last executing test programs:

4.459638452s ago: executing program 1 (id=1859):
socket$inet6(0xa, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x10)
r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x42000, 0x0)
r1 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x4000000, {0x0, 0x0, 0x0, r2, {0xe, 0x3}, {}, {0x5, 0x2}}}, 0x24}}, 0x40004)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
getpid()
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x3)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r6}, &(0x7f0000000800), &(0x7f0000000840)=r7}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000001640)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x8c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$PIO_UNIMAPCLR(r5, 0x4b68, 0x0)
recvmmsg(r3, &(0x7f0000000280), 0x3fffffffffffd17, 0x2, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r8, @ANYBLOB="00fbffffff000000b7080000000000007b8af8ff00000000bfa200000000040007020000f8ffffffb703000000000000b70400000000000085000000570000002b"], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r9}, 0x10)
ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82)
getpid()
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff108500000007000000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2.624102101s ago: executing program 2 (id=1895):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(0x0)
write(r1, &(0x7f0000000240)="94", 0x1)
tee(r0, 0xffffffffffffffff, 0x8f5, 0x0)

2.496839852s ago: executing program 2 (id=1897):
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x400}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000dc0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x6}, 0x18)
syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000500)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0xff, 0x56a, 0x300, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x8, 0xf0, 0x76, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x18, {0x9, 0x21, 0x800, 0xfb, 0x1, {0x22, 0x2d4}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0xc6, 0x6, 0xfd}}}}}]}}]}}, &(0x7f0000000b80)={0xa, &(0x7f0000000540)={0xa, 0x6, 0x310, 0x2, 0x12, 0x71, 0x20, 0x5}, 0x4b, &(0x7f0000000580)={0x5, 0xf, 0x4b, 0x5, [@ss_container_id={0x14, 0x10, 0x4, 0x7, "b9896e8972dd48e7dc455b1f128de8cd"}, @ext_cap={0x7, 0x10, 0x2, 0xa, 0x3, 0x4, 0x6}, @ss_container_id={0x14, 0x10, 0x4, 0x1, "937437b7fb46eb6243a56d5597b6f8ef"}, @ss_container_id={0x14, 0x10, 0x4, 0x9, "60e188cd24f8f43aebbcb171a4812909"}, @ptm_cap={0x3}]}, 0x8, [{0x4, &(0x7f0000000600)=@lang_id={0x4, 0x3, 0xc0a}}, {0x4, &(0x7f0000000640)=@lang_id={0x4, 0x3, 0x480a}}, {0xee, &(0x7f0000000680)=@string={0xee, 0x3, "918e74a24326c7e970ff860b2b52b9379b7684d422cf012eae6140be1b7442fc1543f97613d3dc14927961e019471682d78d9e19c689e72d590194a06216c2715b71607cbb556e8ee06e4ff246783eceaf68cee04bb1da90ecaf28ecbde13f50ca2252910540136aa26c1fbe2f0b9d5e94c9f821f31ace2a10152e3e26bb2589780c861d80e0daccbf30b7032dff9e56976077eefe70294a933334c322fa2db28b4e31997fa8b3ba5eaedaf0910b07fbc2eab888ea2b26a9483f89bab994a7b85ef9001fd3471ebc6db6c8603df397aa908bc82db8cb67fe503c55e64efd4440d4c2cdd95ec0a0093ad10dff"}}, {0x7c, &(0x7f00000007c0)=@string={0x7c, 0x3, "159a6ac2ed88e81bb47d85fead9a96680f728cdd32ab8eb84ee8082c29e7676ef8c9a14a5d30d095322a18015597c6aecd0df1427bddaa3a980be0cbe8f0e3aa57b36bc4d9db43538829a0a3c144008227936fd4e527806262d703023f2b8ef7ac793cbba4afcac84aaa8212987c1af61ed946ec70a88a829976"}}, {0x83, &(0x7f0000000a00)=@string={0x83, 0x3, "ff0d5558a792fd993f3f32d8c987d6455f07ceab205d2a1016ec366d621f4c770e7e86c61f3083e6bfc84b2c557ce9f9db23f325f773c3a3880f2488986f4ffcd1f8aac8c1bba48840fa7534fa6005a8017fb15c468b518a1b9f8ab4baed6170e3e1fe7c7fb29d8d5fba9c130dda2050b0da2f9e5ee5c8d8b7daabde582b462b1c"}}, {0x4, &(0x7f0000000840)=@lang_id={0x4, 0x3, 0x780c}}, {0x4, &(0x7f0000000980)=@lang_id={0x4, 0x3, 0x44e}}, {0xa4, &(0x7f0000000ac0)=@string={0xa4, 0x3, "a751a0bfc155c9651a1e566b9e876807fb172e35bf95e8cbdc1e8d5ca6c3ed5d64c6fd4755569001653f2d40ad70be08a24bee57808b4ce7d5b13349d9acd736a185a174fc6d0e19d719cc19e1c1bc1d6c4fbd63828e1fca4f55d5d4cbd017917af3fb16ee9f57ecc2589206667fdfe0f983692c83a78f13a01f4c20df09add2fd209435088a8411aa8d99842590a8e96efb411b8ebe63550fba91a5944a9961aa03"}}]})

1.98004622s ago: executing program 1 (id=1906):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x0, 0x1, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = socket(0x10, 0x3, 0x9)
sendmsg$NFT_BATCH(r1, 0x0, 0x0)
openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000002400), 0x1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xc, &(0x7f0000000240)=@assoc_value={<r5=>0x0}, &(0x7f00000002c0)=0x8)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r3, 0x84, 0x6d, &(0x7f0000000380)={r5}, &(0x7f0000000400)=0x8)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_GET_COALESCE(r8, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x14}}, 0x0)
getsockname$packet(r8, &(0x7f0000000200)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x8f)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c0000001000030400000006000000005dcc0300", @ANYRES32=r9, @ANYBLOB="71e79fd800000000140012800c0001006d616376746170001400028008000500", @ANYRES32=r10], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtfilter={0x2c, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x74, r9, {0xffe0}, {}, {0xa, 0x1}}, [@TCA_RATE={0x6, 0x5, {0x39, 0x1}}]}, 0x2c}, 0x1, 0xf0ffffffffffff, 0x0, 0x4004140}, 0x0)

1.923737841s ago: executing program 1 (id=1908):
r0 = socket(0x10, 0x3, 0x0)
readv(r0, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/163, 0xa3}], 0x1)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./bus\x00', 0x4010, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11ee, &(0x7f0000002480)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000000)=0x10000000000000, 0xffffff6a)
socket$key(0xf, 0x3, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
mq_open(&(0x7f0000000540)='@/$,^\x00', 0x2, 0x1, &(0x7f00000006c0)={0x605, 0x7fffffff, 0x0, 0x7fff})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b40500008000000061119c0000000000a6020000bf60cc1fdc9fa86b989a4c47"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2}, 0x48)
getpid()
mount$9p_fd(0x0, &(0x7f0000000840)='./bus\x00', &(0x7f0000000980), 0x404, &(0x7f0000000f40)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@directio}, {@msize={'msize', 0x3d, 0x14000000}}, {@ignoreqv}, {@mmap}, {@access_uid}], [{@fowner_eq}, {@context={'context', 0x3d, 'root'}}, {@dont_hash}, {@fowner_eq}, {@hash}, {@defcontext={'defcontext', 0x3d, 'system_u'}}, {@subj_role={'subj_role', 0x3d, '!:!}!)(-/-\''}}]}})
recvmsg$qrtr(r2, &(0x7f0000000380)={&(0x7f0000000080), 0xc, &(0x7f0000000100)=[{&(0x7f0000003680)=""/4096, 0x1000}, {&(0x7f0000000240)=""/250, 0xfa}, {&(0x7f0000000480)=""/140, 0x8c}], 0x3, &(0x7f0000000600)=[{0x90, 0x0, 0x0, ""/128}], 0x90, 0x2000}, 0x38, 0x40000040)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
r6 = add_key(&(0x7f00000001c0)='user\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)='9', 0x1, 0xffffffffffffffff)
keyctl$chown(0x4, r6, 0xee00, 0xffffffffffffffff)
keyctl$chown(0x4, r6, 0x0, 0x0)
syz_clone3(&(0x7f0000000580)={0x400, 0x0, 0x0, 0x0, {0x30}, 0x0, 0x0, 0x0, &(0x7f0000000340)=[0x0], 0x1}, 0x58)
statfs(&(0x7f0000000200)='.\x00', 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r7, &(0x7f00000001c0)=[{&(0x7f0000000400)="ba", 0x1}], 0x1, 0xe7b, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000a00)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="c0a201"], 0x24}}, 0x0)

1.917899981s ago: executing program 4 (id=1909):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000280)=[{&(0x7f0000000a40)="2e9b3d0007e03dd65193dfb6c575963f86ddf0", 0x13}, {0x0}], 0x2)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, &(0x7f0000000180)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
syz_usb_connect(0x0, 0x0, 0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x403}}]})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @rand_addr, 0x2}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
r2 = fcntl$dupfd(r1, 0x0, r1)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4)
sendmsg$IPVS_CMD_GET_CONFIG(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[], 0x14}}, 0x4000)
sendmsg$WG_CMD_GET_DEVICE(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000002e80)={&(0x7f0000000340)=ANY=[], 0x2b08}}, 0x4004006)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x2, &(0x7f0000000100)=@ccm_128={{0x304}, "2697312e4e898ca7", "35e23ca3a988def7dfbd438c536346cd", "11398f4a", "50cc97386065eda9"}, 0x28)
recvmmsg(r1, &(0x7f0000001040)=[{{0x0, 0x0, 0x0}, 0x2004}, {{0x0, 0x0, &(0x7f0000000b80)=[{&(0x7f00000007c0)=""/106, 0x6a}], 0x1}, 0x4}], 0x2, 0x40000002, 0x0)

1.879868812s ago: executing program 2 (id=1910):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f00000001c0)='GPL\x00'}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r0}, 0x10)
r2 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000180), 0x1, 0x553, &(0x7f0000001080)="$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")
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1b00000000000000000000000001000000000000", @ANYRES32, @ANYBLOB="0000000000000000000004000000000000000000", @ANYRES32=0x0, @ANYRES32], 0x50)
r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0300000004000000040000000a00000008000000", @ANYRES32, @ANYBLOB="0600"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0400"/28], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x4)
r6 = dup2(r1, r2)
r7 = socket$inet(0x2, 0x1, 0x0)
r8 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_SIGNAL_INFO(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000180)={0x10, 0x3f2, 0x100, 0x70bd27, 0x5f5}, 0x10}, 0x1, 0x0, 0x0, 0x4000000}, 0x48080)
setsockopt$inet_opts(r7, 0x0, 0x4, 0x0, 0x0)
bind$inet(r7, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x38}}, 0x10)
connect$inet(r7, &(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x39}}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f00000003c0)={{0x1, 0x1, 0x18, <r9=>r1}, './file1\x00'})
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r10}, 0x18)
r11 = socket$inet6(0xa, 0x1, 0x0)
r12 = socket(0x15, 0x5, 0x0)
bind$bt_hci(r12, &(0x7f0000000000)={0x1f, 0x3, 0x3}, 0x6)
r13 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_mreq(r13, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
r14 = socket$nl_route(0x10, 0x3, 0x0)
r15 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r15, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r16=>0x0})
sendmsg$nl_route(r14, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r16], 0x20}}, 0x0)
setsockopt$inet6_mreq(r13, 0x29, 0x1c, &(0x7f00000001c0)={@remote}, 0x14)
setsockopt$IP6T_SO_SET_REPLACE(r11, 0x29, 0x40, &(0x7f00000003c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x308, 0x130, 0x12, 0x60a, 0x600, 0x202, 0x238, 0x2e8, 0x2e8, 0x238, 0x2c0, 0x4, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @dev}, @mcast2, [0x4000000], [0x4000000], 'veth1_to_bond\x00', 'xfrm0\x00'}, 0x0, 0x108, 0x130, 0x0, {}, [@common=@unspec=@statistic={{0x38}}, @common=@inet=@socket2={{0x28}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff}, {0xffffffffffffffff, 0xf9}}}}, {{@ipv6={@private2, @loopback, [], [], 'vxcan1\x00', 'geneve0\x00'}, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@empty}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x368)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x18, 0x30, &(0x7f00000008c0)=ANY=[@ANYBLOB="1800000001000100000000000100000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000064628000fcffffff18120000", @ANYRES32=r4, @ANYBLOB="000000000000000003dc65300500000018330000020000000000000000000000b7080000000000007b8af8ff00000000b70800008f8900007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b705004d38019c7d63fd5500a5000000186400000a0000000000000090400000852000000200000085100000feffffff181b0000d13c3d947c0ab7d9f53ecd13e4670cf26ddecabb60561611310655bfa92674b6337ccbea5e82019ae574ecee1f0edd27a39e66b8968405f3510cb7e4b92e05c0cb8fe43b9a95b3b6dc8f6b27a5abe4c032b3a302847c464764fe7e7dadbd17b66bd5ea256a53d19cd30e066bf84a4e6024b941379fc435b0ff2f545333d615de49e2c160494c", @ANYRES32=r6, @ANYBLOB="00000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000020000008500000006000000bf91000000000000b7020000010000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000380)='syzkaller\x00', 0x60, 0xc4, &(0x7f0000000440)=""/196, 0x41100, 0x2, '\x00', 0x0, 0x0, r9, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000540)={0x1, 0x6, 0xfffffff9, 0x4}, 0x10, 0x0, 0x0, 0x6, 0x0, &(0x7f0000000740)=[{0x1, 0x1, 0xd}, {0x3, 0x2, 0x2, 0x2}, {0x5, 0x1, 0x3, 0xb}, {0x4, 0x2, 0x10, 0x212620bfb8bd57f8}, {0x2, 0x4, 0x10, 0x2}, {0x4, 0x4, 0x1, 0x1}], 0x10, 0xa438}, 0x94)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)

1.826947882s ago: executing program 0 (id=1912):
r0 = socket(0x10, 0x3, 0x0)
readv(r0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./bus\x00', 0x4010, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11ee, &(0x7f0000002480)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000000)=0x10000000000000, 0xffffff6a)
socket$key(0xf, 0x3, 0x2)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
mq_open(&(0x7f0000000540)='@/$,^\x00', 0x2, 0x1, &(0x7f00000006c0)={0x605, 0x7fffffff, 0x0, 0x7fff})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b40500008000000061119c0000000000a6020000bf60cc1fdc9fa86b989a4c47"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2}, 0x48)
r4 = getpid()
fcntl$lock(r3, 0x24, &(0x7f0000000000)={0x1, 0x2, 0x0, 0x0, r4})
mount$9p_fd(0x0, &(0x7f0000000840)='./bus\x00', &(0x7f0000000980), 0x404, &(0x7f0000000f40)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@directio}, {@msize={'msize', 0x3d, 0x14000000}}, {@ignoreqv}, {@mmap}, {@access_uid}], [{@fowner_eq}, {@context={'context', 0x3d, 'root'}}, {@dont_hash}, {@fowner_eq}, {@hash}, {@defcontext={'defcontext', 0x3d, 'system_u'}}, {@subj_role={'subj_role', 0x3d, '!:!}!)(-/-\''}}]}})
recvmsg$qrtr(r3, &(0x7f0000000380)={&(0x7f0000000080), 0xc, &(0x7f0000000100)=[{&(0x7f0000003680)=""/4096, 0x1000}, {&(0x7f0000000240)=""/250, 0xfa}, {&(0x7f0000000480)=""/140, 0x8c}], 0x3, &(0x7f0000000600)=[{0x90, 0x0, 0x0, ""/128}], 0x90, 0x2000}, 0x38, 0x40000040)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r5, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
r8 = add_key(&(0x7f00000001c0)='user\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)='9', 0x1, 0xffffffffffffffff)
keyctl$chown(0x4, r8, 0xee00, 0xffffffffffffffff)
keyctl$chown(0x4, r8, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000a00)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_clone3(&(0x7f0000000580)={0x400, 0x0, 0x0, 0x0, {0x30}, 0x0, 0x0, 0x0, &(0x7f0000000340)=[0x0], 0x1}, 0x58)
statfs(&(0x7f0000000200)='.\x00', 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r9, &(0x7f00000001c0)=[{&(0x7f0000000400)="ba", 0x1}], 0x1, 0xe7b, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000a00)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="c0a201"], 0x24}}, 0x0)

1.768122164s ago: executing program 2 (id=1913):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10138, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000030000850000001b000000b7000000000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0xdf)
write$binfmt_elf64(r5, &(0x7f0000000ac0)=ANY=[@ANYBLOB="7f454c4600000006010000000000000003003e000000000003000000000000004000000000000000980100000000000002000000000038000200000002000000000000600300000008000000000000000d0000f0ffffffffec08000000000000f0ffffffffffffff0000000000000000080000000000000003000000cff5ffff800300000000000001000000000000000500000000000000ff"], 0x5b0)
close(r5)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, 0x0}, 0x94)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)

1.36304378s ago: executing program 4 (id=1914):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./bus\x00', 0x0, &(0x7f0000002480)=ANY=[], 0x1, 0x11f4, &(0x7f0000001280)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000180)='./bus\x00', 0x0)
renameat2(r0, &(0x7f0000000380)='./file0\x00', r0, &(0x7f0000000200)='./bus/file0\x00', 0x0)

1.32048399s ago: executing program 3 (id=1915):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000001000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r0}, &(0x7f0000000540), &(0x7f0000000580)=r1}, 0x20)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x65, 0xfc, 0x5, 0x0, 0x0, 0x7, 0x89008, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc46, 0x0, @perf_bp={0x0, 0x4}, 0x10, 0x8, 0x7ffffefc, 0x3, 0x1, 0x0, 0x4, 0x0, 0x100, 0x0, 0x1}, 0x0, 0x7, 0xffffffffffffffff, 0x9)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0)
write$UHID_CREATE(r2, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120)
write$UHID_DESTROY(r2, &(0x7f0000000080), 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)

1.032934695s ago: executing program 3 (id=1916):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
get_robust_list(0x0, &(0x7f00000003c0)=0x0, &(0x7f0000000400))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000009b000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000095"], &(0x7f0000000080)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xa, 0x0, &(0x7f0000000000)="e0b9547ed387dbe9abc8", 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x0, 0x3938700}, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/partitions\x00', 0x0, 0x0)
r3 = syz_io_uring_setup(0x186, &(0x7f0000000080)={0x0, 0x3416, 0x4, 0xffffffff, 0x1, 0x0, r2}, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000000)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_WRITE_FIXED={0x5, 0x80, 0x0, @fd_index=0x4, 0x7fff, 0xfffffffffffffff9, 0x7fffffff, 0x0, 0x1})
io_uring_enter(r3, 0x2def, 0x0, 0x0, 0x0, 0x0)
ioctl$TCSETSF(r1, 0x5404, 0x0)

1.003642095s ago: executing program 4 (id=1917):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0, 0x200, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000700)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x840}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWSET={0x34, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x5c}, 0x1, 0x0, 0x0, 0x890}, 0x0)

995.492065ms ago: executing program 1 (id=1918):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r0}, &(0x7f0000000540), &(0x7f0000000580)=r1}, 0x20)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x65, 0xfc, 0x5, 0x0, 0x0, 0x7, 0x89008, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc46, 0x0, @perf_bp={0x0, 0x4}, 0x10, 0x8, 0x7ffffefc, 0x3, 0x1, 0x0, 0x4, 0x0, 0x100, 0x0, 0x1}, 0x0, 0x7, 0xffffffffffffffff, 0x9)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0)
write$UHID_CREATE(r2, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120)
write$UHID_DESTROY(r2, &(0x7f0000000080), 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)

962.489156ms ago: executing program 3 (id=1919):
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x0, 0x1, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$inet(0x2, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = socket(0x10, 0x3, 0x9)
sendmsg$NFT_BATCH(r1, 0x0, 0x0)
openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000002400), 0x1, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xc, &(0x7f0000000240)=@assoc_value={<r5=>0x0}, &(0x7f00000002c0)=0x8)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r3, 0x84, 0x6d, &(0x7f0000000380)={r5}, &(0x7f0000000400)=0x8)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_GET_COALESCE(r8, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x14}}, 0x0)
getsockname$packet(r8, &(0x7f0000000200)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x8f)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c0000001000030400000006000000005dcc0300", @ANYRES32=r9, @ANYBLOB="71e79fd800000000140012800c0001006d616376746170001400028008000500", @ANYRES32=r10], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtfilter={0x2c, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x74, r9, {0xffe0}, {}, {0xa, 0x1}}, [@TCA_RATE={0x6, 0x5, {0x39, 0x1}}]}, 0x2c}, 0x1, 0xf0ffffffffffff, 0x0, 0x4004140}, 0x0)

933.328556ms ago: executing program 0 (id=1920):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{}, 0x0, &(0x7f00000001c0)}, 0x20)
r1 = syz_io_uring_setup(0x121d, &(0x7f0000000500)={0x0, 0x7d0c, 0x80, 0x3, 0x237}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000580)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
r4 = socket(0x2a, 0x2, 0xfffffffc)
getsockname$packet(r4, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r2, r3, 0x0)
io_uring_enter(r1, 0x47bc, 0x0, 0x0, 0x0, 0x0)

891.859787ms ago: executing program 4 (id=1921):
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x400}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000dc0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x6}, 0x18)
syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000500)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0xff, 0x56a, 0x300, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x8, 0xf0, 0x76, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x18, {0x9, 0x21, 0x800, 0xfb, 0x1, {0x22, 0x2d4}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0xc6, 0x6, 0xfd}}}}}]}}]}}, &(0x7f0000000b80)={0xa, &(0x7f0000000540)={0xa, 0x6, 0x310, 0x2, 0x12, 0x71, 0x20, 0x5}, 0x4b, &(0x7f0000000580)={0x5, 0xf, 0x4b, 0x5, [@ss_container_id={0x14, 0x10, 0x4, 0x7, "b9896e8972dd48e7dc455b1f128de8cd"}, @ext_cap={0x7, 0x10, 0x2, 0xa, 0x3, 0x4, 0x6}, @ss_container_id={0x14, 0x10, 0x4, 0x1, "937437b7fb46eb6243a56d5597b6f8ef"}, @ss_container_id={0x14, 0x10, 0x4, 0x9, "60e188cd24f8f43aebbcb171a4812909"}, @ptm_cap={0x3}]}, 0x8, [{0x4, &(0x7f0000000600)=@lang_id={0x4, 0x3, 0xc0a}}, {0x4, &(0x7f0000000640)=@lang_id={0x4, 0x3, 0x480a}}, {0xee, &(0x7f0000000680)=@string={0xee, 0x3, "918e74a24326c7e970ff860b2b52b9379b7684d422cf012eae6140be1b7442fc1543f97613d3dc14927961e019471682d78d9e19c689e72d590194a06216c2715b71607cbb556e8ee06e4ff246783eceaf68cee04bb1da90ecaf28ecbde13f50ca2252910540136aa26c1fbe2f0b9d5e94c9f821f31ace2a10152e3e26bb2589780c861d80e0daccbf30b7032dff9e56976077eefe70294a933334c322fa2db28b4e31997fa8b3ba5eaedaf0910b07fbc2eab888ea2b26a9483f89bab994a7b85ef9001fd3471ebc6db6c8603df397aa908bc82db8cb67fe503c55e64efd4440d4c2cdd95ec0a0093ad10dff"}}, {0x7c, &(0x7f00000007c0)=@string={0x7c, 0x3, "159a6ac2ed88e81bb47d85fead9a96680f728cdd32ab8eb84ee8082c29e7676ef8c9a14a5d30d095322a18015597c6aecd0df1427bddaa3a980be0cbe8f0e3aa57b36bc4d9db43538829a0a3c144008227936fd4e527806262d703023f2b8ef7ac793cbba4afcac84aaa8212987c1af61ed946ec70a88a829976"}}, {0x83, &(0x7f0000000a00)=@string={0x83, 0x3, "ff0d5558a792fd993f3f32d8c987d6455f07ceab205d2a1016ec366d621f4c770e7e86c61f3083e6bfc84b2c557ce9f9db23f325f773c3a3880f2488986f4ffcd1f8aac8c1bba48840fa7534fa6005a8017fb15c468b518a1b9f8ab4baed6170e3e1fe7c7fb29d8d5fba9c130dda2050b0da2f9e5ee5c8d8b7daabde582b462b1c"}}, {0x4, &(0x7f0000000840)=@lang_id={0x4, 0x3, 0x780c}}, {0x4, &(0x7f0000000980)=@lang_id={0x4, 0x3, 0x44e}}, {0xa4, &(0x7f0000000ac0)=@string={0xa4, 0x3, "a751a0bfc155c9651a1e566b9e876807fb172e35bf95e8cbdc1e8d5ca6c3ed5d64c6fd4755569001653f2d40ad70be08a24bee57808b4ce7d5b13349d9acd736a185a174fc6d0e19d719cc19e1c1bc1d6c4fbd63828e1fca4f55d5d4cbd017917af3fb16ee9f57ecc2589206667fdfe0f983692c83a78f13a01f4c20df09add2fd209435088a8411aa8d99842590a8e96efb411b8ebe63550fba91a5944a9961aa03"}}]})

649.131511ms ago: executing program 1 (id=1922):
r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)=r0}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x26}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000dc0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x6}, 0x18)
syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000500)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0xff, 0x56a, 0x300, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x8, 0xf0, 0x76, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x18, {0x9, 0x21, 0x800, 0xfb, 0x1, {0x22, 0x2d4}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0xc6, 0x6, 0xfd}}}}}]}}]}}, &(0x7f0000000b80)={0xa, &(0x7f0000000540)={0xa, 0x6, 0x310, 0x2, 0x12, 0x71, 0x20, 0x5}, 0x4b, &(0x7f0000000580)={0x5, 0xf, 0x4b, 0x5, [@ss_container_id={0x14, 0x10, 0x4, 0x7, "b9896e8972dd48e7dc455b1f128de8cd"}, @ext_cap={0x7, 0x10, 0x2, 0xa, 0x3, 0x4, 0x6}, @ss_container_id={0x14, 0x10, 0x4, 0x1, "937437b7fb46eb6243a56d5597b6f8ef"}, @ss_container_id={0x14, 0x10, 0x4, 0x9, "60e188cd24f8f43aebbcb171a4812909"}, @ptm_cap={0x3}]}, 0x8, [{0x4, &(0x7f0000000600)=@lang_id={0x4, 0x3, 0xc0a}}, {0x4, &(0x7f0000000640)=@lang_id={0x4, 0x3, 0x480a}}, {0xee, &(0x7f0000000680)=@string={0xee, 0x3, "918e74a24326c7e970ff860b2b52b9379b7684d422cf012eae6140be1b7442fc1543f97613d3dc14927961e019471682d78d9e19c689e72d590194a06216c2715b71607cbb556e8ee06e4ff246783eceaf68cee04bb1da90ecaf28ecbde13f50ca2252910540136aa26c1fbe2f0b9d5e94c9f821f31ace2a10152e3e26bb2589780c861d80e0daccbf30b7032dff9e56976077eefe70294a933334c322fa2db28b4e31997fa8b3ba5eaedaf0910b07fbc2eab888ea2b26a9483f89bab994a7b85ef9001fd3471ebc6db6c8603df397aa908bc82db8cb67fe503c55e64efd4440d4c2cdd95ec0a0093ad10dff"}}, {0x7c, &(0x7f00000007c0)=@string={0x7c, 0x3, "159a6ac2ed88e81bb47d85fead9a96680f728cdd32ab8eb84ee8082c29e7676ef8c9a14a5d30d095322a18015597c6aecd0df1427bddaa3a980be0cbe8f0e3aa57b36bc4d9db43538829a0a3c144008227936fd4e527806262d703023f2b8ef7ac793cbba4afcac84aaa8212987c1af61ed946ec70a88a829976"}}, {0x83, &(0x7f0000000a00)=@string={0x83, 0x3, "ff0d5558a792fd993f3f32d8c987d6455f07ceab205d2a1016ec366d621f4c770e7e86c61f3083e6bfc84b2c557ce9f9db23f325f773c3a3880f2488986f4ffcd1f8aac8c1bba48840fa7534fa6005a8017fb15c468b518a1b9f8ab4baed6170e3e1fe7c7fb29d8d5fba9c130dda2050b0da2f9e5ee5c8d8b7daabde582b462b1c"}}, {0x4, &(0x7f0000000840)=@lang_id={0x4, 0x3, 0x780c}}, {0x4, &(0x7f0000000980)=@lang_id={0x4, 0x3, 0x44e}}, {0xa4, &(0x7f0000000ac0)=@string={0xa4, 0x3, "a751a0bfc155c9651a1e566b9e876807fb172e35bf95e8cbdc1e8d5ca6c3ed5d64c6fd4755569001653f2d40ad70be08a24bee57808b4ce7d5b13349d9acd736a185a174fc6d0e19d719cc19e1c1bc1d6c4fbd63828e1fca4f55d5d4cbd017917af3fb16ee9f57ecc2589206667fdfe0f983692c83a78f13a01f4c20df09add2fd209435088a8411aa8d99842590a8e96efb411b8ebe63550fba91a5944a9961aa03"}}]})

644.915641ms ago: executing program 3 (id=1923):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f00000001c0)='GPL\x00'}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r0}, 0x10)
r2 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000180), 0x1, 0x553, &(0x7f0000001080)="$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")
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1b00000000000000000000000001000000000000", @ANYRES32, @ANYBLOB="0000000000000000000004000000000000000000", @ANYRES32=0x0, @ANYRES32], 0x50)
r4 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0300000004000000040000000a00000008000000", @ANYRES32, @ANYBLOB="0600"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0400"/28], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x4)
r6 = dup2(r1, r2)
r7 = socket$inet(0x2, 0x1, 0x0)
r8 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_SIGNAL_INFO(r8, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000180)={0x10, 0x3f2, 0x100, 0x70bd27, 0x5f5}, 0x10}, 0x1, 0x0, 0x0, 0x4000000}, 0x48080)
setsockopt$inet_opts(r7, 0x0, 0x4, 0x0, 0x0)
bind$inet(r7, &(0x7f0000000040)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x38}}, 0x10)
connect$inet(r7, &(0x7f0000000080)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x39}}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f00000003c0)={{0x1, 0x1, 0x18, <r9=>r1}, './file1\x00'})
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r10}, 0x18)
r11 = socket$inet6(0xa, 0x1, 0x0)
r12 = socket(0x15, 0x5, 0x0)
bind$bt_hci(r12, &(0x7f0000000000)={0x1f, 0x3, 0x3}, 0x6)
r13 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_mreq(r13, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
r14 = socket$nl_route(0x10, 0x3, 0x0)
r15 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r15, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r16=>0x0})
sendmsg$nl_route(r14, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r16], 0x20}}, 0x0)
setsockopt$inet6_mreq(r13, 0x29, 0x1c, &(0x7f00000001c0)={@remote}, 0x14)
setsockopt$IP6T_SO_SET_REPLACE(r11, 0x29, 0x40, &(0x7f00000003c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x308, 0x130, 0x12, 0x60a, 0x600, 0x202, 0x238, 0x2e8, 0x2e8, 0x238, 0x2c0, 0x4, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @dev}, @mcast2, [0x4000000], [0x4000000], 'veth1_to_bond\x00', 'xfrm0\x00'}, 0x0, 0x108, 0x130, 0x0, {}, [@common=@unspec=@statistic={{0x38}}, @common=@inet=@socket2={{0x28}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff}, {0xffffffffffffffff, 0xf9}}}}, {{@ipv6={@private2, @loopback, [], [], 'vxcan1\x00', 'geneve0\x00'}, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@empty}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x368)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x18, 0x30, &(0x7f00000008c0)=ANY=[@ANYBLOB="1800000001000100000000000100000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000064628000fcffffff18120000", @ANYRES32=r4, @ANYBLOB="000000000000000003dc65300500000018330000020000000000000000000000b7080000000000007b8af8ff00000000b70800008f8900007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b705004d38019c7d63fd5500a5000000186400000a0000000000000090400000852000000200000085100000feffffff181b0000d13c3d947c0ab7d9f53ecd13e4670cf26ddecabb60561611310655bfa92674b6337ccbea5e82019ae574ecee1f0edd27a39e66b8968405f3510cb7e4b92e05c0cb8fe43b9a95b3b6dc8f6b27a5abe4c032b3a302847c464764fe7e7dadbd17b66bd5ea256a53d19cd30e066bf84a4e6024b941379fc435b0ff2f545333d615de49e2c160494c", @ANYRES32=r6, @ANYBLOB="00000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000020000008500000006000000bf91000000000000b7020000010000008500000084000000b7000000000000009500000000000000"], &(0x7f0000000380)='syzkaller\x00', 0x60, 0xc4, &(0x7f0000000440)=""/196, 0x41100, 0x2, '\x00', 0x0, 0x0, r9, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000540)={0x1, 0x6, 0xfffffff9, 0x4}, 0x10, 0x0, 0x0, 0x6, 0x0, &(0x7f0000000740)=[{0x1, 0x1, 0xd}, {0x3, 0x2, 0x2, 0x2}, {0x5, 0x1, 0x3, 0xb}, {0x4, 0x2, 0x10, 0x212620bfb8bd57f8}, {0x2, 0x4, 0x10, 0x2}, {0x4, 0x4, 0x1, 0x1}], 0x10, 0xa438}, 0x94)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)

570.771882ms ago: executing program 0 (id=1924):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
get_robust_list(0x0, &(0x7f00000003c0)=0x0, &(0x7f0000000400))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000009b000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000095"], &(0x7f0000000080)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xa, 0x0, &(0x7f0000000000)="e0b9547ed387dbe9abc8", 0x0, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x0, 0x3938700}, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/partitions\x00', 0x0, 0x0)
r3 = syz_io_uring_setup(0x186, &(0x7f0000000080)={0x0, 0x3416, 0x4, 0xffffffff, 0x1, 0x0, r2}, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000000)=<r5=>0x0)
syz_io_uring_submit(r4, r5, 0x0)
io_uring_enter(r3, 0x2def, 0x0, 0x0, 0x0, 0x0)
ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000000)={0x0, 0x21e, 0x100, 0x0, 0x0, "7a58beca3900000000000000000000000200"})

547.395392ms ago: executing program 0 (id=1925):
r0 = open(&(0x7f0000000080)='./file0\x00', 0x20000, 0x97298eb7008eaeef)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{}, &(0x7f0000000080), &(0x7f0000000180)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x80800)
r5 = dup(r4)
write$P9_RLERRORu(r5, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r5, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x8080, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d5304948)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfccd}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, r0}, 0x50)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000085000000b7000000000200"/96], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
pivot_root(&(0x7f0000000000)='.\x00', &(0x7f00000004c0)='./file1\x00')
socket$packet(0x11, 0x3, 0x300)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1b, &(0x7f0000000100)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x2}}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x71d}}, {@abort}]}, 0x1, 0x610, &(0x7f0000000a40)="$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")
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r8)

452.959324ms ago: executing program 3 (id=1926):
r0 = open(&(0x7f0000000080)='./file0\x00', 0x20000, 0x97298eb7008eaeef)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{}, &(0x7f0000000080), &(0x7f0000000180)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff530000008003950323030302e75"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x80800)
write$P9_RVERSION(r4, &(0x7f0000000300)=ANY=[], 0x15)
r5 = dup(r4)
write$P9_RLERRORu(r5, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r5, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r5, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x8080, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5])
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d5304948)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xfccd}, 0x94)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, r0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000085000000b7000000000200"/96], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pivot_root(&(0x7f0000000000)='.\x00', &(0x7f00000004c0)='./file1\x00')
socket$packet(0x11, 0x3, 0x300)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1b, &(0x7f0000000100)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x2}}, {@norecovery}, {@min_batch_time={'min_batch_time', 0x3d, 0x71d}}, {@abort}]}, 0x1, 0x610, &(0x7f0000000a40)="$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")
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r7)

403.556184ms ago: executing program 2 (id=1927):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000001000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='freezer.self_freezing\x00', 0x275a, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r0}, &(0x7f0000000540), &(0x7f0000000580)=r1}, 0x20)
perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x65, 0xfc, 0x5, 0x0, 0x0, 0x7, 0x89008, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc46, 0x0, @perf_bp={0x0, 0x4}, 0x10, 0x8, 0x7ffffefc, 0x3, 0x1, 0x0, 0x4, 0x0, 0x100, 0x0, 0x1}, 0x0, 0x7, 0xffffffffffffffff, 0x9)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x802, 0x0)
write$UHID_CREATE(r2, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120)
write$UHID_DESTROY(r2, &(0x7f0000000080), 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)

367.820545ms ago: executing program 0 (id=1928):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000240), &(0x7f0000000280)=r1}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x802)
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000080)="aefdda9d240303005a90f57f07703aeff0f64eb9ee07962c220a2e11b44e65d76641cb010852f426072a", 0x2a}], 0x1)
read(r2, 0x0, 0x0)

151.763338ms ago: executing program 0 (id=1929):
r0 = socket(0x10, 0x3, 0x0)
readv(r0, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/163, 0xa3}], 0x1)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./bus\x00', 0x4010, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11ee, &(0x7f0000002480)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000000)=0x10000000000000, 0xffffff6a)
socket$key(0xf, 0x3, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
mq_open(&(0x7f0000000540)='@/$,^\x00', 0x2, 0x1, &(0x7f00000006c0)={0x605, 0x7fffffff, 0x0, 0x7fff})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b40500008000000061119c0000000000a6020000bf60cc1fdc9fa86b989a4c47"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2}, 0x48)
getpid()
mount$9p_fd(0x0, &(0x7f0000000840)='./bus\x00', &(0x7f0000000980), 0x404, &(0x7f0000000f40)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@directio}, {@msize={'msize', 0x3d, 0x14000000}}, {@ignoreqv}, {@mmap}, {@access_uid}], [{@fowner_eq}, {@context={'context', 0x3d, 'root'}}, {@dont_hash}, {@fowner_eq}, {@hash}, {@defcontext={'defcontext', 0x3d, 'system_u'}}, {@subj_role={'subj_role', 0x3d, '!:!}!)(-/-\''}}]}})
recvmsg$qrtr(r2, &(0x7f0000000380)={&(0x7f0000000080), 0xc, &(0x7f0000000100)=[{&(0x7f0000003680)=""/4096, 0x1000}, {&(0x7f0000000240)=""/250, 0xfa}, {&(0x7f0000000480)=""/140, 0x8c}], 0x3, &(0x7f0000000600)=[{0x90, 0x0, 0x0, ""/128}], 0x90, 0x2000}, 0x38, 0x40000040)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r3, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10)
r6 = add_key(&(0x7f00000001c0)='user\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)='9', 0x1, 0xffffffffffffffff)
keyctl$chown(0x4, r6, 0xee00, 0xffffffffffffffff)
keyctl$chown(0x4, r6, 0x0, 0x0)
syz_clone3(&(0x7f0000000580)={0x400, 0x0, 0x0, 0x0, {0x30}, 0x0, 0x0, 0x0, &(0x7f0000000340)=[0x0], 0x1}, 0x58)
statfs(&(0x7f0000000200)='.\x00', 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r7, &(0x7f00000001c0)=[{&(0x7f0000000400)="ba", 0x1}], 0x1, 0xe7b, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000a00)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="c0a201"], 0x24}}, 0x0)

107.157849ms ago: executing program 4 (id=1930):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r1}, &(0x7f0000000380), &(0x7f00000003c0)=r2}, 0x20)
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@newtfilter={0x44, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0xf}, {}, {0x7, 0x10}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_EMATCHES={0x10, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x7}}, @TCA_EMATCH_TREE_LIST={0x4}]}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x20048084}, 0x2008c014)

54.93251ms ago: executing program 1 (id=1931):
r0 = socket(0x10, 0x3, 0x0)
readv(r0, &(0x7f0000000000), 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./bus\x00', 0x4010, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11ee, &(0x7f0000002480)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000000)=0x10000000000000, 0xffffff6a)
socket$key(0xf, 0x3, 0x2)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
mq_open(&(0x7f0000000540)='@/$,^\x00', 0x2, 0x1, &(0x7f00000006c0)={0x605, 0x7fffffff, 0x0, 0x7fff})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b40500008000000061119c0000000000a6020000bf60cc1fdc9fa86b989a4c47"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2}, 0x48)
r4 = getpid()
fcntl$lock(r3, 0x24, &(0x7f0000000000)={0x1, 0x2, 0x0, 0x0, r4})
mount$9p_fd(0x0, &(0x7f0000000840)='./bus\x00', &(0x7f0000000980), 0x404, &(0x7f0000000f40)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {}, 0x2c, {[{@directio}, {@msize={'msize', 0x3d, 0x14000000}}, {@ignoreqv}, {@mmap}, {@access_uid}], [{@fowner_eq}, {@context={'context', 0x3d, 'root'}}, {@dont_hash}, {@fowner_eq}, {@hash}, {@defcontext={'defcontext', 0x3d, 'system_u'}}, {@subj_role={'subj_role', 0x3d, '!:!}!)(-/-\''}}]}})
recvmsg$qrtr(r3, &(0x7f0000000380)={&(0x7f0000000080), 0xc, &(0x7f0000000100)=[{&(0x7f0000003680)=""/4096, 0x1000}, {&(0x7f0000000240)=""/250, 0xfa}, {&(0x7f0000000480)=""/140, 0x8c}], 0x3, &(0x7f0000000600)=[{0x90, 0x0, 0x0, ""/128}], 0x90, 0x2000}, 0x38, 0x40000040)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
prctl$PR_TASK_PERF_EVENTS_DISABLE(0x1f)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r5, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10)
r8 = add_key(&(0x7f00000001c0)='user\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)='9', 0x1, 0xffffffffffffffff)
keyctl$chown(0x4, r8, 0xee00, 0xffffffffffffffff)
keyctl$chown(0x4, r8, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000a00)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_clone3(&(0x7f0000000580)={0x400, 0x0, 0x0, 0x0, {0x30}, 0x0, 0x0, 0x0, &(0x7f0000000340)=[0x0], 0x1}, 0x58)
statfs(&(0x7f0000000200)='.\x00', 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r9, &(0x7f00000001c0)=[{&(0x7f0000000400)="ba", 0x1}], 0x1, 0xe7b, 0x0, 0x0)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000a00)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="c0a201"], 0x24}}, 0x0)

37.79475ms ago: executing program 2 (id=1932):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)={0x2c, r1, 0x6a98047402e98331, 0x1000000, 0x0, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve1\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0xd1}, 0x40048c2)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
quotactl$Q_SETQUOTA(0xffffffff80000802, &(0x7f00000007c0)=@sg0, 0x0, &(0x7f0000000800)={0x9, 0x7, 0x3, 0x40, 0x7, 0x800, 0x2, 0x3, 0x4})
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, 0x0, 0x20008000)
r2 = socket$netlink(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="18010000202300800000000025ad9835f6de8aa9399bc25993f6efb427193f888c2348d74d3e2a1172fac04baf0591a9a2a663f8e91354068ca645256849cf3d975ee865240e27b932970311b0a7fa32fdf1e8c6fcfb552d09f6e0be601021a66f63a7a37ea096128c074224e546d2be4d03f14f281c32778805a1df42d40a948f073789d479648904df975e5525853dde116b1f98bef6fdfe3921724e4db55c1a2ba3309a4e068141c430748bb6abd564dde36814db3c1fb06cb2caf6abeef6a3da6871374ecd03c482032724be06f593fd9130022d2e46379d8bf7c537fb40b9fd30ecc050652432e1be23c7016596977eaa15759ad619663e19df8559a3f0169d7810f5d92d59718b85bd9f7c7d3e3a8c05c7b985ec7070c3a9199ce13c1ac8829913a4510ad8c353d68101f853b82239b2a57252392349af6fe6fba00e511e69435d0d93fa21cbeddc2f2385fdb5df850d8a142f5c1e365f0d7b31584a84b535dd706f7f82e34fa089c96dcf97cd5559cdf7ce935fc794db2cdd1cf8c38afbe440a446d74f", @ANYRESDEC=r2, @ANYRES8=r2, @ANYRES8=r2], &(0x7f00000001c0)='GPL\x00', 0x4}, 0x94)
r3 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r3, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r4, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)

4.836341ms ago: executing program 4 (id=1933):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]})
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r1, 0x0, 0x0)
tee(r0, r2, 0x8f5, 0x0)

0s ago: executing program 3 (id=1934):
perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x100, 0x10020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x400}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001200)={0x1, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x26}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x6}, 0x18)
syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000500)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0xff, 0x56a, 0x300, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x8, 0xf0, 0x76, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x18, {0x9, 0x21, 0x800, 0xfb, 0x1, {0x22, 0x2d4}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0xc6, 0x6, 0xfd}}}}}]}}]}}, &(0x7f0000000b80)={0xa, &(0x7f0000000540)={0xa, 0x6, 0x310, 0x2, 0x12, 0x71, 0x20, 0x5}, 0x4b, &(0x7f0000000580)={0x5, 0xf, 0x4b, 0x5, [@ss_container_id={0x14, 0x10, 0x4, 0x7, "b9896e8972dd48e7dc455b1f128de8cd"}, @ext_cap={0x7, 0x10, 0x2, 0xa, 0x3, 0x4, 0x6}, @ss_container_id={0x14, 0x10, 0x4, 0x1, "937437b7fb46eb6243a56d5597b6f8ef"}, @ss_container_id={0x14, 0x10, 0x4, 0x9, "60e188cd24f8f43aebbcb171a4812909"}, @ptm_cap={0x3}]}, 0x8, [{0x4, &(0x7f0000000600)=@lang_id={0x4, 0x3, 0xc0a}}, {0x4, &(0x7f0000000640)=@lang_id={0x4, 0x3, 0x480a}}, {0xee, &(0x7f0000000680)=@string={0xee, 0x3, "918e74a24326c7e970ff860b2b52b9379b7684d422cf012eae6140be1b7442fc1543f97613d3dc14927961e019471682d78d9e19c689e72d590194a06216c2715b71607cbb556e8ee06e4ff246783eceaf68cee04bb1da90ecaf28ecbde13f50ca2252910540136aa26c1fbe2f0b9d5e94c9f821f31ace2a10152e3e26bb2589780c861d80e0daccbf30b7032dff9e56976077eefe70294a933334c322fa2db28b4e31997fa8b3ba5eaedaf0910b07fbc2eab888ea2b26a9483f89bab994a7b85ef9001fd3471ebc6db6c8603df397aa908bc82db8cb67fe503c55e64efd4440d4c2cdd95ec0a0093ad10dff"}}, {0x7c, &(0x7f00000007c0)=@string={0x7c, 0x3, "159a6ac2ed88e81bb47d85fead9a96680f728cdd32ab8eb84ee8082c29e7676ef8c9a14a5d30d095322a18015597c6aecd0df1427bddaa3a980be0cbe8f0e3aa57b36bc4d9db43538829a0a3c144008227936fd4e527806262d703023f2b8ef7ac793cbba4afcac84aaa8212987c1af61ed946ec70a88a829976"}}, {0x83, &(0x7f0000000a00)=@string={0x83, 0x3, "ff0d5558a792fd993f3f32d8c987d6455f07ceab205d2a1016ec366d621f4c770e7e86c61f3083e6bfc84b2c557ce9f9db23f325f773c3a3880f2488986f4ffcd1f8aac8c1bba48840fa7534fa6005a8017fb15c468b518a1b9f8ab4baed6170e3e1fe7c7fb29d8d5fba9c130dda2050b0da2f9e5ee5c8d8b7daabde582b462b1c"}}, {0x4, &(0x7f0000000840)=@lang_id={0x4, 0x3, 0x780c}}, {0x4, &(0x7f0000000980)=@lang_id={0x4, 0x3, 0x44e}}, {0xa4, &(0x7f0000000ac0)=@string={0xa4, 0x3, "a751a0bfc155c9651a1e566b9e876807fb172e35bf95e8cbdc1e8d5ca6c3ed5d64c6fd4755569001653f2d40ad70be08a24bee57808b4ce7d5b13349d9acd736a185a174fc6d0e19d719cc19e1c1bc1d6c4fbd63828e1fca4f55d5d4cbd017917af3fb16ee9f57ecc2589206667fdfe0f983692c83a78f13a01f4c20df09add2fd209435088a8411aa8d99842590a8e96efb411b8ebe63550fba91a5944a9961aa03"}}]})

kernel console output (not intermixed with test programs):

evice loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  123.680822][ T7665] ext4 filesystem being mounted at /317/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  123.688337][ T7663] EXT4-fs (loop2): Remounting filesystem read-only
[  123.741677][ T7673] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1373'.
[  123.781596][ T7678] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1375'.
[  123.911032][ T7681] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  123.950112][ T7683] FAULT_INJECTION: forcing a failure.
[  123.950112][ T7683] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  123.963363][ T7683] CPU: 1 UID: 0 PID: 7683 Comm: syz.2.1377 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(voluntary) 
[  123.963398][ T7683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  123.963414][ T7683] Call Trace:
[  123.963422][ T7683]  <TASK>
[  123.963431][ T7683]  __dump_stack+0x1d/0x30
[  123.963488][ T7683]  dump_stack_lvl+0xe8/0x140
[  123.963514][ T7683]  dump_stack+0x15/0x1b
[  123.963589][ T7683]  should_fail_ex+0x265/0x280
[  123.963625][ T7683]  should_fail+0xb/0x20
[  123.963711][ T7683]  should_fail_usercopy+0x1a/0x20
[  123.963742][ T7683]  _copy_to_iter+0x24b/0xe30
[  123.963830][ T7683]  ? should_fail_ex+0xdb/0x280
[  123.963922][ T7683]  copy_page_to_iter+0x18f/0x2d0
[  123.963946][ T7683]  process_vm_rw+0x672/0x950
[  123.964022][ T7683]  __x64_sys_process_vm_readv+0x78/0x90
[  123.964058][ T7683]  x64_sys_call+0x2978/0x2fb0
[  123.964085][ T7683]  do_syscall_64+0xd2/0x200
[  123.964106][ T7683]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  123.964143][ T7683]  ? clear_bhb_loop+0x40/0x90
[  123.964209][ T7683]  ? clear_bhb_loop+0x40/0x90
[  123.964230][ T7683]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  123.964251][ T7683] RIP: 0033:0x7fe58772e929
[  123.964267][ T7683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  123.964284][ T7683] RSP: 002b:00007fe585d97038 EFLAGS: 00000246 ORIG_RAX: 0000000000000136
[  123.964333][ T7683] RAX: ffffffffffffffda RBX: 00007fe587955fa0 RCX: 00007fe58772e929
[  123.964349][ T7683] RDX: 0000000000000002 RSI: 0000200000008400 RDI: 00000000000002ff
[  123.964417][ T7683] RBP: 00007fe585d97090 R08: 0000000000000286 R09: 0000000000000000
[  123.964428][ T7683] R10: 0000200000008640 R11: 0000000000000246 R12: 0000000000000002
[  123.964439][ T7683] R13: 0000000000000000 R14: 00007fe587955fa0 R15: 00007ffdcf4342e8
[  123.964462][ T7683]  </TASK>
[  125.020914][ T7737] loop1: detected capacity change from 0 to 8192
[  125.034351][ T7741] netlink: 'syz.2.1387': attribute type 11 has an invalid length.
[  125.114223][ T7750] loop0: detected capacity change from 0 to 1024
[  125.123006][ T7748] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=7748 comm=syz.1.1386
[  125.146043][ T7750] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4113: comm syz.0.1391: Allocating blocks 497-513 which overlap fs metadata
[  125.162098][ T7749] EXT4-fs (loop0): pa ffff888106e187e0: logic 128, phys. 273, len 15
[  125.170262][ T7749] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 1
[  125.257243][ T7759] loop4: detected capacity change from 0 to 128
[  125.348801][ T7767] loop4: detected capacity change from 0 to 512
[  125.355825][ T7767] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  125.369913][ T7767] EXT4-fs (loop4): 1 truncate cleaned up
[  125.380037][ T7772] netlink: 'syz.3.1400': attribute type 11 has an invalid length.
[  125.546742][ T7786] 9pnet_fd: Insufficient options for proto=fd
[  125.601517][ T7790] loop3: detected capacity change from 0 to 128
[  125.857100][ T7801] loop1: detected capacity change from 0 to 512
[  125.864376][ T7801] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  125.876096][ T7801] EXT4-fs (loop1): 1 truncate cleaned up
[  125.951604][ T7810] 9pnet_fd: Insufficient options for proto=fd
[  125.966610][ T7812] 9pnet: Could not find request transport: 0xffffffffffffffff
[  126.004272][ T7818] loop1: detected capacity change from 0 to 128
[  126.060587][ T7825] loop1: detected capacity change from 0 to 512
[  126.090220][ T7825] EXT4-fs (loop1): failed to open journal device unknown-block(0,0) -6
[  126.243805][ T7840] 9pnet_fd: Insufficient options for proto=fd
[  126.329025][ T7851] loop4: detected capacity change from 0 to 128
[  126.351852][ T7852] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1433'.
[  126.392620][ T7858] loop1: detected capacity change from 0 to 1024
[  126.399788][ T7858] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  126.409570][ T7858] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  126.419324][ T7858] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  126.444324][ T7858] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: inode #5: comm syz.1.1435: unexpected bad inode w/o EXT4_IGET_BAD
[  126.460203][ T7858] EXT4-fs (loop1): no journal found
[  126.465590][ T7858] EXT4-fs (loop1): can't get journal size
[  126.482783][   T29] kauditd_printk_skb: 1058 callbacks suppressed
[  126.482794][   T29] audit: type=1326 audit(1751031967.616:8350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7864 comm="syz.4.1437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  126.516734][   T29] audit: type=1326 audit(1751031967.616:8351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7864 comm="syz.4.1437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  126.540335][   T29] audit: type=1326 audit(1751031967.616:8352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7864 comm="syz.4.1437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  126.564018][   T29] audit: type=1326 audit(1751031967.616:8353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7864 comm="syz.4.1437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  126.587647][   T29] audit: type=1326 audit(1751031967.616:8354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7864 comm="syz.4.1437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  126.611197][   T29] audit: type=1326 audit(1751031967.616:8355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7864 comm="syz.4.1437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  126.634862][   T29] audit: type=1326 audit(1751031967.616:8356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7864 comm="syz.4.1437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  126.658622][   T29] audit: type=1326 audit(1751031967.616:8357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7864 comm="syz.4.1437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  126.682249][   T29] audit: type=1326 audit(1751031967.616:8358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7864 comm="syz.4.1437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  126.705801][   T29] audit: type=1326 audit(1751031967.616:8359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7864 comm="syz.4.1437" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  126.751246][ T7875] FAULT_INJECTION: forcing a failure.
[  126.751246][ T7875] name failslab, interval 1, probability 0, space 0, times 0
[  126.763919][ T7875] CPU: 0 UID: 0 PID: 7875 Comm: syz.3.1442 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(voluntary) 
[  126.763971][ T7875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  126.763982][ T7875] Call Trace:
[  126.763988][ T7875]  <TASK>
[  126.763994][ T7875]  __dump_stack+0x1d/0x30
[  126.764018][ T7875]  dump_stack_lvl+0xe8/0x140
[  126.764041][ T7875]  dump_stack+0x15/0x1b
[  126.764061][ T7875]  should_fail_ex+0x265/0x280
[  126.764157][ T7875]  should_failslab+0x8c/0xb0
[  126.764197][ T7875]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  126.764231][ T7875]  ? sidtab_sid2str_get+0xa0/0x130
[  126.764287][ T7875]  kmemdup_noprof+0x2b/0x70
[  126.764307][ T7875]  sidtab_sid2str_get+0xa0/0x130
[  126.764392][ T7875]  security_sid_to_context_core+0x1eb/0x2e0
[  126.764463][ T7875]  security_sid_to_context+0x27/0x40
[  126.764485][ T7875]  selinux_lsmprop_to_secctx+0x67/0xf0
[  126.764512][ T7875]  security_lsmprop_to_secctx+0x43/0x80
[  126.764572][ T7875]  audit_log_task_context+0x77/0x190
[  126.764661][ T7875]  audit_log_task+0xf4/0x250
[  126.764707][ T7875]  ? bpf_trace_vprintk+0x119/0x200
[  126.764768][ T7875]  audit_seccomp+0x61/0x100
[  126.764790][ T7875]  ? __seccomp_filter+0x68c/0x10d0
[  126.764814][ T7875]  __seccomp_filter+0x69d/0x10d0
[  126.764852][ T7875]  ? __traceiter_kmem_cache_free+0x38/0x60
[  126.764870][ T7875]  ? getname_flags+0x2be/0x3b0
[  126.764893][ T7875]  ? kmem_cache_free+0xdf/0x300
[  126.764929][ T7875]  __secure_computing+0x82/0x150
[  126.764965][ T7875]  syscall_trace_enter+0xcf/0x1e0
[  126.764986][ T7875]  do_syscall_64+0xac/0x200
[  126.765002][ T7875]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  126.765030][ T7875]  ? clear_bhb_loop+0x40/0x90
[  126.765100][ T7875]  ? clear_bhb_loop+0x40/0x90
[  126.765118][ T7875]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  126.765166][ T7875] RIP: 0033:0x7fc70debd33c
[  126.765183][ T7875] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  126.765332][ T7875] RSP: 002b:00007fc70c527030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  126.765359][ T7875] RAX: ffffffffffffffda RBX: 00007fc70e0e5fa0 RCX: 00007fc70debd33c
[  126.765372][ T7875] RDX: 000000000000000f RSI: 00007fc70c5270a0 RDI: 0000000000000005
[  126.765437][ T7875] RBP: 00007fc70c527090 R08: 0000000000000000 R09: 0000000000000000
[  126.765447][ T7875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  126.765457][ T7875] R13: 0000000000000000 R14: 00007fc70e0e5fa0 R15: 00007ffc35d9bb88
[  126.765474][ T7875]  </TASK>
[  127.063898][ T7881] loop1: detected capacity change from 0 to 1024
[  127.109473][ T7889] loop0: detected capacity change from 0 to 512
[  127.127227][ T7892] FAULT_INJECTION: forcing a failure.
[  127.127227][ T7892] name failslab, interval 1, probability 0, space 0, times 0
[  127.139951][ T7892] CPU: 0 UID: 0 PID: 7892 Comm: syz.2.1447 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(voluntary) 
[  127.140025][ T7892] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  127.140039][ T7892] Call Trace:
[  127.140044][ T7892]  <TASK>
[  127.140055][ T7892]  __dump_stack+0x1d/0x30
[  127.140078][ T7892]  dump_stack_lvl+0xe8/0x140
[  127.140110][ T7892]  dump_stack+0x15/0x1b
[  127.140133][ T7892]  should_fail_ex+0x265/0x280
[  127.140161][ T7892]  should_failslab+0x8c/0xb0
[  127.140183][ T7892]  __kmalloc_noprof+0xa5/0x3e0
[  127.140250][ T7892]  ? io_cache_alloc_new+0x2a/0xb0
[  127.140269][ T7892]  io_cache_alloc_new+0x2a/0xb0
[  127.140316][ T7892]  __io_prep_rw+0xcf/0x660
[  127.140345][ T7892]  ? __io_alloc_req_refill+0x12e/0x1d0
[  127.140407][ T7892]  io_prep_read+0x20/0xa0
[  127.140429][ T7892]  io_submit_sqes+0x5e2/0xfd0
[  127.140468][ T7892]  __se_sys_io_uring_enter+0x1c1/0x1b70
[  127.140574][ T7892]  ? 0xffffffff81000000
[  127.140588][ T7892]  ? __rcu_read_unlock+0x4f/0x70
[  127.140657][ T7892]  ? get_pid_task+0x96/0xd0
[  127.140674][ T7892]  ? proc_fail_nth_write+0x12d/0x160
[  127.140704][ T7892]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  127.140810][ T7892]  ? vfs_write+0x75e/0x8e0
[  127.140844][ T7892]  ? __rcu_read_unlock+0x4f/0x70
[  127.140877][ T7892]  ? __fget_files+0x184/0x1c0
[  127.140895][ T7892]  ? fput+0x8f/0xc0
[  127.140917][ T7892]  __x64_sys_io_uring_enter+0x78/0x90
[  127.140979][ T7892]  x64_sys_call+0x28c8/0x2fb0
[  127.141002][ T7892]  do_syscall_64+0xd2/0x200
[  127.141021][ T7892]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  127.141120][ T7892]  ? clear_bhb_loop+0x40/0x90
[  127.141166][ T7892]  ? clear_bhb_loop+0x40/0x90
[  127.141190][ T7892]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  127.141214][ T7892] RIP: 0033:0x7fe58772e929
[  127.141228][ T7892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  127.141259][ T7892] RSP: 002b:00007fe585d97038 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  127.141278][ T7892] RAX: ffffffffffffffda RBX: 00007fe587955fa0 RCX: 00007fe58772e929
[  127.141292][ T7892] RDX: 00000000000004c3 RSI: 00000000000074d1 RDI: 0000000000000007
[  127.141311][ T7892] RBP: 00007fe585d97090 R08: 0000000000000000 R09: fffffffffffffd1d
[  127.141325][ T7892] R10: 0000000000000043 R11: 0000000000000246 R12: 0000000000000001
[  127.141338][ T7892] R13: 0000000000000000 R14: 00007fe587955fa0 R15: 00007ffdcf4342e8
[  127.141403][ T7892]  </TASK>
[  127.431210][ T7881] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.1444: Allocating blocks 497-513 which overlap fs metadata
[  127.445259][ T7889] EXT4-fs (loop0): failed to open journal device unknown-block(0,0) -6
[  127.447960][ T7880] EXT4-fs (loop1): pa ffff888106e94bd0: logic 128, phys. 273, len 15
[  127.461688][ T7880] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 1
[  127.521157][ T7903] loop4: detected capacity change from 0 to 1024
[  127.529304][ T7903] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  127.539103][ T7903] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  127.550181][ T7903] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  127.561715][ T7908] loop1: detected capacity change from 0 to 128
[  127.571717][ T7903] EXT4-fs error (device loop4): ext4_get_journal_inode:5796: inode #5: comm syz.4.1452: unexpected bad inode w/o EXT4_IGET_BAD
[  127.591040][ T7903] EXT4-fs (loop4): no journal found
[  127.596285][ T7903] EXT4-fs (loop4): can't get journal size
[  127.694773][ T7923] loop4: detected capacity change from 0 to 1024
[  127.715572][ T7923] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  127.739569][ T7923] EXT4-fs (loop4): Remounting filesystem read-only
[  127.758253][ T7933] loop1: detected capacity change from 0 to 1024
[  127.782270][ T7933] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.1462: Allocating blocks 497-513 which overlap fs metadata
[  127.797812][ T7931] EXT4-fs (loop1): pa ffff888106e94bd0: logic 128, phys. 273, len 15
[  127.806076][ T7931] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 1
[  127.816449][ T7934] loop0: detected capacity change from 0 to 8192
[  127.873010][ T7943] netlink: 'syz.0.1465': attribute type 11 has an invalid length.
[  127.881021][ T7939] loop4: detected capacity change from 0 to 8192
[  127.965354][ T7950] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=7950 comm=syz.4.1463
[  128.007253][ T7958] loop0: detected capacity change from 0 to 128
[  128.033466][ T7962] loop1: detected capacity change from 0 to 512
[  128.048941][ T7962] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  128.060518][ T7962] EXT4-fs (loop1): 1 truncate cleaned up
[  128.125080][ T7964] syz.1.1473 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  128.170865][ T7966] loop0: detected capacity change from 0 to 1024
[  128.192960][ T7966] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  128.209386][ T7966] EXT4-fs (loop0): Remounting filesystem read-only
[  128.262468][ T7972] loop0: detected capacity change from 0 to 1024
[  128.293395][ T7972] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4113: comm syz.0.1476: Allocating blocks 497-513 which overlap fs metadata
[  128.309158][ T7971] EXT4-fs (loop0): pa ffff888106e94bd0: logic 128, phys. 273, len 15
[  128.317546][ T7971] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 1
[  128.393565][ T7977] loop2: detected capacity change from 0 to 8192
[  128.453842][ T7981] loop0: detected capacity change from 0 to 8192
[  128.539553][ T7982] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=7982 comm=syz.2.1477
[  128.567410][ T7987] 9pnet_fd: Insufficient options for proto=fd
[  128.655067][ T7993] loop0: detected capacity change from 0 to 128
[  128.670231][ T7995] loop3: detected capacity change from 0 to 1024
[  128.693342][ T7995] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  128.740275][ T7995] EXT4-fs (loop3): Remounting filesystem read-only
[  128.845748][ T8003] netlink: 92 bytes leftover after parsing attributes in process `syz.3.1488'.
[  129.059227][ T8018] loop3: detected capacity change from 0 to 512
[  129.065999][ T8018] EXT4-fs: Ignoring removed bh option
[  129.072168][ T8018] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  129.082116][ T8014] loop4: detected capacity change from 0 to 8192
[  129.132588][ T8018] ext4 filesystem being mounted at /279/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.180123][ T8018] FAULT_INJECTION: forcing a failure.
[  129.180123][ T8018] name failslab, interval 1, probability 0, space 0, times 0
[  129.192897][ T8018] CPU: 1 UID: 0 PID: 8018 Comm: syz.3.1495 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(voluntary) 
[  129.192939][ T8018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  129.192950][ T8018] Call Trace:
[  129.192955][ T8018]  <TASK>
[  129.192962][ T8018]  __dump_stack+0x1d/0x30
[  129.192985][ T8018]  dump_stack_lvl+0xe8/0x140
[  129.193006][ T8018]  dump_stack+0x15/0x1b
[  129.193099][ T8018]  should_fail_ex+0x265/0x280
[  129.193134][ T8018]  should_failslab+0x8c/0xb0
[  129.193158][ T8018]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  129.193231][ T8018]  ? sidtab_sid2str_get+0xa0/0x130
[  129.193294][ T8018]  kmemdup_noprof+0x2b/0x70
[  129.193321][ T8018]  sidtab_sid2str_get+0xa0/0x130
[  129.193488][ T8018]  security_sid_to_context_core+0x1eb/0x2e0
[  129.193509][ T8018]  security_sid_to_context+0x27/0x40
[  129.193527][ T8018]  avc_audit_post_callback+0x9d/0x520
[  129.193581][ T8018]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  129.193613][ T8018]  common_lsm_audit+0x1bb/0x230
[  129.193630][ T8018]  ? __pfx_avc_audit_post_callback+0x10/0x10
[  129.193751][ T8018]  ? avc_denied+0xe4/0x100
[  129.193773][ T8018]  slow_avc_audit+0x104/0x140
[  129.193802][ T8018]  avc_has_perm+0x128/0x150
[  129.193861][ T8018]  selinux_inode_setxattr+0x32c/0x6e0
[  129.193882][ T8018]  ? selinux_capable+0x1f9/0x270
[  129.193950][ T8018]  security_inode_setxattr+0x13a/0x1b0
[  129.193989][ T8018]  __vfs_setxattr_locked+0x83/0x1d0
[  129.194028][ T8018]  vfs_setxattr+0x132/0x270
[  129.194063][ T8018]  file_setxattr+0x139/0x1b0
[  129.194193][ T8018]  path_setxattrat+0x290/0x310
[  129.194231][ T8018]  __x64_sys_fsetxattr+0x6b/0x80
[  129.194301][ T8018]  x64_sys_call+0x2f7c/0x2fb0
[  129.194347][ T8018]  do_syscall_64+0xd2/0x200
[  129.194440][ T8018]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  129.194523][ T8018]  ? clear_bhb_loop+0x40/0x90
[  129.194547][ T8018]  ? clear_bhb_loop+0x40/0x90
[  129.194573][ T8018]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.194592][ T8018] RIP: 0033:0x7fc70debe929
[  129.194605][ T8018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.194651][ T8018] RSP: 002b:00007fc70c527038 EFLAGS: 00000246 ORIG_RAX: 00000000000000be
[  129.194672][ T8018] RAX: ffffffffffffffda RBX: 00007fc70e0e5fa0 RCX: 00007fc70debe929
[  129.194748][ T8018] RDX: 00002000000001c0 RSI: 0000200000000000 RDI: 0000000000000003
[  129.194758][ T8018] RBP: 00007fc70c527090 R08: 0000000000000003 R09: 0000000000000000
[  129.194769][ T8018] R10: 0000000000000018 R11: 0000000000000246 R12: 0000000000000001
[  129.194779][ T8018] R13: 0000000000000000 R14: 00007fc70e0e5fa0 R15: 00007ffc35d9bb88
[  129.194802][ T8018]  </TASK>
[  129.486075][ T8024] loop0: detected capacity change from 0 to 8192
[  129.506350][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.513979][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.521403][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.531554][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.538990][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.546396][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.553814][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.561234][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.568644][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.576024][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.583475][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.590944][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.598387][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.688769][ T8035] loop2: detected capacity change from 0 to 512
[  129.726438][ T8030] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=8030 comm=syz.0.1496
[  129.748301][ T8035] EXT4-fs (loop2): failed to open journal device unknown-block(0,0) -6
[  129.778274][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.785730][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.793166][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.800730][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.808193][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.815651][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.823155][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.830654][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.838124][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.845547][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.852948][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.860382][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.867797][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.875277][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.882695][ T3559] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  129.892151][ T3559] hid-generic 0000:0000:0000.000C: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  129.929366][ T8043] FAULT_INJECTION: forcing a failure.
[  129.929366][ T8043] name failslab, interval 1, probability 0, space 0, times 0
[  129.942092][ T8043] CPU: 0 UID: 0 PID: 8043 Comm: syz.4.1502 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(voluntary) 
[  129.942124][ T8043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  129.942137][ T8043] Call Trace:
[  129.942145][ T8043]  <TASK>
[  129.942153][ T8043]  __dump_stack+0x1d/0x30
[  129.942228][ T8043]  dump_stack_lvl+0xe8/0x140
[  129.942250][ T8043]  dump_stack+0x15/0x1b
[  129.942268][ T8043]  should_fail_ex+0x265/0x280
[  129.942301][ T8043]  ? process_preds+0x9e9/0x2bb0
[  129.942323][ T8043]  should_failslab+0x8c/0xb0
[  129.942356][ T8043]  __kmalloc_cache_noprof+0x4c/0x320
[  129.942415][ T8043]  process_preds+0x9e9/0x2bb0
[  129.942477][ T8043]  ? avc_has_perm_noaudit+0x1b1/0x200
[  129.942511][ T8043]  ftrace_profile_set_filter+0xff/0x190
[  129.942592][ T8043]  perf_ioctl+0x7b3/0x12e0
[  129.942624][ T8043]  ? ioctl_has_perm+0x289/0x2a0
[  129.942721][ T8043]  ? do_vfs_ioctl+0xd1e/0x11d0
[  129.942750][ T8043]  ? selinux_file_ioctl+0x2e3/0x370
[  129.942784][ T8043]  ? __fget_files+0x184/0x1c0
[  129.942805][ T8043]  ? __pfx_perf_ioctl+0x10/0x10
[  129.942830][ T8043]  __se_sys_ioctl+0xce/0x140
[  129.942909][ T8043]  __x64_sys_ioctl+0x43/0x50
[  129.942935][ T8043]  x64_sys_call+0x19a8/0x2fb0
[  129.943028][ T8043]  do_syscall_64+0xd2/0x200
[  129.943082][ T8043]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  129.943107][ T8043]  ? clear_bhb_loop+0x40/0x90
[  129.943126][ T8043]  ? clear_bhb_loop+0x40/0x90
[  129.943190][ T8043]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  129.943210][ T8043] RIP: 0033:0x7ff10a28e929
[  129.943224][ T8043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  129.943240][ T8043] RSP: 002b:00007ff1088f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  129.943306][ T8043] RAX: ffffffffffffffda RBX: 00007ff10a4b5fa0 RCX: 00007ff10a28e929
[  129.943325][ T8043] RDX: 0000200000000000 RSI: 0000000040082406 RDI: 0000000000000003
[  129.943335][ T8043] RBP: 00007ff1088f7090 R08: 0000000000000000 R09: 0000000000000000
[  129.943346][ T8043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  129.943356][ T8043] R13: 0000000000000000 R14: 00007ff10a4b5fa0 R15: 00007ffd5bff96b8
[  129.943374][ T8043]  </TASK>
[  130.222500][ T8050] FAULT_INJECTION: forcing a failure.
[  130.222500][ T8050] name failslab, interval 1, probability 0, space 0, times 0
[  130.235267][ T8050] CPU: 1 UID: 0 PID: 8050 Comm: syz.0.1503 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(voluntary) 
[  130.235334][ T8050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  130.235349][ T8050] Call Trace:
[  130.235355][ T8050]  <TASK>
[  130.235405][ T8050]  __dump_stack+0x1d/0x30
[  130.235424][ T8050]  dump_stack_lvl+0xe8/0x140
[  130.235442][ T8050]  dump_stack+0x15/0x1b
[  130.235456][ T8050]  should_fail_ex+0x265/0x280
[  130.235522][ T8050]  should_failslab+0x8c/0xb0
[  130.235543][ T8050]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  130.235572][ T8050]  ? v9fs_session_init+0x78/0xde0
[  130.235611][ T8050]  kstrdup+0x3e/0xd0
[  130.235638][ T8050]  v9fs_session_init+0x78/0xde0
[  130.235667][ T8050]  ? obj_cgroup_charge_account+0x122/0x1a0
[  130.235698][ T8050]  ? __rcu_read_unlock+0x4f/0x70
[  130.235781][ T8050]  ? should_fail_ex+0xdb/0x280
[  130.235822][ T8050]  ? v9fs_mount+0x51/0x590
[  130.235856][ T8050]  ? should_failslab+0x8c/0xb0
[  130.235904][ T8050]  ? __kmalloc_cache_noprof+0x189/0x320
[  130.235938][ T8050]  v9fs_mount+0x67/0x590
[  130.235972][ T8050]  ? __pfx_v9fs_mount+0x10/0x10
[  130.236003][ T8050]  legacy_get_tree+0x78/0xd0
[  130.236050][ T8050]  vfs_get_tree+0x54/0x1d0
[  130.236094][ T8050]  do_new_mount+0x207/0x680
[  130.236173][ T8050]  path_mount+0x4a4/0xb20
[  130.236201][ T8050]  ? user_path_at+0x109/0x130
[  130.236232][ T8050]  __se_sys_mount+0x28f/0x2e0
[  130.236305][ T8050]  ? fput+0x8f/0xc0
[  130.236329][ T8050]  __x64_sys_mount+0x67/0x80
[  130.236393][ T8050]  x64_sys_call+0xd36/0x2fb0
[  130.236417][ T8050]  do_syscall_64+0xd2/0x200
[  130.236433][ T8050]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  130.236484][ T8050]  ? clear_bhb_loop+0x40/0x90
[  130.236561][ T8050]  ? clear_bhb_loop+0x40/0x90
[  130.236587][ T8050]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  130.236610][ T8050] RIP: 0033:0x7f819e06e929
[  130.236704][ T8050] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  130.236723][ T8050] RSP: 002b:00007f819c6d7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  130.236745][ T8050] RAX: ffffffffffffffda RBX: 00007f819e295fa0 RCX: 00007f819e06e929
[  130.236755][ T8050] RDX: 00002000000002c0 RSI: 0000200000000080 RDI: 0000000000000000
[  130.236765][ T8050] RBP: 00007f819c6d7090 R08: 0000200000000240 R09: 0000000000000000
[  130.236775][ T8050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  130.236842][ T8050] R13: 0000000000000000 R14: 00007f819e295fa0 R15: 00007ffc66de62e8
[  130.236865][ T8050]  </TASK>
[  130.606839][ T8058] loop0: detected capacity change from 0 to 512
[  130.617509][ T8058] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  130.642503][ T8058] EXT4-fs (loop0): 1 truncate cleaned up
[  130.654643][ T8069] loop4: detected capacity change from 0 to 512
[  130.657456][ T8058] EXT4-fs mount: 44 callbacks suppressed
[  130.657554][ T8058] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  130.665721][ T8072] loop3: detected capacity change from 0 to 512
[  130.679819][ T8069] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  130.694164][ T8069] EXT4-fs (loop4): bad geometry: block count 204800 exceeds size of device (64 blocks)
[  130.729298][ T8073] loop1: detected capacity change from 0 to 8192
[  130.771586][ T8072] EXT4-fs (loop3): failed to open journal device unknown-block(0,0) -6
[  130.802147][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.840630][ T8079] loop4: detected capacity change from 0 to 512
[  130.848887][ T8078] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=8078 comm=syz.1.1510
[  130.933245][ T8079] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.038432][ T8079] ext4 filesystem being mounted at /271/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  131.069797][ T8079] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.1515: corrupted inode contents
[  131.168981][ T8079] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #2: comm syz.4.1515: mark_inode_dirty error
[  131.180807][ T8079] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.1515: corrupted inode contents
[  131.193200][ T8079] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #2: comm syz.4.1515: mark_inode_dirty error
[  131.193375][ T8099] EXT4-fs (loop4): shut down requested (1)
[  131.288213][ T8105] netlink: 'syz.0.1526': attribute type 3 has an invalid length.
[  131.296154][ T8105] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1526'.
[  131.310413][ T8109] netlink: 'syz.3.1527': attribute type 11 has an invalid length.
[  131.318763][ T8109] netlink: 448 bytes leftover after parsing attributes in process `syz.3.1527'.
[  131.333104][ T8105] loop0: detected capacity change from 0 to 512
[  131.340927][ T8105] EXT4-fs (loop0): couldn't mount as ext2 due to feature incompatibilities
[  131.362417][ T8105] loop0: detected capacity change from 0 to 512
[  131.370891][ T8105] ext4: Unknown parameter 'euid>00000000000000000000'
[  131.379806][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.387299][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.394762][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.403179][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.410682][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.418309][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.423430][ T8113] loop0: detected capacity change from 0 to 512
[  131.425690][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.425728][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.425746][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.425779][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.425798][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.469337][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.476770][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.484489][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.491187][ T8113] EXT4-fs (loop0): failed to open journal device unknown-block(0,0) -6
[  131.491900][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.491923][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.491942][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.491961][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.491980][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.537370][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.544794][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.552243][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.559650][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.567104][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.574544][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.582055][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.589475][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.596869][ T3559] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  131.616669][ T3559] hid-generic 0000:0000:0000.000D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  131.666796][ T8121] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  131.678722][ T8119] loop9: detected capacity change from 0 to 7
[  131.684953][ T8119] Buffer I/O error on dev loop9, logical block 0, async page read
[  131.710926][   T29] kauditd_printk_skb: 666 callbacks suppressed
[  131.710940][   T29] audit: type=1326 audit(1751031972.846:9025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8122 comm="syz.0.1532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f819e06e929 code=0x7ffc0000
[  131.740615][   T29] audit: type=1326 audit(1751031972.846:9026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8122 comm="syz.0.1532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f819e06e929 code=0x7ffc0000
[  131.759623][ T8119] Buffer I/O error on dev loop9, logical block 0, async page read
[  131.772061][ T8119]  loop9: unable to read partition table
[  131.777866][ T8119] loop_reread_partitions: partition scan of loop9 (þ被üŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨�â·û
[  131.777866][ T8119] 
Uªÿÿÿÿÿÿ) failed (rc=-5)
[  131.866338][ T8134] loop0: detected capacity change from 0 to 128
[  131.889303][   T29] audit: type=1326 audit(1751031972.896:9027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8122 comm="syz.0.1532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f819e06e929 code=0x7ffc0000
[  131.912861][   T29] audit: type=1326 audit(1751031972.896:9028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8122 comm="syz.0.1532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f819e06e929 code=0x7ffc0000
[  131.936420][   T29] audit: type=1326 audit(1751031972.896:9029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8122 comm="syz.0.1532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f819e06e929 code=0x7ffc0000
[  131.959875][   T29] audit: type=1326 audit(1751031972.896:9030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8122 comm="syz.0.1532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f819e06e929 code=0x7ffc0000
[  131.983369][   T29] audit: type=1326 audit(1751031972.896:9031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8122 comm="syz.0.1532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f819e06e929 code=0x7ffc0000
[  132.006853][   T29] audit: type=1326 audit(1751031972.896:9032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8122 comm="syz.0.1532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f819e06e929 code=0x7ffc0000
[  132.030320][   T29] audit: type=1326 audit(1751031972.896:9033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8122 comm="syz.0.1532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f819e06e929 code=0x7ffc0000
[  132.053652][   T29] audit: type=1326 audit(1751031972.896:9034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8122 comm="syz.0.1532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f819e06e929 code=0x7ffc0000
[  132.155580][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.202563][ T8148] loop3: detected capacity change from 0 to 512
[  132.289398][ T8148] EXT4-fs (loop3): failed to open journal device unknown-block(0,0) -6
[  132.306401][ T8156] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1545'.
[  132.315433][ T8156] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1545'.
[  132.762519][ T8181] loop0: detected capacity change from 0 to 128
[  132.793607][ T8183] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  132.878517][ T8183] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.920169][ T8183] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  132.991419][ T8183] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  133.114133][ T8183] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  133.126343][ T8190] loop0: detected capacity change from 0 to 512
[  133.146956][ T8193] loop2: detected capacity change from 0 to 1024
[  133.154932][ T8190] EXT4-fs (loop0): failed to open journal device unknown-block(0,0) -6
[  133.169372][ T8193] netlink: 16 bytes leftover after parsing attributes in process `+}[@'.
[  133.198867][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.206304][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.213696][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.222098][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.229632][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.237188][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.244603][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.252028][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.259478][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.267023][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.274488][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.281934][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.289334][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.297591][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.305138][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.312759][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.320219][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.327683][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.335185][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.342733][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.350286][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.357673][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.365139][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.372621][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.380104][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.387589][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.395155][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.402653][ T3386] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  133.417344][ T8183] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  133.429795][ T8183] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  133.441000][ T8183] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  133.453624][ T8183] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  133.462297][ T3386] hid-generic 0000:0000:0000.000E: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  133.577702][ T8214] netlink: 'syz.1.1566': attribute type 11 has an invalid length.
[  133.587199][ T8214] netlink: 448 bytes leftover after parsing attributes in process `syz.1.1566'.
[  133.636012][ T8219] loop3: detected capacity change from 0 to 1024
[  133.683917][ T8219] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.715322][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.749403][ T8227] loop2: detected capacity change from 0 to 8192
[  133.769578][ T8230] loop1: detected capacity change from 0 to 8192
[  134.112051][ T8234] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=8234 comm=syz.2.1570
[  134.165070][ T8246] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  134.179821][ T8235] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=8235 comm=syz.1.1571
[  134.219504][ T8246] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.260602][ T8246] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.312636][ T8246] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.369962][ T8246] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.439858][ T8246] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  134.504929][ T8246] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  134.520806][ T8246] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  134.532670][ T8246] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  134.585804][ T8252] netlink: 'syz.0.1580': attribute type 11 has an invalid length.
[  134.605249][ T8256] loop4: detected capacity change from 0 to 1024
[  134.620783][ T8252] netlink: 448 bytes leftover after parsing attributes in process `syz.0.1580'.
[  134.631911][ T8256] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  134.681044][ T8268] loop2: detected capacity change from 0 to 1024
[  134.681348][ T8265] loop1: detected capacity change from 0 to 1024
[  134.687903][ T8268] ext3: Unknown parameter 'pcr'
[  134.701783][ T8265] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  134.711758][ T8265] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  134.724582][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.730203][ T8265] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  134.745486][ T8265] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: inode #5: comm syz.1.1584: unexpected bad inode w/o EXT4_IGET_BAD
[  134.768089][ T8275] loop2: detected capacity change from 0 to 512
[  134.775218][ T8275] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  134.788568][ T8275] EXT4-fs (loop2): 1 truncate cleaned up
[  134.794840][ T8275] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  134.818782][ T8265] EXT4-fs (loop1): no journal found
[  134.824130][ T8265] EXT4-fs (loop1): can't get journal size
[  134.866072][ T8265] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  134.879130][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.879360][ T8265] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.085737][ T8290] loop2: detected capacity change from 0 to 1024
[  135.130614][ T8290] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  135.140554][ T8290] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  135.190734][ T8286] loop4: detected capacity change from 0 to 8192
[  135.317861][ T8296] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=8296 comm=syz.4.1590
[  135.389953][ T8297] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1594'.
[  135.394003][ T8290] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  135.430307][ T8290] EXT4-fs error (device loop2): ext4_get_journal_inode:5796: inode #5: comm syz.2.1593: unexpected bad inode w/o EXT4_IGET_BAD
[  135.446249][ T8295] loop1: detected capacity change from 0 to 8192
[  135.464997][ T8290] EXT4-fs (loop2): no journal found
[  135.465080][ T8290] EXT4-fs (loop2): can't get journal size
[  135.645749][ T8290] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  135.646225][ T8290] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.718622][ T8298] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=8298 comm=syz.1.1592
[  135.806962][ T8304] loop0: detected capacity change from 0 to 1024
[  135.851277][ T8304] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.889878][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.903621][ T8312] loop2: detected capacity change from 0 to 512
[  135.968299][ T8312] EXT4-fs (loop2): failed to open journal device unknown-block(0,0) -6
[  136.015193][ T8322] loop0: detected capacity change from 0 to 512
[  136.073359][ T8326] loop1: detected capacity change from 0 to 1024
[  136.082235][ T8326] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  136.083480][ T8322] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.092100][ T8326] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  136.096346][ T8326] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  136.202849][ T8322] ext4 filesystem being mounted at /315/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.246635][ T8322] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #2: comm syz.0.1600: corrupted inode contents
[  136.247081][ T8326] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: inode #5: comm syz.1.1603: unexpected bad inode w/o EXT4_IGET_BAD
[  136.278930][ T8326] EXT4-fs (loop1): no journal found
[  136.279274][ T8322] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #2: comm syz.0.1600: mark_inode_dirty error
[  136.284260][ T8326] EXT4-fs (loop1): can't get journal size
[  136.310222][ T8326] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  136.329593][ T8326] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.353151][ T8333] loop3: detected capacity change from 0 to 512
[  136.361936][ T8322] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #2: comm syz.0.1600: corrupted inode contents
[  136.449609][ T8322] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #2: comm syz.0.1600: mark_inode_dirty error
[  136.461920][ T8336] EXT4-fs (loop0): shut down requested (1)
[  136.468570][ T8333] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  136.557895][ T8333] EXT4-fs (loop3): 1 truncate cleaned up
[  136.611295][ T8333] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  136.789856][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.833623][ T8341] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  136.855933][ T8341] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  136.866676][   T29] kauditd_printk_skb: 416 callbacks suppressed
[  136.866691][   T29] audit: type=1326 audit(1751031977.996:9451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8344 comm="syz.3.1608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70debe929 code=0x7ffc0000
[  136.896573][   T29] audit: type=1326 audit(1751031977.996:9452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8344 comm="syz.3.1608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70debe929 code=0x7ffc0000
[  136.939811][ T8341] FAULT_INJECTION: forcing a failure.
[  136.939811][ T8341] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  136.953125][ T8341] CPU: 1 UID: 0 PID: 8341 Comm: syz.1.1607 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(voluntary) 
[  136.953156][ T8341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  136.953170][ T8341] Call Trace:
[  136.953255][ T8341]  <TASK>
[  136.953261][ T8341]  __dump_stack+0x1d/0x30
[  136.953278][ T8341]  dump_stack_lvl+0xe8/0x140
[  136.953295][ T8341]  dump_stack+0x15/0x1b
[  136.953325][ T8341]  should_fail_ex+0x265/0x280
[  136.953444][ T8341]  should_fail+0xb/0x20
[  136.953472][ T8341]  should_fail_usercopy+0x1a/0x20
[  136.953499][ T8341]  _copy_from_iter+0xcf/0xe40
[  136.953602][ T8341]  ? __rcu_read_unlock+0x4f/0x70
[  136.953621][ T8341]  ? avc_has_perm_noaudit+0x1b1/0x200
[  136.953687][ T8341]  copy_page_from_iter+0x178/0x2a0
[  136.953758][ T8341]  ? anon_pipe_write+0x21/0xaa0
[  136.953778][ T8341]  anon_pipe_write+0x514/0xaa0
[  136.953814][ T8341]  ? anon_pipe_write+0x21/0xaa0
[  136.953845][ T8341]  ? __pfx_anon_pipe_write+0x10/0x10
[  136.953863][ T8341]  vfs_write+0x4a0/0x8e0
[  136.953978][ T8341]  ksys_write+0xda/0x1a0
[  136.954040][ T8341]  __x64_sys_write+0x40/0x50
[  136.954070][ T8341]  x64_sys_call+0x2cdd/0x2fb0
[  136.954090][ T8341]  do_syscall_64+0xd2/0x200
[  136.954109][ T8341]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  136.954149][ T8341]  ? clear_bhb_loop+0x40/0x90
[  136.954172][ T8341]  ? clear_bhb_loop+0x40/0x90
[  136.954235][ T8341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.954253][ T8341] RIP: 0033:0x7fe3483bd3df
[  136.954266][ T8341] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  136.954281][ T8341] RSP: 002b:00007fe346a24d30 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  136.954296][ T8341] RAX: ffffffffffffffda RBX: 0000000000000029 RCX: 00007fe3483bd3df
[  136.954306][ T8341] RDX: 0000000000000029 RSI: 00007fe346a24f30 RDI: 0000000000000002
[  136.954342][ T8341] RBP: 00007fe346a24f30 R08: 0000000000000000 R09: 0000000000000000
[  136.954355][ T8341] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000029
[  136.954367][ T8341] R13: 00007fe3485b4620 R14: 0000000000000029 R15: 00007fe3485b5c80
[  136.954389][ T8341]  </TASK>
[  137.172416][   T29] audit: type=1326 audit(1751031978.006:9453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8344 comm="syz.3.1608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc70debe929 code=0x7ffc0000
[  137.195860][   T29] audit: type=1326 audit(1751031978.006:9454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8344 comm="syz.3.1608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70debe929 code=0x7ffc0000
[  137.219406][   T29] audit: type=1326 audit(1751031978.006:9455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8344 comm="syz.3.1608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc70debe929 code=0x7ffc0000
[  137.242900][   T29] audit: type=1326 audit(1751031978.006:9456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8344 comm="syz.3.1608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70debe929 code=0x7ffc0000
[  137.266372][   T29] audit: type=1326 audit(1751031978.006:9457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8344 comm="syz.3.1608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70debe929 code=0x7ffc0000
[  137.289878][   T29] audit: type=1326 audit(1751031978.016:9458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8344 comm="syz.3.1608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc70debe929 code=0x7ffc0000
[  137.313340][   T29] audit: type=1326 audit(1751031978.016:9459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8344 comm="syz.3.1608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70debe929 code=0x7ffc0000
[  137.337151][   T29] audit: type=1326 audit(1751031978.016:9460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8344 comm="syz.3.1608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70debe929 code=0x7ffc0000
[  137.394614][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.402123][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.409587][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.421651][ T8357] loop1: detected capacity change from 0 to 128
[  137.428752][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.436182][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.443778][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.451194][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.458613][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.466078][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.473512][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.480997][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.488406][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.495807][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.536470][ T8359] loop4: detected capacity change from 0 to 8192
[  137.543363][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.548852][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.550808][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.567131][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.574633][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.582053][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.589474][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.596976][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.604396][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.611860][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.619281][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.626748][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.634172][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.641605][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.649075][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.656465][ T1035] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  137.664680][ T1035] hid-generic 0000:0000:0000.000F: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  137.710125][ T8362] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=8362 comm=syz.4.1613
[  137.756997][ T8368] loop1: detected capacity change from 0 to 1024
[  137.776272][ T8368] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  137.786145][ T8368] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  137.799282][ T8368] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  137.804949][ T8370] netlink: 228 bytes leftover after parsing attributes in process `syz.0.1620'.
[  137.809931][ T8368] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: inode #5: comm syz.1.1618: unexpected bad inode w/o EXT4_IGET_BAD
[  137.843446][ T8368] EXT4-fs (loop1): no journal found
[  137.848829][ T8368] EXT4-fs (loop1): can't get journal size
[  137.860230][ T8370] loop0: detected capacity change from 0 to 1024
[  137.882905][ T8368] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  137.895963][ T8368] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.165018][ T8392] loop1: detected capacity change from 0 to 512
[  138.198323][ T8392] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.246388][ T8392] ext4 filesystem being mounted at /362/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  138.263713][ T8392] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #2: comm syz.1.1628: corrupted inode contents
[  138.305593][ T8399] loop0: detected capacity change from 0 to 512
[  138.327461][ T8392] EXT4-fs error (device loop1): ext4_dirty_inode:6459: inode #2: comm syz.1.1628: mark_inode_dirty error
[  138.353335][ T8399] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  138.370724][ T8392] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #2: comm syz.1.1628: corrupted inode contents
[  138.371824][ T8400] EXT4-fs (loop1): shut down requested (1)
[  138.385632][ T8399] EXT4-fs (loop0): 1 truncate cleaned up
[  138.394823][ T8399] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.417876][ T8407] FAULT_INJECTION: forcing a failure.
[  138.417876][ T8407] name failslab, interval 1, probability 0, space 0, times 0
[  138.430670][ T8407] CPU: 1 UID: 0 PID: 8407 Comm: syz.4.1633 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(voluntary) 
[  138.430699][ T8407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  138.430713][ T8407] Call Trace:
[  138.430719][ T8407]  <TASK>
[  138.430725][ T8407]  __dump_stack+0x1d/0x30
[  138.430747][ T8407]  dump_stack_lvl+0xe8/0x140
[  138.430816][ T8407]  dump_stack+0x15/0x1b
[  138.430834][ T8407]  should_fail_ex+0x265/0x280
[  138.430867][ T8407]  should_failslab+0x8c/0xb0
[  138.430892][ T8407]  kmem_cache_alloc_node_noprof+0x57/0x320
[  138.430937][ T8407]  ? __alloc_skb+0x101/0x320
[  138.430972][ T8407]  __alloc_skb+0x101/0x320
[  138.431015][ T8407]  netlink_alloc_large_skb+0xba/0xf0
[  138.431049][ T8407]  netlink_sendmsg+0x3cf/0x6b0
[  138.431072][ T8407]  ? __pfx_netlink_sendmsg+0x10/0x10
[  138.431093][ T8407]  __sock_sendmsg+0x142/0x180
[  138.431143][ T8407]  ____sys_sendmsg+0x31e/0x4e0
[  138.431217][ T8407]  ___sys_sendmsg+0x17b/0x1d0
[  138.431288][ T8407]  __x64_sys_sendmsg+0xd4/0x160
[  138.431327][ T8407]  x64_sys_call+0x2999/0x2fb0
[  138.431364][ T8407]  do_syscall_64+0xd2/0x200
[  138.431384][ T8407]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  138.431418][ T8407]  ? clear_bhb_loop+0x40/0x90
[  138.431442][ T8407]  ? clear_bhb_loop+0x40/0x90
[  138.431461][ T8407]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  138.431480][ T8407] RIP: 0033:0x7ff10a28e929
[  138.431493][ T8407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  138.431545][ T8407] RSP: 002b:00007ff1088f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  138.431562][ T8407] RAX: ffffffffffffffda RBX: 00007ff10a4b5fa0 RCX: 00007ff10a28e929
[  138.431572][ T8407] RDX: 0000000000000000 RSI: 0000200000000580 RDI: 0000000000000004
[  138.431632][ T8407] RBP: 00007ff1088f7090 R08: 0000000000000000 R09: 0000000000000000
[  138.431657][ T8407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  138.431670][ T8407] R13: 0000000000000000 R14: 00007ff10a4b5fa0 R15: 00007ffd5bff96b8
[  138.431722][ T8407]  </TASK>
[  138.659085][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.680354][ T8408] loop3: detected capacity change from 0 to 8192
[  138.715452][ T8411] loop0: detected capacity change from 0 to 1024
[  138.732003][ T8411] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  138.741828][ T8411] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  138.757467][ T8411] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  138.826789][ T8415] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=8415 comm=syz.3.1632
[  138.840336][ T8411] EXT4-fs error (device loop0): ext4_get_journal_inode:5796: inode #5: comm syz.0.1634: unexpected bad inode w/o EXT4_IGET_BAD
[  138.853877][ T8411] EXT4-fs (loop0): no journal found
[  138.859199][ T8411] EXT4-fs (loop0): can't get journal size
[  138.867955][ T8411] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  138.888399][ T8411] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.003041][ T8428] loop2: detected capacity change from 0 to 8192
[  139.150051][ T8433] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=8433 comm=syz.2.1640
[  139.350511][ T8435] netlink: 'syz.3.1643': attribute type 11 has an invalid length.
[  139.373783][ T8435] netlink: 448 bytes leftover after parsing attributes in process `syz.3.1643'.
[  139.665612][ T8440] loop4: detected capacity change from 0 to 512
[  139.685297][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.688237][ T8440] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  139.713698][ T8440] EXT4-fs (loop4): 1 truncate cleaned up
[  139.723192][ T8442] loop3: detected capacity change from 0 to 8192
[  139.730863][ T8440] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.753133][ T8445] loop1: detected capacity change from 0 to 128
[  139.761554][ T8445] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a842c018, mo2=0002]
[  139.777990][ T8445] System zones: 1-3, 19-19, 35-36
[  139.784414][ T8445] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  139.785075][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  139.806316][ T8445] ext4 filesystem being mounted at /363/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  139.837129][ T8451] batman_adv: batadv0: Removing interface: batadv_slave_0
[  139.850307][ T8451] batman_adv: batadv0: Removing interface: batadv_slave_1
[  139.865148][ T3305] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  139.960237][ T8463] loop4: detected capacity change from 0 to 8192
[  139.965415][ T8465] loop1: detected capacity change from 0 to 1024
[  139.974299][ T8465] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  139.984174][ T8465] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  140.003931][ T8465] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  140.036225][ T8465] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: inode #5: comm syz.1.1652: unexpected bad inode w/o EXT4_IGET_BAD
[  140.060029][ T8467] loop0: detected capacity change from 0 to 8192
[  140.061568][ T8468] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=8468 comm=syz.4.1653
[  140.068419][ T8465] EXT4-fs (loop1): no journal found
[  140.084397][ T8465] EXT4-fs (loop1): can't get journal size
[  140.098057][ T8465] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  140.113444][ T8465] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  140.192045][ T8472] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=8472 comm=syz.0.1654
[  140.233997][ T8475] loop1: detected capacity change from 0 to 512
[  140.261241][ T8475] EXT4-fs (loop1): failed to open journal device unknown-block(0,0) -6
[  140.669430][ T8486] loop1: detected capacity change from 0 to 512
[  140.693429][ T8486] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  140.709470][ T8486] ext4 filesystem being mounted at /367/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.721740][ T8486] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #2: comm syz.1.1658: corrupted inode contents
[  140.733902][ T8486] EXT4-fs error (device loop1): ext4_dirty_inode:6459: inode #2: comm syz.1.1658: mark_inode_dirty error
[  140.745605][ T8486] EXT4-fs error (device loop1): ext4_do_update_inode:5568: inode #2: comm syz.1.1658: corrupted inode contents
[  140.758272][ T8486] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.1658: mark_inode_dirty error
[  140.778274][ T8489] EXT4-fs (loop1): shut down requested (1)
[  140.838793][ T8492] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.901155][ T8492] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.960621][ T8494] loop3: detected capacity change from 0 to 8192
[  140.961643][ T8492] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.008013][ T8500] loop0: detected capacity change from 0 to 8192
[  141.064033][ T8492] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.081497][ T8494] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=8494 comm=syz.3.1659
[  141.150877][ T8492] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  141.169375][ T8505] loop0: detected capacity change from 0 to 512
[  141.182572][ T8492] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  141.189444][ T8507] loop3: detected capacity change from 0 to 1024
[  141.197837][ T8507] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  141.205421][ T8492] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  141.207686][ T8507] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  141.218115][ T8507] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  141.240517][ T8505] EXT4-fs (loop0): failed to open journal device unknown-block(0,0) -6
[  141.255369][ T8507] EXT4-fs error (device loop3): ext4_get_journal_inode:5796: inode #5: comm syz.3.1666: unexpected bad inode w/o EXT4_IGET_BAD
[  141.270661][ T8492] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  141.279560][ T8507] EXT4-fs (loop3): no journal found
[  141.284804][ T8507] EXT4-fs (loop3): can't get journal size
[  141.302500][ T8507] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  141.326719][ T8507] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.479557][ T8517] FAULT_INJECTION: forcing a failure.
[  141.479557][ T8517] name failslab, interval 1, probability 0, space 0, times 0
[  141.492353][ T8517] CPU: 0 UID: 0 PID: 8517 Comm: syz.3.1668 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(voluntary) 
[  141.492377][ T8517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  141.492388][ T8517] Call Trace:
[  141.492393][ T8517]  <TASK>
[  141.492398][ T8517]  __dump_stack+0x1d/0x30
[  141.492467][ T8517]  dump_stack_lvl+0xe8/0x140
[  141.492527][ T8517]  dump_stack+0x15/0x1b
[  141.492545][ T8517]  should_fail_ex+0x265/0x280
[  141.492578][ T8517]  should_failslab+0x8c/0xb0
[  141.492646][ T8517]  kmem_cache_alloc_node_noprof+0x57/0x320
[  141.492677][ T8517]  ? __alloc_skb+0x101/0x320
[  141.492757][ T8517]  __alloc_skb+0x101/0x320
[  141.492802][ T8517]  netlink_alloc_large_skb+0xba/0xf0
[  141.492851][ T8517]  netlink_sendmsg+0x3cf/0x6b0
[  141.492869][ T8517]  ? __pfx_netlink_sendmsg+0x10/0x10
[  141.492885][ T8517]  __sock_sendmsg+0x142/0x180
[  141.492936][ T8517]  __sys_sendto+0x268/0x330
[  141.492971][ T8517]  __x64_sys_sendto+0x76/0x90
[  141.492996][ T8517]  x64_sys_call+0x2eb6/0x2fb0
[  141.493034][ T8517]  do_syscall_64+0xd2/0x200
[  141.493053][ T8517]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  141.493086][ T8517]  ? clear_bhb_loop+0x40/0x90
[  141.493151][ T8517]  ? clear_bhb_loop+0x40/0x90
[  141.493237][ T8517]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.493258][ T8517] RIP: 0033:0x7fc70debe929
[  141.493270][ T8517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.493293][ T8517] RSP: 002b:00007fc70c527038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  141.493312][ T8517] RAX: ffffffffffffffda RBX: 00007fc70e0e5fa0 RCX: 00007fc70debe929
[  141.493326][ T8517] RDX: 0000000000000090 RSI: 00002000000000c0 RDI: 0000000000000003
[  141.493340][ T8517] RBP: 00007fc70c527090 R08: 0000000000000000 R09: 0000000000000000
[  141.493429][ T8517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  141.493439][ T8517] R13: 0000000000000000 R14: 00007fc70e0e5fa0 R15: 00007ffc35d9bb88
[  141.493459][ T8517]  </TASK>
[  141.831537][ T8524] FAULT_INJECTION: forcing a failure.
[  141.831537][ T8524] name failslab, interval 1, probability 0, space 0, times 0
[  141.844318][ T8524] CPU: 0 UID: 0 PID: 8524 Comm: syz.2.1671 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(voluntary) 
[  141.844347][ T8524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  141.844359][ T8524] Call Trace:
[  141.844366][ T8524]  <TASK>
[  141.844374][ T8524]  __dump_stack+0x1d/0x30
[  141.844397][ T8524]  dump_stack_lvl+0xe8/0x140
[  141.844419][ T8524]  dump_stack+0x15/0x1b
[  141.844510][ T8524]  should_fail_ex+0x265/0x280
[  141.844536][ T8524]  ? sctp_add_bind_addr+0x71/0x1e0
[  141.844604][ T8524]  should_failslab+0x8c/0xb0
[  141.844628][ T8524]  __kmalloc_cache_noprof+0x4c/0x320
[  141.844755][ T8524]  sctp_add_bind_addr+0x71/0x1e0
[  141.844780][ T8524]  sctp_copy_local_addr_list+0x199/0x220
[  141.844809][ T8524]  sctp_copy_one_addr+0x7f/0x280
[  141.844864][ T8524]  sctp_bind_addr_copy+0x79/0x290
[  141.844884][ T8524]  sctp_assoc_set_bind_addr_from_ep+0xce/0xe0
[  141.844915][ T8524]  sctp_connect_new_asoc+0x1c3/0x3a0
[  141.844969][ T8524]  sctp_sendmsg+0xf10/0x18d0
[  141.844993][ T8524]  ? selinux_socket_sendmsg+0x171/0x1b0
[  141.845077][ T8524]  ? __pfx_sctp_sendmsg+0x10/0x10
[  141.845106][ T8524]  inet_sendmsg+0xc2/0xd0
[  141.845143][ T8524]  __sock_sendmsg+0x102/0x180
[  141.845217][ T8524]  __sys_sendto+0x268/0x330
[  141.845257][ T8524]  __x64_sys_sendto+0x76/0x90
[  141.845289][ T8524]  x64_sys_call+0x2eb6/0x2fb0
[  141.845334][ T8524]  do_syscall_64+0xd2/0x200
[  141.845352][ T8524]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  141.845382][ T8524]  ? clear_bhb_loop+0x40/0x90
[  141.845405][ T8524]  ? clear_bhb_loop+0x40/0x90
[  141.845476][ T8524]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.845498][ T8524] RIP: 0033:0x7fe58772e929
[  141.845513][ T8524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  141.845532][ T8524] RSP: 002b:00007fe585d97038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  141.845589][ T8524] RAX: ffffffffffffffda RBX: 00007fe587955fa0 RCX: 00007fe58772e929
[  141.845602][ T8524] RDX: 0000000000020000 RSI: 0000200000847fff RDI: 0000000000000008
[  141.845612][ T8524] RBP: 00007fe585d97090 R08: 000020000005ffe4 R09: 000000000000001c
[  141.845622][ T8524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  141.845632][ T8524] R13: 0000000000000000 R14: 00007fe587955fa0 R15: 00007ffdcf4342e8
[  141.845648][ T8524]  </TASK>
[  142.259449][   T29] kauditd_printk_skb: 688 callbacks suppressed
[  142.259463][   T29] audit: type=1326 audit(1751031983.396:10147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8532 comm="syz.2.1674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe58772e929 code=0x7ffc0000
[  142.291507][ T8535] netlink: 'syz.3.1669': attribute type 4 has an invalid length.
[  142.338788][ T8530] netlink: 'syz.3.1669': attribute type 4 has an invalid length.
[  142.378215][   T29] audit: type=1326 audit(1751031983.426:10148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8532 comm="syz.2.1674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe58772e929 code=0x7ffc0000
[  142.401977][   T29] audit: type=1326 audit(1751031983.456:10149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8532 comm="syz.2.1674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fe58772e929 code=0x7ffc0000
[  142.425494][   T29] audit: type=1326 audit(1751031983.456:10150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8532 comm="syz.2.1674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fe58772e963 code=0x7ffc0000
[  142.439573][ T8533] loop2: detected capacity change from 0 to 8192
[  142.448851][   T29] audit: type=1326 audit(1751031983.496:10151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8532 comm="syz.2.1674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fe58772d3df code=0x7ffc0000
[  142.526609][ T3386] lo speed is unknown, defaulting to 1000
[  142.532435][ T3386] syz0: Port: 1 Link ACTIVE
[  142.538069][ T8530] program syz.3.1669 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  142.565064][ T8530] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=5120 sclass=netlink_xfrm_socket pid=8530 comm=syz.3.1669
[  142.577818][   T29] audit: type=1326 audit(1751031983.566:10152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8532 comm="syz.2.1674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fe58772e9b7 code=0x7ffc0000
[  142.601382][   T29] audit: type=1326 audit(1751031983.566:10153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8532 comm="syz.2.1674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe58772d290 code=0x7ffc0000
[  142.624884][   T29] audit: type=1326 audit(1751031983.566:10154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8532 comm="syz.2.1674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fe58772e52b code=0x7ffc0000
[  142.648316][   T29] audit: type=1326 audit(1751031983.646:10155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8532 comm="syz.2.1674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fe58772d58a code=0x7ffc0000
[  142.671710][   T29] audit: type=1326 audit(1751031983.646:10156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8532 comm="syz.2.1674" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fe58772d58a code=0x7ffc0000
[  142.721987][ T8539] loop0: detected capacity change from 0 to 512
[  142.735837][ T8542] netlink: 'syz.3.1677': attribute type 11 has an invalid length.
[  142.744406][ T8539] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  142.775945][ T8542] netlink: 448 bytes leftover after parsing attributes in process `syz.3.1677'.
[  142.795360][ T8539] EXT4-fs (loop0): 1 truncate cleaned up
[  142.806231][ T8539] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.906287][ T3313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.918539][ T8550] loop3: detected capacity change from 0 to 1024
[  142.926804][ T8550] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  142.936695][ T8550] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  142.960610][ T8550] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  142.986748][ T8550] EXT4-fs error (device loop3): ext4_get_journal_inode:5796: inode #5: comm syz.3.1679: unexpected bad inode w/o EXT4_IGET_BAD
[  143.004379][ T8552] loop2: detected capacity change from 0 to 512
[  143.011469][ T8552] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  143.022895][ T8550] EXT4-fs (loop3): no journal found
[  143.028233][ T8550] EXT4-fs (loop3): can't get journal size
[  143.041011][ T8552] EXT4-fs (loop2): 1 truncate cleaned up
[  143.047146][ T8552] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.072622][ T8556] netlink: 164 bytes leftover after parsing attributes in process `syz.0.1682'.
[  143.090397][ T8550] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  143.121841][ T8550] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.246530][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.266005][ T3304] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.353680][ T8579] lo speed is unknown, defaulting to 1000
[  143.487903][ T8580] loop2: detected capacity change from 0 to 8192
[  143.651054][ T8596] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=8596 comm=syz.2.1688
[  143.787886][ T8601] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=8601 comm=syz.1.1693
[  143.957676][ T8604] loop3: detected capacity change from 0 to 512
[  144.006137][ T8604] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.088429][ T8604] ext4 filesystem being mounted at /322/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  144.124860][ T8604] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.1696: corrupted inode contents
[  144.151142][ T8604] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #2: comm syz.3.1696: mark_inode_dirty error
[  144.182863][ T8604] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.1696: corrupted inode contents
[  144.220393][ T8614] EXT4-fs (loop3): shut down requested (1)
[  144.226348][ T8617] loop2: detected capacity change from 0 to 512
[  144.235044][ T8618] loop1: detected capacity change from 0 to 512
[  144.293214][ T8618] EXT4-fs (loop1): failed to open journal device unknown-block(0,0) -6
[  144.310840][ T8617] EXT4-fs (loop2): failed to open journal device unknown-block(0,0) -6
[  144.497343][ T8630] loop4: detected capacity change from 0 to 1764
[  144.641952][ T8633] loop0: detected capacity change from 0 to 128
[  144.665135][ T8633] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  144.680007][ T8633] ext4 filesystem being mounted at /338/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  145.203568][ T8653] loop1: detected capacity change from 0 to 512
[  145.219367][ T8653] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  145.248199][ T8653] EXT4-fs (loop1): 1 truncate cleaned up
[  145.254346][ T8653] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.303896][ T3305] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.331898][ T8658] netlink: 240 bytes leftover after parsing attributes in process `syz.2.1712'.
[  145.374319][ T3313] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  145.392762][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.441209][ T8668] loop2: detected capacity change from 0 to 512
[  145.441321][ T8667] loop3: detected capacity change from 0 to 1024
[  145.459397][ T8667] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  145.469209][ T8667] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  145.487264][ T8667] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  145.505989][ T8668] EXT4-fs (loop2): failed to open journal device unknown-block(0,0) -6
[  145.506974][ T8667] EXT4-fs error (device loop3): ext4_get_journal_inode:5796: inode #5: comm syz.3.1715: unexpected bad inode w/o EXT4_IGET_BAD
[  145.529623][ T8667] EXT4-fs (loop3): no journal found
[  145.534850][ T8667] EXT4-fs (loop3): can't get journal size
[  145.547808][ T8667] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  145.560763][ T8667] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.561364][ T8675] loop1: detected capacity change from 0 to 1024
[  145.577151][ T8675] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  145.587134][ T8675] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  145.599160][ T8675] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  145.610017][ T8675] EXT4-fs error (device loop1): ext4_get_journal_inode:5796: inode #5: comm syz.1.1720: unexpected bad inode w/o EXT4_IGET_BAD
[  145.623599][ T8675] EXT4-fs (loop1): no journal found
[  145.628966][ T8675] EXT4-fs (loop1): can't get journal size
[  145.635479][ T8675] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  145.648544][ T8675] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.665040][ T8685] loop3: detected capacity change from 0 to 512
[  145.671958][ T8685] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  145.685100][ T8685] EXT4-fs (loop3): 1 truncate cleaned up
[  145.691397][ T8685] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.714907][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.732772][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.740434][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.747948][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.755752][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.763378][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.770993][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.778472][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.785914][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.793406][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.800894][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.808323][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.815714][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.823199][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.831359][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.838817][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.846215][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.853626][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.861077][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.868491][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.875876][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.883310][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.889927][ T8696] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=8696 comm=syz.1.1723
[  145.890728][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.910831][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.918238][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.925697][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.933130][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.940548][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.948031][ T3386] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  145.972765][ T3386] hid-generic 0000:0000:0000.0010: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  145.989163][ T8698] FAULT_INJECTION: forcing a failure.
[  145.989163][ T8698] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  146.002261][ T8698] CPU: 1 UID: 0 PID: 8698 Comm: syz.0.1725 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(voluntary) 
[  146.002335][ T8698] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  146.002349][ T8698] Call Trace:
[  146.002356][ T8698]  <TASK>
[  146.002363][ T8698]  __dump_stack+0x1d/0x30
[  146.002386][ T8698]  dump_stack_lvl+0xe8/0x140
[  146.002403][ T8698]  dump_stack+0x15/0x1b
[  146.002449][ T8698]  should_fail_ex+0x265/0x280
[  146.002478][ T8698]  should_fail+0xb/0x20
[  146.002501][ T8698]  should_fail_usercopy+0x1a/0x20
[  146.002529][ T8698]  _copy_from_iter+0xcf/0xe40
[  146.002627][ T8698]  ? __build_skb_around+0x1a0/0x200
[  146.002653][ T8698]  ? __alloc_skb+0x223/0x320
[  146.002681][ T8698]  netlink_sendmsg+0x471/0x6b0
[  146.002704][ T8698]  ? __pfx_netlink_sendmsg+0x10/0x10
[  146.002765][ T8698]  __sock_sendmsg+0x142/0x180
[  146.002805][ T8698]  ____sys_sendmsg+0x31e/0x4e0
[  146.002844][ T8698]  ___sys_sendmsg+0x17b/0x1d0
[  146.002963][ T8698]  __x64_sys_sendmsg+0xd4/0x160
[  146.003005][ T8698]  x64_sys_call+0x2999/0x2fb0
[  146.003058][ T8698]  do_syscall_64+0xd2/0x200
[  146.003132][ T8698]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  146.003168][ T8698]  ? clear_bhb_loop+0x40/0x90
[  146.003185][ T8698]  ? clear_bhb_loop+0x40/0x90
[  146.003241][ T8698]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  146.003259][ T8698] RIP: 0033:0x7f819e06e929
[  146.003272][ T8698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  146.003347][ T8698] RSP: 002b:00007f819c6d7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  146.003367][ T8698] RAX: ffffffffffffffda RBX: 00007f819e295fa0 RCX: 00007f819e06e929
[  146.003394][ T8698] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000000000000007
[  146.003404][ T8698] RBP: 00007f819c6d7090 R08: 0000000000000000 R09: 0000000000000000
[  146.003416][ T8698] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  146.003450][ T8698] R13: 0000000000000000 R14: 00007f819e295fa0 R15: 00007ffc66de62e8
[  146.003472][ T8698]  </TASK>
[  146.214547][ T8700] loop2: detected capacity change from 0 to 8192
[  146.344253][ T8716] loop2: detected capacity change from 0 to 1024
[  146.351380][ T8716] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  146.361362][ T8716] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  146.371794][ T8721] loop3: detected capacity change from 0 to 512
[  146.372302][ T8716] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  146.389778][ T8716] EXT4-fs error (device loop2): ext4_get_journal_inode:5796: inode #5: comm syz.2.1734: unexpected bad inode w/o EXT4_IGET_BAD
[  146.412318][ T8716] EXT4-fs (loop2): no journal found
[  146.417557][ T8716] EXT4-fs (loop2): can't get journal size
[  146.424670][ T8716] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  146.438615][ T8716] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.457166][ T8721] EXT4-fs (loop3): failed to open journal device unknown-block(0,0) -6
[  146.653800][ T8734] lo speed is unknown, defaulting to 1000
[  146.695793][ T8734] loop4: detected capacity change from 0 to 512
[  146.703388][ T8734] EXT4-fs: Ignoring removed mblk_io_submit option
[  146.709913][ T8734] EXT4-fs: Ignoring removed bh option
[  146.718734][ T8734] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  146.730627][ T8734] EXT4-fs (loop4): 1 truncate cleaned up
[  146.752018][ T8734] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.818741][ T8739] loop3: detected capacity change from 0 to 8192
[  146.970687][ T8743] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=8743 comm=syz.3.1739
[  147.296513][ T8750] FAULT_INJECTION: forcing a failure.
[  147.296513][ T8750] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  147.309688][ T8750] CPU: 0 UID: 0 PID: 8750 Comm: syz.1.1742 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(voluntary) 
[  147.309725][ T8750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  147.309741][ T8750] Call Trace:
[  147.309749][ T8750]  <TASK>
[  147.309758][ T8750]  __dump_stack+0x1d/0x30
[  147.309862][ T8750]  dump_stack_lvl+0xe8/0x140
[  147.309948][ T8750]  dump_stack+0x15/0x1b
[  147.309969][ T8750]  should_fail_ex+0x265/0x280
[  147.310029][ T8750]  should_fail+0xb/0x20
[  147.310056][ T8750]  should_fail_usercopy+0x1a/0x20
[  147.310093][ T8750]  _copy_from_user+0x1c/0xb0
[  147.310114][ T8750]  ___sys_sendmsg+0xc1/0x1d0
[  147.310228][ T8750]  __x64_sys_sendmsg+0xd4/0x160
[  147.310296][ T8750]  x64_sys_call+0x2999/0x2fb0
[  147.310325][ T8750]  do_syscall_64+0xd2/0x200
[  147.310348][ T8750]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  147.310382][ T8750]  ? clear_bhb_loop+0x40/0x90
[  147.310491][ T8750]  ? clear_bhb_loop+0x40/0x90
[  147.310598][ T8750]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  147.310685][ T8750] RIP: 0033:0x7fe3483be929
[  147.310702][ T8750] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  147.310719][ T8750] RSP: 002b:00007fe346a27038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  147.310741][ T8750] RAX: ffffffffffffffda RBX: 00007fe3485e5fa0 RCX: 00007fe3483be929
[  147.310816][ T8750] RDX: 0000000020008000 RSI: 0000200000000500 RDI: 0000000000000005
[  147.310832][ T8750] RBP: 00007fe346a27090 R08: 0000000000000000 R09: 0000000000000000
[  147.310848][ T8750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  147.310888][ T8750] R13: 0000000000000000 R14: 00007fe3485e5fa0 R15: 00007ffe67010bc8
[  147.310915][ T8750]  </TASK>
[  147.664996][ T8756] loop1: detected capacity change from 0 to 8192
[  147.755693][   T29] kauditd_printk_skb: 690 callbacks suppressed
[  147.755709][   T29] audit: type=1326 audit(1751031988.886:10845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8759 comm="syz.2.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe58772e929 code=0x7ffc0000
[  147.787743][   T29] audit: type=1326 audit(1751031988.886:10846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8762 comm="syz.3.1746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70debe929 code=0x7ffc0000
[  147.811528][   T29] audit: type=1326 audit(1751031988.886:10847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8762 comm="syz.3.1746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7fc70debe929 code=0x7ffc0000
[  147.835188][   T29] audit: type=1326 audit(1751031988.886:10848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8762 comm="syz.3.1746" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc70debe929 code=0x7ffc0000
[  147.858819][   T29] audit: type=1326 audit(1751031988.926:10849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8759 comm="syz.2.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe58772e929 code=0x7ffc0000
[  147.882428][   T29] audit: type=1326 audit(1751031988.926:10850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8759 comm="syz.2.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe58772e929 code=0x7ffc0000
[  147.906127][   T29] audit: type=1326 audit(1751031988.926:10851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8759 comm="syz.2.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe58772e929 code=0x7ffc0000
[  147.929724][   T29] audit: type=1326 audit(1751031988.926:10852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8759 comm="syz.2.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=51 compat=0 ip=0x7fe58772e929 code=0x7ffc0000
[  147.933380][ T8768] loop3: detected capacity change from 0 to 512
[  147.953127][   T29] audit: type=1326 audit(1751031988.926:10853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8759 comm="syz.2.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe58772e929 code=0x7ffc0000
[  147.953166][   T29] audit: type=1326 audit(1751031988.926:10854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8759 comm="syz.2.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe58772e929 code=0x7ffc0000
[  147.982589][ T8768] EXT4-fs (loop3): failed to open journal device unknown-block(0,0) -6
[  148.055675][ T3312] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.128814][ T8782] x_tables: ip6_tables: tcpmss match: only valid for protocol 6
[  148.313881][ T8795] netlink: 'syz.4.1756': attribute type 3 has an invalid length.
[  148.728986][ T8801] loop2: detected capacity change from 0 to 1024
[  148.736810][ T8801] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  148.746691][ T8801] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  148.758056][ T8801] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  148.771063][ T8801] EXT4-fs error (device loop2): ext4_get_journal_inode:5796: inode #5: comm syz.2.1760: unexpected bad inode w/o EXT4_IGET_BAD
[  148.785038][ T8801] EXT4-fs (loop2): no journal found
[  148.790342][ T8801] EXT4-fs (loop2): can't get journal size
[  148.799246][ T8801] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  148.814896][ T8801] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.230348][ T8821] loop2: detected capacity change from 0 to 512
[  149.635865][ T8827] lo speed is unknown, defaulting to 1000
[  149.711045][ T8830] loop1: detected capacity change from 0 to 512
[  149.740482][ T8821] EXT4-fs (loop2): failed to open journal device unknown-block(0,0) -6
[  149.752779][ T8830] EXT4-fs: Ignoring removed mblk_io_submit option
[  149.759487][ T8830] EXT4-fs: Ignoring removed bh option
[  149.812246][ T8830] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  149.863530][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  149.871061][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  149.878615][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  149.909897][ T8830] EXT4-fs (loop1): 1 truncate cleaned up
[  149.917215][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  149.924737][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  149.932150][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  149.939551][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  149.947055][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  149.954506][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  149.961928][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  149.969431][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  149.976819][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  149.984274][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  150.327963][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  150.335459][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  150.342945][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  150.350357][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  150.357851][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  150.365309][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  150.372719][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  150.380209][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  150.387669][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  150.395087][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  150.402603][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  150.410181][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  150.417583][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  150.425134][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  150.432592][ T3559] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  150.541015][ T3559] hid-generic 0000:0000:0000.0011: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  150.557320][ T8855] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  150.580491][ T8855] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  150.634736][ T8864] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1778'.
[  150.645549][ T8860] loop4: detected capacity change from 0 to 1024
[  150.736320][ T8876] loop4: detected capacity change from 0 to 1024
[  150.842412][ T8876] SET target dimension over the limit!
[  151.491505][ T8895] loop1: detected capacity change from 0 to 8192
[  151.631331][ T8898] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=8898 comm=syz.2.1785
[  151.976419][ T8906] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1790'.
[  151.992489][ T8908] loop1: detected capacity change from 0 to 1024
[  152.098068][ T8914] loop1: detected capacity change from 0 to 1024
[  152.159815][ T8920] netlink: 'syz.4.1795': attribute type 11 has an invalid length.
[  152.168401][ T8920] netlink: 448 bytes leftover after parsing attributes in process `syz.4.1795'.
[  152.224643][ T8914] SET target dimension over the limit!
[  152.341456][ T8940] loop0: detected capacity change from 0 to 1024
[  152.351766][ T8936] loop2: detected capacity change from 0 to 512
[  152.383715][ T8947] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  152.385603][ T8936] ext4 filesystem being mounted at /383/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.394684][ T8947] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  152.419286][ T8936] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.1794: corrupted inode contents
[  152.436095][ T8936] EXT4-fs error (device loop2): ext4_dirty_inode:6459: inode #2: comm syz.2.1794: mark_inode_dirty error
[  152.448365][ T8936] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.1794: corrupted inode contents
[  152.463912][ T8936] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #2: comm syz.2.1794: mark_inode_dirty error
[  152.475424][ T8954] EXT4-fs (loop2): shut down requested (1)
[  152.482474][ T8951] SET target dimension over the limit!
[  152.544326][ T8958] loop3: detected capacity change from 0 to 1024
[  152.625880][ T8964] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  152.642050][ T8964] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  153.174515][   T29] kauditd_printk_skb: 423 callbacks suppressed
[  153.174531][   T29] audit: type=1326 audit(1751031994.306:11278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8971 comm="syz.4.1809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  153.212363][   T29] audit: type=1326 audit(1751031994.306:11279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8971 comm="syz.4.1809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  153.235917][   T29] audit: type=1326 audit(1751031994.306:11280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8971 comm="syz.4.1809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  153.259385][   T29] audit: type=1326 audit(1751031994.306:11281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8971 comm="syz.4.1809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  153.309542][ T8978] netlink: 'syz.0.1808': attribute type 11 has an invalid length.
[  153.317465][ T8978] netlink: 448 bytes leftover after parsing attributes in process `syz.0.1808'.
[  153.405383][ T8982] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  153.427207][   T29] audit: type=1326 audit(1751031994.556:11282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8983 comm="syz.0.1815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f819e06e929 code=0x7ffc0000
[  153.451006][   T29] audit: type=1326 audit(1751031994.556:11283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8983 comm="syz.0.1815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f819e06e929 code=0x7ffc0000
[  153.474545][   T29] audit: type=1326 audit(1751031994.556:11284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8983 comm="syz.0.1815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f819e06e929 code=0x7ffc0000
[  153.498063][   T29] audit: type=1326 audit(1751031994.556:11285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8983 comm="syz.0.1815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f819e06e929 code=0x7ffc0000
[  153.521749][   T29] audit: type=1326 audit(1751031994.556:11286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8983 comm="syz.0.1815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f819e06e929 code=0x7ffc0000
[  153.545407][   T29] audit: type=1326 audit(1751031994.556:11287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8983 comm="syz.0.1815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f819e06e929 code=0x7ffc0000
[  153.599780][ T8982] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  153.660252][ T8982] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  153.720551][ T8982] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.024226][ T8982] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  154.067040][ T8982] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  154.112689][ T8982] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  154.129999][ T8982] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  154.153737][ T8996] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  154.209902][ T8996] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  154.523963][ T9006] netlink: 'syz.3.1822': attribute type 11 has an invalid length.
[  154.538228][ T9006] netlink: 448 bytes leftover after parsing attributes in process `syz.3.1822'.
[  154.594234][ T9007] loop4: detected capacity change from 0 to 8192
[  154.680721][ T9011] loop2: detected capacity change from 0 to 1024
[  154.688927][ T9011] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  154.698696][ T9011] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  154.718613][ T9012] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=9012 comm=syz.4.1821
[  154.725126][ T9011] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  154.788183][ T9011] EXT4-fs error (device loop2): ext4_get_journal_inode:5796: inode #5: comm syz.2.1833: unexpected bad inode w/o EXT4_IGET_BAD
[  154.822889][ T9011] EXT4-fs (loop2): no journal found
[  154.828201][ T9011] EXT4-fs (loop2): can't get journal size
[  155.166278][ T9028] loop2: detected capacity change from 0 to 512
[  155.203283][ T9028] EXT4-fs (loop2): failed to open journal device unknown-block(0,0) -6
[  155.419236][ T9034] loop1: detected capacity change from 0 to 8192
[  155.506667][ T9043] loop2: detected capacity change from 0 to 1024
[  155.531501][ T9041] loop4: detected capacity change from 0 to 512
[  155.643347][ T9051] loop3: detected capacity change from 0 to 512
[  155.654613][ T9051] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  155.663235][ T9051] EXT4-fs (loop3): bad geometry: block count 204800 exceeds size of device (64 blocks)
[  155.696954][ T9041] ext4 filesystem being mounted at /333/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.814511][ T9041] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #2: comm syz.4.1834: corrupted inode contents
[  155.912829][ T9056] EXT4-fs (loop4): shut down requested (1)
[  156.622424][ T9072] netlink: 'syz.2.1845': attribute type 11 has an invalid length.
[  156.653935][ T9072] netlink: 448 bytes leftover after parsing attributes in process `syz.2.1845'.
[  156.720603][ T9075] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1846'.
[  156.810899][ T9080] loop0: detected capacity change from 0 to 1024
[  156.889322][ T9096] netlink: 'syz.0.1854': attribute type 11 has an invalid length.
[  156.897365][ T9096] netlink: 448 bytes leftover after parsing attributes in process `syz.0.1854'.
[  156.931256][ T9100] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  156.940002][ T9100] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  156.969710][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  156.977180][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  156.984684][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  156.992863][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.000316][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.007704][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.015189][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.022597][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.030076][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.037477][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.044895][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.052389][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.059797][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.070931][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.078385][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.085863][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.093263][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.100714][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.108226][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.115632][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.123060][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.130453][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.137843][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.145317][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.152858][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.160342][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.167798][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.175214][ T1035] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  157.185266][ T1035] hid-generic 0000:0000:0000.0012: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  157.847922][ T9119] loop3: detected capacity change from 0 to 1024
[  158.063570][ T9142] netlink: 'syz.3.1870': attribute type 11 has an invalid length.
[  158.081107][ T9142] netlink: 448 bytes leftover after parsing attributes in process `syz.3.1870'.
[  158.102639][ T9150] netlink: 'syz.2.1873': attribute type 11 has an invalid length.
[  158.118187][ T9150] netlink: 448 bytes leftover after parsing attributes in process `syz.2.1873'.
[  158.185920][ T9154] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1876'.
[  158.208199][   T29] kauditd_printk_skb: 163 callbacks suppressed
[  158.208215][   T29] audit: type=1326 audit(1751031999.336:11449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9155 comm="syz.4.1877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  158.277708][ T9162] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1879'.
[  158.288393][ T9160] loop4: detected capacity change from 0 to 512
[  158.289871][   T29] audit: type=1326 audit(1751031999.386:11450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9155 comm="syz.4.1877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  158.318197][   T29] audit: type=1326 audit(1751031999.386:11451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9155 comm="syz.4.1877" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  158.380795][ T9160] EXT4-fs (loop4): failed to open journal device unknown-block(0,0) -6
[  158.434076][ T9171] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  158.443741][ T9171] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  158.653744][   T29] audit: type=1326 audit(1751031999.786:11452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9176 comm="syz.4.1883" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  158.696038][   T29] audit: type=1326 audit(1751031999.816:11453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9176 comm="syz.4.1883" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  158.719828][   T29] audit: type=1326 audit(1751031999.816:11454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9176 comm="syz.4.1883" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  158.743541][   T29] audit: type=1326 audit(1751031999.816:11455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9176 comm="syz.4.1883" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  158.767316][   T29] audit: type=1326 audit(1751031999.816:11456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9176 comm="syz.4.1883" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  158.790828][   T29] audit: type=1326 audit(1751031999.816:11457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9176 comm="syz.4.1883" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  158.814375][   T29] audit: type=1326 audit(1751031999.816:11458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9176 comm="syz.4.1883" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10a28e929 code=0x7ffc0000
[  158.959531][ T9182] loop0: detected capacity change from 0 to 8192
[  158.992371][ T9184] netlink: 'syz.2.1886': attribute type 11 has an invalid length.
[  159.008886][ T9184] netlink: 448 bytes leftover after parsing attributes in process `syz.2.1886'.
[  159.023421][ T9188] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1888'.
[  159.148042][ T9199] loop3: detected capacity change from 0 to 1024
[  159.158763][ T9196] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1891'.
[  159.256831][ T9208] SET target dimension over the limit!
[  159.408772][ T9218] netlink: 'syz.0.1900': attribute type 11 has an invalid length.
[  159.432138][ T9210] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  159.443541][ T9220] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  159.453538][ T9210] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  159.461891][ T9220] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  159.463687][ T9216] loop3: detected capacity change from 0 to 8192
[  160.012148][ T9242] netlink: 'syz.0.1911': attribute type 11 has an invalid length.
[  160.020121][ T9240] loop2: detected capacity change from 0 to 1024
[  160.074125][ T9243] loop1: detected capacity change from 0 to 8192
[  160.082431][ T9240] SET target dimension over the limit!
[  160.090102][ T9248] loop0: detected capacity change from 0 to 8192
[  160.196625][ T9253] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=9253 comm=syz.0.1912
[  160.256066][ T9252] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=9252 comm=syz.1.1908
[  160.534380][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.541888][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.549352][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.578210][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.585640][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.593109][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.600526][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.607923][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.615367][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.622867][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.630264][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.637684][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.645116][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.672883][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.680468][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.687897][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.695415][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.702906][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.710403][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.717801][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.725216][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.732765][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.740203][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.747697][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.755342][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.762784][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.770193][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.777600][ T3386] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  160.785555][ T9259] loop4: detected capacity change from 0 to 8192
[  160.796726][ T3386] hid-generic 0000:0000:0000.0013: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  160.943212][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  160.951008][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  160.958472][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  160.976376][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  160.983879][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  160.991286][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  160.998773][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.006178][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.013712][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.021255][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.022710][ T9270] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  161.028662][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.028686][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.028710][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.028798][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.066966][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.071461][ T9270] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  161.074459][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.089637][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.097044][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.104599][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.112002][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.119407][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.126874][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.134325][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.141762][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.149156][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.156540][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.163949][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.171350][ T3386] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  161.179186][ T3386] hid-generic 0000:0000:0000.0014: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  161.225547][ T9276] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  161.241187][ T9278] loop3: detected capacity change from 0 to 1024
[  161.248122][ T9276] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  161.325839][ T9278] EXT4-fs mount: 30 callbacks suppressed
[  161.325852][ T9278] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.354279][ T9285] loop0: detected capacity change from 0 to 1024
[  161.361547][ T9285] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  161.368979][ T9278] SET target dimension over the limit!
[  161.371343][ T9285] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  161.388205][ T9285] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  161.399801][ T9285] EXT4-fs error (device loop0): ext4_get_journal_inode:5796: inode #5: comm syz.0.1925: unexpected bad inode w/o EXT4_IGET_BAD
[  161.415673][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.425571][ T9285] EXT4-fs (loop0): no journal found
[  161.430817][ T9285] EXT4-fs (loop0): can't get journal size
[  161.437670][ T9285] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  161.452255][ T9285] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.478063][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.485534][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.493058][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.500910][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.508526][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.508926][ T9292] loop3: detected capacity change from 0 to 1024
[  161.516156][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.524115][ T9292] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  161.529801][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.539711][ T9292] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  161.547117][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.547140][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.547161][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.559540][ T9292] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  161.564400][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.573712][ T9292] EXT4-fs error (device loop3): ext4_get_journal_inode:5796: inode #5: comm syz.3.1926: unexpected bad inode w/o EXT4_IGET_BAD
[  161.579189][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.590109][ T9292] EXT4-fs (loop3): no journal found
[  161.596236][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.609380][ T9292] EXT4-fs (loop3): can't get journal size
[  161.617573][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.623830][ T9292] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  161.629524][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.629549][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.629568][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.629591][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.636101][ T9292] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.642777][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.701398][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.708816][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.716326][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.723818][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.731352][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.738791][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.746184][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.753609][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.761206][ T3559] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  161.778288][ T3559] hid-generic 0000:0000:0000.0015: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  161.796497][ T9300] loop0: detected capacity change from 0 to 8192
[  161.902590][ T9306] loop1: detected capacity change from 0 to 8192
[  161.903260][ T9311] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=9311 comm=syz.0.1929
[  161.938298][ T9314] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  161.949202][ T9314] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  162.002088][ T9315] ==================================================================
[  162.010220][ T9315] BUG: KCSAN: data-race in fat_alloc_clusters / fat_statfs
[  162.017453][ T9315] 
[  162.019795][ T9315] write to 0xffff88812afda0ac of 4 bytes by task 9306 on cpu 0:
[  162.027431][ T9315]  fat_alloc_clusters+0x662/0xa80
[  162.032474][ T9315]  fat_get_block+0x258/0x5e0
[  162.037085][ T9315]  __block_write_begin_int+0x400/0xf90
[  162.042584][ T9315]  cont_write_begin+0x5fc/0x970
[  162.047469][ T9315]  fat_write_begin+0x4f/0xe0
[  162.052099][ T9315]  generic_perform_write+0x184/0x490
[  162.057405][ T9315]  __generic_file_write_iter+0x9e/0x120
[  162.062979][ T9315]  generic_file_write_iter+0x8d/0x2f0
[  162.068383][ T9315]  vfs_write+0x4a0/0x8e0
[  162.072652][ T9315]  ksys_write+0xda/0x1a0
[  162.076946][ T9315]  __x64_sys_write+0x40/0x50
[  162.081573][ T9315]  x64_sys_call+0x2cdd/0x2fb0
[  162.086277][ T9315]  do_syscall_64+0xd2/0x200
[  162.090806][ T9315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.096738][ T9315] 
[  162.099081][ T9315] read to 0xffff88812afda0ac of 4 bytes by task 9315 on cpu 1:
[  162.106635][ T9315]  fat_statfs+0x166/0x200
[  162.111002][ T9315]  vfs_statfs+0xc8/0x1c0
[  162.115269][ T9315]  user_statfs+0x71/0x110
[  162.119660][ T9315]  __x64_sys_statfs+0x65/0xf0
[  162.124375][ T9315]  x64_sys_call+0x1edd/0x2fb0
[  162.129068][ T9315]  do_syscall_64+0xd2/0x200
[  162.133590][ T9315]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  162.139507][ T9315] 
[  162.141832][ T9315] value changed: 0x00001f52 -> 0x00001f51
[  162.147570][ T9315] 
[  162.149904][ T9315] Reported by Kernel Concurrency Sanitizer on:
[  162.156066][ T9315] CPU: 1 UID: 0 PID: 9315 Comm: syz.1.1931 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(voluntary) 
[  162.168513][ T9315] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  162.178587][ T9315] ==================================================================
[  162.195957][ T9315] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=41664 sclass=netlink_route_socket pid=9315 comm=syz.1.1931