_sys_sendmsg+0x80/0x94 [ 48.293162][ T4905] invoke_syscall+0x98/0x2b4 [ 48.293992][ T4905] el0_svc_common+0x138/0x258 [ 48.294730][ T4905] do_el0_svc+0x58/0x130 [ 48.295459][ T4905] el0_svc+0x58/0x128 [ 48.296121][ T4905] el0t_64_sync_handler+0x84/0xf0 [ 48.296949][ T4905] el0t_64_sync+0x18c/0x190 [ 48.303475][ T4888] device macvlan0 entered promiscuous mode [ 48.311113][ T4888] netlink: 'syz.1.150': attribute type 1 has an invalid length. [ 48.312421][ T4888] netlink: 'syz.1.150': attribute type 2 has an invalid length. [ 48.340811][ T4909] sctp: failed to load transform for md5: -2 [ 48.414136][ T4919] Dev loop8: unable to read RDB block 7 [ 48.415059][ T4919] loop8: unable to read partition table [ 48.416094][ T4919] loop8: partition table beyond EOD, truncated [ 48.418208][ T4919] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 48.431384][ T4789] device hsr_slave_0 entered promiscuous mode [ 48.438518][ T4924] hub 8-0:1.0: USB hub found [ 48.439403][ T4924] hub 8-0:1.0: 8 ports detected [ 48.477414][ T4789] device hsr_slave_1 entered promiscuous mode [ 48.492525][ T4789] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 48.493766][ T4789] Cannot create hsr debugfs directory [ 48.620964][ T4940] netlink: 24 bytes leftover after parsing attributes in process `syz.3.165'. [ 48.635710][ T4940] netlink: 24 bytes leftover after parsing attributes in process `syz.3.165'. [ 48.697542][ T4947] FAULT_INJECTION: forcing a failure. [ 48.697542][ T4947] name failslab, interval 1, probability 0, space 0, times 0 [ 48.699730][ T4947] CPU: 0 PID: 4947 Comm: syz.4.167 Not tainted syzkaller #0 [ 48.700836][ T4947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 48.702427][ T4947] Call trace: [ 48.702954][ T4947] dump_backtrace+0x1c0/0x1ec [ 48.703706][ T4947] show_stack+0x2c/0x3c [ 48.704329][ T4947] __dump_stack+0x30/0x40 [ 48.704945][ T4947] dump_stack_lvl+0xf4/0x15c [ 48.705599][ T4947] dump_stack+0x1c/0x5c [ 48.706319][ T4947] should_fail_ex+0x3c0/0x518 [ 48.707047][ T4947] __should_failslab+0xc0/0x120 [ 48.707943][ T4947] should_failslab+0x10/0x28 [ 48.708763][ T4947] kmem_cache_alloc_node+0x8c/0x33c [ 48.709647][ T4947] __alloc_skb+0x128/0x714 [ 48.710408][ T4947] netlink_sendmsg+0x52c/0x9c0 [ 48.711168][ T4947] ____sys_sendmsg+0x5c8/0x938 [ 48.711942][ T4947] __sys_sendmsg+0x288/0x374 [ 48.712682][ T4947] __arm64_sys_sendmsg+0x80/0x94 [ 48.713527][ T4947] invoke_syscall+0x98/0x2b4 [ 48.714295][ T4947] el0_svc_common+0x138/0x258 [ 48.715106][ T4947] do_el0_svc+0x58/0x130 [ 48.715781][ T4947] el0_svc+0x58/0x128 [ 48.716442][ T4947] el0t_64_sync_handler+0x84/0xf0 [ 48.717267][ T4947] el0t_64_sync+0x18c/0x190 [ 48.723921][ T4928] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop1 scanned by syz.1.161 (4928) [ 48.726851][ T4928] BTRFS info (device loop1): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 48.728481][ T4928] BTRFS info (device loop1): using sha256 (sha256-ce) checksum algorithm [ 48.729855][ T4928] BTRFS info (device loop1): enabling ssd optimizations [ 48.730919][ T4928] BTRFS info (device loop1): not using ssd optimizations [ 48.732738][ T4928] BTRFS info (device loop1): turning off barriers [ 48.733692][ T4928] BTRFS info (device loop1): using free space tree [ 48.737046][ T4332] Bluetooth: hci0: command 0x0409 tx timeout [ 48.798560][ T4789] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 48.840525][ T4789] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 48.925479][ T4789] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 48.948705][ T4789] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 48.960172][ T4959] ======================================================= [ 48.960172][ T4959] WARNING: The mand mount option has been deprecated and [ 48.960172][ T4959] and is ignored by this kernel. Remove the mand [ 48.960172][ T4959] option from the mount to silence this warning. [ 48.960172][ T4959] ======================================================= [ 49.005913][ T4325] BTRFS info (device loop1): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 49.022028][ T4959] XFS (loop4): Mounting V5 Filesystem [ 49.119104][ T4959] XFS (loop4): Ending clean mount [ 49.128748][ T4959] XFS (loop4): Quotacheck needed: Please wait. [ 49.147609][ T4959] XFS (loop4): Quotacheck: Done. [ 49.174001][ T4789] 8021q: adding VLAN 0 to HW filter on device bond0 [ 49.179945][ T4789] 8021q: adding VLAN 0 to HW filter on device team0 [ 49.181336][ T1606] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 49.182976][ T1606] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 49.186036][ T1606] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 49.189322][ T1606] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 49.196075][ T1606] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.197242][ T1606] bridge0: port 1(bridge_slave_0) entered forwarding state [ 49.212426][ T1606] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 49.220148][ T4330] XFS (loop4): Unmounting Filesystem [ 49.226496][ T1606] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 49.236403][ T1606] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 49.242959][ T1606] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.244100][ T1606] bridge0: port 2(bridge_slave_1) entered forwarding state [ 49.245462][ T1606] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 49.501383][ T1606] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 49.503068][ T1606] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 49.505285][ T1606] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 49.511566][ T1606] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 49.513450][ T1606] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 49.518475][ T1606] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 49.521061][ T5007] hub 8-0:1.0: USB hub found [ 49.522064][ T5007] hub 8-0:1.0: 8 ports detected [ 49.532397][ T5010] FAULT_INJECTION: forcing a failure. [ 49.532397][ T5010] name failslab, interval 1, probability 0, space 0, times 0 [ 49.534711][ T5010] CPU: 1 PID: 5010 Comm: syz.4.170 Not tainted syzkaller #0 [ 49.535828][ T5010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 49.537401][ T5010] Call trace: [ 49.537891][ T5010] dump_backtrace+0x1c0/0x1ec [ 49.538612][ T5010] show_stack+0x2c/0x3c [ 49.539227][ T5010] __dump_stack+0x30/0x40 [ 49.539864][ T5010] dump_stack_lvl+0xf4/0x15c [ 49.540597][ T5010] dump_stack+0x1c/0x5c [ 49.541186][ T5010] should_fail_ex+0x3c0/0x518 [ 49.541940][ T5010] __should_failslab+0xc0/0x120 [ 49.542778][ T5010] should_failslab+0x10/0x28 [ 49.543545][ T5010] kmem_cache_alloc_node+0x8c/0x33c [ 49.544413][ T5010] __alloc_skb+0x128/0x714 [ 49.545186][ T5010] netlink_sendmsg+0x52c/0x9c0 [ 49.546002][ T5010] ____sys_sendmsg+0x5c8/0x938 [ 49.546802][ T5010] __sys_sendmsg+0x288/0x374 [ 49.547545][ T5010] __arm64_sys_sendmsg+0x80/0x94 [ 49.548444][ T5010] invoke_syscall+0x98/0x2b4 [ 49.549237][ T5010] el0_svc_common+0x138/0x258 [ 49.550085][ T5010] do_el0_svc+0x58/0x130 [ 49.550797][ T5010] el0_svc+0x58/0x128 [ 49.551543][ T5010] el0t_64_sync_handler+0x84/0xf0 [ 49.552354][ T5010] el0t_64_sync+0x18c/0x190 [ 49.569760][ T5014] Dev loop8: unable to read RDB block 7 [ 49.570769][ T5014] loop8: unable to read partition table [ 49.571773][ T5014] loop8: partition table beyond EOD, truncated [ 49.572679][ T5014] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 49.593051][ T5013] hub 8-0:1.0: USB hub found [ 49.593906][ T5013] hub 8-0:1.0: 8 ports detected [ 49.609877][ T4885] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 49.611593][ T4885] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 49.615562][ T4885] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 49.619140][ T4885] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 49.624197][ T4789] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 49.750565][ T5027] netlink: 96 bytes leftover after parsing attributes in process `syz.2.176'. [ 49.851223][ T5025] set_capacity_and_notify: 12 callbacks suppressed [ 49.851233][ T5025] loop3: detected capacity change from 0 to 32768 [ 49.865454][ T5025] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop3 scanned by syz.3.178 (5025) [ 49.881263][ T5030] netlink: 40 bytes leftover after parsing attributes in process `syz.4.180'. [ 49.887838][ T5025] BTRFS info (device loop3): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 49.891714][ T5025] BTRFS info (device loop3): using sha256 (sha256-ce) checksum algorithm [ 49.893914][ T5025] BTRFS info (device loop3): enabling ssd optimizations [ 49.896177][ T5025] BTRFS info (device loop3): not using ssd optimizations [ 49.905078][ T5025] BTRFS info (device loop3): turning off barriers [ 49.908533][ T5025] BTRFS info (device loop3): using free space tree [ 49.921410][ T5023] loop1: detected capacity change from 0 to 40427 [ 49.951849][ T39] device hsr_slave_0 left promiscuous mode [ 49.977674][ T5023] F2FS-fs (loop1): Found nat_bits in checkpoint [ 49.980939][ T39] device hsr_slave_1 left promiscuous mode [ 49.989139][ T5023] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 50.006146][ T4325] syz-executor: attempt to access beyond end of device [ 50.006146][ T4325] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 50.027473][ T39] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 50.028700][ T39] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 50.035407][ T39] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 50.036598][ T39] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 50.042195][ T39] device bridge_slave_1 left promiscuous mode [ 50.044358][ T39] bridge0: port 2(bridge_slave_1) entered disabled state [ 50.074361][ T5064] hub 8-0:1.0: USB hub found [ 50.075254][ T5064] hub 8-0:1.0: 8 ports detected [ 50.093580][ T39] device bridge_slave_0 left promiscuous mode [ 50.095900][ T39] bridge0: port 1(bridge_slave_0) entered disabled state [ 50.136829][ T5068] FAULT_INJECTION: forcing a failure. [ 50.136829][ T5068] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 50.161034][ T5039] loop4: detected capacity change from 0 to 32768 [ 50.162800][ T5039] XFS: attr2 mount option is deprecated. [ 50.164009][ T5068] CPU: 0 PID: 5068 Comm: syz.1.183 Not tainted syzkaller #0 [ 50.165189][ T5068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 50.166739][ T5068] Call trace: [ 50.167259][ T5068] dump_backtrace+0x1c0/0x1ec [ 50.167975][ T5068] show_stack+0x2c/0x3c [ 50.168702][ T5068] __dump_stack+0x30/0x40 [ 50.169424][ T5068] dump_stack_lvl+0xf4/0x15c [ 50.170180][ T5068] dump_stack+0x1c/0x5c [ 50.170862][ T5068] should_fail_ex+0x3c0/0x518 [ 50.171622][ T5068] should_fail+0x14/0x24 [ 50.172265][ T5068] should_fail_usercopy+0x20/0x30 [ 50.173134][ T5068] bpf_test_init+0xec/0x254 [ 50.173908][ T5068] bpf_prog_test_run_skb+0x174/0xef0 [ 50.174843][ T5068] bpf_prog_test_run+0x2dc/0x360 [ 50.175778][ T5068] __sys_bpf+0x504/0x660 [ 50.176479][ T5068] __arm64_sys_bpf+0x80/0x98 [ 50.177264][ T5068] invoke_syscall+0x98/0x2b4 [ 50.177997][ T5068] el0_svc_common+0x138/0x258 [ 50.178756][ T5068] do_el0_svc+0x58/0x130 [ 50.179452][ T5068] el0_svc+0x58/0x128 [ 50.180061][ T5068] el0t_64_sync_handler+0x84/0xf0 [ 50.180937][ T5068] el0t_64_sync+0x18c/0x190 [ 50.235757][ T5039] XFS (loop4): DAX unsupported by block device. Turning off DAX. [ 50.239581][ T5039] XFS (loop4): Mounting V5 Filesystem [ 50.255858][ T5077] Process accounting resumed [ 50.258110][ T39] device veth1_macvtap left promiscuous mode [ 50.259266][ T39] device veth0_macvtap left promiscuous mode [ 50.260512][ T39] device veth1_vlan left promiscuous mode [ 50.261737][ T39] device veth0_vlan left promiscuous mode [ 50.294021][ T5039] XFS (loop4): Ending clean mount [ 50.296551][ T5039] XFS (loop4): Quotacheck needed: Please wait. [ 50.324061][ T5039] XFS (loop4): Quotacheck: Done. [ 50.354628][ T5086] hub 8-0:1.0: USB hub found [ 50.355673][ T5086] hub 8-0:1.0: 8 ports detected [ 50.359952][ T4330] XFS (loop4): Unmounting Filesystem [ 50.520444][ T5092] loop2: detected capacity change from 0 to 64 [ 50.736131][ T5098] hub 8-0:1.0: USB hub found [ 50.737719][ T5097] loop8: detected capacity change from 0 to 7 [ 50.737796][ T5098] hub 8-0:1.0: 8 ports detected [ 50.741005][ T5097] Dev loop8: unable to read RDB block 7 [ 50.742190][ T5097] loop8: unable to read partition table [ 50.743412][ T5097] loop8: partition table beyond EOD, truncated [ 50.744392][ T5097] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 50.807194][ T4332] Bluetooth: hci0: command 0x041b tx timeout [ 51.605390][ T5111] hub 8-0:1.0: USB hub found [ 51.606269][ T5111] hub 8-0:1.0: 8 ports detected [ 52.442208][ T5116] loop1: detected capacity change from 0 to 16 [ 52.452835][ T5116] erofs: (device loop1): mounted with root inode @ nid 36. [ 52.563630][ T5119] erofs: (device loop1): z_erofs_readahead: readahead error at page 2 @ nid 89 [ 52.566142][ T5119] syz.1.194: attempt to access beyond end of device [ 52.566142][ T5119] loop1: rw=524288, sector=524296, nr_sectors = 8 limit=16 [ 52.574622][ T5119] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -5 in[4096, 0] out[4096] [ 52.576550][ T5119] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -5 in[4096, 0] out[4096] [ 52.578329][ T5119] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -5 in[4096, 0] out[4096] [ 52.579866][ T5119] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -5 in[4096, 0] out[4096] [ 52.583208][ T5115] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -5 in[4096, 0] out[4096] [ 52.584955][ T5115] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -5 in[4096, 0] out[4096] [ 52.586637][ T5115] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -5 in[4096, 0] out[4096] [ 52.588409][ T5115] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -5 in[4096, 0] out[4096] [ 52.590642][ T5115] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -5 in[4096, 0] out[4096] [ 52.592181][ T5115] erofs: (device loop1): z_erofs_lz4_decompress_mem: failed to decompress -5 in[4096, 0] out[4096] [ 52.660774][ T39] team0 (unregistering): Port device team_slave_1 removed [ 52.821064][ T39] team0 (unregistering): Port device team_slave_0 removed [ 52.887065][ T4332] Bluetooth: hci0: command 0x040f tx timeout [ 52.987914][ T39] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 53.187530][ T39] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 54.659068][ T39] bond0 (unregistering): Released all slaves [ 54.967013][ T4332] Bluetooth: hci0: command 0x0419 tx timeout [ 55.083328][ T4789] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 55.086414][ T4333] BTRFS info (device loop3): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 55.089052][ T4885] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 55.090381][ T4885] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 55.198819][ T5135] FAULT_INJECTION: forcing a failure. [ 55.198819][ T5135] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 55.201256][ T5135] CPU: 0 PID: 5135 Comm: syz.4.197 Not tainted syzkaller #0 [ 55.202414][ T5135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 55.203921][ T5135] Call trace: [ 55.204429][ T5135] dump_backtrace+0x1c0/0x1ec [ 55.205147][ T5135] show_stack+0x2c/0x3c [ 55.205773][ T5135] __dump_stack+0x30/0x40 [ 55.206427][ T5135] dump_stack_lvl+0xf4/0x15c [ 55.207123][ T5135] dump_stack+0x1c/0x5c [ 55.207747][ T5135] should_fail_ex+0x3c0/0x518 [ 55.208541][ T5135] should_fail+0x14/0x24 [ 55.209201][ T5135] should_fail_usercopy+0x20/0x30 [ 55.210038][ T5135] copy_msghdr_from_user+0xc4/0x4d0 [ 55.210833][ T5135] do_recvmmsg+0x354/0xa0c [ 55.211575][ T5135] __arm64_sys_recvmmsg+0x17c/0x23c [ 55.212426][ T5135] invoke_syscall+0x98/0x2b4 [ 55.213194][ T5135] el0_svc_common+0x138/0x258 [ 55.214007][ T5135] do_el0_svc+0x58/0x130 [ 55.214716][ T5135] el0_svc+0x58/0x128 [ 55.215366][ T5135] el0t_64_sync_handler+0x84/0xf0 [ 55.216218][ T5135] el0t_64_sync+0x18c/0x190 [ 55.444399][ T5143] loop1: detected capacity change from 0 to 2048 [ 55.467094][ T5147] loop8: detected capacity change from 0 to 7 [ 55.470351][ T5147] Dev loop8: unable to read RDB block 7 [ 55.471243][ T5147] loop8: unable to read partition table [ 55.473288][ T5147] loop8: partition table beyond EOD, truncated [ 55.475447][ T5147] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 55.490952][ T5143] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 55.494576][ T5143] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 55.505779][ T5143] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 55.583536][ T5156] loop8: detected capacity change from 0 to 7 [ 55.626496][ T5156] Dev loop8: unable to read RDB block 7 [ 55.631896][ T5156] loop8: unable to read partition table [ 55.633058][ T5156] loop8: partition table beyond EOD, truncated [ 55.634206][ T5156] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 55.776805][ T4885] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 55.783935][ T4885] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 55.787999][ T5169] hub 8-0:1.0: USB hub found [ 55.790050][ T5169] hub 8-0:1.0: 8 ports detected [ 55.834793][ T4508] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 55.836536][ T4508] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 55.850036][ T4508] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 55.888408][ T4508] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 55.908563][ T4789] device veth0_vlan entered promiscuous mode [ 55.912328][ T4789] device veth1_vlan entered promiscuous mode [ 55.976255][ T4885] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 55.984726][ T4789] device veth0_macvtap entered promiscuous mode [ 55.986165][ T4885] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 55.988755][ T4885] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 55.990260][ T4885] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 56.008254][ T4789] device veth1_macvtap entered promiscuous mode [ 56.013030][ T4789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 56.014719][ T4789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 56.016212][ T4789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 56.025181][ T4789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 56.026889][ T4789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 56.029159][ T4789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 56.031412][ T4789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 56.033285][ T4789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 56.329684][ T4789] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 56.337707][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 56.342602][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 56.344923][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 56.352530][ T4789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 56.358427][ T4789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 56.362137][ T4789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 56.366050][ T4789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 56.369788][ T4789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 56.373382][ T4789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 56.375153][ T4789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 56.377620][ T4789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 56.380418][ T4789] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 56.381764][ T4885] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 56.383556][ T4885] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 56.403472][ T4789] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.409842][ T4789] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.413448][ T4789] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.416145][ T4789] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.469075][ T5172] loop1: detected capacity change from 0 to 32768 [ 56.481965][ T5172] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.205 (5172) [ 56.509446][ T5172] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 56.515322][ T4508] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.516621][ T4508] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.518511][ T4508] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 56.520153][ T5172] BTRFS info (device loop1): using sha256 (sha256-ce) checksum algorithm [ 56.527532][ T5172] BTRFS info (device loop1): using free space tree [ 56.571604][ T4885] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.572976][ T4885] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.576986][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 56.681788][ T5160] BTRFS warning (device loop1): checksum verify failed on logical 1052672 mirror 1 wanted 0x241313e5e22152213429419a4fa60bdedb0d9d2e9150d3150eb32f4ce752aa44 found 0x1fb9b9d204a1fa675b2fba75f4b04cc784fe72d0bf8648d4de13e408a26d7a7e level 0 [ 56.686345][ T5172] BTRFS error (device loop1): failed to read chunk root [ 56.744780][ T5172] BTRFS error (device loop1): open_ctree failed: -22 [ 56.753164][ T4310] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by udevd (4310) [ 56.783341][ T5210] loop5: detected capacity change from 0 to 1024 [ 56.823580][ T5213] FAULT_INJECTION: forcing a failure. [ 56.823580][ T5213] name failslab, interval 1, probability 0, space 0, times 0 [ 56.825490][ T5213] CPU: 0 PID: 5213 Comm: syz.4.207 Not tainted syzkaller #0 [ 56.826688][ T5213] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 56.828365][ T5213] Call trace: [ 56.828915][ T5213] dump_backtrace+0x1c0/0x1ec [ 56.829702][ T5213] show_stack+0x2c/0x3c [ 56.830396][ T5213] __dump_stack+0x30/0x40 [ 56.831116][ T5213] dump_stack_lvl+0xf4/0x15c [ 56.831862][ T5213] dump_stack+0x1c/0x5c [ 56.832565][ T5213] should_fail_ex+0x3c0/0x518 [ 56.833312][ T5213] __should_failslab+0xc0/0x120 [ 56.834116][ T5213] should_failslab+0x10/0x28 [ 56.834955][ T5213] __kmem_cache_alloc_node+0x7c/0x314 [ 56.835884][ T5213] kmalloc_trace+0x48/0x94 [ 56.836674][ T5213] __arm64_sys_acct+0x10c/0x714 [ 56.837416][ T5213] invoke_syscall+0x98/0x2b4 [ 56.838170][ T5213] el0_svc_common+0x138/0x258 [ 56.838967][ T5213] do_el0_svc+0x58/0x130 [ 56.839671][ T5213] el0_svc+0x58/0x128 [ 56.840335][ T5213] el0t_64_sync_handler+0x84/0xf0 [ 56.841173][ T5213] el0t_64_sync+0x18c/0x190 [ 56.907632][ T5210] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 56.963478][ T5226] loop3: detected capacity change from 0 to 64 [ 57.051584][ T4789] EXT4-fs (loop5): unmounting filesystem. [ 57.505032][ T5243] loop8: detected capacity change from 0 to 7 [ 57.513671][ T5243] Dev loop8: unable to read RDB block 7 [ 57.514656][ T5243] loop8: unable to read partition table [ 57.520998][ T5241] loop2: detected capacity change from 0 to 2048 [ 57.523029][ T5243] loop8: partition table beyond EOD, truncated [ 57.524150][ T5243] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 57.546486][ T5241] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 57.548577][ T5241] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 57.560092][ T5241] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 57.650740][ T5231] loop5: detected capacity change from 0 to 32768 [ 57.654621][ T5231] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop5 scanned by syz.5.208 (5231) [ 57.665710][ T5231] BTRFS info (device loop5): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 57.667592][ T5231] BTRFS info (device loop5): using sha256 (sha256-ce) checksum algorithm [ 57.672204][ T5231] BTRFS info (device loop5): enabling ssd optimizations [ 57.674213][ T5231] BTRFS info (device loop5): not using ssd optimizations [ 57.678481][ T5231] BTRFS info (device loop5): turning off barriers [ 57.679608][ T5231] BTRFS info (device loop5): using free space tree [ 57.862283][ T5274] loop4: detected capacity change from 0 to 128 [ 57.902238][ T5274] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 57.908898][ T5276] Dev loop8: unable to read RDB block 7 [ 57.909760][ T5276] loop8: unable to read partition table [ 57.910649][ T5276] loop8: partition table beyond EOD, truncated [ 57.980272][ T5276] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 58.020532][ T5285] FAULT_INJECTION: forcing a failure. [ 58.020532][ T5285] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 58.027819][ T4789] BTRFS info (device loop5): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 58.030192][ T5285] CPU: 1 PID: 5285 Comm: syz.3.217 Not tainted syzkaller #0 [ 58.031306][ T5285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 58.032828][ T5285] Call trace: [ 58.033327][ T5285] dump_backtrace+0x1c0/0x1ec [ 58.034116][ T5285] show_stack+0x2c/0x3c [ 58.034784][ T5285] __dump_stack+0x30/0x40 [ 58.035489][ T5285] dump_stack_lvl+0xf4/0x15c [ 58.036243][ T5285] dump_stack+0x1c/0x5c [ 58.036933][ T5285] should_fail_ex+0x3c0/0x518 [ 58.037691][ T5285] should_fail+0x14/0x24 [ 58.038393][ T5285] should_fail_usercopy+0x20/0x30 [ 58.039183][ T5285] wext_handle_ioctl+0xc4/0x370 [ 58.040019][ T5285] sock_ioctl+0x138/0x824 [ 58.040728][ T5285] __arm64_sys_ioctl+0x14c/0x1c8 [ 58.041573][ T5285] invoke_syscall+0x98/0x2b4 [ 58.042353][ T5285] el0_svc_common+0x138/0x258 [ 58.043125][ T5285] do_el0_svc+0x58/0x130 [ 58.043810][ T5285] el0_svc+0x58/0x128 [ 58.044455][ T5285] el0t_64_sync_handler+0x84/0xf0 [ 58.045337][ T5285] el0t_64_sync+0x18c/0x190 [ 58.107725][ T5294] hub 8-0:1.0: USB hub found [ 58.110520][ T5294] hub 8-0:1.0: 8 ports detected [ 58.136339][ T5291] netlink: 40 bytes leftover after parsing attributes in process `syz.1.221'. [ 58.173532][ T5300] device veth0_to_batadv entered promiscuous mode [ 58.245861][ T5309] FAULT_INJECTION: forcing a failure. [ 58.245861][ T5309] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 58.251585][ T5309] CPU: 0 PID: 5309 Comm: syz.3.224 Not tainted syzkaller #0 [ 58.252721][ T5309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 58.254388][ T5309] Call trace: [ 58.254889][ T5309] dump_backtrace+0x1c0/0x1ec [ 58.255682][ T5309] show_stack+0x2c/0x3c [ 58.256325][ T5309] __dump_stack+0x30/0x40 [ 58.257042][ T5309] dump_stack_lvl+0xf4/0x15c [ 58.257849][ T5309] dump_stack+0x1c/0x5c [ 58.258529][ T5309] should_fail_ex+0x3c0/0x518 [ 58.259294][ T5309] should_fail+0x14/0x24 [ 58.260031][ T5309] should_fail_usercopy+0x20/0x30 [ 58.260874][ T5309] simple_read_from_buffer+0xcc/0x240 [ 58.261828][ T5309] proc_fail_nth_read+0x19c/0x23c [ 58.262641][ T5309] vfs_read+0x290/0x7f0 [ 58.263325][ T5309] ksys_read+0x12c/0x224 [ 58.263969][ T5309] __arm64_sys_read+0x7c/0x90 [ 58.264702][ T5309] invoke_syscall+0x98/0x2b4 [ 58.265446][ T5309] el0_svc_common+0x138/0x258 [ 58.266260][ T5309] do_el0_svc+0x58/0x130 [ 58.266950][ T5309] el0_svc+0x58/0x128 [ 58.267640][ T5309] el0t_64_sync_handler+0x84/0xf0 [ 58.268477][ T5309] el0t_64_sync+0x18c/0x190 [ 58.311896][ T4312] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 9 /dev/loop5 scanned by udevd (4312) [ 58.316408][ T5311] netlink: 16178 bytes leftover after parsing attributes in process `syz.5.220'. [ 58.470507][ T5317] Dev loop8: unable to read RDB block 7 [ 58.471502][ T5317] loop8: unable to read partition table [ 58.472396][ T5317] loop8: partition table beyond EOD, truncated [ 58.473291][ T5317] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 58.602533][ T5321] hub 8-0:1.0: USB hub found [ 58.620456][ T5321] hub 8-0:1.0: 8 ports detected [ 58.689740][ T5323] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 58.691697][ T5323] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 58.714553][ T5323] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 59.077250][ T5339] Dev loop8: unable to read RDB block 7 [ 59.078185][ T5339] loop8: unable to read partition table [ 59.079043][ T5339] loop8: partition table beyond EOD, truncated [ 59.092023][ T5339] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 59.161573][ T5342] FAULT_INJECTION: forcing a failure. [ 59.161573][ T5342] name failslab, interval 1, probability 0, space 0, times 0 [ 59.163561][ T5342] CPU: 1 PID: 5342 Comm: syz.3.233 Not tainted syzkaller #0 [ 59.164741][ T5342] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 59.166389][ T5342] Call trace: [ 59.166942][ T5342] dump_backtrace+0x1c0/0x1ec [ 59.167735][ T5342] show_stack+0x2c/0x3c [ 59.168397][ T5342] __dump_stack+0x30/0x40 [ 59.169076][ T5342] dump_stack_lvl+0xf4/0x15c [ 59.169861][ T5342] dump_stack+0x1c/0x5c [ 59.170501][ T5342] should_fail_ex+0x3c0/0x518 [ 59.171299][ T5342] __should_failslab+0xc0/0x120 [ 59.172118][ T5342] should_failslab+0x10/0x28 [ 59.172891][ T5342] __kmem_cache_alloc_node+0x7c/0x314 [ 59.173770][ T5342] __kmalloc+0xd8/0x178 [ 59.174451][ T5342] tomoyo_realpath_from_path+0xc4/0x4d4 [ 59.175361][ T5342] tomoyo_path_number_perm+0x1c8/0x550 [ 59.176174][ T5342] tomoyo_file_ioctl+0x2c/0x3c [ 59.176996][ T5342] security_file_ioctl+0x80/0xbc [ 59.177847][ T5342] __arm64_sys_ioctl+0xa8/0x1c8 [ 59.178656][ T5342] invoke_syscall+0x98/0x2b4 [ 59.179383][ T5342] el0_svc_common+0x138/0x258 [ 59.180149][ T5342] do_el0_svc+0x58/0x130 [ 59.180873][ T5342] el0_svc+0x58/0x128 [ 59.181507][ T5342] el0t_64_sync_handler+0x84/0xf0 [ 59.182316][ T5342] el0t_64_sync+0x18c/0x190 [ 59.244383][ T5342] ERROR: Out of memory at tomoyo_realpath_from_path. [ 59.371385][ T4330] EXT4-fs (loop4): unmounting filesystem. [ 59.415219][ T5348] Process accounting resumed [ 59.443258][ T5351] Dev loop8: unable to read RDB block 7 [ 59.444196][ T5351] loop8: unable to read partition table [ 59.445117][ T5351] loop8: partition table beyond EOD, truncated [ 59.468946][ T5351] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 59.493670][ T5355] FAULT_INJECTION: forcing a failure. [ 59.493670][ T5355] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 59.495798][ T5355] CPU: 0 PID: 5355 Comm: syz.3.239 Not tainted syzkaller #0 [ 59.496828][ T5355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 59.498454][ T5355] Call trace: [ 59.499033][ T5355] dump_backtrace+0x1c0/0x1ec [ 59.499878][ T5355] show_stack+0x2c/0x3c [ 59.500563][ T5355] __dump_stack+0x30/0x40 [ 59.501259][ T5355] dump_stack_lvl+0xf4/0x15c [ 59.502016][ T5355] dump_stack+0x1c/0x5c [ 59.502684][ T5355] should_fail_ex+0x3c0/0x518 [ 59.503436][ T5355] should_fail+0x14/0x24 [ 59.504142][ T5355] should_fail_usercopy+0x20/0x30 [ 59.504966][ T5355] copyout+0x2c/0x154 [ 59.505661][ T5355] _copy_to_iter+0x42c/0xeb4 [ 59.506379][ T5355] seq_read_iter+0xa40/0xc00 [ 59.507162][ T5355] seq_read+0x140/0x1e4 [ 59.507847][ T5355] proc_reg_read+0x184/0x2d4 [ 59.508643][ T5355] vfs_read+0x290/0x7f0 [ 59.509379][ T5355] __arm64_sys_pread64+0x174/0x20c [ 59.510292][ T5355] invoke_syscall+0x98/0x2b4 [ 59.511078][ T5355] el0_svc_common+0x138/0x258 [ 59.511892][ T5355] do_el0_svc+0x58/0x130 [ 59.512631][ T5355] el0_svc+0x58/0x128 [ 59.513330][ T5355] el0t_64_sync_handler+0x84/0xf0 [ 59.514262][ T5355] el0t_64_sync+0x18c/0x190 [ 59.529090][ T5353] ntfs3: Unknown parameter '00000000000000000003' [ 59.610217][ T5359] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 59.615298][ T5359] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 59.638984][ T5359] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 59.803308][ T5380] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 59.805000][ T5380] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 59.921246][ T5385] hub 8-0:1.0: USB hub found [ 59.923256][ T5385] hub 8-0:1.0: 8 ports detected [ 60.207471][ T5391] FAULT_INJECTION: forcing a failure. [ 60.207471][ T5391] name failslab, interval 1, probability 0, space 0, times 0 [ 60.209613][ T5391] CPU: 1 PID: 5391 Comm: syz.2.249 Not tainted syzkaller #0 [ 60.210696][ T5391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 60.212308][ T5391] Call trace: [ 60.212859][ T5391] dump_backtrace+0x1c0/0x1ec [ 60.213625][ T5391] show_stack+0x2c/0x3c [ 60.214291][ T5391] __dump_stack+0x30/0x40 [ 60.214972][ T5391] dump_stack_lvl+0xf4/0x15c [ 60.215737][ T5391] dump_stack+0x1c/0x5c [ 60.216443][ T5391] should_fail_ex+0x3c0/0x518 [ 60.217273][ T5391] __should_failslab+0xc0/0x120 [ 60.218060][ T5391] should_failslab+0x10/0x28 [ 60.218797][ T5391] kmem_cache_alloc_node+0x8c/0x33c [ 60.219649][ T5391] __alloc_skb+0x128/0x714 [ 60.220387][ T5391] netlink_sendmsg+0x52c/0x9c0 [ 60.221142][ T5391] ____sys_sendmsg+0x5c8/0x938 [ 60.221937][ T5391] __sys_sendmsg+0x288/0x374 [ 60.222644][ T5391] __arm64_sys_sendmsg+0x80/0x94 [ 60.223386][ T5391] invoke_syscall+0x98/0x2b4 [ 60.224139][ T5391] el0_svc_common+0x138/0x258 [ 60.224868][ T5391] do_el0_svc+0x58/0x130 [ 60.225593][ T5391] el0_svc+0x58/0x128 [ 60.226237][ T5391] el0t_64_sync_handler+0x84/0xf0 [ 60.227082][ T5391] el0t_64_sync+0x18c/0x190 [ 60.231371][ T5393] Dev loop8: unable to read RDB block 7 [ 60.232451][ T5393] loop8: unable to read partition table [ 60.233507][ T5393] loop8: partition table beyond EOD, truncated [ 60.234586][ T5393] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 60.321680][ T5397] device bridge_slave_0 left promiscuous mode [ 60.324146][ T5397] bridge0: port 1(bridge_slave_0) entered disabled state [ 60.386416][ T5402] netlink: 204 bytes leftover after parsing attributes in process `syz.2.253'. [ 60.391629][ T5402] netlink: 84 bytes leftover after parsing attributes in process `syz.2.253'. [ 60.417643][ T5404] netlink: 204 bytes leftover after parsing attributes in process `syz.1.263'. [ 60.420632][ T5404] FAULT_INJECTION: forcing a failure. [ 60.420632][ T5404] name failslab, interval 1, probability 0, space 0, times 0 [ 60.422712][ T5404] CPU: 0 PID: 5404 Comm: syz.1.263 Not tainted syzkaller #0 [ 60.423839][ T5404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 60.425411][ T5404] Call trace: [ 60.425942][ T5404] dump_backtrace+0x1c0/0x1ec [ 60.426692][ T5404] show_stack+0x2c/0x3c [ 60.427387][ T5404] __dump_stack+0x30/0x40 [ 60.428132][ T5404] dump_stack_lvl+0xf4/0x15c [ 60.428932][ T5404] dump_stack+0x1c/0x5c [ 60.429615][ T5404] should_fail_ex+0x3c0/0x518 [ 60.430385][ T5404] __should_failslab+0xc0/0x120 [ 60.431172][ T5404] should_failslab+0x10/0x28 [ 60.431963][ T5404] kmem_cache_alloc_node+0x8c/0x33c [ 60.432873][ T5404] __alloc_skb+0x128/0x714 [ 60.433668][ T5404] netlink_sendmsg+0x52c/0x9c0 [ 60.434526][ T5404] ____sys_sendmsg+0x5c8/0x938 [ 60.435321][ T5404] __sys_sendmsg+0x288/0x374 [ 60.436085][ T5404] __arm64_sys_sendmsg+0x80/0x94 [ 60.436891][ T5404] invoke_syscall+0x98/0x2b4 [ 60.437660][ T5404] el0_svc_common+0x138/0x258 [ 60.438419][ T5404] do_el0_svc+0x58/0x130 [ 60.439139][ T5404] el0_svc+0x58/0x128 [ 60.439821][ T5404] el0t_64_sync_handler+0x84/0xf0 [ 60.440660][ T5404] el0t_64_sync+0x18c/0x190 [ 60.510244][ T5409] binder: 5405:5409 ioctl c00c620f ffffffffffffffff returned -14 [ 60.622218][ T5413] netlink: 'syz.3.255': attribute type 1 has an invalid length. [ 60.636234][ T5415] set_capacity_and_notify: 9 callbacks suppressed [ 60.636243][ T5415] loop4: detected capacity change from 0 to 64 [ 60.643200][ T5413] 8021q: adding VLAN 0 to HW filter on device bond1 [ 60.691985][ T5413] bond1: (slave geneve2): making interface the new active one [ 60.706709][ T5413] bond1: (slave geneve2): Enslaving as an active interface with an up link [ 60.710336][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready [ 60.763876][ T5421] loop3: detected capacity change from 0 to 2048 [ 60.780410][ T5421] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 60.786439][ T5421] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 60.791809][ T5421] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 60.828593][ T5423] hub 8-0:1.0: USB hub found [ 60.834768][ T5423] hub 8-0:1.0: 8 ports detected [ 61.126990][ T5431] hub 8-0:1.0: USB hub found [ 61.128187][ T5431] hub 8-0:1.0: 8 ports detected [ 61.627552][ T4902] libceph: connect (1)[b::]:6789 error -101 [ 61.629003][ T4902] libceph: mon0 (1)[b::]:6789 connect error [ 61.632665][ T4902] libceph: connect (1)[b::]:6789 error -101 [ 61.633796][ T4902] libceph: mon0 (1)[b::]:6789 connect error [ 61.716298][ T5447] netlink: 'syz.1.259': attribute type 1 has an invalid length. [ 61.723724][ T5447] 8021q: adding VLAN 0 to HW filter on device bond1 [ 61.734287][ T5447] bond1: (slave geneve2): making interface the new active one [ 61.736814][ T5447] bond1: (slave geneve2): Enslaving as an active interface with an up link [ 61.739101][ T5432] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready [ 61.744390][ T5447] loop1: detected capacity change from 0 to 512 [ 61.807947][ T5447] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 61.838862][ T5452] loop4: detected capacity change from 0 to 2048 [ 61.845992][ T5452] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 61.849700][ T5452] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 61.854908][ T5452] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 61.871634][ T5454] loop8: detected capacity change from 0 to 7 [ 61.874363][ T4312] Dev loop8: unable to read RDB block 7 [ 61.875252][ T4312] loop8: unable to read partition table [ 61.876314][ T4312] loop8: partition table beyond EOD, truncated [ 61.879250][ T5454] Dev loop8: unable to read RDB block 7 [ 61.880332][ T5454] loop8: unable to read partition table [ 61.884390][ T5454] loop8: partition table beyond EOD, truncated [ 61.890193][ T4325] EXT4-fs (loop1): unmounting filesystem. [ 61.897821][ T4902] libceph: connect (1)[b::]:6789 error -101 [ 61.898880][ T4902] libceph: mon0 (1)[b::]:6789 connect error [ 61.900350][ T5454] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 61.948171][ T5458] FAULT_INJECTION: forcing a failure. [ 61.948171][ T5458] name failslab, interval 1, probability 0, space 0, times 0 [ 61.948192][ T5458] CPU: 1 PID: 5458 Comm: syz.3.266 Not tainted syzkaller #0 [ 61.948202][ T5458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 61.948208][ T5458] Call trace: [ 61.948211][ T5458] dump_backtrace+0x1c0/0x1ec [ 61.948226][ T5458] show_stack+0x2c/0x3c [ 61.948231][ T5458] __dump_stack+0x30/0x40 [ 61.948241][ T5458] dump_stack_lvl+0xf4/0x15c [ 61.948247][ T5458] dump_stack+0x1c/0x5c [ 61.948253][ T5458] should_fail_ex+0x3c0/0x518 [ 61.948259][ T5458] __should_failslab+0xc0/0x120 [ 61.948267][ T5458] should_failslab+0x10/0x28 [ 61.948273][ T5458] kmem_cache_alloc_node+0x8c/0x33c [ 61.948279][ T5458] __alloc_skb+0x128/0x714 [ 61.948287][ T5458] netlink_sendmsg+0x52c/0x9c0 [ 61.948292][ T5458] ____sys_sendmsg+0x5c8/0x938 [ 61.948299][ T5458] __sys_sendmsg+0x288/0x374 [ 61.948305][ T5458] __arm64_sys_sendmsg+0x80/0x94 [ 61.948316][ T5458] invoke_syscall+0x98/0x2b4 [ 61.948324][ T5458] el0_svc_common+0x138/0x258 [ 61.948332][ T5458] do_el0_svc+0x58/0x130 [ 61.948339][ T5458] el0_svc+0x58/0x128 [ 61.948345][ T5458] el0t_64_sync_handler+0x84/0xf0 [ 61.948351][ T5458] el0t_64_sync+0x18c/0x190 [ 62.085207][ T5466] loop1: detected capacity change from 0 to 2048 [ 62.096197][ T5466] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 62.100092][ T5466] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 62.104713][ T5466] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 62.128508][ T5464] xt_l2tp: v2 sid > 0xffff: 4294967293 [ 62.216487][ T5468] hub 8-0:1.0: USB hub found [ 62.218032][ T5468] hub 8-0:1.0: 8 ports detected [ 62.409945][ T5136] libceph: connect (1)[b::]:6789 error -101 [ 62.411489][ T5136] libceph: mon0 (1)[b::]:6789 connect error [ 62.517565][ T5473] FAULT_INJECTION: forcing a failure. [ 62.517565][ T5473] name failslab, interval 1, probability 0, space 0, times 0 [ 62.519840][ T5473] CPU: 1 PID: 5473 Comm: syz.4.272 Not tainted syzkaller #0 [ 62.520946][ T5473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 62.522482][ T5473] Call trace: [ 62.523024][ T5473] dump_backtrace+0x1c0/0x1ec [ 62.523795][ T5473] show_stack+0x2c/0x3c [ 62.524497][ T5473] __dump_stack+0x30/0x40 [ 62.525192][ T5473] dump_stack_lvl+0xf4/0x15c [ 62.525913][ T5473] dump_stack+0x1c/0x5c [ 62.526541][ T5473] should_fail_ex+0x3c0/0x518 [ 62.527295][ T5473] __should_failslab+0xc0/0x120 [ 62.528112][ T5473] should_failslab+0x10/0x28 [ 62.528914][ T5473] kmem_cache_alloc_node+0x8c/0x33c [ 62.529838][ T5473] __alloc_skb+0x128/0x714 [ 62.530582][ T5473] netlink_sendmsg+0x52c/0x9c0 [ 62.531359][ T5473] ____sys_sendmsg+0x5c8/0x938 [ 62.532137][ T5473] __sys_sendmsg+0x288/0x374 [ 62.532895][ T5473] __arm64_sys_sendmsg+0x80/0x94 [ 62.533671][ T5473] invoke_syscall+0x98/0x2b4 [ 62.534366][ T5473] el0_svc_common+0x138/0x258 [ 62.535170][ T5473] do_el0_svc+0x58/0x130 [ 62.535883][ T5473] el0_svc+0x58/0x128 [ 62.536528][ T5473] el0t_64_sync_handler+0x84/0xf0 [ 62.537364][ T5473] el0t_64_sync+0x18c/0x190 [ 62.596049][ T5437] ceph: No mds server is up or the cluster is laggy [ 62.728207][ T5482] hub 8-0:1.0: USB hub found [ 62.731669][ T5482] hub 8-0:1.0: 8 ports detected [ 62.808557][ T5486] hub 8-0:1.0: USB hub found [ 62.809740][ T5486] hub 8-0:1.0: 8 ports detected [ 63.086151][ T5487] loop8: detected capacity change from 0 to 7 [ 63.128599][ T4312] Dev loop8: unable to read RDB block 7 [ 63.130736][ T4312] loop8: unable to read partition table [ 63.131663][ T4312] loop8: partition table beyond EOD, truncated [ 63.134361][ T5487] Dev loop8: unable to read RDB block 7 [ 63.136536][ T5487] loop8: unable to read partition table [ 63.137798][ T5487] loop8: partition table beyond EOD, truncated [ 63.141286][ T5489] netlink: 'syz.3.278': attribute type 1 has an invalid length. [ 63.159256][ T5487] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 63.221969][ T5489] 8021q: adding VLAN 0 to HW filter on device bond2 [ 63.258096][ T5489] loop3: detected capacity change from 0 to 512 [ 63.558056][ T5494] FAULT_INJECTION: forcing a failure. [ 63.558056][ T5494] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 63.560093][ T5494] CPU: 1 PID: 5494 Comm: syz.2.279 Not tainted syzkaller #0 [ 63.561146][ T5494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 63.562783][ T5494] Call trace: [ 63.563270][ T5494] dump_backtrace+0x1c0/0x1ec [ 63.564017][ T5494] show_stack+0x2c/0x3c [ 63.564648][ T5494] __dump_stack+0x30/0x40 [ 63.565299][ T5494] dump_stack_lvl+0xf4/0x15c [ 63.565984][ T5494] dump_stack+0x1c/0x5c [ 63.566613][ T5494] should_fail_ex+0x3c0/0x518 [ 63.567295][ T5494] should_fail+0x14/0x24 [ 63.567969][ T5494] should_fail_usercopy+0x20/0x30 [ 63.568778][ T5494] simple_read_from_buffer+0xcc/0x240 [ 63.569569][ T5494] proc_fail_nth_read+0x19c/0x23c [ 63.570419][ T5494] vfs_read+0x290/0x7f0 [ 63.571110][ T5494] ksys_read+0x12c/0x224 [ 63.571848][ T5494] __arm64_sys_read+0x7c/0x90 [ 63.572629][ T5494] invoke_syscall+0x98/0x2b4 [ 63.573361][ T5494] el0_svc_common+0x138/0x258 [ 63.574102][ T5494] do_el0_svc+0x58/0x130 [ 63.574805][ T5494] el0_svc+0x58/0x128 [ 63.575466][ T5494] el0t_64_sync_handler+0x84/0xf0 [ 63.576297][ T5494] el0t_64_sync+0x18c/0x190 [ 63.673781][ T5501] loop5: detected capacity change from 0 to 2048 [ 63.710331][ T5501] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 63.718921][ T5489] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 63.722463][ T5501] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 63.733861][ T5501] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 63.861943][ T5508] loop2: detected capacity change from 0 to 2048 [ 63.892272][ T5508] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 63.899761][ T5508] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 63.914909][ T5508] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 63.936452][ T4333] EXT4-fs (loop3): unmounting filesystem. [ 64.113879][ T5525] FAULT_INJECTION: forcing a failure. [ 64.113879][ T5525] name failslab, interval 1, probability 0, space 0, times 0 [ 64.116465][ T5525] CPU: 0 PID: 5525 Comm: syz.4.288 Not tainted syzkaller #0 [ 64.116504][ T5525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 64.116510][ T5525] Call trace: [ 64.116513][ T5525] dump_backtrace+0x1c0/0x1ec [ 64.116529][ T5525] show_stack+0x2c/0x3c [ 64.116533][ T5525] __dump_stack+0x30/0x40 [ 64.116543][ T5525] dump_stack_lvl+0xf4/0x15c [ 64.116549][ T5525] dump_stack+0x1c/0x5c [ 64.116555][ T5525] should_fail_ex+0x3c0/0x518 [ 64.116561][ T5525] __should_failslab+0xc0/0x120 [ 64.116570][ T5525] should_failslab+0x10/0x28 [ 64.116578][ T5525] kmem_cache_alloc+0x88/0x308 [ 64.116585][ T5525] __inet_hash_connect+0x680/0x134c [ 64.116591][ T5525] inet6_hash_connect+0xa8/0xf8 [ 64.116599][ T5525] tcp_v6_connect+0xb78/0x139c [ 64.116606][ T5525] __inet_stream_connect+0x1f4/0xc3c [ 64.116614][ T5525] tcp_sendmsg_fastopen+0x30c/0x558 [ 64.130180][ T5525] tcp_sendmsg_locked+0x2d28/0x3238 [ 64.131040][ T5525] tcp_sendmsg+0x40/0x64 [ 64.131757][ T5525] inet6_sendmsg+0xb4/0xd8 [ 64.132509][ T5525] __sys_sendto+0x324/0x440 [ 64.133292][ T5525] __arm64_sys_sendto+0xd8/0xf8 [ 64.134118][ T5525] invoke_syscall+0x98/0x2b4 [ 64.134842][ T5525] el0_svc_common+0x138/0x258 [ 64.135585][ T5525] do_el0_svc+0x58/0x130 [ 64.136295][ T5525] el0_svc+0x58/0x128 [ 64.136950][ T5525] el0t_64_sync_handler+0x84/0xf0 [ 64.137783][ T5525] el0t_64_sync+0x18c/0x190 [ 64.328868][ T5540] hub 8-0:1.0: USB hub found [ 64.330090][ T5540] hub 8-0:1.0: 8 ports detected [ 65.296525][ T2061] ieee802154 phy0 wpan0: encryption failed: -22 [ 65.297809][ T2061] ieee802154 phy1 wpan1: encryption failed: -22 [ 65.390248][ T5537] Dev loop8: unable to read RDB block 7 [ 65.391215][ T5537] loop8: unable to read partition table [ 65.392223][ T5537] loop8: partition table beyond EOD, truncated [ 65.393193][ T5537] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 65.748360][ T5557] hub 8-0:1.0: USB hub found [ 65.749467][ T5552] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 65.751094][ T5557] hub 8-0:1.0: 8 ports detected [ 65.817825][ T5563] netlink: 204 bytes leftover after parsing attributes in process `syz.1.294'. [ 65.849145][ T5562] netlink: 'syz.4.297': attribute type 1 has an invalid length. [ 65.885294][ T5562] 8021q: adding VLAN 0 to HW filter on device bond1 [ 66.333889][ T4325] EXT4-fs (loop1): unmounting filesystem. [ 66.361147][ T5562] bond1: (slave geneve2): making interface the new active one [ 66.366113][ T5562] bond1: (slave geneve2): Enslaving as an active interface with an up link [ 66.376548][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready [ 66.445223][ T5562] set_capacity_and_notify: 2 callbacks suppressed [ 66.445239][ T5562] loop4: detected capacity change from 0 to 512 [ 66.478262][ T5562] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 66.483530][ T5590] loop1: detected capacity change from 0 to 2048 [ 66.486261][ T5590] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 66.496550][ T5590] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 66.507362][ T5590] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 66.550222][ T4330] EXT4-fs (loop4): unmounting filesystem. [ 66.834444][ T5600] Injecting memory failure for pfn 0x138da8 at process virtual address 0x20000000 [ 66.897399][ T5600] Memory failure: 0x138da8: keeping poisoned page in swap cache [ 66.901925][ T5600] Memory failure: 0x138da8: recovery action for dirty swapcache page: Delayed [ 66.918467][ T5600] Injecting memory failure for pfn 0x140349 at process virtual address 0x20001000 [ 66.920212][ T5600] Memory failure: 0x140349: recovery action for clean LRU page: Recovered [ 66.921460][ T5600] Injecting memory failure for pfn 0x1409d5 at process virtual address 0x20002000 [ 66.926029][ T5600] Memory failure: 0x1409d5: recovery action for clean LRU page: Recovered [ 66.933186][ T5614] loop8: detected capacity change from 0 to 7 [ 66.935112][ T5614] Dev loop8: unable to read RDB block 7 [ 66.936049][ T5614] loop8: unable to read partition table [ 66.937136][ T5614] loop8: partition table beyond EOD, truncated [ 66.943753][ T5614] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 67.008664][ T5620] hub 8-0:1.0: USB hub found [ 67.009624][ T5620] hub 8-0:1.0: 8 ports detected [ 67.045316][ T5624] loop8: detected capacity change from 0 to 7 [ 67.051030][ T5624] Dev loop8: unable to read RDB block 7 [ 67.051937][ T5624] loop8: unable to read partition table [ 67.056865][ T5624] loop8: partition table beyond EOD, truncated [ 67.122252][ T5624] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 68.058954][ T5626] hub 8-0:1.0: USB hub found [ 68.061266][ T5626] hub 8-0:1.0: 8 ports detected [ 68.151646][ T5632] loop1: detected capacity change from 0 to 2048 [ 68.154157][ T5632] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 68.155999][ T5632] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 68.161871][ T5632] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 68.242652][ T5637] FAULT_INJECTION: forcing a failure. [ 68.242652][ T5637] name failslab, interval 1, probability 0, space 0, times 0 [ 68.245074][ T5637] CPU: 0 PID: 5637 Comm: syz.4.316 Not tainted syzkaller #0 [ 68.246166][ T5637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 68.247734][ T5637] Call trace: [ 68.248257][ T5637] dump_backtrace+0x1c0/0x1ec [ 68.248971][ T5637] show_stack+0x2c/0x3c [ 68.249621][ T5637] __dump_stack+0x30/0x40 [ 68.250332][ T5637] dump_stack_lvl+0xf4/0x15c [ 68.251045][ T5637] dump_stack+0x1c/0x5c [ 68.251690][ T5637] should_fail_ex+0x3c0/0x518 [ 68.252472][ T5637] __should_failslab+0xc0/0x120 [ 68.253307][ T5637] should_failslab+0x10/0x28 [ 68.254066][ T5637] kmem_cache_alloc_node+0x8c/0x33c [ 68.254913][ T5637] __alloc_skb+0x128/0x714 [ 68.255584][ T5637] netlink_sendmsg+0x52c/0x9c0 [ 68.256409][ T5637] ____sys_sendmsg+0x5c8/0x938 [ 68.257155][ T5637] __sys_sendmsg+0x288/0x374 [ 68.257908][ T5637] __arm64_sys_sendmsg+0x80/0x94 [ 68.258704][ T5637] invoke_syscall+0x98/0x2b4 [ 68.259434][ T5637] el0_svc_common+0x138/0x258 [ 68.260143][ T5637] do_el0_svc+0x58/0x130 [ 68.260774][ T5637] el0_svc+0x58/0x128 [ 68.261387][ T5637] el0t_64_sync_handler+0x84/0xf0 [ 68.262167][ T5637] el0t_64_sync+0x18c/0x190 [ 68.300365][ T5639] netlink: 'syz.5.314': attribute type 1 has an invalid length. [ 68.716276][ T5639] loop5: detected capacity change from 0 to 512 [ 68.763698][ T5639] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 68.770882][ T5645] loop4: detected capacity change from 0 to 4096 [ 68.780851][ T5645] ntfs3: loop4: Different NTFS' sector size (2048) and media sector size (512) [ 68.894335][ T5649] hub 8-0:1.0: USB hub found [ 68.895401][ T5649] hub 8-0:1.0: 8 ports detected [ 68.904821][ T4789] EXT4-fs (loop5): unmounting filesystem. [ 69.155504][ T5664] loop8: detected capacity change from 0 to 7 [ 69.159846][ T5660] usb usb1: usbfs: interface 0 claimed by hub while 'syz.2.322' sets config #1 [ 69.167261][ T5664] Dev loop8: unable to read RDB block 7 [ 69.168183][ T5664] loop8: unable to read partition table [ 69.177319][ T5664] loop8: partition table beyond EOD, truncated [ 69.178348][ T5664] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 69.282996][ T5677] loop8: detected capacity change from 0 to 7 [ 69.284432][ T5675] FAULT_INJECTION: forcing a failure. [ 69.284432][ T5675] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 69.286472][ T5677] Dev loop8: unable to read RDB block 7 [ 69.286484][ T5675] CPU: 1 PID: 5675 Comm: syz.1.326 Not tainted syzkaller #0 [ 69.287403][ T5677] loop8: unable to read partition table [ 69.288417][ T5675] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 69.288432][ T5675] Call trace: [ 69.291210][ T5675] dump_backtrace+0x1c0/0x1ec [ 69.291724][ T5677] loop8: partition table beyond EOD, [ 69.291897][ T5675] show_stack+0x2c/0x3c [ 69.293417][ T5675] __dump_stack+0x30/0x40 [ 69.293996][ T5677] truncated [ 69.294068][ T5675] dump_stack_lvl+0xf4/0x15c [ 69.294579][ T5677] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 69.295270][ T5675] dump_stack+0x1c/0x5c [ 69.295286][ T5675] should_fail_ex+0x3c0/0x518 [ 69.295293][ T5675] should_fail+0x14/0x24 [ 69.295298][ T5675] should_fail_usercopy+0x20/0x30 [ 69.299478][ T5675] bpf_test_init+0xec/0x254 [ 69.300185][ T5675] bpf_prog_test_run_skb+0x174/0xef0 [ 69.301085][ T5675] bpf_prog_test_run+0x2dc/0x360 [ 69.301906][ T5675] __sys_bpf+0x504/0x660 [ 69.302615][ T5675] __arm64_sys_bpf+0x80/0x98 [ 69.303429][ T5675] invoke_syscall+0x98/0x2b4 [ 69.304284][ T5675] el0_svc_common+0x138/0x258 [ 69.305047][ T5675] do_el0_svc+0x58/0x130 [ 69.305744][ T5675] el0_svc+0x58/0x128 [ 69.306419][ T5675] el0t_64_sync_handler+0x84/0xf0 [ 69.307238][ T5675] el0t_64_sync+0x18c/0x190 [ 69.562267][ T5698] loop8: detected capacity change from 0 to 7 [ 69.563882][ T5698] Dev loop8: unable to read RDB block 7 [ 69.564938][ T5698] loop8: unable to read partition table [ 69.565886][ T5698] loop8: partition table beyond EOD, truncated [ 69.574530][ T5698] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 69.635098][ T5702] hub 8-0:1.0: USB hub found [ 69.638543][ T5702] hub 8-0:1.0: 8 ports detected [ 69.641097][ T22] cfg80211: failed to load regulatory.db [ 70.090174][ T5711] syzkaller0: tun_chr_ioctl cmd 1074025677 [ 70.095439][ T5711] syzkaller0: linktype set to 769 [ 70.113478][ T5711] tmpfs: Bad value for 'mpol' [ 70.238900][ T5719] FAULT_INJECTION: forcing a failure. [ 70.238900][ T5719] name failslab, interval 1, probability 0, space 0, times 0 [ 70.241031][ T5719] CPU: 1 PID: 5719 Comm: syz.2.339 Not tainted syzkaller #0 [ 70.242144][ T5719] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 70.243815][ T5719] Call trace: [ 70.244307][ T5719] dump_backtrace+0x1c0/0x1ec [ 70.245113][ T5719] show_stack+0x2c/0x3c [ 70.245800][ T5719] __dump_stack+0x30/0x40 [ 70.246544][ T5719] dump_stack_lvl+0xf4/0x15c [ 70.247278][ T5719] dump_stack+0x1c/0x5c [ 70.247981][ T5719] should_fail_ex+0x3c0/0x518 [ 70.248757][ T5719] __should_failslab+0xc0/0x120 [ 70.249582][ T5719] should_failslab+0x10/0x28 [ 70.250324][ T5719] kmem_cache_alloc_node+0x8c/0x33c [ 70.251174][ T5719] __alloc_skb+0x128/0x714 [ 70.251880][ T5719] netlink_sendmsg+0x52c/0x9c0 [ 70.252689][ T5719] ____sys_sendmsg+0x5c8/0x938 [ 70.253425][ T5719] __sys_sendmsg+0x288/0x374 [ 70.254131][ T5719] __arm64_sys_sendmsg+0x80/0x94 [ 70.254988][ T5719] invoke_syscall+0x98/0x2b4 [ 70.255717][ T5719] el0_svc_common+0x138/0x258 [ 70.256505][ T5719] do_el0_svc+0x58/0x130 [ 70.257172][ T5719] el0_svc+0x58/0x128 [ 70.257875][ T5719] el0t_64_sync_handler+0x84/0xf0 [ 70.258686][ T5719] el0t_64_sync+0x18c/0x190 [ 70.335715][ T5721] hub 8-0:1.0: USB hub found [ 70.336681][ T5721] hub 8-0:1.0: 8 ports detected [ 70.373694][ T5723] netlink: 20 bytes leftover after parsing attributes in process `syz.4.340'. [ 70.526437][ T5729] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 70.544258][ T5729] hpfs: filesystem error: improperly stopped [ 70.551638][ T5729] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 70.558888][ T5729] hpfs: You really don't want any checks? You are crazy... [ 70.566203][ T5729] hpfs: hpfs_map_sector(): read error [ 70.576410][ T5729] hpfs: code page support is disabled [ 70.589846][ T5729] hpfs: hpfs_map_4sectors(): unaligned read [ 70.594280][ T5729] hpfs: hpfs_map_4sectors(): unaligned read [ 70.600580][ T5729] hpfs: filesystem error: unable to find root dir [ 70.625087][ T5738] Dev loop8: unable to read RDB block 7 [ 70.626049][ T5738] loop8: unable to read partition table [ 70.629798][ T5738] loop8: partition table beyond EOD, truncated [ 70.630846][ T5738] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5) [ 70.675559][ T5740] netlink: 20 bytes leftover after parsing attributes in process `syz.4.344'. [ 70.782297][ T5750] FAULT_INJECTION: forcing a failure. [ 70.782297][ T5750] name failslab, interval 1, probability 0, space 0, times 0 [ 70.784287][ T5750] CPU: 1 PID: 5750 Comm: syz.2.348 Not tainted syzkaller #0 [ 70.785363][ T5750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 70.786878][ T5750] Call trace: [ 70.787378][ T5750] dump_backtrace+0x1c0/0x1ec [ 70.788078][ T5750] show_stack+0x2c/0x3c [ 70.788722][ T5750] __dump_stack+0x30/0x40 [ 70.789455][ T5750] dump_stack_lvl+0xf4/0x15c [ 70.790187][ T5750] dump_stack+0x1c/0x5c [ 70.790845][ T5750] should_fail_ex+0x3c0/0x518 [ 70.791608][ T5750] __should_failslab+0xc0/0x120 [ 70.792469][ T5750] should_failslab+0x10/0x28 [ 70.793242][ T5750] kmem_cache_alloc_node+0x8c/0x33c [ 70.794030][ T5750] __alloc_skb+0x128/0x714 [ 70.794794][ T5750] netlink_sendmsg+0x52c/0x9c0 [ 70.795593][ T5750] ____sys_sendmsg+0x5c8/0x938 [ 70.796384][ T5750] __sys_sendmsg+0x288/0x374 [ 70.797150][ T5750] __arm64_sys_sendmsg+0x80/0x94 [ 70.797883][ T5750] invoke_syscall+0x98/0x2b4 [ 70.798576][ T5750] el0_svc_common+0x138/0x258 [ 70.799270][ T5750] do_el0_svc+0x58/0x130 [ 70.799864][ T5750] el0_svc+0x58/0x128 [ 70.800450][ T5750] el0t_64_sync_handler+0x84/0xf0 [ 70.801124][ T5750] el0t_64_sync+0x18c/0x190 [ 70.925498][ T5761] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 70.951903][ T5761] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 71.119781][ T5776] hub 8-0:1.0: USB hub found [ 71.120705][ T5776] hub 8-0:1.0: 8 ports detected [ 71.678722][ T5784] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 71.682450][ T5784] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 71.690039][ T5784] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 71.813215][ T5798] FAULT_INJECTION: forcing a failure. [ 71.813215][ T5798] name failslab, interval 1, probability 0, space 0, times 0 [ 71.834227][ T5798] CPU: 0 PID: 5798 Comm: syz.3.359 Not tainted syzkaller #0 [ 71.835371][ T5798] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 71.836852][ T5798] Call trace: [ 71.837388][ T5798] dump_backtrace+0x1c0/0x1ec [ 71.838087][ T5798] show_stack+0x2c/0x3c [ 71.838751][ T5798] __dump_stack+0x30/0x40 [ 71.839403][ T5798] dump_stack_lvl+0xf4/0x15c [ 71.840101][ T5798] dump_stack+0x1c/0x5c [ 71.840724][ T5798] should_fail_ex+0x3c0/0x518 [ 71.841421][ T5798] __should_failslab+0xc0/0x120 [ 71.842163][ T5798] should_failslab+0x10/0x28 [ 71.842932][ T5798] kmem_cache_alloc_node+0x8c/0x33c [ 71.843710][ T5798] __alloc_skb+0x128/0x714 [ 71.844419][ T5798] netlink_sendmsg+0x52c/0x9c0 [ 71.845143][ T5798] ____sys_sendmsg+0x5c8/0x938 [ 71.845910][ T5798] __sys_sendmsg+0x288/0x374 [ 71.846670][ T5798] __arm64_sys_sendmsg+0x80/0x94 [ 71.847416][ T5798] invoke_syscall+0x98/0x2b4 [ 71.848214][ T5798] el0_svc_common+0x138/0x258 [ 71.849007][ T5798] do_el0_svc+0x58/0x130 [ 71.849651][ T5798] el0_svc+0x58/0x128 [ 71.850345][ T5798] el0t_64_sync_handler+0x84/0xf0 [ 71.851176][ T5798] el0t_64_sync+0x18c/0x190 [ 72.038935][ T5808] hub 8-0:1.0: USB hub found [ 72.043646][ T5808] hub 8-0:1.0: 8 ports detected [ 72.450300][ T5747] set_capacity_and_notify: 5 callbacks suppressed [ 72.450557][ T5747] loop1: detected capacity change from 0 to 131072 [ 72.455241][ T5747] F2FS-fs (loop1): invalid crc value [ 72.574843][ T5747] F2FS-fs (loop1): Found nat_bits in checkpoint [ 72.603480][ T5747] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4 [ 72.972869][ T5850] loop3: detected capacity change from 0 to 2048 [ 72.992252][ T5835] loop4: detected capacity change from 0 to 32768 [ 72.994799][ T5850] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 73.010532][ T5850] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 73.022179][ T5850] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 73.074225][ T5841] loop5: detected capacity change from 0 to 32768 [ 73.082003][ T5835] XFS (loop4): Mounting V5 Filesystem [ 73.134832][ T5835] XFS (loop4): Ending clean mount [ 73.138781][ T5835] XFS (loop4): Quotacheck needed: Please wait. [ 73.178745][ T5835] XFS (loop4): Quotacheck: Done. [ 73.223866][ T5841] XFS (loop5): Mounting V5 Filesystem [ 73.231895][ T4330] XFS (loop4): Unmounting Filesystem [ 73.270232][ T5883] loop1: detected capacity change from 0 to 128 [ 73.272326][ T5883] ADFS-fs (loop1): unrecognised mount option "id=" or missing value [ 73.302888][ T5888] FAULT_INJECTION: forcing a failure. [ 73.302888][ T5888] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 73.305134][ T5888] CPU: 0 PID: 5888 Comm: syz.2.372 Not tainted syzkaller #0 [ 73.306223][ T5888] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 73.307683][ T5888] Call trace: [ 73.308191][ T5888] dump_backtrace+0x1c0/0x1ec [ 73.308912][ T5888] show_stack+0x2c/0x3c [ 73.309510][ T5888] __dump_stack+0x30/0x40 [ 73.310151][ T5888] dump_stack_lvl+0xf4/0x15c [ 73.310825][ T5888] dump_stack+0x1c/0x5c [ 73.311435][ T5888] should_fail_ex+0x3c0/0x518 [ 73.312159][ T5888] should_fail+0x14/0x24 [ 73.312817][ T5888] should_fail_usercopy+0x20/0x30 [ 73.313646][ T5888] arp_ioctl+0x144/0x568 [ 73.314357][ T5888] inet_ioctl+0x3ac/0x51c [ 73.315044][ T5888] sock_do_ioctl+0x100/0x258 [ 73.315781][ T5888] sock_ioctl+0x238/0x824 [ 73.316449][ T5888] __arm64_sys_ioctl+0x14c/0x1c8 [ 73.317241][ T5888] invoke_syscall+0x98/0x2b4 [ 73.317884][ T5888] el0_svc_common+0x138/0x258 [ 73.318637][ T5888] do_el0_svc+0x58/0x130 [ 73.318869][ T5841] XFS (loop5): Ending clean mount [ 73.319297][ T5888] el0_svc+0x58/0x128 [ 73.320779][ T5888] el0t_64_sync_handler+0x84/0xf0 [ 73.321608][ T5888] el0t_64_sync+0x18c/0x190 [ 73.330279][ T5891] FAULT_INJECTION: forcing a failure. [ 73.330279][ T5891] name failslab, interval 1, probability 0, space 0, times 0 [ 73.330325][ T5841] XFS (loop5): Quotacheck needed: Please wait. [ 73.332315][ T5891] CPU: 0 PID: 5891 Comm: syz.3.383 Not tainted syzkaller #0 [ 73.332334][ T5891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 73.335838][ T5891] Call trace: [ 73.336326][ T5891] dump_backtrace+0x1c0/0x1ec [ 73.337039][ T5891] show_stack+0x2c/0x3c [ 73.337667][ T5891] __dump_stack+0x30/0x40 [ 73.338340][ T5891] dump_stack_lvl+0xf4/0x15c [ 73.339047][ T5891] dump_stack+0x1c/0x5c [ 73.339743][ T5891] should_fail_ex+0x3c0/0x518 [ 73.340527][ T5891] __should_failslab+0xc0/0x120 [ 73.341429][ T5891] should_failslab+0x10/0x28 [ 73.342241][ T5891] kmem_cache_alloc_node+0x8c/0x33c [ 73.343134][ T5891] __alloc_skb+0x128/0x714 [ 73.343796][ T5891] netlink_sendmsg+0x52c/0x9c0 [ 73.344616][ T5891] ____sys_sendmsg+0x5c8/0x938 [ 73.345388][ T5891] __sys_sendmsg+0x288/0x374 [ 73.346056][ T5891] __arm64_sys_sendmsg+0x80/0x94 [ 73.346795][ T5891] invoke_syscall+0x98/0x2b4 [ 73.347558][ T5891] el0_svc_common+0x138/0x258 [ 73.348310][ T5891] do_el0_svc+0x58/0x130 [ 73.348942][ T5891] el0_svc+0x58/0x128 [ 73.349631][ T5891] el0t_64_sync_handler+0x84/0xf0 [ 73.350444][ T5891] el0t_64_sync+0x18c/0x190 [ 73.372586][ T4310] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 73.391814][ T5841] XFS (loop5): Quotacheck: Done. [ 73.401141][ T5883] loop1: detected capacity change from 0 to 128 [ 73.403425][ T5883] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 73.414480][ T5883] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 73.600436][ T4789] XFS (loop5): Unmounting Filesystem [ 73.770347][ T5924] loop3: detected capacity change from 0 to 8192 [ 73.776133][ T5924] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 73.779635][ T5924] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal [ 73.784931][ T5924] REISERFS (device loop3): using ordered data mode [ 73.786355][ T5924] reiserfs: using flush barriers [ 73.791675][ T5924] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 73.795209][ T5924] REISERFS (device loop3): checking transaction log (loop3) [ 73.798378][ T5924] REISERFS warning: reiserfs-5090 is_tree_node: node level 1 does not match to the expected one -1 [ 73.800818][ T5924] REISERFS error (device loop3): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 73.802527][ T5924] REISERFS (device loop3): Remounting filesystem read-only [ 73.803690][ T5924] REISERFS error (device loop3): vs-13070 reiserfs_read_locked_inode: i/o failure occurred trying to find stat data of [1 2 0x0 SD] [ 74.661441][ T5943] loop2: detected capacity change from 0 to 2048 [ 74.670422][ T5943] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 74.672388][ T5943] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 74.674715][ T5943] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 74.760589][ T5950] hub 8-0:1.0: USB hub found [ 74.761976][ T5950] hub 8-0:1.0: 8 ports detected [ 75.155287][ T5967] hub 8-0:1.0: USB hub found [ 75.156212][ T5967] hub 8-0:1.0: 8 ports detected [ 75.227037][ T4328] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 75.228276][ T4332] Bluetooth: hci5: command 0x1003 tx timeout [ 75.556256][ T5969] loop2: detected capacity change from 0 to 40427 [ 75.568402][ T5969] F2FS-fs (loop2): Fix alignment : internally, start(4096) end(16896) block(12288) [ 75.570095][ T5969] F2FS-fs (loop2): Encrypt feature is off [ 75.622444][ T5971] FAULT_INJECTION: forcing a failure. [ 75.622444][ T5971] name failslab, interval 1, probability 0, space 0, times 0 [ 75.624526][ T5971] CPU: 0 PID: 5971 Comm: syz.2.391 Not tainted syzkaller #0 [ 75.625549][ T5971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 75.627042][ T5971] Call trace: [ 75.627521][ T5971] dump_backtrace+0x1c0/0x1ec [ 75.628264][ T5971] show_stack+0x2c/0x3c [ 75.628926][ T5971] __dump_stack+0x30/0x40 [ 75.629662][ T5971] dump_stack_lvl+0xf4/0x15c [ 75.630418][ T5971] dump_stack+0x1c/0x5c [ 75.631098][ T5971] should_fail_ex+0x3c0/0x518 [ 75.631872][ T5971] __should_failslab+0xc0/0x120 [ 75.632759][ T5971] should_failslab+0x10/0x28 [ 75.633583][ T5971] kmem_cache_alloc_node+0x8c/0x33c [ 75.634412][ T5971] __alloc_skb+0x128/0x714 [ 75.635135][ T5971] netlink_sendmsg+0x52c/0x9c0 [ 75.635895][ T5971] ____sys_sendmsg+0x5c8/0x938 [ 75.636620][ T5971] __sys_sendmsg+0x288/0x374 [ 75.637358][ T5971] __arm64_sys_sendmsg+0x80/0x94 [ 75.638233][ T5971] invoke_syscall+0x98/0x2b4 [ 75.639032][ T5971] el0_svc_common+0x138/0x258 [ 75.639817][ T5971] do_el0_svc+0x58/0x130 [ 75.640546][ T5971] el0_svc+0x58/0x128 [ 75.641195][ T5971] el0t_64_sync_handler+0x84/0xf0 [ 75.642012][ T5971] el0t_64_sync+0x18c/0x190 [ 75.741369][ T5974] loop2: detected capacity change from 0 to 2048 [ 75.743844][ T5974] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 75.745543][ T5974] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 75.748922][ T5974] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 76.267304][ T5991] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 76.333057][ T6009] EXT4-fs error (device loop4): ext4_xattr_set_entry:1617: inode #15: comm syz.4.400: corrupted xattr entries [ 76.343768][ T6009] EXT4-fs error (device loop4): ext4_xattr_block_set:2162: inode #15: comm syz.4.400: bad block 113 [ 76.450347][ T6017] hub 8-0:1.0: USB hub found [ 76.451448][ T6017] hub 8-0:1.0: 8 ports detected [ 76.496444][ T4330] EXT4-fs (loop4): unmounting filesystem. [ 76.574967][ T6020] FAULT_INJECTION: forcing a failure. [ 76.574967][ T6020] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 76.581927][ T6020] CPU: 0 PID: 6020 Comm: syz.4.405 Not tainted syzkaller #0 [ 76.583115][ T6020] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 76.584759][ T6020] Call trace: [ 76.585335][ T6020] dump_backtrace+0x1c0/0x1ec [ 76.586150][ T6020] show_stack+0x2c/0x3c [ 76.586831][ T6020] __dump_stack+0x30/0x40 [ 76.587525][ T6020] dump_stack_lvl+0xf4/0x15c [ 76.588235][ T6020] dump_stack+0x1c/0x5c [ 76.588883][ T6020] should_fail_ex+0x3c0/0x518 [ 76.589612][ T6020] should_fail+0x14/0x24 [ 76.590323][ T6020] should_fail_usercopy+0x20/0x30 [ 76.591146][ T6020] iovec_from_user+0xcc/0x5dc [ 76.591934][ T6020] __import_iovec+0x84/0x470 [ 76.592728][ T6020] import_iovec+0x88/0xa4 [ 76.593399][ T6020] copy_msghdr_from_user+0x344/0x4d0 [ 76.594278][ T6020] __sys_sendmsg+0x22c/0x374 [ 76.594999][ T6020] __arm64_sys_sendmsg+0x80/0x94 [ 76.595827][ T6020] invoke_syscall+0x98/0x2b4 [ 76.596629][ T6020] el0_svc_common+0x138/0x258 [ 76.597381][ T6020] do_el0_svc+0x58/0x130 [ 76.598093][ T6020] el0_svc+0x58/0x128 [ 76.598755][ T6020] el0t_64_sync_handler+0x84/0xf0 [ 76.599626][ T6020] el0t_64_sync+0x18c/0x190 [ 76.641818][ T6023] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 76.646453][ T6023] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 76.650553][ T6023] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 76.736140][ T6029] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 77.089824][ T6056] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 77.094042][ T6056] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 77.099718][ T6056] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 77.282585][ T6065] EXT4-fs: Ignoring removed nomblk_io_submit option [ 77.623663][ T6065] EXT4-fs: Mount option(s) incompatible with ext3 [ 77.638266][ T6065] gfs2: Unexpected value for 'barrier' [ 77.690479][ T6040] set_capacity_and_notify: 6 callbacks suppressed [ 77.690489][ T6040] loop1: detected capacity change from 0 to 40427 [ 77.704139][ T6040] F2FS-fs (loop1): invalid crc value [ 77.708921][ T6040] F2FS-fs (loop1): Found nat_bits in checkpoint [ 77.722655][ T6040] F2FS-fs (loop1): Start checkpoint disabled! [ 77.736681][ T6040] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6 [ 77.804947][ T39] kworker/u4:2: attempt to access beyond end of device [ 77.804947][ T39] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 77.921197][ T6082] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 77.925830][ T6082] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 77.929378][ T6082] FAULT_INJECTION: forcing a failure. [ 77.929378][ T6082] name failslab, interval 1, probability 0, space 0, times 0 [ 77.934731][ T6082] CPU: 1 PID: 6082 Comm: syz.1.427 Not tainted syzkaller #0 [ 77.935839][ T6082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 77.937463][ T6082] Call trace: [ 77.937994][ T6082] dump_backtrace+0x1c0/0x1ec [ 77.938770][ T6082] show_stack+0x2c/0x3c [ 77.939457][ T6082] __dump_stack+0x30/0x40 [ 77.940152][ T6082] dump_stack_lvl+0xf4/0x15c [ 77.940873][ T6082] dump_stack+0x1c/0x5c [ 77.941533][ T6082] should_fail_ex+0x3c0/0x518 [ 77.942259][ T6082] __should_failslab+0xc0/0x120 [ 77.943062][ T6082] should_failslab+0x10/0x28 [ 77.943832][ T6082] __kmem_cache_alloc_node+0x7c/0x314 [ 77.944764][ T6082] kmalloc_trace+0x48/0x94 [ 77.945480][ T6082] __hw_addr_add_ex+0x1d4/0x5a4 [ 77.946287][ T6082] dev_addr_init+0x11c/0x1e0 [ 77.947052][ T6082] alloc_netdev_mqs+0x1e8/0xbd4 [ 77.947871][ T6082] __ip_tunnel_create+0x238/0x3a8 [ 77.948709][ T6082] ip_tunnel_ctl+0x9d4/0x146c [ 77.949507][ T6082] ipip_tunnel_ctl+0xfc/0x1d0 [ 77.950298][ T6082] vif_add+0x2dc/0x1134 [ 77.950947][ T6082] ip_mroute_setsockopt+0xb90/0xcf4 [ 77.951817][ T6082] do_ip_setsockopt+0x460/0x253c [ 77.952649][ T6082] ip_setsockopt+0x68/0x134 [ 77.953386][ T6082] raw_setsockopt+0xd8/0x288 [ 77.954121][ T6082] sock_common_setsockopt+0xb0/0xcc [ 77.954983][ T6082] __sys_setsockopt+0x2fc/0x50c [ 77.955760][ T6082] __arm64_sys_setsockopt+0xb8/0xd4 [ 77.956566][ T6082] invoke_syscall+0x98/0x2b4 [ 77.957273][ T6082] el0_svc_common+0x138/0x258 [ 77.958012][ T6082] do_el0_svc+0x58/0x130 [ 77.958676][ T6082] el0_svc+0x58/0x128 [ 77.959328][ T6082] el0t_64_sync_handler+0x84/0xf0 [ 77.960151][ T6082] el0t_64_sync+0x18c/0x190 [ 78.092107][ T6090] FAULT_INJECTION: forcing a failure. [ 78.092107][ T6090] name failslab, interval 1, probability 0, space 0, times 0 [ 78.096448][ T6090] CPU: 0 PID: 6090 Comm: syz.5.429 Not tainted syzkaller #0 [ 78.097626][ T6090] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 78.099119][ T6090] Call trace: [ 78.099630][ T6090] dump_backtrace+0x1c0/0x1ec [ 78.100362][ T6090] show_stack+0x2c/0x3c [ 78.101012][ T6090] __dump_stack+0x30/0x40 [ 78.101766][ T6090] dump_stack_lvl+0xf4/0x15c [ 78.102536][ T6090] dump_stack+0x1c/0x5c [ 78.103208][ T6090] should_fail_ex+0x3c0/0x518 [ 78.103958][ T6090] __should_failslab+0xc0/0x120 [ 78.104727][ T6090] should_failslab+0x10/0x28 [ 78.105463][ T6090] kmem_cache_alloc_node+0x8c/0x33c [ 78.106309][ T6090] __alloc_skb+0x128/0x714 [ 78.107010][ T6090] netlink_sendmsg+0x52c/0x9c0 [ 78.107737][ T6090] ____sys_sendmsg+0x5c8/0x938 [ 78.108489][ T6090] __sys_sendmsg+0x288/0x374 [ 78.109296][ T6090] __arm64_sys_sendmsg+0x80/0x94 [ 78.110173][ T6090] invoke_syscall+0x98/0x2b4 [ 78.110951][ T6090] el0_svc_common+0x138/0x258 [ 78.111798][ T6090] do_el0_svc+0x58/0x130 [ 78.112537][ T6090] el0_svc+0x58/0x128 [ 78.113235][ T6090] el0t_64_sync_handler+0x84/0xf0 [ 78.114079][ T6090] el0t_64_sync+0x18c/0x190 [ 78.117710][ T6091] hub 8-0:1.0: USB hub found [ 78.118657][ T6091] hub 8-0:1.0: 8 ports detected [ 78.261916][ T6095] loop5: detected capacity change from 0 to 2048 [ 78.274129][ T6095] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 78.281149][ T6095] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 78.291506][ T6095] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 78.396700][ T6099] overlayfs: upper fs does not support file handles, falling back to index=off. [ 78.420798][ T6099] overlayfs: NFS export requires "index=on", falling back to nfs_export=off. [ 78.560440][ T6107] loop1: detected capacity change from 0 to 512 [ 78.591218][ T6110] hub 8-0:1.0: USB hub found [ 78.604504][ T6107] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 78.606857][ T6110] hub 8-0:1.0: 8 ports detected [ 78.609609][ T6107] EXT4-fs error (device loop1): ext4_map_blocks:635: inode #2: block 18: comm syz.1.438: lblock 23 mapped to illegal pblock 18 (length 1) [ 78.841862][ T6100] loop5: detected capacity change from 0 to 32768 [ 78.860465][ T6100] xfs: Unknown parameter 'appraise_type' [ 79.504342][ T6107] EXT4-fs error (device loop1): ext4_map_blocks:635: inode #2: block 18: comm syz.1.438: lblock 23 mapped to illegal pblock 18 (length 1) [ 79.935614][ T6131] netlink: 'syz.5.442': attribute type 1 has an invalid length. [ 79.961576][ T6131] 8021q: adding VLAN 0 to HW filter on device bond1 [ 79.966350][ T6131] FAULT_INJECTION: forcing a failure. [ 79.966350][ T6131] name failslab, interval 1, probability 0, space 0, times 0 [ 79.970619][ T6131] CPU: 1 PID: 6131 Comm: syz.5.442 Not tainted syzkaller #0 [ 79.971747][ T6131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 79.973221][ T6131] Call trace: [ 79.973696][ T6131] dump_backtrace+0x1c0/0x1ec [ 79.974411][ T6131] show_stack+0x2c/0x3c [ 79.975027][ T6131] __dump_stack+0x30/0x40 [ 79.975708][ T6131] dump_stack_lvl+0xf4/0x15c [ 79.976414][ T6131] dump_stack+0x1c/0x5c [ 79.977104][ T6131] should_fail_ex+0x3c0/0x518 [ 79.977876][ T6131] __should_failslab+0xc0/0x120 [ 79.978659][ T6131] should_failslab+0x10/0x28 [ 79.979396][ T6131] kmem_cache_alloc_node+0x8c/0x33c [ 79.980235][ T6131] __alloc_skb+0x128/0x714 [ 79.981014][ T6131] netlink_sendmsg+0x52c/0x9c0 [ 79.981784][ T6131] ____sys_sendmsg+0x5c8/0x938 [ 79.982523][ T6131] __sys_sendmsg+0x288/0x374 [ 79.983260][ T6131] __arm64_sys_sendmsg+0x80/0x94 [ 79.984079][ T6131] invoke_syscall+0x98/0x2b4 [ 79.984819][ T6131] el0_svc_common+0x138/0x258 [ 79.985609][ T6131] do_el0_svc+0x58/0x130 [ 79.986320][ T6131] el0_svc+0x58/0x128 [ 79.986960][ T6131] el0t_64_sync_handler+0x84/0xf0 [ 79.987789][ T6131] el0t_64_sync+0x18c/0x190 [ 80.078783][ T4325] EXT4-fs (loop1): unmounting filesystem. [ 80.129881][ T6137] loop1: detected capacity change from 0 to 4096 [ 80.141710][ T6138] loop4: detected capacity change from 0 to 2048 [ 80.151581][ T6138] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 80.155815][ T6138] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 80.171270][ T6138] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 80.173044][ T6141] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 80.246833][ T6146] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 80.253515][ T6146] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 80.259321][ T6144] NILFS (loop1): DAT doesn't have a block to manage vblocknr = 648518346341351424 [ 80.270200][ T6144] NILFS error (device loop1): nilfs_bmap_truncate: broken bmap (inode number=12) [ 80.312907][ T6149] loop2: detected capacity change from 0 to 128 [ 80.323004][ T6144] Remounting filesystem read-only [ 80.323839][ T6144] NILFS (loop1): error -5 truncating bmap (ino=12) [ 80.383077][ T4325] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer [ 80.431114][ T6154] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 80.435302][ T6154] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 80.440270][ T6149] syz.2.448: attempt to access beyond end of device [ 80.440270][ T6149] loop2: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 80.724845][ T6165] hub 8-0:1.0: USB hub found [ 81.256067][ T6165] hub 8-0:1.0: 8 ports detected [ 81.502548][ T6177] loop2: detected capacity change from 0 to 2048 [ 81.505211][ T6177] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 81.506779][ T6177] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 81.513051][ T6177] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 81.647991][ T6189] FAULT_INJECTION: forcing a failure. [ 81.647991][ T6189] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 81.650137][ T6189] CPU: 0 PID: 6189 Comm: syz.2.462 Not tainted syzkaller #0 [ 81.651295][ T6189] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 81.652877][ T6189] Call trace: [ 81.653409][ T6189] dump_backtrace+0x1c0/0x1ec [ 81.654160][ T6189] show_stack+0x2c/0x3c [ 81.654826][ T6189] __dump_stack+0x30/0x40 [ 81.655504][ T6189] dump_stack_lvl+0xf4/0x15c [ 81.656181][ T6189] dump_stack+0x1c/0x5c [ 81.656811][ T6189] should_fail_ex+0x3c0/0x518 [ 81.657636][ T6189] should_fail+0x14/0x24 [ 81.658366][ T6189] should_fail_usercopy+0x20/0x30 [ 81.659180][ T6189] copy_from_sockptr+0x74/0x1b4 [ 81.659986][ T6189] do_replace+0xf0/0x3c0 [ 81.660703][ T6189] do_ebt_set_ctl+0x20c/0xbe8 [ 81.661461][ T6189] nf_setsockopt+0x270/0x290 [ 81.662270][ T6189] ip_setsockopt+0x124/0x134 [ 81.663058][ T6189] tcp_setsockopt+0xcc/0xe8 [ 81.663804][ T6189] sock_common_setsockopt+0xb0/0xcc [ 81.664679][ T6189] __sys_setsockopt+0x2fc/0x50c [ 81.665418][ T6189] __arm64_sys_setsockopt+0xb8/0xd4 [ 81.666242][ T6189] invoke_syscall+0x98/0x2b4 [ 81.667031][ T6189] el0_svc_common+0x138/0x258 [ 81.667822][ T6189] do_el0_svc+0x58/0x130 [ 81.668505][ T6189] el0_svc+0x58/0x128 [ 81.669132][ T6189] el0t_64_sync_handler+0x84/0xf0 [ 81.669986][ T6189] el0t_64_sync+0x18c/0x190 [ 82.024510][ T6198] FAULT_INJECTION: forcing a failure. [ 82.024510][ T6198] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 82.027156][ T6198] CPU: 0 PID: 6198 Comm: syz.1.465 Not tainted syzkaller #0 [ 82.028297][ T6198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 82.029868][ T6198] Call trace: [ 82.030375][ T6198] dump_backtrace+0x1c0/0x1ec [ 82.031135][ T6198] show_stack+0x2c/0x3c [ 82.031766][ T6198] __dump_stack+0x30/0x40 [ 82.032451][ T6198] dump_stack_lvl+0xf4/0x15c [ 82.033188][ T6198] dump_stack+0x1c/0x5c [ 82.033854][ T6198] should_fail_ex+0x3c0/0x518 [ 82.034561][ T6198] should_fail_alloc_page+0x74/0xb8 [ 82.035408][ T6198] prepare_alloc_pages+0x1c0/0x500 [ 82.036261][ T6198] __alloc_pages+0x134/0x53c [ 82.036980][ T6198] alloc_pages+0x434/0x6f8 [ 82.037727][ T6198] __get_free_pages+0x18/0x84 [ 82.038507][ T6198] kasan_populate_vmalloc_pte+0x40/0xe8 [ 82.039403][ T6198] __apply_to_page_range+0x80c/0xbb4 [ 82.040246][ T6198] apply_to_page_range+0x4c/0x64 [ 82.041046][ T6198] kasan_populate_vmalloc+0x5c/0x6c [ 82.041917][ T6198] alloc_vmap_area+0x15c8/0x1708 [ 82.042708][ T6198] __get_vm_area_node+0x17c/0x31c [ 82.043538][ T6198] __vmalloc_node_range+0x1d4/0xe3c [ 82.044359][ T6198] vmalloc+0x9c/0xd4 [ 82.044988][ T6198] netlink_sendmsg+0x4d4/0x9c0 [ 82.045772][ T6198] sock_write_iter+0x268/0x360 [ 82.046626][ T6198] vfs_write+0x3ec/0x7f0 [ 82.047448][ T6198] ksys_write+0x12c/0x224 [ 82.048182][ T6198] __arm64_sys_write+0x7c/0x90 [ 82.049029][ T6198] invoke_syscall+0x98/0x2b4 [ 82.049856][ T6198] el0_svc_common+0x138/0x258 [ 82.050716][ T6198] do_el0_svc+0x58/0x130 [ 82.051447][ T6198] el0_svc+0x58/0x128 [ 82.052102][ T6198] el0t_64_sync_handler+0x84/0xf0 [ 82.052929][ T6198] el0t_64_sync+0x18c/0x190 [ 82.078664][ T6198] syz.1.465: vmalloc error: size 65408, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=syz1,mems_allowed=0 [ 82.087587][ T6198] CPU: 1 PID: 6198 Comm: syz.1.465 Not tainted syzkaller #0 [ 82.088814][ T6198] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 82.090425][ T6198] Call trace: [ 82.090935][ T6198] dump_backtrace+0x1c0/0x1ec [ 82.091684][ T6198] show_stack+0x2c/0x3c [ 82.092397][ T6198] __dump_stack+0x30/0x40 [ 82.093140][ T6198] dump_stack_lvl+0xf4/0x15c [ 82.093947][ T6198] dump_stack+0x1c/0x5c [ 82.094649][ T6198] warn_alloc+0x214/0x328 [ 82.095397][ T6198] __vmalloc_node_range+0x248/0xe3c [ 82.096268][ T6198] vmalloc+0x9c/0xd4 [ 82.096901][ T6198] netlink_sendmsg+0x4d4/0x9c0 [ 82.097711][ T6198] sock_write_iter+0x268/0x360 [ 82.098458][ T6198] vfs_write+0x3ec/0x7f0 [ 82.099169][ T6198] ksys_write+0x12c/0x224 [ 82.099843][ T6198] __arm64_sys_write+0x7c/0x90 [ 82.100578][ T6198] invoke_syscall+0x98/0x2b4 [ 82.101309][ T6198] el0_svc_common+0x138/0x258 [ 82.102023][ T6198] do_el0_svc+0x58/0x130 [ 82.102737][ T6198] el0_svc+0x58/0x128 [ 82.103383][ T6198] el0t_64_sync_handler+0x84/0xf0 [ 82.104141][ T6198] el0t_64_sync+0x18c/0x190 [ 82.105783][ T6198] Mem-Info: [ 82.106351][ T6198] active_anon:21984 inactive_anon:0 isolated_anon:0 [ 82.106351][ T6198] active_file:17269 inactive_file:2156 isolated_file:0 [ 82.106351][ T6198] unevictable:768 dirty:726 writeback:0 [ 82.106351][ T6198] slab_reclaimable:19470 slab_unreclaimable:92398 [ 82.106351][ T6198] mapped:36806 shmem:17310 pagetables:728 [ 82.106351][ T6198] sec_pagetables:0 bounce:0 [ 82.106351][ T6198] kernel_misc_reclaimable:0 [ 82.106351][ T6198] free:1417521 free_pcp:4351 free_cma:7360 [ 82.114219][ T6198] Node 0 active_anon:87936kB inactive_anon:0kB active_file:69076kB inactive_file:8624kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:150224kB dirty:2904kB writeback:0kB shmem:69240kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:9376kB pagetables:2912kB sec_pagetables:0kB all_unreclaimable? no [ 82.119829][ T6198] Node 0 DMA free:3076864kB boost:0kB min:20656kB low:25820kB high:30984kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3145728kB managed:3080192kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:29440kB [ 82.124079][ T6198] lowmem_reserve[]: 0 0 3552 3552 3552 [ 82.124945][ T6198] Node 0 Normal free:2593220kB boost:0kB min:24396kB low:30492kB high:36588kB reserved_highatomic:0KB active_anon:87936kB inactive_anon:0kB active_file:69076kB inactive_file:8624kB unevictable:3072kB writepending:2904kB present:5242880kB managed:3641540kB mlocked:0kB bounce:0kB free_pcp:17336kB local_pcp:14140kB free_cma:0kB [ 82.132797][ T6198] lowmem_reserve[]: 0 0 0 0 0 [ 82.133639][ T6198] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 1*256kB (C) 1*512kB (C) 0*1024kB 0*2048kB 751*4096kB (MC) = 3076864kB [ 82.135881][ T6198] Node 0 Normal: 207*4kB (UE) 553*8kB (UM) 472*16kB (UM) 458*32kB (UME) 134*64kB (UME) 104*128kB (UME) 83*256kB (UM) 45*512kB (UM) 27*1024kB (UME) 17*2048kB (UME) 595*4096kB (UM) = 2593220kB [ 82.139897][ T6198] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 82.141358][ T6198] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=32768kB [ 82.142929][ T6198] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 82.144493][ T6198] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=64kB [ 82.146020][ T6198] 36680 total pagecache pages [ 82.146743][ T6198] 0 pages in swap cache [ 82.149920][ T6198] Free swap = 124740kB [ 82.150561][ T6198] Total swap = 124996kB [ 82.151363][ T6198] 2097152 pages RAM [ 82.151955][ T6198] 0 pages HighMem/MovableOnly [ 82.152756][ T6198] 416719 pages reserved [ 82.153544][ T6198] 8192 pages cma reserved [ 82.154237][ T6198] 3 pages hwpoisoned [ 82.398134][ T6216] netlink: 12 bytes leftover after parsing attributes in process `syz.3.473'. [ 82.554883][ T6222] hub 8-0:1.0: USB hub found [ 82.556007][ T6222] hub 8-0:1.0: 8 ports detected [ 82.775752][ T6219] loop2: detected capacity change from 0 to 2048 [ 82.792724][ T6219] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 82.795659][ T6219] Injecting memory failure for pfn 0x13e7e6 at process virtual address 0x20000000 [ 82.819112][ T6219] Memory failure: 0x13e7e6: recovery action for dirty LRU page: Recovered [ 82.820512][ T6219] Injecting memory failure for pfn 0x1432e6 at process virtual address 0x20001000 [ 82.830243][ T6219] Memory failure: 0x1432e6: recovery action for dirty LRU page: Recovered [ 82.831610][ T6219] Injecting memory failure for pfn 0x138f10 at process virtual address 0x20002000 [ 82.845462][ T6219] Memory failure: 0x138f10: recovery action for dirty LRU page: Recovered [ 82.849520][ T6219] Injecting memory failure for pfn 0x211003 at process virtual address 0x20003000 [ 82.853161][ T6219] Memory failure: 0x211003: recovery action for reserved kernel page: Ignored [ 82.880526][ T6225] syzkaller0: tun_chr_ioctl cmd 1074025673 [ 82.936533][ T6228] syzkaller0: tun_chr_ioctl cmd 2147767519 [ 82.980429][ T6216] loop3: detected capacity change from 0 to 40427 [ 82.995047][ T6216] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 82.996401][ T6216] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 83.003211][ T6216] F2FS-fs (loop3): Encoding requested by superblock is unknown [ 83.599055][ T6235] loop3: detected capacity change from 0 to 164 [ 84.640113][ T6237] loop1: detected capacity change from 0 to 4096 [ 84.750857][ T6248] binder: 6247:6248 tried to acquire reference to desc 0, got 1 instead [ 84.760807][ T6248] binder: 6247:6248 got transaction with invalid handle, 2 [ 84.762056][ T6248] binder: 6248:6247 translate handle failed [ 84.776169][ T6248] binder: 6247:6248 transaction call to 6247:0 failed 6/29201/-22, size 88-24 line 3393 [ 84.793567][ T4901] binder: undelivered TRANSACTION_ERROR: 29201 [ 86.135440][ T6268] FAULT_INJECTION: forcing a failure. [ 86.135440][ T6268] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 86.137451][ T6268] CPU: 1 PID: 6268 Comm: syz.4.487 Not tainted syzkaller #0 [ 86.138525][ T6268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 86.140101][ T6268] Call trace: [ 86.140580][ T6268] dump_backtrace+0x1c0/0x1ec [ 86.141277][ T6268] show_stack+0x2c/0x3c [ 86.141929][ T6268] __dump_stack+0x30/0x40 [ 86.142573][ T6268] dump_stack_lvl+0xf4/0x15c [ 86.143235][ T6268] dump_stack+0x1c/0x5c [ 86.143869][ T6268] should_fail_ex+0x3c0/0x518 [ 86.144554][ T6268] should_fail+0x14/0x24 [ 86.145146][ T6268] should_fail_usercopy+0x20/0x30 [ 86.145913][ T6268] copy_from_sockptr+0x74/0x1b4 [ 86.146657][ T6268] do_replace+0xf0/0x3c0 [ 86.147369][ T6268] do_ebt_set_ctl+0x20c/0xbe8 [ 86.148150][ T6268] nf_setsockopt+0x270/0x290 [ 86.148967][ T6268] ip_setsockopt+0x124/0x134 [ 86.149744][ T6268] tcp_setsockopt+0xcc/0xe8 [ 86.150479][ T6268] sock_common_setsockopt+0xb0/0xcc [ 86.151299][ T6268] __sys_setsockopt+0x2fc/0x50c [ 86.152057][ T6268] __arm64_sys_setsockopt+0xb8/0xd4 [ 86.152913][ T6268] invoke_syscall+0x98/0x2b4 [ 86.153625][ T6268] el0_svc_common+0x138/0x258 [ 86.154341][ T6268] do_el0_svc+0x58/0x130 [ 86.155071][ T6268] el0_svc+0x58/0x128 [ 86.155713][ T6268] el0t_64_sync_handler+0x84/0xf0 [ 86.156539][ T6268] el0t_64_sync+0x18c/0x190 [ 86.160703][ T6268] loop4: detected capacity change from 0 to 164 [ 86.316622][ T6271] hub 8-0:1.0: USB hub found [ 86.322407][ T6271] hub 8-0:1.0: 8 ports detected [ 87.313796][ T6285] hub 8-0:1.0: USB hub found [ 87.316726][ T6285] hub 8-0:1.0: 8 ports detected [ 89.194081][ T6293] binder: 6288:6293 BC_FREE_BUFFER u0000000020ffd000 no match [ 89.202247][ T6293] binder: 6288:6293 Release 1 refcount change on invalid ref 2 ret -22 [ 89.203632][ T6293] binder: 6288:6293 Acquire 1 refcount change on invalid ref 2 ret -22 [ 89.204933][ T6293] binder: 6288:6293 got transaction to invalid handle, 3 [ 89.206192][ T6293] binder: 6293:6288 cannot find target node [ 89.209910][ T6293] binder: 6288:6293 transaction call to 0:0 failed 10/29201/-22, size 88-24 line 3045 [ 89.216093][ T6293] binder: BINDER_SET_CONTEXT_MGR already set [ 89.220782][ T6293] binder: 6288:6293 ioctl 4018620d 20000100 returned -16 [ 89.250193][ T24] binder: undelivered TRANSACTION_ERROR: 29201 [ 89.302642][ T6293] binder: BINDER_SET_CONTEXT_MGR already set [ 89.303697][ T6293] binder: 6288:6293 ioctl 4018620d 20004a80 returned -16 [ 89.383012][ T6307] binder: 6306:6307 tried to acquire reference to desc 0, got 1 instead [ 89.384609][ T6307] FAULT_INJECTION: forcing a failure. [ 89.384609][ T6307] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 89.386741][ T6307] CPU: 1 PID: 6307 Comm: syz.2.498 Not tainted syzkaller #0 [ 89.387818][ T6307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 89.389556][ T6307] Call trace: [ 89.390103][ T6307] dump_backtrace+0x1c0/0x1ec [ 89.390869][ T6307] show_stack+0x2c/0x3c [ 89.391548][ T6307] __dump_stack+0x30/0x40 [ 89.392233][ T6307] dump_stack_lvl+0xf4/0x15c [ 89.392980][ T6307] dump_stack+0x1c/0x5c [ 89.393630][ T6307] should_fail_ex+0x3c0/0x518 [ 89.394438][ T6307] should_fail+0x14/0x24 [ 89.395113][ T6307] should_fail_usercopy+0x20/0x30 [ 89.395979][ T6307] binder_ioctl_write_read+0x128/0x8c74 [ 89.396867][ T6307] binder_ioctl+0x458/0x1b28 [ 89.397636][ T6307] __arm64_sys_ioctl+0x14c/0x1c8 [ 89.398454][ T6307] invoke_syscall+0x98/0x2b4 [ 89.399221][ T6307] el0_svc_common+0x138/0x258 [ 89.400000][ T6307] do_el0_svc+0x58/0x130 [ 89.400687][ T6307] el0_svc+0x58/0x128 [ 89.401341][ T6307] el0t_64_sync_handler+0x84/0xf0 [ 89.402173][ T6307] el0t_64_sync+0x18c/0x190 [ 89.425625][ T6311] FAULT_INJECTION: forcing a failure. [ 89.425625][ T6311] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 89.430407][ T6311] CPU: 1 PID: 6311 Comm: syz.5.499 Not tainted syzkaller #0 [ 89.431649][ T6311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 89.433248][ T6311] Call trace: [ 89.433749][ T6311] dump_backtrace+0x1c0/0x1ec [ 89.434456][ T6311] show_stack+0x2c/0x3c [ 89.435093][ T6311] __dump_stack+0x30/0x40 [ 89.435786][ T6311] dump_stack_lvl+0xf4/0x15c [ 89.436520][ T6311] dump_stack+0x1c/0x5c [ 89.437175][ T6311] should_fail_ex+0x3c0/0x518 [ 89.437977][ T6311] should_fail+0x14/0x24 [ 89.438659][ T6311] should_fail_usercopy+0x20/0x30 [ 89.439430][ T6311] _copy_from_iter+0x198/0xf6c [ 89.440148][ T6311] netlink_sendmsg+0x5ec/0x9c0 [ 89.440898][ T6311] sock_write_iter+0x268/0x360 [ 89.441672][ T6311] vfs_write+0x3ec/0x7f0 [ 89.442364][ T6311] ksys_write+0x12c/0x224 [ 89.443118][ T6311] __arm64_sys_write+0x7c/0x90 [ 89.443950][ T6311] invoke_syscall+0x98/0x2b4 [ 89.444655][ T6311] el0_svc_common+0x138/0x258 [ 89.445417][ T6311] do_el0_svc+0x58/0x130 [ 89.446143][ T6311] el0_svc+0x58/0x128 [ 89.446862][ T6311] el0t_64_sync_handler+0x84/0xf0 [ 89.447729][ T6311] el0t_64_sync+0x18c/0x190 [ 89.449835][ T6307] binder: 6306:6307 ioctl c0306201 200001c0 returned -14 [ 89.460095][ T6295] loop1: detected capacity change from 0 to 32768 [ 90.505501][ T6295] XFS (loop1): Mounting V5 Filesystem [ 90.632415][ T6339] netlink: 4 bytes leftover after parsing attributes in process `syz.3.505'. [ 90.738222][ T6342] hub 8-0:1.0: USB hub found [ 90.739413][ T6342] hub 8-0:1.0: 8 ports detected [ 90.960019][ T6295] XFS (loop1): Ending clean mount [ 90.969601][ T6295] XFS (loop1): Quotacheck needed: Please wait. [ 90.988506][ T6295] XFS (loop1): Quotacheck: Done. [ 91.177796][ T6346] netlink: 4 bytes leftover after parsing attributes in process `syz.3.507'. [ 91.224394][ T6352] loop3: detected capacity change from 0 to 256 [ 91.250307][ T6352] FAT-fs (loop3): Directory bread(block 64) failed [ 91.251374][ T6352] FAT-fs (loop3): Directory bread(block 65) failed [ 91.252655][ T6352] FAT-fs (loop3): Directory bread(block 66) failed [ 91.253655][ T6352] FAT-fs (loop3): Directory bread(block 67) failed [ 91.260343][ T6352] FAT-fs (loop3): Directory bread(block 68) failed [ 91.261535][ T6352] FAT-fs (loop3): Directory bread(block 69) failed [ 91.263315][ T6352] FAT-fs (loop3): Directory bread(block 70) failed [ 91.265040][ T6352] FAT-fs (loop3): Directory bread(block 71) failed [ 91.266103][ T6352] FAT-fs (loop3): Directory bread(block 72) failed [ 91.271661][ T6352] FAT-fs (loop3): Directory bread(block 73) failed [ 91.443877][ T4325] XFS (loop1): Unmounting Filesystem [ 91.457782][ T6357] netlink: 'syz.5.512': attribute type 11 has an invalid length. [ 91.459131][ T6357] netlink: 8 bytes leftover after parsing attributes in process `syz.5.512'. [ 91.627436][ T6362] FAULT_INJECTION: forcing a failure. [ 91.627436][ T6362] name failslab, interval 1, probability 0, space 0, times 0 [ 91.629301][ T6362] CPU: 1 PID: 6362 Comm: syz.2.514 Not tainted syzkaller #0 [ 91.630463][ T6362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 91.631936][ T6362] Call trace: [ 91.632525][ T6362] dump_backtrace+0x1c0/0x1ec [ 91.633277][ T6362] show_stack+0x2c/0x3c [ 91.633293][ T6362] __dump_stack+0x30/0x40 [ 91.633303][ T6362] dump_stack_lvl+0xf4/0x15c [ 91.633313][ T6362] dump_stack+0x1c/0x5c [ 91.633320][ T6362] should_fail_ex+0x3c0/0x518 [ 91.634567][ T6363] hub 8-0:1.0: USB hub found [ 91.635185][ T6362] __should_failslab+0xc0/0x120 [ 91.638058][ T6362] should_failslab+0x10/0x28 [ 91.638866][ T6362] kmem_cache_alloc_node+0x8c/0x33c [ 91.639771][ T6362] __alloc_skb+0x128/0x714 [ 91.639978][ T6363] hub 8-0:1.0: 8 ports detected [ 91.640488][ T6362] netlink_sendmsg+0x52c/0x9c0 [ 91.642074][ T6362] ____sys_sendmsg+0x5c8/0x938 [ 91.642854][ T6362] __sys_sendmsg+0x288/0x374 [ 91.643584][ T6362] __arm64_sys_sendmsg+0x80/0x94 [ 91.644402][ T6362] invoke_syscall+0x98/0x2b4 [ 91.645154][ T6362] el0_svc_common+0x138/0x258 [ 91.645907][ T6362] do_el0_svc+0x58/0x130 [ 91.646620][ T6362] el0_svc+0x58/0x128 [ 91.647319][ T6362] el0t_64_sync_handler+0x84/0xf0 [ 91.648123][ T6362] el0t_64_sync+0x18c/0x190 [ 92.632355][ T6376] netlink: 12 bytes leftover after parsing attributes in process `syz.5.516'. [ 92.700467][ T6376] netlink: 4 bytes leftover after parsing attributes in process `syz.5.516'. [ 92.702870][ T6376] netlink: 4 bytes leftover after parsing attributes in process `syz.5.516'. [ 92.711644][ T6381] netlink: 'syz.1.518': attribute type 11 has an invalid length. [ 92.712919][ T6381] netlink: 8 bytes leftover after parsing attributes in process `syz.1.518'. [ 92.745185][ T6376] loop5: detected capacity change from 0 to 512 [ 92.770659][ T6376] syz.5.516: attempt to access beyond end of device [ 92.770659][ T6376] loop5: rw=0, sector=17179852721, nr_sectors = 1 limit=512 [ 92.781938][ T6376] FAT-fs (loop5): error, invalid access to FAT (entry 0x0fffff00) [ 92.783418][ T6376] FAT-fs (loop5): Filesystem has been set read-only [ 92.790691][ T6376] FAT-fs (loop5): error, invalid access to FAT (entry 0x0fffff00) [ 92.954506][ T6392] FAULT_INJECTION: forcing a failure. [ 92.954506][ T6392] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 92.960171][ T6392] CPU: 1 PID: 6392 Comm: syz.5.522 Not tainted syzkaller #0 [ 92.961429][ T6392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 92.963178][ T6392] Call trace: [ 92.963755][ T6392] dump_backtrace+0x1c0/0x1ec [ 92.964498][ T6392] show_stack+0x2c/0x3c [ 92.965180][ T6392] __dump_stack+0x30/0x40 [ 92.965864][ T6392] dump_stack_lvl+0xf4/0x15c [ 92.966537][ T6392] dump_stack+0x1c/0x5c [ 92.967172][ T6392] should_fail_ex+0x3c0/0x518 [ 92.967928][ T6392] should_fail+0x14/0x24 [ 92.968591][ T6392] should_fail_usercopy+0x20/0x30 [ 92.969471][ T6392] bpf_test_init+0xec/0x254 [ 92.970230][ T6392] bpf_prog_test_run_skb+0x174/0xef0 [ 92.971111][ T6392] bpf_prog_test_run+0x2dc/0x360 [ 92.971916][ T6392] __sys_bpf+0x504/0x660 [ 92.972594][ T6392] __arm64_sys_bpf+0x80/0x98 [ 92.973416][ T6392] invoke_syscall+0x98/0x2b4 [ 92.974093][ T6392] el0_svc_common+0x138/0x258 [ 92.974846][ T6392] do_el0_svc+0x58/0x130 [ 92.975498][ T6392] el0_svc+0x58/0x128 [ 92.976128][ T6392] el0t_64_sync_handler+0x84/0xf0 [ 92.976880][ T6392] el0t_64_sync+0x18c/0x190 [ 93.214553][ T6403] hub 8-0:1.0: USB hub found [ 93.215743][ T6403] hub 8-0:1.0: 8 ports detected [ 94.115933][ T6390] loop2: detected capacity change from 0 to 32768 [ 94.292742][ T6412] netlink: 16 bytes leftover after parsing attributes in process `syz.5.526'. [ 94.373105][ T6420] hub 8-0:1.0: USB hub found [ 94.374292][ T6420] hub 8-0:1.0: 8 ports detected [ 95.104324][ T6390] XFS (loop2): Mounting V5 Filesystem [ 95.605955][ T6390] XFS (loop2): Ending clean mount [ 95.615779][ T6390] XFS (loop2): Quotacheck needed: Please wait. [ 95.641497][ T6390] XFS (loop2): Quotacheck: Done. [ 96.424606][ T4321] XFS (loop2): Unmounting Filesystem [ 97.637185][ T6458] hub 8-0:1.0: USB hub found [ 97.655289][ T6458] hub 8-0:1.0: 8 ports detected [ 98.120710][ T6474] hub 8-0:1.0: USB hub found [ 98.121928][ T6474] hub 8-0:1.0: 8 ports detected [ 99.655280][ T6489] loop5: detected capacity change from 0 to 32768 [ 99.678301][ T6489] XFS (loop5): Mounting V5 Filesystem [ 99.744972][ T6512] hub 8-0:1.0: USB hub found [ 99.746133][ T6512] hub 8-0:1.0: 8 ports detected [ 100.043230][ T6516] FAULT_INJECTION: forcing a failure. [ 100.043230][ T6516] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 100.045197][ T6516] CPU: 1 PID: 6516 Comm: syz.3.553 Not tainted syzkaller #0 [ 100.046303][ T6516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 100.047831][ T6516] Call trace: [ 100.048333][ T6516] dump_backtrace+0x1c0/0x1ec [ 100.049071][ T6516] show_stack+0x2c/0x3c [ 100.049734][ T6516] __dump_stack+0x30/0x40 [ 100.050427][ T6516] dump_stack_lvl+0xf4/0x15c [ 100.051118][ T6516] dump_stack+0x1c/0x5c [ 100.051737][ T6516] should_fail_ex+0x3c0/0x518 [ 100.052449][ T6516] should_fail+0x14/0x24 [ 100.053155][ T6516] should_fail_usercopy+0x20/0x30 [ 100.053922][ T6516] copy_from_sockptr_offset+0x8c/0x1e8 [ 100.054883][ T6516] do_tcp_getsockopt+0x13ac/0x1dc4 [ 100.055679][ T6516] tcp_getsockopt+0x6c/0xe8 [ 100.056376][ T6516] sock_common_getsockopt+0xa8/0xc4 [ 100.057250][ T6516] __sys_getsockopt+0x1e0/0x478 [ 100.058033][ T6516] __arm64_sys_getsockopt+0xb8/0xd4 [ 100.058933][ T6516] invoke_syscall+0x98/0x2b4 [ 100.059670][ T6516] el0_svc_common+0x138/0x258 [ 100.060396][ T6516] do_el0_svc+0x58/0x130 [ 100.061035][ T6516] el0_svc+0x58/0x128 [ 100.061665][ T6516] el0t_64_sync_handler+0x84/0xf0 [ 100.062497][ T6516] el0t_64_sync+0x18c/0x190 [ 100.085514][ T6489] XFS (loop5): Ending clean mount [ 100.101651][ T6489] XFS (loop5): Quotacheck needed: Please wait. [ 100.115245][ T6489] XFS (loop5): Quotacheck: Done. [ 100.183901][ T6500] loop1: detected capacity change from 0 to 40427 [ 100.206237][ T6500] F2FS-fs (loop1): Invalid SB checksum offset: 0 [ 100.207530][ T6500] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock [ 100.216791][ T6500] F2FS-fs (loop1): invalid crc value [ 100.317162][ T6500] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 100.343393][ T6500] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0 [ 100.344570][ T6500] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 100.618031][ T6528] hub 8-0:1.0: USB hub found [ 100.619606][ T6528] hub 8-0:1.0: 8 ports detected [ 100.844382][ T4325] syz-executor: attempt to access beyond end of device [ 100.844382][ T4325] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 101.253346][ T4789] XFS (loop5): Unmounting Filesystem [ 102.732873][ T6546] hub 8-0:1.0: USB hub found [ 102.734425][ T6546] hub 8-0:1.0: 8 ports detected [ 103.425040][ T6566] hub 8-0:1.0: USB hub found [ 103.426267][ T6566] hub 8-0:1.0: 8 ports detected [ 104.314895][ T6569] loop5: detected capacity change from 0 to 4096 [ 104.348610][ T6569] __ntfs_warning: 9 callbacks suppressed [ 104.348622][ T6569] ntfs: (device loop5): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 104.379732][ T6569] ntfs: (device loop5): ntfs_read_locked_inode(): Corrupt standard information attribute in inode. [ 104.381397][ T6569] ntfs: (device loop5): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 104.383459][ T6569] ntfs: (device loop5): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 104.386225][ T6569] ntfs: volume version 3.1. [ 104.398148][ T6580] overlayfs: unrecognized mount option "show_sys_files=no" or missing value [ 104.482559][ T6582] hub 8-0:1.0: USB hub found [ 104.483726][ T6582] hub 8-0:1.0: 8 ports detected [ 104.751679][ T5387] ntfs: (device loop5): ntfs_write_block(): Writing beyond initialized size is not supported yet. Sorry. [ 104.758816][ T4789] ntfs: (device loop5): ntfs_put_super(): Volume has errors. Leaving volume marked dirty. Run chkdsk. [ 105.024494][ T6584] loop4: detected capacity change from 0 to 32768 [ 105.049934][ T6584] XFS (loop4): Mounting V5 Filesystem [ 105.119455][ T6606] hub 8-0:1.0: USB hub found [ 105.120684][ T6606] hub 8-0:1.0: 8 ports detected [ 105.455291][ T6584] XFS (loop4): Ending clean mount [ 105.457447][ T6584] XFS (loop4): Quotacheck needed: Please wait. [ 105.476249][ T6584] XFS (loop4): Quotacheck: Done. [ 107.178671][ T6624] hub 8-0:1.0: USB hub found [ 107.179768][ T6624] hub 8-0:1.0: 8 ports detected [ 107.676026][ T6626] loop3: detected capacity change from 0 to 512 [ 107.683036][ T4330] XFS (loop4): Unmounting Filesystem [ 107.697016][ T6626] EXT2-fs (loop3): nobh option not supported [ 108.191998][ T6635] hub 8-0:1.0: USB hub found [ 108.225224][ T6635] hub 8-0:1.0: 8 ports detected [ 108.332464][ T6626] EXT2-fs (loop3): warning: mounting ext3 filesystem as ext2 [ 108.527789][ T6638] FAULT_INJECTION: forcing a failure. [ 108.527789][ T6638] name failslab, interval 1, probability 0, space 0, times 0 [ 108.529986][ T6638] CPU: 0 PID: 6638 Comm: syz.5.586 Not tainted syzkaller #0 [ 108.531114][ T6638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 108.532581][ T6638] Call trace: [ 108.533054][ T6638] dump_backtrace+0x1c0/0x1ec [ 108.533770][ T6638] show_stack+0x2c/0x3c [ 108.534425][ T6638] __dump_stack+0x30/0x40 [ 108.535101][ T6638] dump_stack_lvl+0xf4/0x15c [ 108.535806][ T6638] dump_stack+0x1c/0x5c [ 108.536504][ T6638] should_fail_ex+0x3c0/0x518 [ 108.537231][ T6638] __should_failslab+0xc0/0x120 [ 108.537970][ T6638] should_failslab+0x10/0x28 [ 108.538700][ T6638] kmem_cache_alloc_node+0x8c/0x33c [ 108.539496][ T6638] __alloc_skb+0x128/0x714 [ 108.540179][ T6638] netlink_sendmsg+0x52c/0x9c0 [ 108.540910][ T6638] ____sys_sendmsg+0x5c8/0x938 [ 108.541615][ T6638] __sys_sendmsg+0x288/0x374 [ 108.542332][ T6638] __arm64_sys_sendmsg+0x80/0x94 [ 108.543058][ T6638] invoke_syscall+0x98/0x2b4 [ 108.543719][ T6638] el0_svc_common+0x138/0x258 [ 108.544418][ T6638] do_el0_svc+0x58/0x130 [ 108.545048][ T6638] el0_svc+0x58/0x128 [ 108.545712][ T6638] el0t_64_sync_handler+0x84/0xf0 [ 108.546562][ T6638] el0t_64_sync+0x18c/0x190 [ 110.028139][ T6651] hub 8-0:1.0: USB hub found [ 110.030010][ T6651] hub 8-0:1.0: 8 ports detected [ 111.007471][ T6673] hub 8-0:1.0: USB hub found [ 111.009063][ T6673] hub 8-0:1.0: 8 ports detected [ 111.296723][ T6669] loop4: detected capacity change from 0 to 32768 [ 111.319970][ T6669] JBD2: Ignoring recovery information on journal [ 111.333753][ T6669] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 111.983910][ T6688] hub 8-0:1.0: USB hub found [ 111.985202][ T6688] hub 8-0:1.0: 8 ports detected [ 112.418143][ T6695] loop2: detected capacity change from 0 to 512 [ 112.422517][ T6695] EXT2-fs (loop2): nobh option not supported [ 112.736716][ T6695] EXT2-fs (loop2): warning: mounting ext3 filesystem as ext2 [ 113.442834][ T6712] hub 8-0:1.0: USB hub found [ 113.443982][ T6712] hub 8-0:1.0: 8 ports detected [ 115.228904][ T4330] ocfs2: Unmounting device (7,4) on (node local) [ 117.300176][ T6731] hub 8-0:1.0: USB hub found [ 117.302685][ T6731] hub 8-0:1.0: 8 ports detected [ 119.537699][ T6753] hub 8-0:1.0: USB hub found [ 119.538847][ T6753] hub 8-0:1.0: 8 ports detected [ 119.677334][ T6754] No such timeout policy "syz1" [ 120.116595][ T6769] loop4: detected capacity change from 0 to 512 [ 120.132555][ T6769] EXT2-fs (loop4): nobh option not supported [ 120.147383][ T6769] EXT2-fs (loop4): warning: mounting ext3 filesystem as ext2 [ 120.149494][ T6772] FAULT_INJECTION: forcing a failure. [ 120.149494][ T6772] name failslab, interval 1, probability 0, space 0, times 0 [ 120.151650][ T6772] CPU: 0 PID: 6772 Comm: syz.1.623 Not tainted syzkaller #0 [ 120.152787][ T6772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 120.154413][ T6772] Call trace: [ 120.154915][ T6772] dump_backtrace+0x1c0/0x1ec [ 120.155637][ T6772] show_stack+0x2c/0x3c [ 120.156287][ T6772] __dump_stack+0x30/0x40 [ 120.157034][ T6772] dump_stack_lvl+0xf4/0x15c [ 120.157765][ T6772] dump_stack+0x1c/0x5c [ 120.158452][ T6772] should_fail_ex+0x3c0/0x518 [ 120.159293][ T6772] __should_failslab+0xc0/0x120 [ 120.160078][ T6772] should_failslab+0x10/0x28 [ 120.160805][ T6772] kmem_cache_alloc_node+0x8c/0x33c [ 120.161673][ T6772] __alloc_skb+0x128/0x714 [ 120.162408][ T6772] tcp_stream_alloc_skb+0x48/0x2cc [ 120.163271][ T6772] tcp_sendmsg_locked+0x980/0x3238 [ 120.164107][ T6772] tcp_sendmsg+0x40/0x64 [ 120.164796][ T6772] inet_sendmsg+0x154/0x284 [ 120.165537][ T6772] ____sys_sendmsg+0x5c8/0x938 [ 120.166318][ T6772] __sys_sendmsg+0x288/0x374 [ 120.167127][ T6772] __arm64_sys_sendmsg+0x80/0x94 [ 120.167921][ T6772] invoke_syscall+0x98/0x2b4 [ 120.168660][ T6772] el0_svc_common+0x138/0x258 [ 120.169389][ T6772] do_el0_svc+0x58/0x130 [ 120.170067][ T6772] el0_svc+0x58/0x128 [ 120.170713][ T6772] el0t_64_sync_handler+0x84/0xf0 [ 120.171517][ T6772] el0t_64_sync+0x18c/0x190 [ 120.242817][ T6775] hub 8-0:1.0: USB hub found [ 120.243775][ T6775] hub 8-0:1.0: 8 ports detected [ 123.017103][ T6795] hub 8-0:1.0: USB hub found [ 123.019520][ T6795] hub 8-0:1.0: 8 ports detected [ 125.105380][ T6819] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 125.178922][ T6819] FAULT_INJECTION: forcing a failure. [ 125.178922][ T6819] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 125.201687][ T6819] CPU: 1 PID: 6819 Comm: syz.4.631 Not tainted syzkaller #0 [ 125.202889][ T6819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 125.204365][ T6819] Call trace: [ 125.204875][ T6819] dump_backtrace+0x1c0/0x1ec [ 125.205605][ T6819] show_stack+0x2c/0x3c [ 125.206213][ T6819] __dump_stack+0x30/0x40 [ 125.206853][ T6819] dump_stack_lvl+0xf4/0x15c [ 125.207588][ T6819] dump_stack+0x1c/0x5c [ 125.208285][ T6819] should_fail_ex+0x3c0/0x518 [ 125.209110][ T6819] should_fail+0x14/0x24 [ 125.209814][ T6819] should_fail_usercopy+0x20/0x30 [ 125.210658][ T6819] ____sys_sendmsg+0x28c/0x938 [ 125.211447][ T6819] __sys_sendmmsg+0x344/0x834 [ 125.212198][ T6819] __arm64_sys_sendmmsg+0xa0/0xbc [ 125.212978][ T6819] invoke_syscall+0x98/0x2b4 [ 125.213762][ T6819] el0_svc_common+0x138/0x258 [ 125.214540][ T6819] do_el0_svc+0x58/0x130 [ 125.215232][ T6819] el0_svc+0x58/0x128 [ 125.215855][ T6819] el0t_64_sync_handler+0x84/0xf0 [ 125.216678][ T6819] el0t_64_sync+0x18c/0x190 [ 125.264363][ T6827] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 125.337545][ T6837] loop5: detected capacity change from 0 to 512 [ 125.347381][ T6831] FAULT_INJECTION: forcing a failure. [ 125.347381][ T6831] name failslab, interval 1, probability 0, space 0, times 0 [ 125.349239][ T6831] CPU: 1 PID: 6831 Comm: syz.1.633 Not tainted syzkaller #0 [ 125.350361][ T6831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 125.351911][ T6831] Call trace: [ 125.352407][ T6831] dump_backtrace+0x1c0/0x1ec [ 125.353131][ T6831] show_stack+0x2c/0x3c [ 125.353808][ T6831] __dump_stack+0x30/0x40 [ 125.354517][ T6831] dump_stack_lvl+0xf4/0x15c [ 125.355237][ T6831] dump_stack+0x1c/0x5c [ 125.355922][ T6831] should_fail_ex+0x3c0/0x518 [ 125.356700][ T6831] __should_failslab+0xc0/0x120 [ 125.357588][ T6831] should_failslab+0x10/0x28 [ 125.358389][ T6831] __kmem_cache_alloc_node+0x7c/0x314 [ 125.359274][ T6831] __kmalloc_node+0xdc/0x17c [ 125.360030][ T6831] memcg_alloc_slab_cgroups+0x90/0x160 [ 125.360907][ T6831] slab_post_alloc_hook+0xc0/0x430 [ 125.361718][ T6831] __kmem_cache_alloc_node+0x274/0x314 [ 125.362630][ T6831] __kmalloc_node+0xdc/0x17c [ 125.363365][ T6831] kvmalloc_node+0x88/0x1d4 [ 125.364132][ T6831] xt_alloc_table_info+0x54/0xc8 [ 125.364938][ T6831] do_ipt_set_ctl+0x740/0xb74 [ 125.365702][ T6831] nf_setsockopt+0x270/0x290 [ 125.366395][ T6831] ip_setsockopt+0x124/0x134 [ 125.367194][ T6831] udp_setsockopt+0xa4/0xbc [ 125.367960][ T6831] sock_common_setsockopt+0xb0/0xcc [ 125.368883][ T6831] __sys_setsockopt+0x2fc/0x50c [ 125.369717][ T6831] __arm64_sys_setsockopt+0xb8/0xd4 [ 125.370565][ T6831] invoke_syscall+0x98/0x2b4 [ 125.371286][ T6831] el0_svc_common+0x138/0x258 [ 125.372045][ T6831] do_el0_svc+0x58/0x130 [ 125.372704][ T6831] el0_svc+0x58/0x128 [ 125.373419][ T6831] el0t_64_sync_handler+0x84/0xf0 [ 125.374317][ T6831] el0t_64_sync+0x18c/0x190 [ 125.375231][ T6831] No such timeout policy "syz1" [ 125.386080][ T6837] EXT2-fs (loop5): nobh option not supported [ 125.387760][ T6837] EXT2-fs (loop5): warning: mounting ext3 filesystem as ext2 [ 125.472547][ T6840] loop4: detected capacity change from 0 to 8192 [ 125.482127][ T6840] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 125.484128][ T6840] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal [ 125.485568][ T6840] REISERFS (device loop4): using ordered data mode [ 125.486655][ T6840] reiserfs: using flush barriers [ 125.490043][ T6840] REISERFS warning (device loop4): sh-460 journal_init: journal header magic 49ce1e1e (device loop4) does not match to magic found in super block ce1e1e [ 125.566493][ T6854] hub 8-0:1.0: USB hub found [ 125.567765][ T6854] hub 8-0:1.0: 8 ports detected [ 125.885551][ T6860] netlink: 'syz.2.648': attribute type 21 has an invalid length. [ 125.887934][ T6860] IPv6: NLM_F_CREATE should be specified when creating new route [ 125.891399][ T6860] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 125.892895][ T6860] IPv6: NLM_F_CREATE should be set when creating new route [ 125.894090][ T6860] IPv6: NLM_F_CREATE should be set when creating new route [ 125.895374][ T6860] IPv6: NLM_F_CREATE should be set when creating new route [ 125.928757][ T2061] ieee802154 phy0 wpan0: encryption failed: -22 [ 125.930932][ T2061] ieee802154 phy1 wpan1: encryption failed: -22 [ 126.178201][ T6885] loop1: detected capacity change from 0 to 512 [ 126.198315][ T6885] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 1, start 00000101) [ 126.236030][ T6890] netlink: 44 bytes leftover after parsing attributes in process `syz.3.664'. [ 126.326423][ T6901] loop4: detected capacity change from 0 to 1024 [ 126.329902][ T6904] netlink: 40 bytes leftover after parsing attributes in process `syz.1.669'. [ 126.337751][ T6901] EXT4-fs: Ignoring removed bh option [ 126.374767][ T6901] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 126.436587][ T4330] EXT4-fs (loop4): unmounting filesystem. [ 126.492177][ T6924] loop5: detected capacity change from 0 to 736 [ 127.039440][ T6920] netlink: 8 bytes leftover after parsing attributes in process `syz.1.676'. [ 127.096136][ T6939] device syzkaller0 entered promiscuous mode [ 127.281090][ T6954] loop3: detected capacity change from 0 to 512 [ 127.285817][ T6954] EXT4-fs: Ignoring removed bh option [ 127.290977][ T6954] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 127.384749][ T6958] loop2: detected capacity change from 0 to 1764 [ 128.445160][ T6954] EXT4-fs (loop3): 1 truncate cleaned up [ 128.452283][ T4312] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 128.454882][ T6954] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 128.533331][ T4333] EXT4-fs (loop3): unmounting filesystem. [ 128.575947][ T6972] loop5: detected capacity change from 0 to 1024 [ 128.625045][ T6972] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 128.646248][ T4789] EXT4-fs (loop5): unmounting filesystem. [ 128.673659][ T6980] netlink: 'syz.4.700': attribute type 12 has an invalid length. [ 128.675116][ T6980] netlink: 120 bytes leftover after parsing attributes in process `syz.4.700'. [ 128.745048][ T6984] netlink: 16 bytes leftover after parsing attributes in process `syz.3.695'. [ 128.751037][ T6984] netlink: 20 bytes leftover after parsing attributes in process `syz.3.695'. [ 129.055268][ T6987] device syzkaller0 entered promiscuous mode [ 129.713745][ T7017] loop1: detected capacity change from 0 to 512 [ 129.715621][ T7017] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 129.719772][ T7017] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 129.726114][ T7017] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2800: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 129.731906][ T7017] EXT4-fs (loop1): 1 truncate cleaned up [ 129.732914][ T7017] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 129.805963][ T4325] EXT4-fs (loop1): unmounting filesystem. [ 130.307640][ T7061] device syzkaller0 entered promiscuous mode [ 130.383941][ T7076] loop5: detected capacity change from 0 to 512 [ 130.404526][ T7076] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a816c018, mo2=0002] [ 130.405925][ T7076] System zones: 0-2, 18-18, 34-35 [ 130.406502][ T7082] loop3: detected capacity change from 0 to 512 [ 130.409237][ T7082] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 130.411687][ T7076] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 130.425867][ T7082] [ 130.426299][ T7082] ====================================================== [ 130.427344][ T7082] WARNING: possible circular locking dependency detected [ 130.428392][ T7082] syzkaller #0 Not tainted [ 130.429078][ T7082] ------------------------------------------------------ [ 130.430066][ T7082] syz.3.737/7082 is trying to acquire lock: [ 130.430942][ T7082] ffff0000d596eb98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x1b8/0x28b4 [ 130.432614][ T7082] [ 130.432614][ T7082] but task is already holding lock: [ 130.433738][ T7082] ffff0000f6286518 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x37c/0x784 [ 130.435437][ T7082] [ 130.435437][ T7082] which lock already depends on the new lock. [ 130.435437][ T7082] [ 130.437089][ T7082] [ 130.437089][ T7082] the existing dependency chain (in reverse order) is: [ 130.438491][ T7082] [ 130.438491][ T7082] -> #1 (&ei->xattr_sem){++++}-{3:3}: [ 130.439702][ T7082] down_write+0x5c/0x88 [ 130.440406][ T7082] ext4_destroy_inline_data+0x30/0x114 [ 130.441330][ T7082] ext4_writepages+0x430/0x28b4 [ 130.442229][ T7082] do_writepages+0x2b0/0x504 [ 130.443070][ T7082] filemap_fdatawrite_wbc+0x124/0x174 [ 130.443995][ T7082] file_write_and_wait_range+0x11c/0x1f4 [ 130.444965][ T7082] ext4_sync_file+0x210/0xc70 [ 130.445863][ T7082] vfs_fsync_range+0x168/0x188 [ 130.446815][ T7082] ext4_buffered_write_iter+0x47c/0x528 [ 130.447776][ T7082] ext4_file_write_iter+0x18c/0x1574 [ 130.448776][ T7082] do_iter_write+0x53c/0x940 [ 130.449568][ T7082] do_pwritev+0x1e8/0x338 [ 130.450342][ T7082] __arm64_sys_pwritev2+0xd4/0x108 [ 130.451293][ T7082] invoke_syscall+0x98/0x2b4 [ 130.452184][ T7082] el0_svc_common+0x138/0x258 [ 130.453041][ T7082] do_el0_svc+0x58/0x130 [ 130.453807][ T7082] el0_svc+0x58/0x128 [ 130.454529][ T7082] el0t_64_sync_handler+0x84/0xf0 [ 130.455400][ T7082] el0t_64_sync+0x18c/0x190 [ 130.456207][ T7082] [ 130.456207][ T7082] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 130.457483][ T7082] __lock_acquire+0x2880/0x6800 [ 130.458378][ T7082] lock_acquire+0x20c/0x63c [ 130.459217][ T7082] percpu_down_read+0x70/0x2a8 [ 130.460094][ T7082] ext4_writepages+0x1b8/0x28b4 [ 130.460954][ T7082] do_writepages+0x2b0/0x504 [ 130.461818][ T7082] __writeback_single_inode+0x164/0x1554 [ 130.462777][ T7082] writeback_single_inode+0x1cc/0x740 [ 130.463823][ T7082] write_inode_now+0x150/0x1cc [ 130.464739][ T7082] iput+0x5bc/0x7e4 [ 130.465474][ T7082] ext4_xattr_block_set+0x1454/0x2880 [ 130.466463][ T7082] ext4_expand_extra_isize_ea+0xe5c/0x17ac [ 130.467533][ T7082] __ext4_expand_extra_isize+0x298/0x358 [ 130.468586][ T7082] __ext4_mark_inode_dirty+0x3e4/0x784 [ 130.469568][ T7082] ext4_evict_inode+0xb64/0x1278 [ 130.470523][ T7082] evict+0x3e0/0x828 [ 130.471229][ T7082] iput+0x754/0x7e4 [ 130.471979][ T7082] ext4_process_orphan+0x240/0x2b4 [ 130.472865][ T7082] ext4_orphan_cleanup+0x920/0x1060 [ 130.473792][ T7082] ext4_fill_super+0x6188/0x660c [ 130.474643][ T7082] get_tree_bdev+0x358/0x544 [ 130.475443][ T7082] ext4_get_tree+0x28/0x38 [ 130.476232][ T7082] vfs_get_tree+0x90/0x274 [ 130.477069][ T7082] do_new_mount+0x228/0x810 [ 130.477877][ T7082] path_mount+0x5bc/0xe80 [ 130.478678][ T7082] __arm64_sys_mount+0x49c/0x59c [ 130.479563][ T7082] invoke_syscall+0x98/0x2b4 [ 130.480446][ T7082] el0_svc_common+0x138/0x258 [ 130.481387][ T7082] do_el0_svc+0x58/0x130 [ 130.482184][ T7082] el0_svc+0x58/0x128 [ 130.482958][ T7082] el0t_64_sync_handler+0x84/0xf0 [ 130.483890][ T7082] el0t_64_sync+0x18c/0x190 [ 130.484727][ T7082] [ 130.484727][ T7082] other info that might help us debug this: [ 130.484727][ T7082] [ 130.486369][ T7082] Possible unsafe locking scenario: [ 130.486369][ T7082] [ 130.487572][ T7082] CPU0 CPU1 [ 130.488438][ T7082] ---- ---- [ 130.489262][ T7082] lock(&ei->xattr_sem); [ 130.489957][ T7082] lock(&sbi->s_writepages_rwsem); [ 130.491221][ T7082] lock(&ei->xattr_sem); [ 130.492290][ T7082] lock(&sbi->s_writepages_rwsem); [ 130.493091][ T7082] [ 130.493091][ T7082] *** DEADLOCK *** [ 130.493091][ T7082] [ 130.494445][ T7082] 3 locks held by syz.3.737/7082: [ 130.495248][ T7082] #0: ffff0000d596c0e0 (&type->s_umount_key#26/1){+.+.}-{3:3}, at: alloc_super+0x1a4/0x800 [ 130.496919][ T7082] #1: ffff0000d596c650 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x3e0/0x1278 [ 130.498331][ T7082] #2: ffff0000f6286518 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x37c/0x784 [ 130.499938][ T7082] [ 130.499938][ T7082] stack backtrace: [ 130.500816][ T7082] CPU: 1 PID: 7082 Comm: syz.3.737 Not tainted syzkaller #0 [ 130.501945][ T7082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 130.503461][ T7082] Call trace: [ 130.503945][ T7082] dump_backtrace+0x1c0/0x1ec [ 130.504646][ T7082] show_stack+0x2c/0x3c [ 130.505279][ T7082] __dump_stack+0x30/0x40 [ 130.505914][ T7082] dump_stack_lvl+0xf4/0x15c [ 130.506567][ T7082] dump_stack+0x1c/0x5c [ 130.507261][ T7082] print_circular_bug+0x148/0x1b0 [ 130.508108][ T7082] check_noncircular+0x264/0x2f8 [ 130.508944][ T7082] __lock_acquire+0x2880/0x6800 [ 130.509785][ T7082] lock_acquire+0x20c/0x63c [ 130.510513][ T7082] percpu_down_read+0x70/0x2a8 [ 130.511245][ T7082] ext4_writepages+0x1b8/0x28b4 [ 130.512015][ T7082] do_writepages+0x2b0/0x504 [ 130.512720][ T7082] __writeback_single_inode+0x164/0x1554 [ 130.513605][ T7082] writeback_single_inode+0x1cc/0x740 [ 130.514485][ T7082] write_inode_now+0x150/0x1cc [ 130.515241][ T7082] iput+0x5bc/0x7e4 [ 130.515845][ T7082] ext4_xattr_block_set+0x1454/0x2880 [ 130.516691][ T7082] ext4_expand_extra_isize_ea+0xe5c/0x17ac [ 130.517613][ T7082] __ext4_expand_extra_isize+0x298/0x358 [ 130.518555][ T7082] __ext4_mark_inode_dirty+0x3e4/0x784 [ 130.519466][ T7082] ext4_evict_inode+0xb64/0x1278 [ 130.520357][ T7082] evict+0x3e0/0x828 [ 130.520991][ T7082] iput+0x754/0x7e4 [ 130.521672][ T7082] ext4_process_orphan+0x240/0x2b4 [ 130.522532][ T7082] ext4_orphan_cleanup+0x920/0x1060 [ 130.523401][ T7082] ext4_fill_super+0x6188/0x660c [ 130.524210][ T7082] get_tree_bdev+0x358/0x544 [ 130.525009][ T7082] ext4_get_tree+0x28/0x38 [ 130.525724][ T7082] vfs_get_tree+0x90/0x274 [ 130.526490][ T7082] do_new_mount+0x228/0x810 [ 130.527230][ T7082] path_mount+0x5bc/0xe80 [ 130.527972][ T7082] __arm64_sys_mount+0x49c/0x59c [ 130.528770][ T7082] invoke_syscall+0x98/0x2b4 [ 130.529559][ T7082] el0_svc_common+0x138/0x258 [ 130.530343][ T7082] do_el0_svc+0x58/0x130 [ 130.531030][ T7082] el0_svc+0x58/0x128 [ 130.531683][ T7082] el0t_64_sync_handler+0x84/0xf0 [ 130.532520][ T7082] el0t_64_sync+0x18c/0x190 [ 130.535281][ T7082] ------------[ cut here ]------------ [ 130.536188][ T7082] EA inode 11 i_nlink=0 [ 130.536272][ T7082] WARNING: CPU: 0 PID: 7082 at fs/ext4/xattr.c:1006 ext4_xattr_inode_update_ref+0x474/0x4b8 [ 130.536859][ T4789] EXT4-fs (loop5): unmounting filesystem. [ 130.536950][ T7082] Modules linked in: [ 130.536962][ T7082] CPU: 0 PID: 7082 Comm: syz.3.737 Not tainted syzkaller #0 [ 130.536981][ T7082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026 [ 130.542960][ T7082] pstate: 62400005 (nZCv daif +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 130.544198][ T7082] pc : ext4_xattr_inode_update_ref+0x474/0x4b8 [ 130.545147][ T7082] lr : ext4_xattr_inode_update_ref+0x474/0x4b8 [ 130.546171][ T7082] sp : ffff800021e86dc0 [ 130.546893][ T7082] x29: ffff800021e86e70 x28: 0000000000000000 x27: dfff800000000000 [ 130.548206][ T7082] x26: ffff800021e86de0 x25: ffff7000043d0dbc x24: 0000000000000000 [ 130.549590][ T7082] x23: ffff800017bea000 x22: ffff0000d8629700 x21: 0000000000000000 [ 130.550867][ T7082] x20: 0000000000000001 x19: ffff0000d86296c0 x18: ffff800011b9bf60 [ 130.552165][ T7082] x17: 0000000000000000 x16: ffff80000804309c x15: 0000000000000002 [ 130.553462][ T7082] x14: 0000000000000001 x13: 1ffff000043d0d08 x12: 0000000000080000 [ 130.554794][ T7082] x11: 000000000007af2e x10: ffff80002a493000 x9 : 00b7f1debb242f00 [ 130.556168][ T7082] x8 : 00b7f1debb242f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 130.557502][ T7082] x5 : ffff800021e86858 x4 : ffff800015304cc0 x3 : ffff800008319678 [ 130.558824][ T7082] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 130.560135][ T7082] Call trace: [ 130.560650][ T7082] ext4_xattr_inode_update_ref+0x474/0x4b8 [ 130.561594][ T7082] ext4_xattr_set_entry+0x918/0x15a0 [ 130.562417][ T7082] ext4_xattr_ibody_set+0x204/0x5f8 [ 130.563220][ T7082] ext4_expand_extra_isize_ea+0xea4/0x17ac [ 130.564197][ T7082] __ext4_expand_extra_isize+0x298/0x358 [ 130.565042][ T7082] __ext4_mark_inode_dirty+0x3e4/0x784 [ 130.566003][ T7082] ext4_evict_inode+0xb64/0x1278 [ 130.566847][ T7082] evict+0x3e0/0x828 [ 130.567479][ T7082] iput+0x754/0x7e4 [ 130.568064][ T7082] ext4_process_orphan+0x240/0x2b4 [ 130.568909][ T7082] ext4_orphan_cleanup+0x920/0x1060 [ 130.569756][ T7082] ext4_fill_super+0x6188/0x660c [ 130.570595][ T7082] get_tree_bdev+0x358/0x544 [ 130.571363][ T7082] ext4_get_tree+0x28/0x38 [ 130.572061][ T7082] vfs_get_tree+0x90/0x274 [ 130.572746][ T7082] do_new_mount+0x228/0x810 [ 130.573450][ T7082] path_mount+0x5bc/0xe80 [ 130.574171][ T7082] __arm64_sys_mount+0x49c/0x59c [ 130.574960][ T7082] invoke_syscall+0x98/0x2b4 [ 130.575672][ T7082] el0_svc_common+0x138/0x258 [ 130.576493][ T7082] do_el0_svc+0x58/0x130 [ 130.577163][ T7082] el0_svc+0x58/0x128 [ 130.577813][ T7082] el0t_64_sync_handler+0x84/0xf0 [ 130.578657][ T7082] el0t_64_sync+0x18c/0x190 [ 130.579418][ T7082] irq event stamp: 3487 [ 130.580105][ T7082] hardirqs last enabled at (3487): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 130.581853][ T7082] hardirqs last disabled at (3486): [] _raw_spin_lock_irqsave+0xa4/0xb0 [ 130.583413][ T7082] softirqs last enabled at (2598): [] handle_softirqs+0xaec/0xc60 [ 130.584893][ T7082] softirqs last disabled at (2537): [] __do_softirq+0x14/0x20 [ 130.586241][ T7082] ---[ end trace 0000000000000000 ]--- [ 130.587107][ C0] vkms_vblank_simulate: vblank timer overrun [ 130.590983][ T7082] EXT4-fs error (device loop3): ext4_free_inode:355: comm syz.3.737: bit already cleared for inode 11 [ 130.593953][ T7082] EXT4-fs error (device loop3) in ext4_free_inode:362: Corrupt filesystem [ 130.609338][ T7082] EXT4-fs error (device loop3) in ext4_free_inode:362: Corrupt filesystem [ 130.614657][ T7082] EXT4-fs (loop3): 1 orphan inode deleted [ 130.615596][ T7082] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 130.620000][ T7082] EXT4-fs warning (device loop3): ext4_resize_begin:84: There are errors in the filesystem, so online resizing is not allowed [ 130.631892][ T4333] EXT4-fs (loop3): unmounting filesystem.