last executing test programs:

1.99003197s ago: executing program 2 (id=2604):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
r1 = inotify_init1(0x0)
inotify_add_watch(r1, &(0x7f00000000c0)='.\x00', 0xa4000061)
read(r1, &(0x7f0000000140)=""/68, 0x44)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)

1.91972911s ago: executing program 3 (id=2605):
socketpair(0x1d, 0x2, 0x6, &(0x7f0000000300))
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x2, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000"], 0x0, 0x2, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0xffffffff, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000200"/15], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
pipe2(&(0x7f0000000040), 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r2 = socket$inet(0x2, 0xa, 0x3)
ioctl$IOC_PR_PREEMPT_ABORT(0xffffffffffffffff, 0x401870cc, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000640)=@raw={'raw\x00', 0x9, 0x3, 0x308, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x270, 0xffffffff, 0xffffffff, 0x270, 0xffffffff, 0x3, &(0x7f0000000040), {[{{@ip={@multicast2, @broadcast, 0xff, 0x0, 'syzkaller0\x00', 'veth0_to_bond\x00', {0xff}, {}, 0x5e, 0x2, 0x1}, 0x0, 0x178, 0x198, 0x0, {}, [@common=@inet=@recent1={{0x108}, {0x563, 0xd4e, 0x0, 0x0, 'syz0\x00', 0x20, [0x0, 0x0, 0xffffff00]}}]}, @unspec=@NOTRACK={0x20}}, {{@ip={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0xffffffff, 0xff, 'tunl0\x00', 'hsr0\x00', {}, {}, 0x62, 0x1, 0x1}, 0x0, 0x70, 0xd8}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x14, 0xfffd, 0x3, 0x8, 'syz1\x00', 'syz0\x00', {0x7}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x368)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000200000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0a00000003000000080000000100000000000000", @ANYRES32, @ANYBLOB="0000000000000000ac1469640000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_route(0x10, 0x3, 0x0)
msgget(0x2, 0x106)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000580)='kmem_cache_free\x00'}, 0x10)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000100))
ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f0000000040)=ANY=[@ANYRES32=r5, @ANYRES32=r5, @ANYRES64=r5])

1.87513836s ago: executing program 3 (id=2606):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, &(0x7f00000000c0)})
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f00000000c0)='.\x00', 0xa4000061)
read(r0, &(0x7f0000000140)=""/68, 0x44)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)

1.739108611s ago: executing program 0 (id=2610):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, @perf_bp={0x0, 0x13}, 0x400, 0xffffffff, 0x6, 0x4, 0x7, 0x1, 0xfff9, 0x0, 0xffffffff, 0x0, 0x6}, 0x0, 0x6, 0xffffffffffffffff, 0x0)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'dh\x00', 0x10, 0x5, 0x11}, 0x2c)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x483, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'none\x00', 0x3a, 0x0, 0x7f}, 0x2c)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
io_setup(0x1, &(0x7f0000000b80)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f00000003c0)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0}])
rt_sigprocmask(0x0, &(0x7f0000000400)={[0xfffff7feffff7ffc]}, 0x0, 0x8)
r5 = gettid()
tkill(r5, 0x12)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r6, 0x0, 0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.669300551s ago: executing program 2 (id=2614):
r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000040)=0x81, 0x5, 0x0)
set_mempolicy_home_node(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0xfffffffffffffed2)
r2 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000240)={0x0, r1}, 0x8)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0xe, 0x0, 0x0, &(0x7f0000000880)='GPL\x00', 0x2, 0x0, 0x0, 0x40f00, 0x45, '\x00', 0x0, @sk_skb=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='kfree\x00', r3}, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = io_uring_setup(0x4359, &(0x7f0000000180)={0x0, 0x22efb, 0x80, 0x6, 0x3df})
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x600, 0x0)
sendmsg$OSF_MSG_REMOVE(r4, &(0x7f0000000600)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000002c0)={&(0x7f0000001040)=ANY=[], 0x268}, 0x1, 0x0, 0x0, 0xcb2d00b435051a76}, 0x2000c044)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xb, &(0x7f00000003c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000004c0)='kfree\x00'}, 0x18)
timerfd_gettime(r0, &(0x7f0000000100))
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x10, 0xffffffffffffffff, 0x0)
r8 = syz_usbip_server_init(0x3)
futex(&(0x7f0000000300), 0x5, 0x0, 0x0, &(0x7f0000048000), 0x20000000)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x548}, 0x1, 0x0, 0x0, 0x40040c0}, 0x0)
set_mempolicy(0x8006, &(0x7f0000000700)=0xfff, 0x5)
listen(r7, 0x6)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
r9 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x8933, &(0x7f0000000440))
sendmsg$BATADV_CMD_SET_MESH(r10, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYRES8=r8, @ANYRES16=r6, @ANYRESOCT=r2, @ANYRES64=<r12=>r5, @ANYRES16=r9, @ANYRES64=r10], 0x24}, 0x1, 0x0, 0x0, 0x20048040}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x1f, 0x4, &(0x7f00000005c0)=ANY=[@ANYRESHEX=r12, @ANYRES32=r11, @ANYRESDEC=r3], &(0x7f0000000200)='syzkaller\x00', 0x45, 0xc1, &(0x7f000000cf3d)=""/193, 0x0, 0x60, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x19, &(0x7f0000000000)={0xfffffff8}, 0x8, 0x10, &(0x7f0000000140)={0x3, 0x10000, 0x1fb, 0xffffffff}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x15a042)

1.666633441s ago: executing program 3 (id=2615):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x10000000000}, 0x18)
sendmsg$nl_route_sched(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=@newqdisc={0x9c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x0, 0x6}, {0xffff, 0xffff}, {0xc, 0xfff3}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x3, 0x1, 0x0, 0x2, 0x4}, 0xa4ca, 0x0, 0x0, 0x6, 0x0, 0x18, 0xb, 0xe, 0x3, 0x9, {0x10001, 0x7, 0x2, 0x7, 0x2, 0x7fffffff}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x6, 0x4, 0x7, 0x6, 0x0, 0x1}}, {0x4}}]}]}, 0x9c}, 0x1, 0x0, 0x0, 0x4c840}, 0x0)

1.613370332s ago: executing program 0 (id=2616):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r0 = getpid()
r1 = gettid()
rt_tgsigqueueinfo(r0, r1, 0xb, &(0x7f0000000080)={0x0, 0x0, 0x3})
r2 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f00000005c0), 0x1, 0x0)
write$selinux_validatetrans(r2, &(0x7f0000000600)={'system_u:object_r:dbusd_exec_t:s0', 0x20, 'system_u:object_r:systemd_logind_exec_t:s0', 0x20, 0x9, 0x20, '/usr/lib/telepathy/mission-control-5\x00'}, 0x87)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)
r4 = signalfd(0xffffffffffffffff, &(0x7f00007aeff8)={[0xfffffffffffffffc]}, 0x8)
read(r4, &(0x7f0000000740)=""/377, 0x179)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r4, &(0x7f0000000100)="d3033e2fdfeb1c961c1c04177c94a8c4e0cf3fb704f46dbc947c10772a112b", &(0x7f0000000140)=@tcp6=r4, 0x1}, 0x20)
r5 = epoll_create(0x2)
ioctl$int_in(r4, 0x5421, &(0x7f0000000240)=0x8)
epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, 0xffffffffffffffff, &(0x7f0000000080))
r6 = open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18)
fcntl$setlease(r6, 0x400, 0x0)
utime(&(0x7f0000000200)='./file0\x00', 0x0)

1.591699272s ago: executing program 3 (id=2617):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000001e00100000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000fcffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa72b0af, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1e7d, 0x2c2e, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
getpid()
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000006c0)=@newsa={0x200, 0x10, 0x633, 0x0, 0x25dfdbfc, {{@in6=@local, @in6=@mcast2}, {@in6=@private1, 0x0, 0x32}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', {}, {0x0, 0x0, 0xfffffffffffffffc}, {0x0, 0x4}, 0x0, 0xffffffff, 0x2}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @algo_auth={0xc8, 0x1, {{'md5\x00'}, 0x400, "e8c9e8016283329d5210c2f58be640fb9e7cd904c8c5541a0e1c34e8a9f1459ac43b5e7bdd236555bbf5946459517be331bff60ca247e4696f007aaaa0ab59819c0f59a70f76710602b8cb65ccc86e3daaf6855d891fde9ecf4ed877e7d976edff1782781946f646452213f531026d024049009fede8ee928251637a53339fe0"}}]}, 0x200}}, 0x0)
r3 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket(0x10, 0x803, 0x0)
socket$unix(0x1, 0x1, 0x0)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r4, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB="94000000", @ANYRES16, @ANYBLOB="000429bd7000fbdbdf2516000000140007800800020014000000080002000d0000002c00068004000200040005000400020008000600000000000400050004000200080006000008000004000200340003800800030001000000080002000500000008000300080000000800020008000000080003000900000008000200000000800c00058008000100756470001b10ae6f553e3135d206799341bbe4260fdceff38fc7fb99be13bca668d4b880249d8fb2d3ed95641548f7924f7c08dc518526f578eb7c2209b111ccd9dade8be98fbcd1966911971446ff60250e58333cf10b779cf2e9f1e611b0f86971dcaf2fd8b7be24446ac184a5108dbab43c87dc7bc9ee3151ff5d7cbda8201067b4854bb73cd46c1372208ff7fd3d363530be4f01483547b4"], 0x94}, 0x1, 0x0, 0x0, 0x48081}, 0x2000c000)
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bdaa, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xffe2}, {0xffff, 0xffff}, {0x0, 0xa}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001a00)={0x30, r3, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_FWMARK={0x8, 0x7, 0x6}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000100)=@setlink={0x44, 0x13, 0x1, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_ALT_IFNAME={0x14, 0x35, 'dummy0\x00'}, @IFLA_CARRIER={0x5, 0x21, 0x4}]}, 0x44}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x21404e, &(0x7f00000000c0)={[{@grpjquota}, {@init_itable_val={'init_itable', 0x3d, 0x5}}, {@user_xattr}, {@usrjquota}]}, 0x1, 0x517, &(0x7f0000000140)="$eJzs3U9vI2cZAPBnJvGS7aYkpRxKpZaKFu1WsPamgTbi0BYJcasEKvclSrwhihNHsdNuQoVS8QGQEIJKnDhxQeIDIKHyDapKK8EdAQIh2MIBIWDQ2OPdxBpvEjW2I/v3k8bzzuuZeZ53HI/nX2YCmFrPRcTrETETES9GxEJRnxZdHHW7fLyP7r+zlnfxQRJv/i2JpKiLTumha8Vkc91eqdbB4dZqo1HfK4Zr7e3dWuvg8Obm9upGfaO+s7y89PLKKysxd2vQLL5znnbm7Xr1a3/68Q9+/vVXf/3Ft39/+y83vpdnPV+8323Ho6UnhmbOFLe7ZCr5ssjd+3dRv3ee5C+xpFi2lXEnAgDAmTwZEZ+KiM91tv8XYiZme2/ZpAMAAIAJkb02H/9JIjIAAABgYr3WuQY2SavF9a3zkabVavca3k/HY2mj2Wp/4U5zf2e9e63sYlTSO5uN+q3ius/FqCT58FKn/HD4pb7h5Yh4IiJ+tHC1M1xdazbWx33wAwAAAKbEtb79/38udPf/AQAAgAmzOO4EAAAAgKEbtP+fjDgPAAAAYHic/wcAAICJ9o033si7rPf86/W3Dva3mm/dXK+3tqrb+2vVtebebnWj2dzo3LNv+7T5NZrN3S/Fzv7dWrveatdaB4e3t5v7O+3bm71HYAMAAACj9sRn3/9dEhFHX7na6XJX8peZARO4VgAmRnqekf84vDyA0Rv0Mw9MvtlxJwCMz1Gxvw9MrRO3+ijZKDh+8c6JYwYfDC8nAADgYl3/TPn5/3wXoDLu5IChOtf5f2CiOP8P06vs/P9vBo/+4TBzAUarYgsApt5pj/oYePOOM5//z7JT5wUAAAzVfL7tfxRRLc4FzkeaVqsRj3f+1b+S3Nls1G9FxCcj4rcLlU/kw0udKROPBwQAAAAAAAAAAAAAAAAAAAAAAACAM8qyJDIAAABgokWkf06K539dX3hhvv/4wJXkXwudfkS8/dM3f3J3td3eW8rr//6gvv1eUf/SOI5gAAAAwNSb7a/o7af39uMBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4CJ9dP+dtV43yrh//WpELJbFn425Tn8uKhHx2D+SmD02XRIRMxcQ/+jdiHiqLH6SpxWLRRb98dOIuDqa+M9kWZZGSfxrFxAfptn7+frn9bLvXxrPdfrl3//Zovu4Bq//0gfrv5kB67/Hzxjj6Xu/rA2M/27E07Pl659e/GRA/OfLZliyUL79rcPDQfGzn0VcL/39SU7EqrW3d2utg8Obm9urG/WN+s7y8tLLK6+sfHnlVu3OZqNevJbG+OEzv/pfX9V/s65O+2NA/MVT2v9CXqgcb0x/mCLYvbv3n+wWK32z6MS/8Xz55//UI+LnfxOfL34H8vev98pH3fJxz/7iw2dLEyvirw9o/2mf/41BM+3z4je//4czjgoAjEDr4HBrtdGo7w298F6WZaOKdWkK2eVI41IU5i5HGgqnFy7iyBYAAHDZPNzoP8dE3x1iQgAAAAAAAAAAAAAAAAAAADCFWgeRDrwN2JWLuZ1Yf8yj8TQVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCR/h8AAP//oszk1w==")
r6 = socket$netlink(0x10, 0x3, 0x0)
msync(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x6)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000540)='/sys/power/pm_trace', 0x101400, 0x4)
syz_open_dev$MSR(&(0x7f0000000b00), 0x80000008, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
sendmsg$inet(r6, &(0x7f0000000ac0)={&(0x7f0000000680)={0x2, 0x4e20, @private=0xa010102}, 0x10, &(0x7f00000009c0)=[{&(0x7f00000006c0)="9cd443e54954", 0x6}, {&(0x7f0000000700)="4dd4744fccfb7ecede4b5de6692a43c6d231a3f83ea01261fbe28deb8509738f1767955b40688c5575f034744bf8668cae7e5d3aabe2c4bce34b39f36bdc9284c0b02152f7e761f8b16fdd4edf8a7ed6257ad1c4cf0897efb77b37b3fb5837325325cdc0b53f56e60e66e6d7cd6b2325ca1fc7998ce5a56555f55996faadc0835b5567016a2390dbff836d23e6ad37d9c8c818fbdb70caa7", 0x98}, {&(0x7f00000007c0)="ae06f4aab6263501d9460f734bb162a9069468eafb6818dd73528e174f5e28d257d850cef9df", 0x26}, {&(0x7f0000000800)="bb1485c3272ecb2f395b939ccab15e875bb00b49458b2ab5d6bdc531ab2625ed1e06cc6ad986b992b3d56a720cad0a084d53c6e8a6eb5935171d936b89178b2345ad3f54d5501e", 0x47}, {&(0x7f00000008c0)="ccdbe8ea4d", 0x5}, {&(0x7f0000000900)="7fe63a39deca509a79cfe4d59c525db81324c32fb4583f0918c4e8f0feb2d3d020c29cd57663dcfef63ce9ee3c9f7a29359b331d4fc55e2bea0c22964e972acbeae698aaa7f26e2bbb8913f32d4b8155f4a5283502699de82fec262af813808bd0599434a13634c743ea29985689bf199f11487b7ec7d7f57e4573133232d774ea1add7725b9833bbd5babdc8e06d4f0336ccfde57cd9da2b125bd0a51229bfee622cbd3e286d7773b8844f228", 0xad}], 0x6, &(0x7f0000000a80)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0xe5}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @broadcast, @multicast2}}}], 0x38}, 0x0)

1.430237513s ago: executing program 1 (id=2619):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, @perf_bp={0x0, 0x13}, 0x400, 0xffffffff, 0x6, 0x4, 0x7, 0x1, 0xfff9, 0x0, 0xffffffff, 0x0, 0x6}, 0x0, 0x6, 0xffffffffffffffff, 0x0)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'dh\x00', 0x10, 0x5, 0x11}, 0x2c)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x483, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'none\x00', 0x3a, 0x0, 0x7f}, 0x2c)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, 0x0, &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
io_setup(0x1, &(0x7f0000000b80)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f00000003c0)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0}])
rt_sigprocmask(0x0, &(0x7f0000000400)={[0xfffff7feffff7ffc]}, 0x0, 0x8)
r5 = gettid()
prlimit64(r5, 0xb, &(0x7f0000000080), 0x0)
tkill(r5, 0x12)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

1.316054313s ago: executing program 1 (id=2621):
r0 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
write$selinux_load(r0, &(0x7f0000000340)={0xf97cff8c, 0x8}, 0x2000)

1.278137583s ago: executing program 1 (id=2622):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x3c, r1, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_OURS={0x10, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x9}]}, @ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x3c}}, 0x0)
r2 = socket$inet6(0xa, 0x1, 0x84)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x18)
sendto$inet6(r2, &(0x7f0000000100)="bc", 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback, 0x1}, 0x1c)

1.253064784s ago: executing program 1 (id=2624):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000000000000000000001800", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
r1 = inotify_init1(0x0)
inotify_add_watch(r1, &(0x7f00000000c0)='.\x00', 0xa4000061)
read(r1, &(0x7f0000000140)=""/68, 0x44)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)

1.251467943s ago: executing program 4 (id=2625):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r1}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r2, &(0x7f00000025c0)=[{{&(0x7f0000000000)={0xa, 0x4e22, 0x0, @private1}, 0x1c, &(0x7f0000000300)=[{&(0x7f0000000040)='P', 0x1}], 0x1}}], 0x1, 0x0)

1.232790853s ago: executing program 4 (id=2626):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x3c, r1, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_OURS={0x10, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x9}]}, @ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x3c}}, 0x0)
r2 = socket$inet6(0xa, 0x1, 0x84)
bind$inet6(r2, &(0x7f0000ed3fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x18)
sendto$inet6(r2, &(0x7f0000000100)="bc", 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback, 0x1}, 0x1c)

1.214728234s ago: executing program 4 (id=2627):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x10000000000}, 0x18)
sendmsg$nl_route_sched(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=@newqdisc={0x9c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x0, 0x6}, {0xffff, 0xffff}, {0xc, 0xfff3}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x3, 0x1, 0x0, 0x2, 0x4}, 0xa4ca, 0x0, 0x0, 0x6, 0x0, 0x18, 0xb, 0xe, 0x3, 0x9, {0x10001, 0x7, 0x2, 0x7, 0x2, 0x7fffffff}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x6, 0x4, 0x7, 0x6, 0x0, 0x1}}, {0x4}}]}]}, 0x9c}, 0x1, 0x0, 0x0, 0x4c840}, 0x0)

1.199160244s ago: executing program 4 (id=2628):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{}, &(0x7f0000000380), &(0x7f00000003c0)=r0}, 0x20)
syz_read_part_table(0x5be, &(0x7f00000005c0)="$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")

1.133158574s ago: executing program 1 (id=2629):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, @perf_bp={0x0, 0x13}, 0x400, 0xffffffff, 0x6, 0x4, 0x7, 0x1, 0xfff9, 0x0, 0xffffffff, 0x0, 0x6}, 0x0, 0x6, 0xffffffffffffffff, 0x0)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'dh\x00', 0x10, 0x5, 0x11}, 0x2c)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x483, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'none\x00', 0x3a, 0x0, 0x7f}, 0x2c)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, 0x0, &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x1)
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
io_setup(0x1, &(0x7f0000000b80)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f00000003c0)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0}])
rt_sigprocmask(0x0, &(0x7f0000000400)={[0xfffff7feffff7ffc]}, 0x0, 0x8)
r5 = gettid()
tkill(r5, 0x12)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r6, 0x0, 0x1e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

998.051015ms ago: executing program 4 (id=2630):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, @perf_bp={0x0, 0x13}, 0x400, 0xffffffff, 0x6, 0x4, 0x7, 0x1, 0xfff9, 0x0, 0xffffffff, 0x0, 0x6}, 0x0, 0x6, 0xffffffffffffffff, 0x0)
r1 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'dh\x00', 0x10, 0x5, 0x11}, 0x2c)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x483, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'none\x00', 0x3a, 0x0, 0x7f}, 0x2c)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x5, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="180000000100120000"], &(0x7f0000000c00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2)
r3 = signalfd4(0xffffffffffffffff, &(0x7f0000000140), 0x8, 0x0)
io_setup(0x1, &(0x7f0000000b80)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f00000003c0)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r3, 0x0}])
rt_sigprocmask(0x0, &(0x7f0000000400)={[0xfffff7feffff7ffc]}, 0x0, 0x8)
r5 = gettid()
prlimit64(r5, 0xb, &(0x7f0000000080), 0x0)
tkill(r5, 0x12)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

951.290655ms ago: executing program 2 (id=2631):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESDEC=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)={0x28, r3, 0x62c21a4ade68aba1, 0x0, 0x0, {{0x5}, {@val={0x8, 0x1, 0x40}, @void, @val={0xc, 0x99, {0x1, 0x48}}}}}, 0x28}, 0x1, 0x0, 0x0, 0x4044}, 0xc000)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2f00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000006000000850000000700000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000440)='sys_enter\x00', r5}, 0x18)
ustat(0x3ff, 0x0)
ioctl$F2FS_IOC_START_VOLATILE_WRITE(0xffffffffffffffff, 0xf503, 0x0)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x10)
syz_emit_ethernet(0x27, &(0x7f0000000180)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @broadcast, @void, {@llc={0x4, {@snap={0x2, 0x0, "dd9d", "921cf6", 0x800, "32c219925f81eca7a74fb31a3632432f"}}}}}, 0x0)
ioctl$PAGEMAP_SCAN(0xffffffffffffffff, 0xc0606610, &(0x7f0000000000)={0x60, 0x0, &(0x7f000007c000/0x4000)=nil, &(0x7f0000839000/0x1000)=nil, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x4})
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x6)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hci(r8, 0x800448d2, &(0x7f0000000000))
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r9 = fcntl$dupfd(r6, 0x406, r6)
getsockopt$inet_IP_IPSEC_POLICY(r9, 0x0, 0x10, 0x0, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00003400bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
lseek(r10, 0x9, 0x4)
r11 = getpgrp(0x0)
syz_pidfd_open(r11, 0x0)

912.046285ms ago: executing program 3 (id=2632):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0xf)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000006000100000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r1, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='mm_vmscan_wakeup_kswapd\x00', r2, 0x0, 0x9}, 0x18)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
r4 = socket$xdp(0x2c, 0x3, 0x0)
mremap(&(0x7f0000186000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f00000ad000/0x3000)=nil)
setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x201000, 0x1000}, 0x20)
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file2\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$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")
r5 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86)
syz_clone(0x28100, 0x0, 0x0, 0x0, 0x0, 0x0)
pwritev2(r5, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x1}], 0x1, 0x7800, 0x1, 0x3)
connect$vsock_stream(r3, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000200)="458d", 0x2}], 0x1)
r6 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvmsg(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)=""/68, 0x44}], 0x1}, 0x4c2103a0)
timer_create(0x0, &(0x7f0000000540)={0x0, 0x21, 0x4, @thr={&(0x7f0000000580)="54a711dbeb303bf4adf9358ad4614c0c96560ab4bb1cf0fdd3b3036420e0481b8353f669c59de6bc84a709ee61fc38428e8c2d44e618314095e48d6afc8dc2dc7827bd163d71243ccb54c321e8ab8f27463f8da3740dcc8bf36752cdac6f1d1b1521b272377faf71abe945532df05448300eb6e51646c97a09b4f490397d2c0ddbadce3be9bd1eabadd1246f32c631711a60d48a42d25a75b6186ef4144f9dbdcf973b720981c869c057dbddf7072b6261b1ceb35923fca830b3610a7a8d596b882165d75e545680ae9a8409112ec011209ea41e7c2c650241339b345082e577080ff355aa1553c766bd251e9fbf008842c7289aca24d79f", &(0x7f00000017c0)="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"}}, &(0x7f0000000100))
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
writev(r5, &(0x7f0000000300), 0x0)
pipe(&(0x7f00000000c0)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
splice(r8, 0x0, r10, 0x0, 0xf3a, 0x0)
tee(r9, r7, 0x8, 0x0)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

901.787495ms ago: executing program 2 (id=2633):
unshare(0x24040000)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
unshare(0x2c020400)

884.703125ms ago: executing program 2 (id=2634):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x3, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x0)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff018004000800395032303030"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r3, &(0x7f0000000100)={0xe, 0x18, 0xfa00, @id_afonly={0x0}}, 0x20)
write$binfmt_elf64(r3, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000000000003003e00ffffffe93501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
creat(&(0x7f0000000380)='./file0\x00', 0x80)

865.787276ms ago: executing program 2 (id=2635):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x3c, r1, 0x7, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_OURS={0x10, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x4}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x9}]}, @ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x3c}}, 0x0)
r2 = socket$inet6(0xa, 0x1, 0x84)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x18)
sendto$inet6(r2, &(0x7f0000000100)="bc", 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback, 0x1}, 0x1c)

862.044995ms ago: executing program 1 (id=2636):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='logfs\x00', 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x20, &(0x7f0000000180)=ANY=[@ANYBLOB="6e725f696e6f6465733d2c00fab39656ca9269a2d16778079ca70700306f66abaf1d9c20abd09eed7e8898aa40ec246b9925599b93ef8a0806be42bf4acba2313eee91f2ddb2514f24b585c83e386f0d0c4101b68bc11a07dd0b5e5e9647bb4bc9202389ad442bb60d3f4ae20569eced4a55cf66533b1884238eb2eafcc2717f0baf71992ffa773b4ad572627d7069c4f6c6dc927306153464269c2ce2cb3ca5032bdac0d1edefed3fe01491791ff7808fcc7c0248759831574572068be2e8a020a6e5c942e2013cea925c5e43"])
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x2a10700, &(0x7f0000000380), 0x0, 0x44a, &(0x7f0000000880)="$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")
iopl(0x0)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000040)={0x0, 0x2000, 0x0, {0x0, 0xa}, {0x1}, @rumble={0xfff9, 0x8}})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4808000010001fff3a4ee9bfd5c3a3696c40af0b", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e"], 0x3}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
mount(0x0, &(0x7f0000000d40)='./file0/../file0/../file0\x00', &(0x7f00000002c0)='sysfs\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000100000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r3}, 0x10)
pivot_root(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0/../file0\x00')
r4 = syz_usb_connect$uac1(0x3, 0xe5, &(0x7f0000000e00)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0xff, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xd3, 0x3, 0x1, 0x86, 0x80, 0x1, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x4, 0xca}, [@mixer_unit={0x8, 0x24, 0x4, 0x4, 0x2, "297fd8"}, @output_terminal={0x9, 0x24, 0x3, 0x2, 0x307, 0x1, 0x4, 0x1}, @processing_unit={0xa, 0x24, 0x7, 0x1, 0x4, 0xf9, "f64758"}, @extension_unit={0xc, 0x24, 0x8, 0x2, 0x4, 0x6, "e7c134a543"}, @feature_unit={0xd, 0x24, 0x6, 0x2, 0x5, 0x3, [0x3, 0xa, 0x8], 0x6}, @extension_unit={0x7, 0x24, 0x8, 0x3, 0x200, 0x4}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_discrete={0xb, 0x24, 0x2, 0x1, 0x2, 0x4, 0x98, 0x0, "85adad"}]}, {{0x9, 0x5, 0x1, 0x9, 0x200, 0xe5, 0x0, 0x9, {0x7, 0x25, 0x1, 0x81, 0x5, 0x6f9f}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0x9, 0x24, 0x2, 0x2, 0x3, 0x8}, @format_type_i_continuous={0xa, 0x24, 0x2, 0x1, 0xf3, 0x1, 0x35, 0x8, "e4", 'l'}, @as_header={0x7, 0x24, 0x1, 0x1, 0x40}, @as_header={0x7, 0x24, 0x1, 0x7, 0x1, 0x3}, @format_type_i_continuous={0xd, 0x24, 0x2, 0x1, 0xa5, 0x1, 0x3, 0xd5, "030036", 'E;'}]}, {{0x9, 0x5, 0x82, 0x9, 0x10, 0x63, 0x2, 0x7, {0x7, 0x25, 0x1, 0x81, 0x1, 0x7}}}}}}}]}}, &(0x7f0000000540)={0xa, &(0x7f0000000040)={0xa, 0x6, 0x201, 0xff, 0x6, 0x2, 0x10, 0x9}, 0x15, &(0x7f0000000140)={0x5, 0xf, 0x15, 0x1, [@ssp_cap={0x10, 0x10, 0xa, 0xa1, 0x1, 0x0, 0xf000, 0x9, [0xf]}]}, 0x4, [{0x2b, &(0x7f0000000380)=ANY=[@ANYBLOB="2b03c9281c8bc2e15f22c1bb45743ce7537ccd277921ea27542515f5ad0000000000000000290000"]}, {0x46, &(0x7f00000003c0)=@string={0x46, 0x3, "7aa24dbc8bcc0623ae8370330c6ffbc0f93c0bad0ee6456ef9d7135130b4ebd81681dc62390907cb50152c6b311d228b9e7b5f4b0f6315c1c6ab910f1bf8b25802f52a45"}}, {0xb5, &(0x7f0000000440)=@string={0xb5, 0x3, "1efb547472bd92867d2ef59de9733db9dd0e726ca615cf37d432cc62ce2998e64b8d360e379f3fd970c88dd4c891d2d1e35667cc836732b1eb967e16679f39e1cc5559a017a88eb29abc027a9fb04f1d8cc1be1f38357fb14da47d58cce23b5ac12b78ca44c7d231a30c5167a1bf32a697f073d6c8d2b1dd24ededcc8d3ec3790a87c9ab0d4fc3a9e3fc03ea64df40514d979f047031d36232005428a6f02ad11d3fd1175315596482fc5bdbe52d05d1f3e494"}}, {0x4, &(0x7f0000000500)=@lang_id={0x4, 0x3, 0xf8ff}}]})
r5 = open$dir(&(0x7f0000000880)='./file0\x00', 0x4400, 0x49)
mkdirat(r5, &(0x7f0000000a80)='./file0\x00', 0xac5fbd884ebc7667)
syz_usb_control_io$uac1(r4, &(0x7f0000000740)={0x14, &(0x7f0000000d80)=ANY=[@ANYBLOB="00215f0000005f0b0000000000000007a7a523b576a562e7d1b51dbb943f691e6677fa31f53b2809e78371893eb2138fa85ebd72b2886b57e27fa3a451c5b97dd0b384c9d134fed8b7b4691f00a82cf5a9804d4d1874a5f1e650c4179d06aadb573edcc3c8498780429a5184f41b9f"], &(0x7f0000000640)={0x0, 0x3, 0xe0, @string={0xe0, 0x3, "0feca614f33fd908dd5bf280cbeca489014883cd42ec40c9b06a344f1da7b55034d4ae01af2c85a7cf9c0b06a27c0d08d3a808ee6a43b9dd1b01563f9d13858f20c9d331b2484acd5f3d24c6394e560a13da8b456e8635aff9703d357cd9cd0b550e70b241fe6ecc82b620711797edce9cc64e686e6bba4b19004c016f9436be7544d23ff584fba2a22c2bb81ee835ede7426049b3e7f11f5399638cfd8f3eba1269fca8b5dfce5dd15af567a113708deb71dd8437a86d2e5884c74145cab1f9d1bd7e759e8be022bc6f6ddd8ea4d70efd6dc9609c3ae4cd0a2eabc77d19"}}}, &(0x7f0000000980)={0x44, &(0x7f0000000780)={0x20, 0x0, 0x15, "dc604bd74b9543807043af2c9c28b6ef480e12b1b1"}, &(0x7f00000007c0)={0x0, 0xa, 0x1, 0x3f}, &(0x7f0000000800)={0x0, 0x8, 0x1, 0x2}, &(0x7f0000000840)={0x20, 0x81, 0x3, "16b8f6"}, &(0x7f0000000a00)=ANY=[@ANYBLOB="2082010000002623ccfd03a1f765612288359819f67b11af1ebee956816d9e16958fc7221f9be6abbf46d552b8162b2128cbfbf035ab8eef3c2d19128c7eece3da2a2d8bf28199b19aa6ecec03a0b09e946b6d4e403d7c0aefc46f4fd6ac19e8f73927bdbaf10476887aeb5cccf8d6e307307f7b39ad9503"], &(0x7f00000008c0)={0x20, 0x83, 0x1, '*'}, &(0x7f0000000900)={0x20, 0x84, 0x3, '\nJx'}, &(0x7f0000000940)={0x20, 0x85, 0x3, "62c336"}})

854.436255ms ago: executing program 4 (id=2637):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="020000000400000008"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x10, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x80000, {0x0, 0x0, 0x0, 0x0, {0x0, 0x4}, {0xf, 0xb}, {0xfff1, 0xb}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x2000c061}, 0x24008040)
socket(0x1b, 0x4, 0xe5)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
add_key$user(&(0x7f0000000200), 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffffe)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
syz_clone(0x680a8100, 0x0, 0x0, 0x0, 0x0, 0x0)

724.154256ms ago: executing program 0 (id=2638):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
r0 = socket$kcm(0x2, 0x922000000001, 0x106)
setsockopt$sock_attach_bpf(r0, 0x1, 0x42, &(0x7f0000000000), 0xff7b)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYRES64=r1], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, r3}, 0x18)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./file2\x00', 0x5e, &(0x7f0000000340)={[{@errors_remount}, {@nodiscard}, {@dioread_nolock}]}, 0x2, 0x468, &(0x7f0000000f00)="$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")
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x18)
newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', &(0x7f0000000380), 0x800)
r5 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r6=>0x0}, &(0x7f0000cab000)=0xc)
setregid(0xffffffffffffffff, r6)
syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000200)='./file0\x00', 0x10814, &(0x7f0000000700)=ANY=[@ANYBLOB='umask=00000000000000000000000,flush,nodots,dots,gid=', @ANYRESHEX, @ANYBLOB="00006b746769643d0092", @ANYRESDEC, @ANYBLOB="1500bba7d41fabba4332de3ca642acf6f8de847e3f21783608008708a887d30aaf0a14b0691d48445fe3b4d1ddde1b81337b2c3b5f88535d7f6fa931b84783704494cebe49ca9f6269b05edde0246c360d0566b4056f0f02ccab035d3d0a5cde0b31bd424949fe23c0a0a25691738006c5c6acdf101fecdb4f79abdfb95c6afaea03dd5903b5240565f31504c207a94d926c8108fb973081e90412a3c6cfa3b2513693727fad9acd8108acb8b90fab033c9dac0dc3e5a61c513e7b5edc5d76320f0e54045ea2b7b8fb1f78d3d346e26ee5ed6926cea1ffe0a1"], 0x1, 0x1fa, &(0x7f0000000500)="$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")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x20942, 0x71)
fremovexattr(r7, &(0x7f00000000c0)=@known='trusted.overlay.redirect\x00')

719.577496ms ago: executing program 0 (id=2639):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000000000000000000001800", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
r1 = inotify_init1(0x0)
inotify_add_watch(r1, &(0x7f00000000c0)='.\x00', 0xa4000061)
read(r1, &(0x7f0000000140)=""/68, 0x44)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)

220.084259ms ago: executing program 0 (id=2640):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001812", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback={0xff00000000000000}, 0x400}, 0x1c)
sendmmsg$inet6(r2, &(0x7f0000003cc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4000000)

202.691748ms ago: executing program 0 (id=2641):
r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000040)=0x81, 0x5, 0x0)
set_mempolicy_home_node(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0xfffffffffffffed2)
r2 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000240)={0x0, r1}, 0x8)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0xe, 0x0, 0x0, &(0x7f0000000880)='GPL\x00', 0x2, 0x0, 0x0, 0x40f00, 0x45, '\x00', 0x0, @sk_skb=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x8, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='kfree\x00', r3}, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
r5 = io_uring_setup(0x4359, &(0x7f0000000180)={0x0, 0x22efb, 0x80, 0x6, 0x3df})
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x600, 0x0)
sendmsg$OSF_MSG_REMOVE(r4, &(0x7f0000000600)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000002c0)={&(0x7f0000001040)=ANY=[], 0x268}, 0x1, 0x0, 0x0, 0xcb2d00b435051a76}, 0x2000c044)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xb, &(0x7f00000003c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000004c0)='kfree\x00'}, 0x18)
timerfd_gettime(r0, &(0x7f0000000100))
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x10, 0xffffffffffffffff, 0x0)
r8 = syz_usbip_server_init(0x3)
futex(&(0x7f0000000300), 0x5, 0x0, 0x0, &(0x7f0000048000), 0x20000000)
sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x548}, 0x1, 0x0, 0x0, 0x40040c0}, 0x0)
set_mempolicy(0x8006, &(0x7f0000000700)=0xfff, 0x5)
listen(r7, 0x6)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)
r9 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
r11 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x8933, &(0x7f0000000440))
sendmsg$BATADV_CMD_SET_MESH(r10, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYRES8=r8, @ANYRES16=r6, @ANYRESOCT=r2, @ANYRES64=<r12=>r5, @ANYRES16=r9, @ANYRES64=r10], 0x24}, 0x1, 0x0, 0x0, 0x20048040}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x1f, 0x4, &(0x7f00000005c0)=ANY=[@ANYRESHEX=r12, @ANYRES32=r11, @ANYRESDEC=r3], &(0x7f0000000200)='syzkaller\x00', 0x45, 0xc1, &(0x7f000000cf3d)=""/193, 0x0, 0x60, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x19, &(0x7f0000000000)={0xfffffff8}, 0x8, 0x10, &(0x7f0000000140)={0x3, 0x10000, 0x1fb, 0xffffffff}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x15a042)

0s ago: executing program 3 (id=2642):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000007000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1, 0x0, 0xffffffffffffffff}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000800)=ANY=[@ANYBLOB="140000001000d40000000000000000000000000a20000000000a03000000000000000000010000000900010073797a3000000000bc000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000009000038008000240000000007c00030f14000100626f6e64300000000000000000000000140001006970766c616e31000000000000000000140001006970766c616e300000000000000000001400010073697430000000000000fbffffffffffffff0100776c616e300000000000000000000000140001006772653000000000000000000000040008000140000000005c000000180a01010000000000000000010000000900020073797a30000000000900010073797a3000000000300003802c00038014000100626f6e64300000000000000000000000140001006970766c616e31"], 0x4b0}}, 0x0)

kernel console output (not intermixed with test programs):

ead(block 168) failed
[  167.917851][ T9198] FAT-fs (loop4): Directory bread(block 169) failed
[  167.928434][ T9198] FAT-fs (loop4): Directory bread(block 162) failed
[  167.935251][ T9198] FAT-fs (loop4): Directory bread(block 163) failed
[  167.942120][ T9198] syz.4.1852: attempt to access beyond end of device
[  167.942120][ T9198] loop4: rw=3, sector=226, nr_sectors = 6 limit=128
[  167.956189][ T9198] syz.4.1852: attempt to access beyond end of device
[  167.956189][ T9198] loop4: rw=2051, sector=232, nr_sectors = 2 limit=128
[  167.997282][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.086733][ T9213] netlink: 'syz.1.1855': attribute type 10 has an invalid length.
[  168.101931][ T9213] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1855'.
[  168.167265][ T9226] loop4: detected capacity change from 0 to 1024
[  168.184543][ T9226] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  168.195644][ T9226] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  168.196107][ T9228] loop1: detected capacity change from 0 to 2048
[  168.226077][ T9226] JBD2: no valid journal superblock found
[  168.231850][ T9226] EXT4-fs (loop4): Could not load journal inode
[  168.241333][ T9230] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  168.265717][ T9228] Alternate GPT is invalid, using primary GPT.
[  168.272049][ T9228]  loop1: p1 p2 p3
[  168.273295][ T9230] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  168.318020][ T9230] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=9230 comm=syz.0.1866
[  168.555806][ T9248] loop1: detected capacity change from 0 to 512
[  168.583593][ T9248] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1872: bg 0: block 418: padding at end of block bitmap is not set
[  168.588392][ T9245] lo speed is unknown, defaulting to 1000
[  168.644973][ T9248] EXT4-fs (loop1): Remounting filesystem read-only
[  168.668736][ T9253] loop4: detected capacity change from 0 to 1764
[  168.695221][ T9248] EXT4-fs (loop1): 1 truncate cleaned up
[  168.706435][ T9253] mmap: syz.4.1873 (9253) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  168.719270][ T9248] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  168.761735][ T9248] SELinux: (dev loop1, type ext4) getxattr errno 5
[  168.792396][ T9248] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.832629][ T9257] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  168.838223][ T9248] loop1: detected capacity change from 0 to 256
[  168.846306][ T9248] msdos: Bad value for 'gid'
[  168.851070][ T9248] msdos: Bad value for 'gid'
[  168.863672][ T9257] netlink: 'syz.4.1876': attribute type 10 has an invalid length.
[  168.873057][ T9260] FAULT_INJECTION: forcing a failure.
[  168.873057][ T9260] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  168.886242][ T9260] CPU: 1 UID: 0 PID: 9260 Comm: syz.2.1875 Tainted: G        W          6.14.0-rc6-syzkaller #0
[  168.886307][ T9260] Tainted: [W]=WARN
[  168.886361][ T9260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  168.886377][ T9260] Call Trace:
[  168.886384][ T9260]  <TASK>
[  168.886393][ T9260]  dump_stack_lvl+0xf2/0x150
[  168.886499][ T9260]  dump_stack+0x15/0x1a
[  168.886523][ T9260]  should_fail_ex+0x24a/0x260
[  168.886554][ T9260]  should_fail+0xb/0x10
[  168.886580][ T9260]  should_fail_usercopy+0x1a/0x20
[  168.886615][ T9260]  _copy_from_user+0x1c/0xa0
[  168.886644][ T9260]  do_replace+0x7b/0x300
[  168.886683][ T9260]  do_ebt_set_ctl+0x1bf/0xbb0
[  168.886716][ T9260]  ? _parse_integer+0x27/0x30
[  168.886741][ T9260]  ? kstrtoull+0x110/0x140
[  168.886790][ T9260]  ? _raw_spin_unlock_bh+0x36/0x40
[  168.886816][ T9260]  ? lock_sock_nested+0x10f/0x140
[  168.886904][ T9260]  ? _raw_spin_unlock_bh+0x36/0x40
[  168.886924][ T9260]  ? release_sock+0x117/0x150
[  168.886946][ T9260]  ? sockopt_release_sock+0x42/0x50
[  168.886970][ T9260]  ? do_ip_setsockopt+0x1fcf/0x2340
[  168.887049][ T9260]  nf_setsockopt+0x195/0x1b0
[  168.887090][ T9260]  ip_setsockopt+0xea/0x100
[  168.887119][ T9260]  udp_setsockopt+0x95/0xb0
[  168.887148][ T9260]  sock_common_setsockopt+0x64/0x80
[  168.887215][ T9260]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  168.887258][ T9260]  __sys_setsockopt+0x187/0x200
[  168.887360][ T9260]  __x64_sys_setsockopt+0x66/0x80
[  168.887384][ T9260]  x64_sys_call+0x282e/0x2dc0
[  168.887440][ T9260]  do_syscall_64+0xc9/0x1c0
[  168.887479][ T9260]  ? clear_bhb_loop+0x55/0xb0
[  168.887511][ T9260]  ? clear_bhb_loop+0x55/0xb0
[  168.887579][ T9260]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.887611][ T9260] RIP: 0033:0x7f4d6bb8d169
[  168.887629][ T9260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  168.887651][ T9260] RSP: 002b:00007f4d6a1f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  168.887673][ T9260] RAX: ffffffffffffffda RBX: 00007f4d6bda5fa0 RCX: 00007f4d6bb8d169
[  168.887685][ T9260] RDX: 0000000000000080 RSI: 0000000000000000 RDI: 0000000000000005
[  168.887768][ T9260] RBP: 00007f4d6a1f7090 R08: 0000000000000108 R09: 0000000000000000
[  168.887782][ T9260] R10: 0000400000000300 R11: 0000000000000246 R12: 0000000000000001
[  168.887793][ T9260] R13: 0000000000000000 R14: 00007f4d6bda5fa0 R15: 00007fffdbbae288
[  168.887810][ T9260]  </TASK>
[  168.902057][ T9262] loop1: detected capacity change from 0 to 1024
[  168.937455][ T9263] capability: warning: `syz.4.1876' uses 32-bit capabilities (legacy support in use)
[  169.005379][ T9262] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  169.163742][ T9262] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  169.173439][ T9257] geneve1: entered promiscuous mode
[  169.182417][ T9257] bond0: (slave geneve1): Enslaving as an active interface with an up link
[  169.205104][ T9262] JBD2: no valid journal superblock found
[  169.210877][ T9262] EXT4-fs (loop1): Could not load journal inode
[  169.240609][ T9269] loop2: detected capacity change from 0 to 2048
[  169.308535][ T9269] Alternate GPT is invalid, using primary GPT.
[  169.314935][ T9269]  loop2: p1 p2 p3
[  169.442902][ T9286] loop4: detected capacity change from 0 to 256
[  169.449540][ T9286] msdos: Bad value for 'gid'
[  169.454163][ T9286] msdos: Bad value for 'gid'
[  169.512953][ T9288] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  169.545197][ T9288] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  169.602920][ T9297] FAULT_INJECTION: forcing a failure.
[  169.602920][ T9297] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  169.607826][ T9288] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=9288 comm=syz.2.1888
[  169.616074][ T9297] CPU: 1 UID: 0 PID: 9297 Comm: syz.4.1892 Tainted: G        W          6.14.0-rc6-syzkaller #0
[  169.616151][ T9297] Tainted: [W]=WARN
[  169.616160][ T9297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  169.616239][ T9297] Call Trace:
[  169.616246][ T9297]  <TASK>
[  169.616253][ T9297]  dump_stack_lvl+0xf2/0x150
[  169.616288][ T9297]  dump_stack+0x15/0x1a
[  169.616380][ T9297]  should_fail_ex+0x24a/0x260
[  169.616419][ T9297]  should_fail+0xb/0x10
[  169.616507][ T9297]  should_fail_usercopy+0x1a/0x20
[  169.616548][ T9297]  _copy_from_user+0x1c/0xa0
[  169.616572][ T9297]  copy_msghdr_from_user+0x54/0x2a0
[  169.616678][ T9297]  ? __fget_files+0x17c/0x1c0
[  169.616743][ T9297]  __sys_sendmsg+0x13e/0x230
[  169.616791][ T9297]  __x64_sys_sendmsg+0x46/0x50
[  169.616824][ T9297]  x64_sys_call+0x2734/0x2dc0
[  169.616940][ T9297]  do_syscall_64+0xc9/0x1c0
[  169.616981][ T9297]  ? clear_bhb_loop+0x55/0xb0
[  169.617016][ T9297]  ? clear_bhb_loop+0x55/0xb0
[  169.617096][ T9297]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.617158][ T9297] RIP: 0033:0x7f7c53efd169
[  169.617179][ T9297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  169.617202][ T9297] RSP: 002b:00007f7c52561038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  169.617225][ T9297] RAX: ffffffffffffffda RBX: 00007f7c54115fa0 RCX: 00007f7c53efd169
[  169.617241][ T9297] RDX: 0000000000000000 RSI: 0000400000000080 RDI: 0000000000000003
[  169.617256][ T9297] RBP: 00007f7c52561090 R08: 0000000000000000 R09: 0000000000000000
[  169.617345][ T9297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  169.617361][ T9297] R13: 0000000000000000 R14: 00007f7c54115fa0 R15: 00007ffc9eeb8368
[  169.617383][ T9297]  </TASK>
[  169.660817][ T9300] vlan2: entered allmulticast mode
[  169.838807][ T9288] loop2: detected capacity change from 0 to 512
[  169.850201][ T9288] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  169.871292][ T9288] EXT4-fs (loop2): warning: maximal mount count reached, running e2fsck is recommended
[  169.883503][ T9288] EXT4-fs error (device loop2): ext4_orphan_get:1389: comm syz.2.1888: inode #15: comm syz.2.1888: iget: illegal inode #
[  169.902668][ T9307] lo speed is unknown, defaulting to 1000
[  169.971143][ T9288] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.1888: couldn't read orphan inode 15 (err -117)
[  170.004667][ T9318] loop4: detected capacity change from 0 to 164
[  170.120614][ T9288] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.244330][ T9324] loop4: detected capacity change from 0 to 256
[  170.251111][ T9324] msdos: Bad value for 'gid'
[  170.255841][ T9324] msdos: Bad value for 'gid'
[  170.273792][ T9326] loop3: detected capacity change from 0 to 164
[  170.316590][ T9330] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  170.325223][ T9330] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  170.410227][ T9336] loop4: detected capacity change from 0 to 512
[  170.420390][ T9336] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  170.442621][ T9336] EXT4-fs (loop4): warning: maximal mount count reached, running e2fsck is recommended
[  170.453101][ T9336] EXT4-fs error (device loop4): ext4_orphan_get:1389: comm syz.4.1902: inode #15: comm syz.4.1902: iget: illegal inode #
[  170.483009][ T9336] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1902: couldn't read orphan inode 15 (err -117)
[  170.555678][ T9250] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 19: invalid block bitmap
[  170.603513][ T9346] lo speed is unknown, defaulting to 1000
[  171.057960][ T9336] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.226933][ T9356] loop1: detected capacity change from 0 to 164
[  171.282902][ T9355] netlink: 'syz.0.1911': attribute type 10 has an invalid length.
[  171.304255][ T3299] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.324100][ T9355] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1911'.
[  171.502337][ T9369] loop3: detected capacity change from 0 to 512
[  171.533028][ T9370] loop2: detected capacity change from 0 to 256
[  171.549424][ T9369] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1916: bg 0: block 418: padding at end of block bitmap is not set
[  171.589690][ T9370] msdos: Bad value for 'gid'
[  171.594325][ T9370] msdos: Bad value for 'gid'
[  171.595518][ T9369] EXT4-fs (loop3): Remounting filesystem read-only
[  171.615511][ T9369] EXT4-fs (loop3): 1 truncate cleaned up
[  171.621854][ T9369] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  171.623791][ T9375] Cannot find del_set index 0 as target
[  171.639809][ T9369] SELinux: (dev loop3, type ext4) getxattr errno 5
[  171.648082][ T9369] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.678061][ T9369] loop3: detected capacity change from 0 to 256
[  171.686321][ T9369] msdos: Bad value for 'gid'
[  171.686680][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.691204][ T9369] msdos: Bad value for 'gid'
[  171.783872][ T9384] loop3: detected capacity change from 0 to 512
[  171.862186][ T9401] loop1: detected capacity change from 0 to 164
[  171.880151][ T9392] loop4: detected capacity change from 0 to 164
[  171.898424][ T9388] loop2: detected capacity change from 0 to 512
[  172.021040][ T9405] vlan2: entered allmulticast mode
[  172.038786][ T9388] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1925: bg 0: block 418: padding at end of block bitmap is not set
[  172.105281][ T9414] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  172.125431][ T9388] EXT4-fs (loop2): Remounting filesystem read-only
[  172.132103][ T9388] EXT4-fs (loop2): 1 truncate cleaned up
[  172.144209][ T9388] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.157518][ T9388] SELinux: (dev loop2, type ext4) getxattr errno 5
[  172.164521][ T9388] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.227511][ T9388] loop2: detected capacity change from 0 to 256
[  172.234218][ T9388] msdos: Bad value for 'gid'
[  172.238928][ T9388] msdos: Bad value for 'gid'
[  172.319031][   T30] kauditd_printk_skb: 517 callbacks suppressed
[  172.319045][   T30] audit: type=1326 audit(1741624722.122:15483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9426 comm="syz.3.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  172.394452][ T9431] lo speed is unknown, defaulting to 1000
[  172.410575][   T30] audit: type=1326 audit(1741624722.162:15484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9426 comm="syz.3.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  172.434191][   T30] audit: type=1326 audit(1741624722.162:15486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9413 comm="syz.4.1936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c53efd169 code=0x7ffc0000
[  172.457736][   T30] audit: type=1326 audit(1741624722.162:15485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9426 comm="syz.3.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  172.482972][   T30] audit: type=1326 audit(1741624722.162:15487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9413 comm="syz.4.1936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c53efd169 code=0x7ffc0000
[  172.506861][   T30] audit: type=1326 audit(1741624722.162:15488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9426 comm="syz.3.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  172.530414][   T30] audit: type=1326 audit(1741624722.162:15489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9413 comm="syz.4.1936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7c53efd169 code=0x7ffc0000
[  172.544215][ T9436] loop2: detected capacity change from 0 to 128
[  172.553980][   T30] audit: type=1326 audit(1741624722.162:15491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9413 comm="syz.4.1936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c53efd169 code=0x7ffc0000
[  172.554018][   T30] audit: type=1326 audit(1741624722.162:15490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9426 comm="syz.3.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  172.554093][   T30] audit: type=1326 audit(1741624722.162:15492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9413 comm="syz.4.1936" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f7c53efd169 code=0x7ffc0000
[  172.636100][ T9436] FAT-fs (loop2): Directory bread(block 162) failed
[  172.642902][ T9436] FAT-fs (loop2): Directory bread(block 163) failed
[  172.664480][ T9436] FAT-fs (loop2): Directory bread(block 164) failed
[  172.715400][ T9436] FAT-fs (loop2): Directory bread(block 165) failed
[  172.722082][ T9436] FAT-fs (loop2): Directory bread(block 166) failed
[  172.730218][ T9436] FAT-fs (loop2): Directory bread(block 167) failed
[  172.737002][ T9436] FAT-fs (loop2): Directory bread(block 168) failed
[  172.745329][ T9441] loop3: detected capacity change from 0 to 164
[  172.752337][ T9436] FAT-fs (loop2): Directory bread(block 169) failed
[  172.805799][ T9436] FAT-fs (loop2): Directory bread(block 162) failed
[  172.812511][ T9436] FAT-fs (loop2): Directory bread(block 163) failed
[  172.819358][ T9436] syz.2.1943: attempt to access beyond end of device
[  172.819358][ T9436] loop2: rw=3, sector=226, nr_sectors = 6 limit=128
[  172.832826][ T9436] syz.2.1943: attempt to access beyond end of device
[  172.832826][ T9436] loop2: rw=2051, sector=232, nr_sectors = 2 limit=128
[  172.950978][ T9453] vlan2: entered allmulticast mode
[  173.040558][ T9461] netlink: 'syz.4.1954': attribute type 10 has an invalid length.
[  173.053050][ T9461] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1954'.
[  173.059481][ T9470] loop2: detected capacity change from 0 to 164
[  173.116220][ T9476] loop4: detected capacity change from 0 to 128
[  173.128545][ T9478] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1961'.
[  173.145387][ T9480] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  173.156278][ T9476] FAT-fs (loop4): Directory bread(block 162) failed
[  173.169301][ T9476] FAT-fs (loop4): Directory bread(block 163) failed
[  173.182861][ T9476] FAT-fs (loop4): Directory bread(block 164) failed
[  173.189591][ T9476] FAT-fs (loop4): Directory bread(block 165) failed
[  173.196420][ T9476] FAT-fs (loop4): Directory bread(block 166) failed
[  173.204267][ T9476] FAT-fs (loop4): Directory bread(block 167) failed
[  173.212407][ T9476] FAT-fs (loop4): Directory bread(block 168) failed
[  173.220231][ T9476] FAT-fs (loop4): Directory bread(block 169) failed
[  173.243504][ T9476] FAT-fs (loop4): Directory bread(block 162) failed
[  173.256311][ T9476] FAT-fs (loop4): Directory bread(block 163) failed
[  173.278159][ T9494] loop1: detected capacity change from 0 to 164
[  173.287478][ T9476] syz.4.1960: attempt to access beyond end of device
[  173.287478][ T9476] loop4: rw=3, sector=226, nr_sectors = 6 limit=128
[  173.320216][ T9476] syz.4.1960: attempt to access beyond end of device
[  173.320216][ T9476] loop4: rw=2051, sector=232, nr_sectors = 2 limit=128
[  173.324457][ T9501] loop1: detected capacity change from 0 to 512
[  173.336444][ T9491] vlan2: entered allmulticast mode
[  173.409556][ T9503] netlink: 'syz.0.1971': attribute type 10 has an invalid length.
[  173.425203][ T9503] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1971'.
[  173.453780][ T9513] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  173.460431][ T9513] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  173.468088][ T9513] vhci_hcd vhci_hcd.0: Device attached
[  173.507249][ T9517] loop1: detected capacity change from 0 to 1024
[  173.522252][ T9517] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  173.530060][ T9522] lo speed is unknown, defaulting to 1000
[  173.533190][ T9517] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  173.564947][ T9517] JBD2: no valid journal superblock found
[  173.570775][ T9517] EXT4-fs (loop1): Could not load journal inode
[  173.580078][ T9528] loop3: detected capacity change from 0 to 164
[  173.624565][ T9515] vhci_hcd: connection closed
[  173.626617][   T12] vhci_hcd: stop threads
[  173.635662][   T12] vhci_hcd: release socket
[  173.640104][   T12] vhci_hcd: disconnect device
[  173.645594][   T25] vhci_hcd: vhci_device speed not set
[  173.663333][ T9538] loop3: detected capacity change from 0 to 128
[  173.670070][ T9536] SELinux:  policydb version 0 does not match my version range 15-34
[  173.681449][ T9538] FAT-fs (loop3): Directory bread(block 162) failed
[  173.685152][ T9536] SELinux: failed to load policy
[  173.688611][ T9538] FAT-fs (loop3): Directory bread(block 163) failed
[  173.717994][ T9538] FAT-fs (loop3): Directory bread(block 164) failed
[  173.724671][ T9538] FAT-fs (loop3): Directory bread(block 165) failed
[  173.735167][ T9538] FAT-fs (loop3): Directory bread(block 166) failed
[  173.742028][ T9538] FAT-fs (loop3): Directory bread(block 167) failed
[  173.749017][ T9538] FAT-fs (loop3): Directory bread(block 168) failed
[  173.755966][ T9538] FAT-fs (loop3): Directory bread(block 169) failed
[  173.757002][ T9542] Cannot find del_set index 0 as target
[  173.773263][ T9538] FAT-fs (loop3): Directory bread(block 162) failed
[  173.802437][ T9545] FAULT_INJECTION: forcing a failure.
[  173.802437][ T9545] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  173.815713][ T9545] CPU: 0 UID: 0 PID: 9545 Comm: syz.1.1985 Tainted: G        W          6.14.0-rc6-syzkaller #0
[  173.815754][ T9545] Tainted: [W]=WARN
[  173.815762][ T9545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  173.815820][ T9545] Call Trace:
[  173.815827][ T9545]  <TASK>
[  173.815834][ T9545]  dump_stack_lvl+0xf2/0x150
[  173.815861][ T9545]  dump_stack+0x15/0x1a
[  173.815885][ T9545]  should_fail_ex+0x24a/0x260
[  173.815920][ T9545]  should_fail+0xb/0x10
[  173.815970][ T9545]  should_fail_usercopy+0x1a/0x20
[  173.816006][ T9545]  _copy_from_user+0x1c/0xa0
[  173.816029][ T9545]  do_ipt_set_ctl+0x423/0x8b0
[  173.816081][ T9545]  ? _raw_spin_unlock_bh+0x36/0x40
[  173.816108][ T9545]  ? lock_sock_nested+0x10f/0x140
[  173.816153][ T9545]  nf_setsockopt+0x195/0x1b0
[  173.816196][ T9545]  ip_setsockopt+0xea/0x100
[  173.816228][ T9545]  udp_setsockopt+0x95/0xb0
[  173.816268][ T9545]  sock_common_setsockopt+0x64/0x80
[  173.816301][ T9545]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  173.816396][ T9545]  __sys_setsockopt+0x187/0x200
[  173.816425][ T9545]  __x64_sys_setsockopt+0x66/0x80
[  173.816483][ T9545]  x64_sys_call+0x282e/0x2dc0
[  173.816515][ T9545]  do_syscall_64+0xc9/0x1c0
[  173.816604][ T9545]  ? clear_bhb_loop+0x55/0xb0
[  173.816710][ T9545]  ? clear_bhb_loop+0x55/0xb0
[  173.816750][ T9545]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.816810][ T9545] RIP: 0033:0x7f8309a9d169
[  173.816825][ T9545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  173.816846][ T9545] RSP: 002b:00007f8308107038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  173.816868][ T9545] RAX: ffffffffffffffda RBX: 00007f8309cb5fa0 RCX: 00007f8309a9d169
[  173.816882][ T9545] RDX: 0000000000000040 RSI: 0004000000000000 RDI: 0000000000000003
[  173.816932][ T9545] RBP: 00007f8308107090 R08: 0000000000000428 R09: 0000000000000000
[  173.816945][ T9545] R10: 0000400000000480 R11: 0000000000000246 R12: 0000000000000001
[  173.816959][ T9545] R13: 0000000000000000 R14: 00007f8309cb5fa0 R15: 00007ffda4ecd508
[  173.816979][ T9545]  </TASK>
[  173.822721][ T9538] FAT-fs (loop3): Directory bread(block 163) failed
[  173.888649][ T9549] vlan2: entered allmulticast mode
[  173.915268][ T9538] syz.3.1983: attempt to access beyond end of device
[  173.915268][ T9538] loop3: rw=3, sector=226, nr_sectors = 6 limit=128
[  173.915305][ T9538] syz.3.1983: attempt to access beyond end of device
[  173.915305][ T9538] loop3: rw=2051, sector=232, nr_sectors = 2 limit=128
[  174.073359][ T9556] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  174.102667][ T9558] SELinux:  policydb magic number 0xf513 does not match expected magic number 0xf97cff8c
[  174.112876][ T9558] SELinux: failed to load policy
[  174.119825][ T9558] Cannot find del_set index 0 as target
[  174.188680][ T9562] loop4: detected capacity change from 0 to 512
[  174.202519][ T9562] EXT4-fs (loop4): failed to initialize system zone (-117)
[  174.217987][ T9562] EXT4-fs (loop4): mount failed
[  174.239867][ T9569] loop1: detected capacity change from 0 to 2048
[  174.276432][ T9569] Alternate GPT is invalid, using primary GPT.
[  174.282800][ T9569]  loop1: p1 p2 p3
[  174.316603][ T9576] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1996'.
[  174.357476][ T9578] netlink: 'syz.1.1998': attribute type 10 has an invalid length.
[  174.391087][ T9578] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1998'.
[  174.410036][ T9582] loop4: detected capacity change from 0 to 1024
[  174.464092][ T9582] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  174.499357][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.560674][ T9598] loop3: detected capacity change from 0 to 512
[  174.569568][ T9598] EXT4-fs (loop3): failed to initialize system zone (-117)
[  174.577347][ T9598] EXT4-fs (loop3): mount failed
[  174.605781][ T9604] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2006'.
[  174.615189][ T9605] loop4: detected capacity change from 0 to 512
[  174.628499][ T9604] bridge0: port 1(bridge_slave_0) entered disabled state
[  174.628910][ T9605] EXT4-fs (loop4): failed to initialize system zone (-117)
[  174.642942][ T9605] EXT4-fs (loop4): mount failed
[  174.647532][ T9604] bridge_slave_0 (unregistering): left allmulticast mode
[  174.654926][ T9604] bridge_slave_0 (unregistering): left promiscuous mode
[  174.661968][ T9604] bridge0: port 1(bridge_slave_0) entered disabled state
[  174.710891][ T9612] netlink: 'syz.4.2010': attribute type 10 has an invalid length.
[  174.723605][ T9612] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2010'.
[  174.757228][ T9622] FAULT_INJECTION: forcing a failure.
[  174.757228][ T9622] name failslab, interval 1, probability 0, space 0, times 0
[  174.770095][ T9622] CPU: 1 UID: 0 PID: 9622 Comm: syz.3.2013 Tainted: G        W          6.14.0-rc6-syzkaller #0
[  174.770181][ T9622] Tainted: [W]=WARN
[  174.770190][ T9622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  174.770205][ T9622] Call Trace:
[  174.770212][ T9622]  <TASK>
[  174.770220][ T9622]  dump_stack_lvl+0xf2/0x150
[  174.770265][ T9622]  dump_stack+0x15/0x1a
[  174.770309][ T9622]  should_fail_ex+0x24a/0x260
[  174.770416][ T9622]  should_failslab+0x8f/0xb0
[  174.770498][ T9622]  kmem_cache_alloc_noprof+0x52/0x320
[  174.770525][ T9622]  ? audit_log_start+0x34c/0x6b0
[  174.770565][ T9622]  audit_log_start+0x34c/0x6b0
[  174.770605][ T9622]  audit_seccomp+0x4b/0x130
[  174.770706][ T9622]  __seccomp_filter+0x6fa/0x1180
[  174.770734][ T9622]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  174.770768][ T9622]  ? vfs_write+0x644/0x920
[  174.770879][ T9622]  __secure_computing+0x9f/0x1c0
[  174.770906][ T9622]  syscall_trace_enter+0xd1/0x1f0
[  174.770934][ T9622]  ? fpregs_assert_state_consistent+0x83/0xa0
[  174.770961][ T9622]  do_syscall_64+0xaa/0x1c0
[  174.771061][ T9622]  ? clear_bhb_loop+0x55/0xb0
[  174.771095][ T9622]  ? clear_bhb_loop+0x55/0xb0
[  174.771182][ T9622]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  174.771257][ T9622] RIP: 0033:0x7f02d743d169
[  174.771272][ T9622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  174.771307][ T9622] RSP: 002b:00007f02d5aa7038 EFLAGS: 00000246 ORIG_RAX: 00000000000000f2
[  174.771328][ T9622] RAX: ffffffffffffffda RBX: 00007f02d7655fa0 RCX: 00007f02d743d169
[  174.771342][ T9622] RDX: 0000000000000fd1 RSI: 0000400000000600 RDI: 0000000000000003
[  174.771353][ T9622] RBP: 00007f02d5aa7090 R08: 0000000000000000 R09: 0000000000000000
[  174.771365][ T9622] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[  174.771376][ T9622] R13: 0000000000000000 R14: 00007f02d7655fa0 R15: 00007ffcb24b81c8
[  174.771403][ T9622]  </TASK>
[  174.776105][ T9619] (unnamed net_device) (uninitialized): Unable to set up delay as MII monitoring is disabled
[  174.790745][ T9622] loop3: detected capacity change from 0 to 512
[  174.999448][ T9622] EXT4-fs (loop3): failed to initialize system zone (-117)
[  175.008399][ T9622] EXT4-fs (loop3): mount failed
[  175.114533][ T9650] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2026'.
[  175.217147][ T9655] loop3: detected capacity change from 0 to 164
[  175.268560][ T9656] lo speed is unknown, defaulting to 1000
[  175.631098][ T9661] loop3: detected capacity change from 0 to 164
[  175.644431][ T9660] loop4: detected capacity change from 0 to 1024
[  175.678016][ T9660] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  175.689023][ T9660] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  175.761160][ T9670] loop3: detected capacity change from 0 to 2048
[  175.889673][ T9686] loop1: detected capacity change from 0 to 164
[  175.899412][ T9660] JBD2: no valid journal superblock found
[  175.905214][ T9660] EXT4-fs (loop4): Could not load journal inode
[  175.936591][ T9688] loop1: detected capacity change from 0 to 1024
[  175.943673][ T9688] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  175.954839][ T9688] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  175.968560][ T9670] Alternate GPT is invalid, using primary GPT.
[  175.974896][ T9670]  loop3: p1 p2 p3
[  175.986101][ T9688] JBD2: no valid journal superblock found
[  175.991899][ T9688] EXT4-fs (loop1): Could not load journal inode
[  176.102373][ T9698] netlink: 'syz.3.2043': attribute type 3 has an invalid length.
[  176.150786][ T9704] loop4: detected capacity change from 0 to 128
[  176.180220][ T9701] netlink: 'syz.1.2046': attribute type 10 has an invalid length.
[  176.199991][ T9704] FAT-fs (loop4): Directory bread(block 162) failed
[  176.214604][ T9701] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2046'.
[  176.228458][ T9704] FAT-fs (loop4): Directory bread(block 163) failed
[  176.235338][ T9704] FAT-fs (loop4): Directory bread(block 164) failed
[  176.241973][ T9704] FAT-fs (loop4): Directory bread(block 165) failed
[  176.247086][ T9711] loop2: detected capacity change from 0 to 164
[  176.248722][ T9704] FAT-fs (loop4): Directory bread(block 166) failed
[  176.262060][ T9704] FAT-fs (loop4): Directory bread(block 167) failed
[  176.268889][ T9704] FAT-fs (loop4): Directory bread(block 168) failed
[  176.275742][ T9704] FAT-fs (loop4): Directory bread(block 169) failed
[  176.287972][ T9704] FAT-fs (loop4): Directory bread(block 162) failed
[  176.291876][ T9714] xt_hashlimit: max too large, truncated to 1048576
[  176.304656][ T9704] FAT-fs (loop4): Directory bread(block 163) failed
[  176.318525][ T9704] syz.4.2048: attempt to access beyond end of device
[  176.318525][ T9704] loop4: rw=3, sector=226, nr_sectors = 6 limit=128
[  176.322766][ T9719] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  176.340538][ T9719] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  176.352854][ T9719] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=9719 comm=syz.1.2054
[  176.364401][ T9704] syz.4.2048: attempt to access beyond end of device
[  176.364401][ T9704] loop4: rw=2051, sector=232, nr_sectors = 2 limit=128
[  176.384426][ T9719] loop1: detected capacity change from 0 to 512
[  176.391665][ T9719] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  176.422199][ T9719] EXT4-fs (loop1): warning: maximal mount count reached, running e2fsck is recommended
[  176.432676][ T9719] EXT4-fs error (device loop1): ext4_orphan_get:1389: comm syz.1.2054: inode #15: comm syz.1.2054: iget: illegal inode #
[  176.456755][ T9719] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.2054: couldn't read orphan inode 15 (err -117)
[  176.476342][ T9719] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.482094][ T9733] netlink: 'syz.3.2061': attribute type 3 has an invalid length.
[  176.507128][ T9732] SELinux:  Context system_u:object_r:dhcp_state_t:s0 is not valid (left unmapped).
[  176.519827][ T9738] FAULT_INJECTION: forcing a failure.
[  176.519827][ T9738] name failslab, interval 1, probability 0, space 0, times 0
[  176.532672][ T9738] CPU: 0 UID: 0 PID: 9738 Comm: syz.3.2063 Tainted: G        W          6.14.0-rc6-syzkaller #0
[  176.532770][ T9738] Tainted: [W]=WARN
[  176.532776][ T9738] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  176.532789][ T9738] Call Trace:
[  176.532796][ T9738]  <TASK>
[  176.532802][ T9738]  dump_stack_lvl+0xf2/0x150
[  176.532856][ T9738]  dump_stack+0x15/0x1a
[  176.532895][ T9738]  should_fail_ex+0x24a/0x260
[  176.532945][ T9738]  should_failslab+0x8f/0xb0
[  176.532977][ T9738]  __kmalloc_node_noprof+0xad/0x410
[  176.533003][ T9738]  ? __kvmalloc_node_noprof+0x72/0x170
[  176.533093][ T9738]  __kvmalloc_node_noprof+0x72/0x170
[  176.533128][ T9738]  io_alloc_cache_init+0x33/0xa0
[  176.533162][ T9738]  io_ring_ctx_alloc+0x2f2/0x730
[  176.533278][ T9738]  io_uring_create+0x40/0x6d0
[  176.533310][ T9738]  __se_sys_io_uring_setup+0x1d2/0x1e0
[  176.533334][ T9738]  __x64_sys_io_uring_setup+0x31/0x40
[  176.533354][ T9738]  x64_sys_call+0x270c/0x2dc0
[  176.533380][ T9738]  do_syscall_64+0xc9/0x1c0
[  176.533418][ T9738]  ? clear_bhb_loop+0x55/0xb0
[  176.533490][ T9738]  ? clear_bhb_loop+0x55/0xb0
[  176.533559][ T9738]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.533586][ T9738] RIP: 0033:0x7f02d743d169
[  176.533603][ T9738] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  176.533623][ T9738] RSP: 002b:00007f02d5aa6fc8 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
[  176.533644][ T9738] RAX: ffffffffffffffda RBX: 00007f02d7655fa0 RCX: 00007f02d743d169
[  176.533728][ T9738] RDX: 0000000000000000 RSI: 00004000000000c0 RDI: 0000000000002c4b
[  176.533741][ T9738] RBP: 00004000000000c0 R08: 0000000000000000 R09: 0000000000000000
[  176.533755][ T9738] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[  176.533768][ T9738] R13: 0000000000000000 R14: 0000000000002c4b R15: 0000000000000000
[  176.533787][ T9738]  </TASK>
[  176.753344][ T9743] xt_hashlimit: max too large, truncated to 1048576
[  176.813922][ T9759] netlink: 'syz.2.2073': attribute type 3 has an invalid length.
[  176.826810][ T9756] loop3: detected capacity change from 0 to 1024
[  176.833827][ T9756] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  176.844867][ T9756] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  176.855824][ T9756] JBD2: no valid journal superblock found
[  176.861620][ T9756] EXT4-fs (loop3): Could not load journal inode
[  176.876469][ T9764] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  176.883094][ T9764] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  176.890923][ T9764] vhci_hcd vhci_hcd.0: Device attached
[  176.917770][ T9769] loop3: detected capacity change from 0 to 2048
[  176.931364][ T9764] lo speed is unknown, defaulting to 1000
[  176.975807][ T9769] Alternate GPT is invalid, using primary GPT.
[  176.982158][ T9769]  loop3: p1 p2 p3
[  177.005750][ T9781] loop4: detected capacity change from 0 to 164
[  177.027719][ T9786] loop3: detected capacity change from 0 to 128
[  177.049706][ T9786] FAT-fs (loop3): Directory bread(block 162) failed
[  177.065094][ T9786] FAT-fs (loop3): Directory bread(block 163) failed
[  177.073804][ T9765] vhci_hcd: connection closed
[  177.074170][   T88] vhci_hcd: stop threads
[  177.075493][ T9786] FAT-fs (loop3): Directory bread(block 164) failed
[  177.079003][   T88] vhci_hcd: release socket
[  177.091924][ T9786] FAT-fs (loop3): Directory bread(block 165) failed
[  177.094202][   T88] vhci_hcd: disconnect device
[  177.094329][ T3374] vhci_hcd: vhci_device speed not set
[  177.107465][ T9786] FAT-fs (loop3): Directory bread(block 166) failed
[  177.117781][ T9786] FAT-fs (loop3): Directory bread(block 167) failed
[  177.120021][ T9791] netlink: 'syz.4.2085': attribute type 3 has an invalid length.
[  177.124407][ T9786] FAT-fs (loop3): Directory bread(block 168) failed
[  177.139121][ T9786] FAT-fs (loop3): Directory bread(block 169) failed
[  177.155803][ T9786] FAT-fs (loop3): Directory bread(block 162) failed
[  177.162454][ T9786] FAT-fs (loop3): Directory bread(block 163) failed
[  177.162866][ T9796] loop4: detected capacity change from 0 to 2048
[  177.169487][ T9786] syz.3.2083: attempt to access beyond end of device
[  177.169487][ T9786] loop3: rw=3, sector=226, nr_sectors = 6 limit=128
[  177.190188][ T9786] syz.3.2083: attempt to access beyond end of device
[  177.190188][ T9786] loop3: rw=2051, sector=232, nr_sectors = 2 limit=128
[  177.227734][ T9796] Alternate GPT is invalid, using primary GPT.
[  177.234066][ T9796]  loop4: p1 p2 p3
[  177.249553][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.324047][ T9815] loop3: detected capacity change from 0 to 128
[  177.331879][   T30] kauditd_printk_skb: 901 callbacks suppressed
[  177.331894][   T30] audit: type=1326 audit(1741624727.132:16392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9814 comm="syz.3.2097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f02d743bdca code=0x7ffc0000
[  177.367907][   T30] audit: type=1326 audit(1741624727.172:16393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9814 comm="syz.3.2097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f02d743bdca code=0x7ffc0000
[  177.378923][ T9817] netlink: 'syz.4.2098': attribute type 3 has an invalid length.
[  177.391259][   T30] audit: type=1326 audit(1741624727.172:16394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9814 comm="syz.3.2097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f02d743b9d7 code=0x7ffc0000
[  177.422474][   T30] audit: type=1326 audit(1741624727.172:16395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9814 comm="syz.3.2097" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f02d743e90a code=0x7ffc0000
[  177.452263][ T9815] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  177.465481][ T9815] ext4 filesystem being mounted at /431/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  177.477041][   T30] audit: type=1326 audit(1741624727.272:16396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9819 comm="syz.0.2099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f979797d169 code=0x7ffc0000
[  177.500677][   T30] audit: type=1326 audit(1741624727.272:16397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9819 comm="syz.0.2099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f979797d169 code=0x7ffc0000
[  177.524370][   T30] audit: type=1326 audit(1741624727.272:16398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9819 comm="syz.0.2099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f979797d169 code=0x7ffc0000
[  177.548034][   T30] audit: type=1326 audit(1741624727.272:16399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9819 comm="syz.0.2099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f979797d169 code=0x7ffc0000
[  177.571696][   T30] audit: type=1326 audit(1741624727.272:16400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9819 comm="syz.0.2099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f979797d169 code=0x7ffc0000
[  177.595538][   T30] audit: type=1326 audit(1741624727.272:16401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9819 comm="syz.0.2099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f979797d169 code=0x7ffc0000
[  177.620506][ T3310] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  177.663879][ T9831] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  177.682291][ T9831] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  177.700436][ T9831] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=9831 comm=syz.2.2103
[  177.737788][ T9831] loop2: detected capacity change from 0 to 512
[  177.745344][ T9831] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  177.767609][ T9831] EXT4-fs (loop2): warning: maximal mount count reached, running e2fsck is recommended
[  177.824885][ T9831] EXT4-fs error (device loop2): ext4_orphan_get:1389: comm syz.2.2103: inode #15: comm syz.2.2103: iget: illegal inode #
[  177.877789][ T9840] loop3: detected capacity change from 0 to 512
[  177.919016][ T9845] FAULT_INJECTION: forcing a failure.
[  177.919016][ T9845] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  177.932139][ T9845] CPU: 1 UID: 0 PID: 9845 Comm: syz.0.2107 Tainted: G        W          6.14.0-rc6-syzkaller #0
[  177.932167][ T9845] Tainted: [W]=WARN
[  177.932173][ T9845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  177.932188][ T9845] Call Trace:
[  177.932195][ T9845]  <TASK>
[  177.932202][ T9845]  dump_stack_lvl+0xf2/0x150
[  177.932280][ T9845]  dump_stack+0x15/0x1a
[  177.932301][ T9845]  should_fail_ex+0x24a/0x260
[  177.932331][ T9845]  should_fail+0xb/0x10
[  177.932370][ T9845]  should_fail_usercopy+0x1a/0x20
[  177.932409][ T9845]  _copy_from_user+0x1c/0xa0
[  177.932438][ T9845]  restore_sigcontext+0x64/0x220
[  177.932468][ T9845]  ? proc_fail_nth_write+0x12a/0x150
[  177.932568][ T9845]  __do_sys_rt_sigreturn+0xfd/0x160
[  177.932599][ T9845]  x64_sys_call+0x2982/0x2dc0
[  177.932632][ T9845]  do_syscall_64+0xc9/0x1c0
[  177.932744][ T9845]  ? clear_bhb_loop+0x55/0xb0
[  177.932798][ T9845]  ? clear_bhb_loop+0x55/0xb0
[  177.932881][ T9845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  177.932907][ T9845] RIP: 0033:0x7f979797d169
[  177.932925][ T9845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  177.932946][ T9845] RSP: 002b:00007f9795fe1038 EFLAGS: 00000246 ORIG_RAX: 000000000000000f
[  177.932968][ T9845] RAX: ffffffffffffffda RBX: 00007f9797b95fa0 RCX: 00007f979797d169
[  177.932980][ T9845] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  177.933026][ T9845] RBP: 00007f9795fe1090 R08: 0000000000000000 R09: 0000000000000000
[  177.933037][ T9845] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  177.933051][ T9845] R13: 0000000000000001 R14: 00007f9797b95fa0 R15: 00007ffc6d894da8
[  177.933073][ T9845]  </TASK>
[  177.933577][ T9831] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.2103: couldn't read orphan inode 15 (err -117)
[  178.045808][ T9840] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2105: bg 0: block 418: padding at end of block bitmap is not set
[  178.056812][ T9831] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.064905][ T9840] EXT4-fs (loop3): Remounting filesystem read-only
[  178.155325][ T9840] EXT4-fs (loop3): 1 truncate cleaned up
[  178.161521][ T9840] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.195318][ T9840] SELinux: (dev loop3, type ext4) getxattr errno 5
[  178.202282][ T9840] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.226284][ T9840] loop3: detected capacity change from 0 to 256
[  178.240490][ T9840] msdos: Bad value for 'gid'
[  178.245208][ T9840] msdos: Bad value for 'gid'
[  178.249970][ T9588] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 19: invalid block bitmap
[  178.331355][ T9849] loop3: detected capacity change from 0 to 164
[  178.416686][ T9853] loop4: detected capacity change from 0 to 128
[  178.430767][ T9853] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  178.455210][ T9853] ext4 filesystem being mounted at /402/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  178.488352][ T9863] loop1: detected capacity change from 0 to 512
[  178.504304][ T3313] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  178.514278][ T9863] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2115: bg 0: block 418: padding at end of block bitmap is not set
[  178.534407][ T9863] EXT4-fs (loop1): Remounting filesystem read-only
[  178.541413][ T9863] EXT4-fs (loop1): 1 truncate cleaned up
[  178.547674][ T9863] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.560139][ T9863] SELinux: (dev loop1, type ext4) getxattr errno 5
[  178.580501][ T9863] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.597939][ T9870] loop3: detected capacity change from 0 to 1024
[  178.614349][ T9870] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  178.616511][ T9863] loop1: detected capacity change from 0 to 256
[  178.625448][ T9870] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  178.631789][ T9863] msdos: Bad value for 'gid'
[  178.645937][ T9863] msdos: Bad value for 'gid'
[  178.651536][ T9870] JBD2: no valid journal superblock found
[  178.651767][ T3299] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.657334][ T9870] EXT4-fs (loop3): Could not load journal inode
[  178.690953][ T9872] loop4: detected capacity change from 0 to 512
[  178.745130][ T9872] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2119: bg 0: block 418: padding at end of block bitmap is not set
[  178.790145][ T9872] EXT4-fs (loop4): Remounting filesystem read-only
[  178.800331][ T9872] EXT4-fs (loop4): 1 truncate cleaned up
[  178.828621][ T9872] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.861041][ T9872] SELinux: (dev loop4, type ext4) getxattr errno 5
[  178.967154][ T9872] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.002180][ T9889] loop3: detected capacity change from 0 to 128
[  179.010426][ T9889] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  179.022731][ T9889] ext4 filesystem being mounted at /442/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  179.055887][ T3310] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  179.078659][ T9872] loop4: detected capacity change from 0 to 256
[  179.091501][ T9872] msdos: Bad value for 'gid'
[  179.096248][ T9872] msdos: Bad value for 'gid'
[  179.320326][ T9918] loop2: detected capacity change from 0 to 128
[  179.344935][ T9918] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  179.362999][ T9918] ext4 filesystem being mounted at /400/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  179.385980][ T9924] loop4: detected capacity change from 0 to 512
[  179.394971][ T3299] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  179.404604][ T9924] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2141: bg 0: block 418: padding at end of block bitmap is not set
[  179.419213][ T9924] EXT4-fs (loop4): Remounting filesystem read-only
[  179.425878][ T9924] EXT4-fs (loop4): 1 truncate cleaned up
[  179.432021][ T9924] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  179.444220][ T9924] SELinux: (dev loop4, type ext4) getxattr errno 5
[  179.451362][ T9924] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.470241][ T9924] loop4: detected capacity change from 0 to 256
[  179.477193][ T9924] msdos: Bad value for 'gid'
[  179.481901][ T9924] msdos: Bad value for 'gid'
[  179.506135][ T9936] loop4: detected capacity change from 0 to 512
[  179.541368][ T9936] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2146: bg 0: block 418: padding at end of block bitmap is not set
[  179.556240][ T9936] EXT4-fs (loop4): Remounting filesystem read-only
[  179.562890][ T9936] EXT4-fs (loop4): 1 truncate cleaned up
[  179.569159][ T9936] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  179.581420][ T9936] SELinux: (dev loop4, type ext4) getxattr errno 5
[  179.588909][ T9936] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.617504][ T9936] loop4: detected capacity change from 0 to 256
[  179.624034][ T9936] msdos: Bad value for 'gid'
[  179.628670][ T9936] msdos: Bad value for 'gid'
[  179.798500][ T9954] lo speed is unknown, defaulting to 1000
[  180.160271][ T9952] loop4: detected capacity change from 0 to 128
[  180.189299][ T9952] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  180.212198][ T9966] FAULT_INJECTION: forcing a failure.
[  180.212198][ T9966] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  180.225335][ T9966] CPU: 0 UID: 0 PID: 9966 Comm: syz.1.2157 Tainted: G        W          6.14.0-rc6-syzkaller #0
[  180.225369][ T9966] Tainted: [W]=WARN
[  180.225377][ T9966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  180.225391][ T9966] Call Trace:
[  180.225398][ T9966]  <TASK>
[  180.225407][ T9966]  dump_stack_lvl+0xf2/0x150
[  180.225444][ T9966]  dump_stack+0x15/0x1a
[  180.225469][ T9966]  should_fail_ex+0x24a/0x260
[  180.225498][ T9966]  should_fail+0xb/0x10
[  180.225523][ T9966]  should_fail_usercopy+0x1a/0x20
[  180.225564][ T9966]  _copy_to_user+0x20/0xa0
[  180.225599][ T9966]  pagemap_read+0x3af/0x610
[  180.225632][ T9966]  ? __pfx_pagemap_read+0x10/0x10
[  180.225724][ T9966]  vfs_read+0x19b/0x6f0
[  180.225753][ T9966]  ? __fget_files+0x17c/0x1c0
[  180.225789][ T9966]  ? __rcu_read_unlock+0x4e/0x70
[  180.225816][ T9966]  ? __fget_files+0x17c/0x1c0
[  180.225931][ T9966]  __x64_sys_pread64+0xf6/0x150
[  180.225965][ T9966]  x64_sys_call+0x26ee/0x2dc0
[  180.225996][ T9966]  do_syscall_64+0xc9/0x1c0
[  180.226106][ T9966]  ? clear_bhb_loop+0x55/0xb0
[  180.226163][ T9966]  ? clear_bhb_loop+0x55/0xb0
[  180.226195][ T9966]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  180.226221][ T9966] RIP: 0033:0x7f8309a9d169
[  180.226235][ T9966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  180.226256][ T9966] RSP: 002b:00007f8308107038 EFLAGS: 00000246 ORIG_RAX: 0000000000000011
[  180.226276][ T9966] RAX: ffffffffffffffda RBX: 00007f8309cb5fa0 RCX: 00007f8309a9d169
[  180.226332][ T9966] RDX: 0000000000200000 RSI: 0000400000001240 RDI: 0000000000000003
[  180.226343][ T9966] RBP: 00007f8308107090 R08: 0000000000000000 R09: 0000000000000000
[  180.226355][ T9966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  180.226365][ T9966] R13: 0000000000000000 R14: 00007f8309cb5fa0 R15: 00007ffda4ecd508
[  180.226382][ T9966]  </TASK>
[  180.233022][ T9952] ext4 filesystem being mounted at /412/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  180.568314][ T9976] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  180.608726][ T9976] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  180.698114][ T9987] loop1: detected capacity change from 0 to 512
[  180.724038][ T9987] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  180.760262][ T9987] EXT4-fs (loop1): warning: maximal mount count reached, running e2fsck is recommended
[  180.796054][ T3313] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  180.817756][ T9987] EXT4-fs error (device loop1): ext4_orphan_get:1389: comm syz.1.2162: inode #15: comm syz.1.2162: iget: illegal inode #
[  180.845112][ T9987] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.2162: couldn't read orphan inode 15 (err -117)
[  180.952360][ T9987] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  181.151178][T10012] lo speed is unknown, defaulting to 1000
[  181.509410][T10015] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  181.537574][T10015] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  181.577001][T10015] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=10015 comm=syz.4.2175
[  181.624883][T10019] loop2: detected capacity change from 0 to 128
[  181.639180][T10015] loop4: detected capacity change from 0 to 512
[  181.659345][T10015] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  181.720879][T10015] EXT4-fs (loop4): warning: maximal mount count reached, running e2fsck is recommended
[  181.755649][T10015] EXT4-fs error (device loop4): ext4_orphan_get:1389: comm syz.4.2175: inode #15: comm syz.4.2175: iget: illegal inode #
[  181.774424][T10019] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  181.794847][T10015] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.2175: couldn't read orphan inode 15 (err -117)
[  181.807752][T10029] loop3: detected capacity change from 0 to 128
[  181.820120][T10029] FAT-fs (loop3): Directory bread(block 162) failed
[  181.832101][T10015] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  181.845089][T10029] FAT-fs (loop3): Directory bread(block 163) failed
[  181.864901][T10019] ext4 filesystem being mounted at /407/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  181.875589][T10029] FAT-fs (loop3): Directory bread(block 164) failed
[  181.909751][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.922898][T10029] FAT-fs (loop3): Directory bread(block 165) failed
[  181.940962][T10029] FAT-fs (loop3): Directory bread(block 166) failed
[  181.965352][T10029] FAT-fs (loop3): Directory bread(block 167) failed
[  181.988193][T10029] FAT-fs (loop3): Directory bread(block 168) failed
[  181.999081][T10029] FAT-fs (loop3): Directory bread(block 169) failed
[  182.027170][ T3299] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  182.132192][T10040] loop2: detected capacity change from 0 to 512
[  182.177325][T10049] netlink: 'syz.1.2190': attribute type 3 has an invalid length.
[  182.299426][T10055] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  182.312030][T10040] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2185: bg 0: block 418: padding at end of block bitmap is not set
[  182.313420][T10055] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  182.373656][   T30] kauditd_printk_skb: 648 callbacks suppressed
[  182.373671][   T30] audit: type=1326 audit(1741624732.172:17050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10060 comm="syz.1.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  182.423051][T10061] loop1: detected capacity change from 0 to 128
[  182.433699][T10061] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  182.458936][T10061] ext4 filesystem being mounted at /459/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.491969][T10064] lo speed is unknown, defaulting to 1000
[  182.775350][T10040] EXT4-fs (loop2): Remounting filesystem read-only
[  182.795995][ T3297] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  182.819297][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.850380][T10040] EXT4-fs (loop2): 1 truncate cleaned up
[  182.864364][T10055] loop3: detected capacity change from 0 to 512
[  182.874035][T10055] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  182.890029][T10040] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  182.902959][T10055] EXT4-fs (loop3): warning: maximal mount count reached, running e2fsck is recommended
[  182.915247][T10055] EXT4-fs error (device loop3): ext4_orphan_get:1389: comm syz.3.2192: inode #15: comm syz.3.2192: iget: illegal inode #
[  182.938193][T10040] SELinux: (dev loop2, type ext4) getxattr errno 5
[  182.945105][T10055] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2192: couldn't read orphan inode 15 (err -117)
[  183.215862][T10076] netlink: 'syz.0.2201': attribute type 3 has an invalid length.
[  183.272888][T10078] syz.0.2202 uses obsolete (PF_INET,SOCK_PACKET)
[  183.294409][   T30] audit: type=1326 audit(1741624732.222:17051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10060 comm="syz.1.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  183.318229][   T30] audit: type=1326 audit(1741624732.222:17052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10060 comm="syz.1.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  183.341974][   T30] audit: type=1326 audit(1741624732.222:17053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10060 comm="syz.1.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  183.365638][   T30] audit: type=1326 audit(1741624732.222:17054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10060 comm="syz.1.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  183.389318][   T30] audit: type=1326 audit(1741624732.222:17055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10060 comm="syz.1.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  183.413067][   T30] audit: type=1326 audit(1741624732.222:17056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10060 comm="syz.1.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  183.436673][   T30] audit: type=1326 audit(1741624732.222:17057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10060 comm="syz.1.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  183.460524][   T30] audit: type=1326 audit(1741624732.222:17058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10060 comm="syz.1.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  183.484137][   T30] audit: type=1326 audit(1741624732.222:17059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10060 comm="syz.1.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  183.527904][T10040] loop2: detected capacity change from 0 to 256
[  183.531679][T10078] program syz.0.2202 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  183.534449][T10040] msdos: Bad value for 'gid'
[  183.548156][T10040] msdos: Bad value for 'gid'
[  184.520279][T10108] lo speed is unknown, defaulting to 1000
[  184.768799][T10113] netlink: 'syz.4.2212': attribute type 3 has an invalid length.
[  184.892523][T10111] lo speed is unknown, defaulting to 1000
[  185.544234][T10122] loop4: detected capacity change from 0 to 512
[  185.564048][T10122] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2215: bg 0: block 418: padding at end of block bitmap is not set
[  185.613443][T10122] EXT4-fs (loop4): Remounting filesystem read-only
[  185.635129][T10122] EXT4-fs (loop4): 1 truncate cleaned up
[  185.641241][T10122] SELinux: (dev loop4, type ext4) getxattr errno 5
[  185.693246][T10122] loop4: detected capacity change from 0 to 256
[  185.724543][T10122] msdos: Bad value for 'gid'
[  185.729335][T10122] msdos: Bad value for 'gid'
[  186.026197][T10126] Cannot find add_set index 0 as target
[  186.097759][T10126] can: request_module (can-proto-0) failed.
[  186.131211][T10129] lo speed is unknown, defaulting to 1000
[  186.388456][T10158] loop4: detected capacity change from 0 to 2048
[  186.407292][T10156] loop3: detected capacity change from 0 to 2048
[  186.462329][T10158] Alternate GPT is invalid, using primary GPT.
[  186.468732][T10158]  loop4: p1 p2 p3
[  186.506430][T10156] Alternate GPT is invalid, using primary GPT.
[  186.513080][T10156]  loop3: p1 p2 p3
[  186.611537][T10172] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2234'.
[  186.934897][T10198] netlink: 'syz.4.2241': attribute type 10 has an invalid length.
[  186.949881][T10198] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2241'.
[  187.090231][T10210] FAULT_INJECTION: forcing a failure.
[  187.090231][T10210] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  187.103371][T10210] CPU: 0 UID: 0 PID: 10210 Comm: syz.4.2248 Tainted: G        W          6.14.0-rc6-syzkaller #0
[  187.103447][T10210] Tainted: [W]=WARN
[  187.103455][T10210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  187.103467][T10210] Call Trace:
[  187.103538][T10210]  <TASK>
[  187.103546][T10210]  dump_stack_lvl+0xf2/0x150
[  187.103586][T10210]  dump_stack+0x15/0x1a
[  187.103608][T10210]  should_fail_ex+0x24a/0x260
[  187.103638][T10210]  should_fail+0xb/0x10
[  187.103711][T10210]  should_fail_usercopy+0x1a/0x20
[  187.103744][T10210]  _copy_from_user+0x1c/0xa0
[  187.103767][T10210]  copy_msghdr_from_user+0x54/0x2a0
[  187.103856][T10210]  ? __fget_files+0x17c/0x1c0
[  187.103951][T10210]  __sys_sendmsg+0x13e/0x230
[  187.103992][T10210]  __x64_sys_sendmsg+0x46/0x50
[  187.104024][T10210]  x64_sys_call+0x2734/0x2dc0
[  187.104056][T10210]  do_syscall_64+0xc9/0x1c0
[  187.104157][T10210]  ? clear_bhb_loop+0x55/0xb0
[  187.104191][T10210]  ? clear_bhb_loop+0x55/0xb0
[  187.104223][T10210]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.104259][T10210] RIP: 0033:0x7f7c53efd169
[  187.104274][T10210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.104292][T10210] RSP: 002b:00007f7c52561038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  187.104319][T10210] RAX: ffffffffffffffda RBX: 00007f7c54115fa0 RCX: 00007f7c53efd169
[  187.104332][T10210] RDX: 0000000024008000 RSI: 0000400000000840 RDI: 0000000000000007
[  187.104346][T10210] RBP: 00007f7c52561090 R08: 0000000000000000 R09: 0000000000000000
[  187.104360][T10210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  187.104375][T10210] R13: 0000000000000000 R14: 00007f7c54115fa0 R15: 00007ffc9eeb8368
[  187.104396][T10210]  </TASK>
[  187.382141][   T30] kauditd_printk_skb: 440 callbacks suppressed
[  187.382160][   T30] audit: type=1326 audit(1741624737.182:17500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10215 comm="syz.1.2251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  187.420824][T10218] loop4: detected capacity change from 0 to 164
[  187.455168][   T30] audit: type=1326 audit(1741624737.182:17501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10215 comm="syz.1.2251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  187.478892][   T30] audit: type=1326 audit(1741624737.182:17502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10215 comm="syz.1.2251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  187.502615][   T30] audit: type=1326 audit(1741624737.182:17503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10215 comm="syz.1.2251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  187.526328][   T30] audit: type=1326 audit(1741624737.182:17504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10215 comm="syz.1.2251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8309a9bad0 code=0x7ffc0000
[  187.549947][   T30] audit: type=1326 audit(1741624737.182:17505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10215 comm="syz.1.2251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8309a9bad0 code=0x7ffc0000
[  187.573573][   T30] audit: type=1326 audit(1741624737.182:17506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10215 comm="syz.1.2251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  187.597198][   T30] audit: type=1326 audit(1741624737.182:17507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10215 comm="syz.1.2251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  187.620974][   T30] audit: type=1326 audit(1741624737.182:17508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10215 comm="syz.1.2251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  187.644582][   T30] audit: type=1326 audit(1741624737.182:17509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10215 comm="syz.1.2251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  187.666582][T10219] lo speed is unknown, defaulting to 1000
[  187.715344][T10216] loop1: detected capacity change from 0 to 128
[  187.736982][T10216] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  187.771964][T10216] ext2 filesystem being mounted at /466/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  187.885842][T10216] EXT4-fs error (device loop1): htree_dirblock_to_tree:1112: inode #2: block 4: comm syz.1.2251: bad entry in directory: inode out of bounds - offset=1012, inode=128, rec_len=12, size=1024 fake=1
[  188.116361][T10249] loop1: detected capacity change from 0 to 512
[  188.155678][T10249] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2263: bg 0: block 418: padding at end of block bitmap is not set
[  188.208586][T10249] EXT4-fs (loop1): Remounting filesystem read-only
[  188.237630][T10249] EXT4-fs (loop1): 1 truncate cleaned up
[  188.243664][T10249] SELinux: (dev loop1, type ext4) getxattr errno 5
[  188.328722][T10249] loop1: detected capacity change from 0 to 256
[  188.331269][T10271] netlink: 'syz.4.2272': attribute type 3 has an invalid length.
[  188.335505][T10249] msdos: Bad value for 'gid'
[  188.347600][T10249] msdos: Bad value for 'gid'
[  188.433305][T10284] loop2: detected capacity change from 0 to 164
[  188.447195][T10285] loop4: detected capacity change from 0 to 512
[  188.463560][T10283] netlink: 'syz.1.2278': attribute type 10 has an invalid length.
[  188.479672][T10285] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2277: bg 0: block 418: padding at end of block bitmap is not set
[  188.481013][T10283] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2278'.
[  188.512248][T10290] loop2: detected capacity change from 0 to 164
[  188.524288][T10285] EXT4-fs (loop4): Remounting filesystem read-only
[  188.563299][T10285] EXT4-fs (loop4): 1 truncate cleaned up
[  188.594252][T10285] SELinux: (dev loop4, type ext4) getxattr errno 5
[  188.640017][T10285] loop4: detected capacity change from 0 to 256
[  188.665468][T10285] msdos: Bad value for 'gid'
[  188.670113][T10285] msdos: Bad value for 'gid'
[  188.727122][T10303] netlink: 'syz.2.2287': attribute type 3 has an invalid length.
[  188.769787][T10306] loop4: detected capacity change from 0 to 512
[  188.789629][T10310] loop2: detected capacity change from 0 to 164
[  188.802648][T10306] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2288: bg 0: block 418: padding at end of block bitmap is not set
[  188.803795][T10312] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  188.836369][T10306] EXT4-fs (loop4): Remounting filesystem read-only
[  188.843085][T10306] EXT4-fs (loop4): 1 truncate cleaned up
[  188.849127][T10306] SELinux: (dev loop4, type ext4) getxattr errno 5
[  188.856459][T10312] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  188.884914][T10306] loop4: detected capacity change from 0 to 256
[  188.891513][T10306] msdos: Bad value for 'gid'
[  188.896200][T10306] msdos: Bad value for 'gid'
[  188.928159][T10315] netlink: 'syz.2.2292': attribute type 10 has an invalid length.
[  188.946716][T10315] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2292'.
[  188.982318][T10326] loop3: detected capacity change from 0 to 512
[  188.995461][T10326] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  189.037632][T10326] EXT4-fs (loop3): warning: maximal mount count reached, running e2fsck is recommended
[  189.166316][T10340] netlink: 'syz.2.2300': attribute type 3 has an invalid length.
[  189.207276][T10326] EXT4-fs error (device loop3): ext4_orphan_get:1389: comm syz.3.2291: inode #15: comm syz.3.2291: iget: illegal inode #
[  189.248708][T10344] loop2: detected capacity change from 0 to 164
[  189.258202][T10342] loop4: detected capacity change from 0 to 2048
[  189.295094][T10326] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2291: couldn't read orphan inode 15 (err -117)
[  189.326025][T10342] Alternate GPT is invalid, using primary GPT.
[  189.332327][T10342]  loop4: p1 p2 p3
[  189.384171][T10352] loop4: detected capacity change from 0 to 164
[  189.422121][T10354] netlink: 'syz.2.2307': attribute type 10 has an invalid length.
[  189.434877][T10354] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2307'.
[  189.527702][T10366] netlink: 'syz.4.2312': attribute type 3 has an invalid length.
[  189.767770][T10382] loop2: detected capacity change from 0 to 164
[  189.929372][T10387] lo speed is unknown, defaulting to 1000
[  190.318561][T10386] netlink: 'syz.2.2320': attribute type 10 has an invalid length.
[  190.327746][T10386] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2320'.
[  190.790898][T10406] loop4: detected capacity change from 0 to 512
[  190.813261][T10408] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2328'.
[  190.849490][T10408] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2328'.
[  190.849916][T10406] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2327: bg 0: block 418: padding at end of block bitmap is not set
[  190.873868][T10408] IPv6: Can't replace route, no match found
[  190.903517][T10416] loop2: detected capacity change from 0 to 164
[  190.925409][T10406] EXT4-fs (loop4): Remounting filesystem read-only
[  190.953953][T10406] EXT4-fs (loop4): 1 truncate cleaned up
[  190.960159][T10406] SELinux: (dev loop4, type ext4) getxattr errno 5
[  190.976116][T10424] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  190.984694][T10424] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  190.994888][T10406] loop4: detected capacity change from 0 to 256
[  191.001557][T10406] msdos: Bad value for 'gid'
[  191.006266][T10406] msdos: Bad value for 'gid'
[  191.018810][T10429] netlink: 'syz.3.2333': attribute type 10 has an invalid length.
[  191.029631][T10420] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2333'.
[  191.056616][T10424] loop1: detected capacity change from 0 to 512
[  191.074247][T10424] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  191.086569][T10424] EXT4-fs (loop1): warning: maximal mount count reached, running e2fsck is recommended
[  191.096687][T10424] EXT4-fs error (device loop1): ext4_orphan_get:1389: comm syz.1.2335: inode #15: comm syz.1.2335: iget: illegal inode #
[  191.115174][T10424] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.2335: couldn't read orphan inode 15 (err -117)
[  191.229327][T10450] loop3: detected capacity change from 0 to 164
[  191.399265][T10469] loop3: detected capacity change from 0 to 512
[  191.426590][T10469] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2353: bg 0: block 418: padding at end of block bitmap is not set
[  191.465330][T10469] EXT4-fs (loop3): Remounting filesystem read-only
[  191.472105][T10469] EXT4-fs (loop3): 1 truncate cleaned up
[  191.505414][T10469] SELinux: (dev loop3, type ext4) getxattr errno 5
[  191.536726][T10469] loop3: detected capacity change from 0 to 256
[  191.543547][T10479] netlink: 'syz.0.2356': attribute type 3 has an invalid length.
[  191.551833][T10469] msdos: Bad value for 'gid'
[  191.556514][T10469] msdos: Bad value for 'gid'
[  191.601440][T10483] FAULT_INJECTION: forcing a failure.
[  191.601440][T10483] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  191.614592][T10483] CPU: 0 UID: 0 PID: 10483 Comm: syz.3.2358 Tainted: G        W          6.14.0-rc6-syzkaller #0
[  191.614641][T10483] Tainted: [W]=WARN
[  191.614649][T10483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  191.614662][T10483] Call Trace:
[  191.614669][T10483]  <TASK>
[  191.614676][T10483]  dump_stack_lvl+0xf2/0x150
[  191.614705][T10483]  dump_stack+0x15/0x1a
[  191.614731][T10483]  should_fail_ex+0x24a/0x260
[  191.614802][T10483]  should_fail+0xb/0x10
[  191.614828][T10483]  should_fail_usercopy+0x1a/0x20
[  191.614874][T10483]  strncpy_from_user+0x25/0x210
[  191.614903][T10483]  ? kmem_cache_alloc_noprof+0x18e/0x320
[  191.615004][T10483]  ? getname_flags+0x81/0x3b0
[  191.615051][T10483]  getname_flags+0xb0/0x3b0
[  191.615092][T10483]  getname+0x17/0x20
[  191.615107][T10483]  do_sys_openat2+0x67/0x120
[  191.615128][T10483]  __x64_sys_creat+0x66/0x90
[  191.615169][T10483]  x64_sys_call+0x1084/0x2dc0
[  191.615203][T10483]  do_syscall_64+0xc9/0x1c0
[  191.615241][T10483]  ? clear_bhb_loop+0x55/0xb0
[  191.615309][T10483]  ? clear_bhb_loop+0x55/0xb0
[  191.615364][T10483]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  191.615397][T10483] RIP: 0033:0x7f02d743d169
[  191.615412][T10483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  191.615432][T10483] RSP: 002b:00007f02d5aa7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[  191.615454][T10483] RAX: ffffffffffffffda RBX: 00007f02d7655fa0 RCX: 00007f02d743d169
[  191.615469][T10483] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 0000400000000380
[  191.615483][T10483] RBP: 00007f02d5aa7090 R08: 0000000000000000 R09: 0000000000000000
[  191.615497][T10483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  191.615611][T10483] R13: 0000000000000000 R14: 00007f02d7655fa0 R15: 00007ffcb24b81c8
[  191.615629][T10483]  </TASK>
[  191.865778][T10490] loop1: detected capacity change from 0 to 128
[  191.876904][T10490] FAT-fs (loop1): Directory bread(block 162) failed
[  191.885777][T10490] FAT-fs (loop1): Directory bread(block 163) failed
[  191.915596][T10489] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  191.922150][T10489] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  191.929997][T10489] vhci_hcd vhci_hcd.0: Device attached
[  191.941128][T10490] FAT-fs (loop1): Directory bread(block 164) failed
[  191.947832][T10490] FAT-fs (loop1): Directory bread(block 165) failed
[  191.954479][T10490] FAT-fs (loop1): Directory bread(block 166) failed
[  191.967529][T10493] vhci_hcd: connection closed
[  191.967684][   T39] vhci_hcd: stop threads
[  191.976715][   T39] vhci_hcd: release socket
[  191.981152][   T39] vhci_hcd: disconnect device
[  191.986257][T10490] FAT-fs (loop1): Directory bread(block 167) failed
[  191.992882][T10490] FAT-fs (loop1): Directory bread(block 168) failed
[  191.999801][T10490] FAT-fs (loop1): Directory bread(block 169) failed
[  192.047619][T10504] loop1: detected capacity change from 0 to 164
[  192.066328][T10508] IPv6: Can't replace route, no match found
[  192.114710][T10506] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2367'.
[  192.255101][T10532] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2378'.
[  192.582075][T10539] lo speed is unknown, defaulting to 1000
[  192.678826][T10543] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2379'.
[  192.690579][T10543] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2379'.
[  192.700101][T10543] FAULT_INJECTION: forcing a failure.
[  192.700101][T10543] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  192.713302][T10543] CPU: 0 UID: 0 PID: 10543 Comm: syz.3.2379 Tainted: G        W          6.14.0-rc6-syzkaller #0
[  192.713343][T10543] Tainted: [W]=WARN
[  192.713351][T10543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  192.713402][T10543] Call Trace:
[  192.713410][T10543]  <TASK>
[  192.713428][T10543]  dump_stack_lvl+0xf2/0x150
[  192.713456][T10543]  dump_stack+0x15/0x1a
[  192.713477][T10543]  should_fail_ex+0x24a/0x260
[  192.713528][T10543]  should_fail+0xb/0x10
[  192.713625][T10543]  should_fail_usercopy+0x1a/0x20
[  192.713658][T10543]  _copy_from_user+0x1c/0xa0
[  192.713678][T10543]  input_event_from_user+0x126/0x1e0
[  192.713711][T10543]  evdev_write+0x29d/0x440
[  192.713747][T10543]  ? __pfx_evdev_write+0x10/0x10
[  192.713779][T10543]  vfs_write+0x27d/0x920
[  192.713811][T10543]  ? putname+0xcf/0xf0
[  192.713860][T10543]  ? __fget_files+0x17c/0x1c0
[  192.713917][T10543]  ksys_write+0xe8/0x1b0
[  192.713944][T10543]  __x64_sys_write+0x42/0x50
[  192.713971][T10543]  x64_sys_call+0x287e/0x2dc0
[  192.714010][T10543]  do_syscall_64+0xc9/0x1c0
[  192.714122][T10543]  ? clear_bhb_loop+0x55/0xb0
[  192.714215][T10543]  ? clear_bhb_loop+0x55/0xb0
[  192.714242][T10543]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  192.714273][T10543] RIP: 0033:0x7f02d743d169
[  192.714291][T10543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  192.714313][T10543] RSP: 002b:00007f02d5aa7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  192.714403][T10543] RAX: ffffffffffffffda RBX: 00007f02d7655fa0 RCX: 00007f02d743d169
[  192.714416][T10543] RDX: 0000000000002778 RSI: 0000400000000040 RDI: 000000000000000c
[  192.714428][T10543] RBP: 00007f02d5aa7090 R08: 0000000000000000 R09: 0000000000000000
[  192.714441][T10543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  192.714455][T10543] R13: 0000000000000000 R14: 00007f02d7655fa0 R15: 00007ffcb24b81c8
[  192.714477][T10543]  </TASK>
[  192.714505][   T30] kauditd_printk_skb: 331 callbacks suppressed
[  192.714518][   T30] audit: type=1400 audit(1741624742.502:17841): avc:  denied  { read } for  pid=10542 comm="syz.3.2379" name="usbmon0" dev="devtmpfs" ino=141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  192.939702][   T30] audit: type=1400 audit(1741624742.502:17842): avc:  denied  { open } for  pid=10542 comm="syz.3.2379" path="/dev/usbmon0" dev="devtmpfs" ino=141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  193.003375][T10545] loop3: detected capacity change from 0 to 164
[  193.044328][T10547] loop3: detected capacity change from 0 to 2048
[  193.180235][T10547] Alternate GPT is invalid, using primary GPT.
[  193.186610][T10547]  loop3: p1 p2 p3
[  193.314308][   T30] audit: type=1326 audit(1741624743.092:17843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10556 comm="syz.3.2386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  193.338039][   T30] audit: type=1326 audit(1741624743.092:17844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10556 comm="syz.3.2386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  193.466595][T10561] lo speed is unknown, defaulting to 1000
[  193.688379][   T30] audit: type=1326 audit(1741624743.492:17845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10556 comm="syz.3.2386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  193.758286][   T30] audit: type=1326 audit(1741624743.512:17846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10556 comm="syz.3.2386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  193.782038][   T30] audit: type=1326 audit(1741624743.512:17847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10556 comm="syz.3.2386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  193.805675][   T30] audit: type=1326 audit(1741624743.512:17848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10556 comm="syz.3.2386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  193.829308][   T30] audit: type=1326 audit(1741624743.512:17849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10556 comm="syz.3.2386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  193.852978][   T30] audit: type=1326 audit(1741624743.512:17850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10556 comm="syz.3.2386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  193.897992][T10566] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  194.058686][T10575] loop1: detected capacity change from 0 to 164
[  194.469683][T10579] lo speed is unknown, defaulting to 1000
[  195.095479][T10594] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  195.132467][T10594] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  195.177422][T10594] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=10594 comm=syz.1.2398
[  195.274992][T10600] loop1: detected capacity change from 0 to 512
[  195.325988][T10600] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  195.367386][T10600] EXT4-fs (loop1): warning: maximal mount count reached, running e2fsck is recommended
[  195.461677][T10600] EXT4-fs error (device loop1): ext4_orphan_get:1389: comm syz.1.2398: inode #15: comm syz.1.2398: iget: illegal inode #
[  195.477376][T10609] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  195.483935][T10609] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  195.491559][T10609] vhci_hcd vhci_hcd.0: Device attached
[  195.513970][T10600] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.2398: couldn't read orphan inode 15 (err -117)
[  195.526639][T10600] EXT4-fs mount: 21 callbacks suppressed
[  195.526692][T10600] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  195.561671][T10609] lo speed is unknown, defaulting to 1000
[  195.619152][T10618] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  195.625872][T10618] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  195.633578][T10618] vhci_hcd vhci_hcd.0: Device attached
[  195.728170][T10618] lo speed is unknown, defaulting to 1000
[  195.745377][   T25] usb 1-1: new high-speed USB device number 8 using vhci_hcd
[  195.762955][T10613] vhci_hcd: connection reset by peer
[  195.836247][   T29] vhci_hcd: stop threads
[  195.840563][   T29] vhci_hcd: release socket
[  195.845165][   T29] vhci_hcd: disconnect device
[  195.869338][T10627] lo speed is unknown, defaulting to 1000
[  195.885204][ T3376] usb 9-1: new high-speed USB device number 8 using vhci_hcd
[  195.913270][T10622] vhci_hcd: connection reset by peer
[  195.918842][   T88] vhci_hcd: stop threads
[  195.923125][   T88] vhci_hcd: release socket
[  195.927667][   T88] vhci_hcd: disconnect device
[  195.971597][T10624] lo speed is unknown, defaulting to 1000
[  196.135395][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.192212][T10640] loop1: detected capacity change from 0 to 2048
[  196.248543][T10640] Alternate GPT is invalid, using primary GPT.
[  196.254902][T10640]  loop1: p1 p2 p3
[  196.257080][T10644] loop3: detected capacity change from 0 to 2048
[  196.316740][T10644] Alternate GPT is invalid, using primary GPT.
[  196.323029][T10644]  loop3: p1 p2 p3
[  196.452339][T10660] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  196.460993][T10660] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  196.471921][T10660] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=10660 comm=syz.1.2417
[  196.492731][T10662] loop3: detected capacity change from 0 to 512
[  196.499814][T10660] loop1: detected capacity change from 0 to 512
[  196.508442][T10660] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  196.541508][T10660] EXT4-fs (loop1): warning: maximal mount count reached, running e2fsck is recommended
[  196.558791][T10660] EXT4-fs error (device loop1): ext4_orphan_get:1389: comm syz.1.2417: inode #15: comm syz.1.2417: iget: illegal inode #
[  196.575268][T10660] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.2417: couldn't read orphan inode 15 (err -117)
[  196.587225][T10662] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2414: bg 0: block 418: padding at end of block bitmap is not set
[  196.595658][T10660] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.625061][T10662] EXT4-fs (loop3): Remounting filesystem read-only
[  196.631650][T10662] EXT4-fs (loop3): 1 truncate cleaned up
[  196.665545][T10662] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  196.685225][T10662] SELinux: (dev loop3, type ext4) getxattr errno 5
[  196.699889][T10662] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.762215][T10662] loop3: detected capacity change from 0 to 256
[  196.835524][T10662] msdos: Bad value for 'gid'
[  196.840175][T10662] msdos: Bad value for 'gid'
[  196.868821][T10667] lo speed is unknown, defaulting to 1000
[  196.991454][T10672] loop2: detected capacity change from 0 to 2048
[  197.057777][T10672] Alternate GPT is invalid, using primary GPT.
[  197.064227][T10672]  loop2: p1 p2 p3
[  197.291639][T10686] IPv6: Can't replace route, no match found
[  197.313633][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.375795][T10694] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  197.379124][T10685] validate_nla: 1 callbacks suppressed
[  197.379179][T10685] netlink: 'syz.3.2423': attribute type 10 has an invalid length.
[  197.382336][T10694] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  197.382426][T10694] vhci_hcd vhci_hcd.0: Device attached
[  197.402698][T10694] lo speed is unknown, defaulting to 1000
[  197.441427][T10703] netlink: 'syz.2.2426': attribute type 10 has an invalid length.
[  197.450012][T10703] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2426'.
[  197.472854][T10704] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2423'.
[  197.485412][T10699] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2429'.
[  197.521340][T10710] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2431'.
[  197.663874][T10717] loop1: detected capacity change from 0 to 512
[  197.686760][T10717] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2434: bg 0: block 418: padding at end of block bitmap is not set
[  197.784134][T10723] loop4: detected capacity change from 0 to 2048
[  197.796086][T10695] vhci_hcd: connection closed
[  197.882301][   T30] kauditd_printk_skb: 152 callbacks suppressed
[  197.882319][   T30] audit: type=1326 audit(1741624747.592:18003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10718 comm="syz.3.2435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  197.916943][   T30] audit: type=1326 audit(1741624747.592:18004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10718 comm="syz.3.2435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  197.917102][T10717] EXT4-fs (loop1): Remounting filesystem read-only
[  197.940555][   T30] audit: type=1326 audit(1741624747.592:18005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10718 comm="syz.3.2435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  197.947437][   T12] vhci_hcd: stop threads
[  197.970600][   T30] audit: type=1326 audit(1741624747.592:18006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10718 comm="syz.3.2435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  197.974842][   T12] vhci_hcd: release socket
[  197.974860][   T12] vhci_hcd: disconnect device
[  197.998430][   T30] audit: type=1326 audit(1741624747.592:18007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10718 comm="syz.3.2435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  198.031091][T10717] EXT4-fs (loop1): 1 truncate cleaned up
[  198.031553][T10717] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  198.036764][   T30] audit: type=1326 audit(1741624747.592:18008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10718 comm="syz.3.2435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  198.036799][   T30] audit: type=1326 audit(1741624747.592:18009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10718 comm="syz.3.2435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  198.051242][T10717] SELinux: (dev loop1, type ext4) getxattr errno 5
[  198.072338][   T30] audit: type=1326 audit(1741624747.592:18010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10718 comm="syz.3.2435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  198.072374][   T30] audit: type=1326 audit(1741624747.592:18011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10718 comm="syz.3.2435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  198.096557][T10717] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.102530][   T30] audit: type=1326 audit(1741624747.592:18012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10718 comm="syz.3.2435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f02d743d169 code=0x7ffc0000
[  198.128295][T10723] Alternate GPT is invalid, using primary GPT.
[  198.188920][T10723]  loop4: p1 p2 p3
[  198.307224][T10729] IPv6: Can't replace route, no match found
[  198.329845][T10717] loop1: detected capacity change from 0 to 256
[  198.361467][T10717] msdos: Bad value for 'gid'
[  198.366164][T10717] msdos: Bad value for 'gid'
[  198.430456][T10735] program syz.2.2442 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  198.453223][T10743] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  198.459838][T10743] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  198.467620][T10743] vhci_hcd vhci_hcd.0: Device attached
[  198.574175][T10750] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(4)
[  198.580868][T10750] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  198.588408][T10750] vhci_hcd vhci_hcd.0: Device attached
[  198.596035][T10742] netlink: 'syz.3.2445': attribute type 10 has an invalid length.
[  198.606292][T10742] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2445'.
[  198.645160][T10759] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(7)
[  198.651726][T10759] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  198.659398][T10759] vhci_hcd vhci_hcd.0: Device attached
[  198.673711][T10750] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  198.684124][T10754] lo speed is unknown, defaulting to 1000
[  198.691126][T10766] IPv6: Can't replace route, no match found
[  198.732726][T10771] FAULT_INJECTION: forcing a failure.
[  198.732726][T10771] name failslab, interval 1, probability 0, space 0, times 0
[  198.745481][T10771] CPU: 1 UID: 0 PID: 10771 Comm: syz.1.2454 Tainted: G        W          6.14.0-rc6-syzkaller #0
[  198.745510][T10771] Tainted: [W]=WARN
[  198.745518][T10771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  198.745536][T10771] Call Trace:
[  198.745542][T10771]  <TASK>
[  198.745550][T10771]  dump_stack_lvl+0xf2/0x150
[  198.745587][T10771]  dump_stack+0x15/0x1a
[  198.745726][T10771]  should_fail_ex+0x24a/0x260
[  198.745759][T10771]  ? dev_ethtool+0x96/0x14c0
[  198.745794][T10771]  should_failslab+0x8f/0xb0
[  198.745831][T10771]  __kmalloc_cache_noprof+0x4e/0x320
[  198.745858][T10771]  dev_ethtool+0x96/0x14c0
[  198.745877][T10771]  ? strcmp+0x21/0x50
[  198.745896][T10771]  ? __rcu_read_unlock+0x4e/0x70
[  198.745957][T10771]  dev_ioctl+0x854/0xab0
[  198.745984][T10771]  sock_do_ioctl+0x11c/0x260
[  198.746041][T10771]  sock_ioctl+0x40f/0x600
[  198.746088][T10771]  ? __pfx_sock_ioctl+0x10/0x10
[  198.746142][T10771]  __se_sys_ioctl+0xc9/0x140
[  198.746174][T10771]  __x64_sys_ioctl+0x43/0x50
[  198.746205][T10771]  x64_sys_call+0x1690/0x2dc0
[  198.746233][T10771]  do_syscall_64+0xc9/0x1c0
[  198.746365][T10771]  ? clear_bhb_loop+0x55/0xb0
[  198.746399][T10771]  ? clear_bhb_loop+0x55/0xb0
[  198.746439][T10771]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  198.746540][T10771] RIP: 0033:0x7f8309a9d169
[  198.746558][T10771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  198.746629][T10771] RSP: 002b:00007f8308107038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  198.746678][T10771] RAX: ffffffffffffffda RBX: 00007f8309cb5fa0 RCX: 00007f8309a9d169
[  198.746693][T10771] RDX: 0000400000000080 RSI: 0000000000008946 RDI: 000000000000001d
[  198.746707][T10771] RBP: 00007f8308107090 R08: 0000000000000000 R09: 0000000000000000
[  198.746721][T10771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  198.746735][T10771] R13: 0000000000000000 R14: 00007f8309cb5fa0 R15: 00007ffda4ecd508
[  198.746753][T10771]  </TASK>
[  198.749589][T10750] vhci_hcd vhci_hcd.0: pdev(2) rhport(3) sockfd(6)
[  198.954739][T10750] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  198.962177][   T36] vhci_hcd: vhci_device speed not set
[  198.967819][T10750] vhci_hcd vhci_hcd.0: Device attached
[  198.994041][T10781] loop3: detected capacity change from 0 to 128
[  199.000763][T10781] vfat: Bad value for 'shortname'
[  199.025068][   T36] usb 5-1: new high-speed USB device number 6 using vhci_hcd
[  199.033576][T10750] serio: Serial port ptm0
[  199.040852][T10785] program syz.0.2458 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  199.052091][T10744] vhci_hcd: connection closed
[  199.052657][ T5311] vhci_hcd: stop threads
[  199.061769][ T5311] vhci_hcd: release socket
[  199.066266][ T5311] vhci_hcd: disconnect device
[  199.085498][T10774] vhci_hcd: connection closed
[  199.085614][   T12] vhci_hcd: stop threads
[  199.085879][T10755] vhci_hcd: connection reset by peer
[  199.090338][   T12] vhci_hcd: release socket
[  199.090354][   T12] vhci_hcd: disconnect device
[  199.090394][T10761] vhci_hcd: connection closed
[  199.109520][   T12] vhci_hcd: stop threads
[  199.118565][   T12] vhci_hcd: release socket
[  199.123139][   T12] vhci_hcd: disconnect device
[  199.131728][   T12] vhci_hcd: stop threads
[  199.136106][   T12] vhci_hcd: release socket
[  199.140561][   T12] vhci_hcd: disconnect device
[  199.194022][T10797] program syz.0.2463 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  199.212453][T10794] netlink: 'syz.1.2462': attribute type 10 has an invalid length.
[  199.223050][T10794] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2462'.
[  199.325878][T10808] loop3: detected capacity change from 0 to 512
[  199.334352][T10808] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2467: bg 0: block 418: padding at end of block bitmap is not set
[  199.349049][T10808] EXT4-fs (loop3): Remounting filesystem read-only
[  199.358002][T10808] EXT4-fs (loop3): 1 truncate cleaned up
[  199.364410][T10808] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  199.376731][T10808] SELinux: (dev loop3, type ext4) getxattr errno 5
[  199.383609][T10808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.402218][T10808] loop3: detected capacity change from 0 to 256
[  199.408793][T10808] msdos: Bad value for 'gid'
[  199.413396][T10808] msdos: Bad value for 'gid'
[  199.585571][T10822] lo speed is unknown, defaulting to 1000
[  200.125260][T10830] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  200.190220][T10831] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  200.196822][T10831] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  200.204461][T10831] vhci_hcd vhci_hcd.0: Device attached
[  200.277796][T10840] netlink: 'syz.0.2475': attribute type 10 has an invalid length.
[  200.301043][T10843] loop1: detected capacity change from 0 to 2048
[  200.312962][T10844] lo speed is unknown, defaulting to 1000
[  200.328445][T10849] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2475'.
[  200.395995][T10843] Alternate GPT is invalid, using primary GPT.
[  200.402341][T10843]  loop1: p1 p2 p3
[  200.445083][ T3377] usb 7-1: new high-speed USB device number 10 using vhci_hcd
[  200.457302][T10859] loop4: detected capacity change from 0 to 164
[  200.545520][T10862] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  200.585005][T10864] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[  200.591579][T10864] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  200.599319][T10864] vhci_hcd vhci_hcd.0: Device attached
[  200.613459][T10862] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  200.624755][T10833] vhci_hcd: connection reset by peer
[  200.630740][   T88] vhci_hcd: stop threads
[  200.635056][   T88] vhci_hcd: release socket
[  200.639489][   T88] vhci_hcd: disconnect device
[  200.649355][T10864] lo speed is unknown, defaulting to 1000
[  200.675217][T10862] loop1: detected capacity change from 0 to 512
[  200.682515][T10862] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  200.692426][T10862] EXT4-fs (loop1): warning: maximal mount count reached, running e2fsck is recommended
[  200.702720][T10862] EXT4-fs error (device loop1): ext4_orphan_get:1389: comm syz.1.2480: inode #15: comm syz.1.2480: iget: illegal inode #
[  200.715855][T10862] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.2480: couldn't read orphan inode 15 (err -117)
[  200.721124][T10867] vhci_hcd: connection closed
[  200.729801][   T51] vhci_hcd: stop threads
[  200.731658][T10862] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  200.734501][   T51] vhci_hcd: release socket
[  200.755314][   T51] vhci_hcd: disconnect device
[  200.885140][   T25] vhci_hcd: vhci_device speed not set
[  200.973540][T10880] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2483'.
[  201.025072][ T3376] vhci_hcd: vhci_device speed not set
[  201.039785][T10889] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  201.048400][T10889] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  201.081385][T10889] loop2: detected capacity change from 0 to 512
[  201.089017][T10889] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  201.098817][T10889] EXT4-fs (loop2): warning: maximal mount count reached, running e2fsck is recommended
[  201.109428][T10889] EXT4-fs error (device loop2): ext4_orphan_get:1389: comm syz.2.2487: inode #15: comm syz.2.2487: iget: illegal inode #
[  201.122336][T10889] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.2487: couldn't read orphan inode 15 (err -117)
[  201.134763][T10889] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  201.307483][T10897] lo speed is unknown, defaulting to 1000
[  201.628944][T10900] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2489'.
[  201.645492][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.692738][T10902] loop4: detected capacity change from 0 to 164
[  201.745738][T10907] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  201.909413][T10922] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  201.929675][T10922] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  202.000976][ T3299] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.022557][T10928] netlink: 'syz.4.2503': attribute type 10 has an invalid length.
[  202.034585][T10928] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2503'.
[  202.060256][T10934] program syz.2.2504 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  202.123666][T10938] program syz.4.2505 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  202.554482][T10964] lo speed is unknown, defaulting to 1000
[  202.795097][    C1] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  202.963788][T10973] loop3: detected capacity change from 0 to 2048
[  202.989920][T10975] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  203.056216][T10973] Alternate GPT is invalid, using primary GPT.
[  203.062776][T10973]  loop3: p1 p2 p3
[  203.312802][T10994] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  203.511835][   T30] kauditd_printk_skb: 290 callbacks suppressed
[  203.513847][T10999] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  203.518121][   T30] audit: type=1326 audit(1741624753.312:18303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.0.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f979797d169 code=0x7ffc0000
[  203.530281][T10994] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  203.552278][   T30] audit: type=1326 audit(1741624753.312:18304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.0.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f979797d169 code=0x7ffc0000
[  203.583552][   T30] audit: type=1326 audit(1741624753.312:18305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.0.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f979797d169 code=0x7ffc0000
[  203.588881][T10994] loop2: detected capacity change from 0 to 512
[  203.607268][   T30] audit: type=1326 audit(1741624753.312:18306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.0.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f979797d169 code=0x7ffc0000
[  203.637220][   T30] audit: type=1326 audit(1741624753.312:18307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.0.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f979797d169 code=0x7ffc0000
[  203.637408][T10994] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  203.660775][   T30] audit: type=1326 audit(1741624753.312:18308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.0.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f979797d169 code=0x7ffc0000
[  203.682933][T10994] EXT4-fs (loop2): warning: maximal mount count reached, running e2fsck is recommended
[  203.693395][   T30] audit: type=1326 audit(1741624753.312:18309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.0.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=132 compat=0 ip=0x7f979797d169 code=0x7ffc0000
[  203.703937][T10994] EXT4-fs error (device loop2): ext4_orphan_get:1389: comm syz.2.2528: inode #15: comm syz.2.2528: iget: illegal inode #
[  203.726636][   T30] audit: type=1326 audit(1741624753.312:18310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.0.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f979797d169 code=0x7ffc0000
[  203.726673][   T30] audit: type=1326 audit(1741624753.312:18311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.0.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f979797d169 code=0x7ffc0000
[  203.726737][   T30] audit: type=1326 audit(1741624753.312:18312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10974 comm="syz.0.2520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f979797d169 code=0x7ffc0000
[  203.741288][T10994] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.2528: couldn't read orphan inode 15 (err -117)
[  203.836674][T11007] lo speed is unknown, defaulting to 1000
[  204.075096][    C0] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  204.162247][T10994] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  204.341101][T11018] loop4: detected capacity change from 0 to 1024
[  204.348235][T11018] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  204.359231][T11018] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  204.370457][T11018] JBD2: no valid journal superblock found
[  204.376385][T11018] EXT4-fs (loop4): Could not load journal inode
[  204.587532][T10810] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 19: invalid block bitmap
[  204.611809][T11016] program syz.1.2532 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  204.636920][T11020] IPv6: Can't replace route, no match found
[  204.785239][   T36] vhci_hcd: vhci_device speed not set
[  204.836992][ T3299] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.008942][T11045] netlink: 'syz.4.2541': attribute type 10 has an invalid length.
[  205.329878][T11050] lo speed is unknown, defaulting to 1000
[  205.697928][T11052] lo speed is unknown, defaulting to 1000
[  206.096530][T11034] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2541'.
[  206.689461][ T3377] vhci_hcd: vhci_device speed not set
[  206.766117][T11062] IPv6: Can't replace route, no match found
[  207.004084][T11071] netlink: 'syz.1.2550': attribute type 10 has an invalid length.
[  207.033414][T11074] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  207.072074][T11074] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  207.103551][T11068] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2550'.
[  207.117557][T11077] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  207.157929][T11080] loop1: detected capacity change from 0 to 512
[  207.180772][T11080] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2554: bg 0: block 418: padding at end of block bitmap is not set
[  207.199911][T11074] loop3: detected capacity change from 0 to 512
[  207.208391][T11074] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  207.235551][T11074] EXT4-fs (loop3): warning: maximal mount count reached, running e2fsck is recommended
[  207.245815][T11080] EXT4-fs (loop1): Remounting filesystem read-only
[  207.252817][T11074] EXT4-fs error (device loop3): ext4_orphan_get:1389: comm syz.3.2551: inode #15: comm syz.3.2551: iget: illegal inode #
[  207.271766][T11080] EXT4-fs (loop1): 1 truncate cleaned up
[  207.279460][T11080] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  207.291834][T11074] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2551: couldn't read orphan inode 15 (err -117)
[  207.325981][T11080] SELinux: (dev loop1, type ext4) getxattr errno 5
[  207.326153][T11047] Set syz1 is full, maxelem 65536 reached
[  207.333031][T11080] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.348370][T11074] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  207.422370][T11080] loop1: detected capacity change from 0 to 256
[  207.429347][T11080] msdos: Bad value for 'gid'
[  207.433974][T11080] msdos: Bad value for 'gid'
[  207.767667][T11106] lo speed is unknown, defaulting to 1000
[  208.089035][T11109] loop4: detected capacity change from 0 to 512
[  208.097275][T11109] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2560: bg 0: block 418: padding at end of block bitmap is not set
[  208.111983][T11109] EXT4-fs (loop4): Remounting filesystem read-only
[  208.118733][T11109] EXT4-fs (loop4): 1 truncate cleaned up
[  208.124995][T11109] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  208.137358][T11109] SELinux: (dev loop4, type ext4) getxattr errno 5
[  208.144314][T11109] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.180062][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.249608][T11116] loop2: detected capacity change from 0 to 512
[  208.257730][T11116] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2564: bg 0: block 418: padding at end of block bitmap is not set
[  208.272832][T11116] EXT4-fs (loop2): Remounting filesystem read-only
[  208.279582][T11116] EXT4-fs (loop2): 1 truncate cleaned up
[  208.287603][T11116] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  208.299901][T11116] SELinux: (dev loop2, type ext4) getxattr errno 5
[  208.307129][T11116] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.478016][T11131] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  208.495200][T11131] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  208.631121][T11109] loop4: detected capacity change from 0 to 256
[  208.653239][T11116] loop2: detected capacity change from 0 to 256
[  208.660022][T11109] msdos: Bad value for 'gid'
[  208.664624][T11109] msdos: Bad value for 'gid'
[  208.675166][   T30] kauditd_printk_skb: 209 callbacks suppressed
[  208.675184][   T30] audit: type=1326 audit(1741624758.482:18522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11130 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  208.705088][   T30] audit: type=1326 audit(1741624758.482:18523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11130 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  208.720902][T11116] msdos: Bad value for 'gid'
[  208.728706][   T30] audit: type=1326 audit(1741624758.482:18524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11130 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  208.733261][T11116] msdos: Bad value for 'gid'
[  208.756977][   T30] audit: type=1326 audit(1741624758.482:18525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11130 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  208.785084][   T30] audit: type=1326 audit(1741624758.482:18526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11130 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  208.808824][   T30] audit: type=1326 audit(1741624758.482:18527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11130 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  208.832521][   T30] audit: type=1326 audit(1741624758.482:18528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11130 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  208.856154][   T30] audit: type=1326 audit(1741624758.482:18529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11130 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  208.880070][   T30] audit: type=1326 audit(1741624758.482:18530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11130 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  208.880208][T11140] loop1: detected capacity change from 0 to 512
[  208.903840][   T30] audit: type=1326 audit(1741624758.482:18531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11130 comm="syz.1.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  209.063011][T11149] lo speed is unknown, defaulting to 1000
[  209.487818][T11151] loop3: detected capacity change from 0 to 1024
[  209.496606][T11140] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  209.516344][T11151] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  209.527437][T11151] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  209.546539][T11140] EXT4-fs (loop1): warning: maximal mount count reached, running e2fsck is recommended
[  209.562040][T11153] loop4: detected capacity change from 0 to 512
[  209.575110][T11140] EXT4-fs error (device loop1): ext4_orphan_get:1389: comm syz.1.2571: inode #15: comm syz.1.2571: iget: illegal inode #
[  209.703792][T11151] JBD2: no valid journal superblock found
[  209.709734][T11151] EXT4-fs (loop3): Could not load journal inode
[  209.717370][T11153] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2575: bg 0: block 418: padding at end of block bitmap is not set
[  209.740291][T11140] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.2571: couldn't read orphan inode 15 (err -117)
[  209.956420][T11153] EXT4-fs (loop4): Remounting filesystem read-only
[  209.963047][T11153] EXT4-fs (loop4): 1 truncate cleaned up
[  209.971524][T11140] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  209.984467][T11153] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  210.001289][T11153] SELinux: (dev loop4, type ext4) getxattr errno 5
[  210.047498][T11161] lo speed is unknown, defaulting to 1000
[  210.370258][T11153] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.861844][T11176] lo speed is unknown, defaulting to 1000
[  211.164056][T11153] loop4: detected capacity change from 0 to 256
[  211.517588][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.529268][T11153] msdos: Bad value for 'gid'
[  211.533907][T11153] msdos: Bad value for 'gid'
[  211.852319][T11192] loop1: detected capacity change from 0 to 1024
[  211.862886][T11192] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  211.873891][T11192] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  211.895296][T11192] JBD2: no valid journal superblock found
[  211.901091][T11192] EXT4-fs (loop1): Could not load journal inode
[  211.921543][T11197] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  211.928098][T11197] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  211.935807][T11197] vhci_hcd vhci_hcd.0: Device attached
[  211.956340][T11197] lo speed is unknown, defaulting to 1000
[  212.049772][T11198] vhci_hcd: connection closed
[  212.049939][   T29] vhci_hcd: stop threads
[  212.059119][   T29] vhci_hcd: release socket
[  212.063584][   T29] vhci_hcd: disconnect device
[  212.231681][T11212] lo speed is unknown, defaulting to 1000
[  212.571524][ T3376] vhci_hcd: vhci_device speed not set
[  212.589186][T11211] loop1: detected capacity change from 0 to 2048
[  212.666001][T11211] Alternate GPT is invalid, using primary GPT.
[  212.672375][T11211]  loop1: p1 p2 p3
[  212.772004][T11224] netlink: 'syz.2.2598': attribute type 10 has an invalid length.
[  212.800517][T11224] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2598'.
[  212.850677][T11229] loop1: detected capacity change from 0 to 512
[  212.879210][T11229] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2600: bg 0: block 418: padding at end of block bitmap is not set
[  212.925308][T11229] EXT4-fs (loop1): Remounting filesystem read-only
[  212.958091][T11229] EXT4-fs (loop1): 1 truncate cleaned up
[  212.971806][T11229] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  212.987257][T11240] program syz.3.2605 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  212.996870][T11229] SELinux: (dev loop1, type ext4) getxattr errno 5
[  213.020028][T11229] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.046827][T11229] loop1: detected capacity change from 0 to 256
[  213.053627][T11229] msdos: Bad value for 'gid'
[  213.058361][T11229] msdos: Bad value for 'gid'
[  213.090147][T11245] program syz.1.2607 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  213.251541][T11260] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  213.258133][T11260] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  213.265967][T11260] vhci_hcd vhci_hcd.0: Device attached
[  213.266118][T11258] loop1: detected capacity change from 0 to 2048
[  213.289402][T11260] lo speed is unknown, defaulting to 1000
[  213.306473][T11266] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  213.324578][T11269] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  213.333263][T11269] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  213.354018][T11261] vhci_hcd: connection closed
[  213.354329][   T39] vhci_hcd: stop threads
[  213.360581][T11258] Alternate GPT is invalid, using primary GPT.
[  213.363330][   T39] vhci_hcd: release socket
[  213.369668][T11258]  loop1: p1 p2 p3
[  213.373942][   T39] vhci_hcd: disconnect device
[  213.384527][T11269] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=11269 comm=syz.3.2617
[  213.404004][T11269] loop3: detected capacity change from 0 to 512
[  213.411951][T11269] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  213.422045][T11269] EXT4-fs (loop3): warning: maximal mount count reached, running e2fsck is recommended
[  213.432235][T11269] EXT4-fs error (device loop3): ext4_orphan_get:1389: comm syz.3.2617: inode #15: comm syz.3.2617: iget: illegal inode #
[  213.445406][T11269] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2617: couldn't read orphan inode 15 (err -117)
[  213.458199][T11269] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  213.558571][T11283] loop4: detected capacity change from 0 to 2048
[  213.596017][T11283] Alternate GPT is invalid, using primary GPT.
[  213.602406][T11283]  loop4: p1 p2 p3
[  213.605139][T11285] SELinux:  policydb version 0 does not match my version range 15-34
[  213.614376][T11285] SELinux: failed to load policy
[  213.715654][   T30] kauditd_printk_skb: 366 callbacks suppressed
[  213.715671][   T30] audit: type=1326 audit(1741624763.522:18898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11290 comm="syz.1.2624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  213.725954][T11300] loop4: detected capacity change from 0 to 2048
[  213.747138][   T30] audit: type=1326 audit(1741624763.552:18899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11290 comm="syz.1.2624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  213.781234][   T30] audit: type=1326 audit(1741624763.582:18900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11301 comm="syz.1.2629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  213.805194][   T30] audit: type=1326 audit(1741624763.582:18901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11301 comm="syz.1.2629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  213.805740][T11300] Alternate GPT is invalid, using primary GPT.
[  213.828819][   T30] audit: type=1326 audit(1741624763.582:18902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11301 comm="syz.1.2629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  213.835081][T11300]  loop4: p1 p2 p3
[  213.858525][   T30] audit: type=1326 audit(1741624763.582:18903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11301 comm="syz.1.2629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  213.885861][   T30] audit: type=1326 audit(1741624763.582:18904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11301 comm="syz.1.2629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  213.909515][   T30] audit: type=1326 audit(1741624763.582:18905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11301 comm="syz.1.2629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  213.933050][   T30] audit: type=1326 audit(1741624763.582:18906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11301 comm="syz.1.2629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  213.956790][   T30] audit: type=1326 audit(1741624763.582:18907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11301 comm="syz.1.2629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8309a9d169 code=0x7ffc0000
[  213.997760][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.063623][T11314] loop1: detected capacity change from 0 to 512
[  214.097426][T11319] loop3: detected capacity change from 0 to 4096
[  214.111892][T11319] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  214.157107][T11314] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.2636: corrupted in-inode xattr: invalid ea_ino
[  214.177852][T11314] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.2636: couldn't read orphan inode 15 (err -117)
[  214.191538][T11314] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  214.324546][T11334] netlink: 2036 bytes leftover after parsing attributes in process `syz.1.2636'.
[  214.333761][T11334] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2636'.
[  214.365517][T11335] lo speed is unknown, defaulting to 1000
[  214.717304][T11342] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  214.723873][T11342] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  214.731564][T11342] vhci_hcd vhci_hcd.0: Device attached
[  214.751730][T11342] lo speed is unknown, defaulting to 1000
[  214.823686][T11343] vhci_hcd: connection closed
[  214.823970][   T12] vhci_hcd: stop threads
[  214.833114][   T12] vhci_hcd: release socket
[  214.837666][   T12] vhci_hcd: disconnect device
[  214.867572][ T3310] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.915707][ T3313] ==================================================================
[  214.923839][ T3313] BUG: KCSAN: data-race in shmem_add_to_page_cache / shmem_getattr
[  214.931767][ T3313] 
[  214.934102][ T3313] read-write to 0xffff8881205c2240 of 8 bytes by task 11336 on cpu 1:
[  214.942274][ T3313]  shmem_add_to_page_cache+0x3b9/0x4b0
[  214.947755][ T3313]  shmem_get_folio_gfp+0x4f6/0xd90
[  214.952899][ T3313]  shmem_write_begin+0xa2/0x180
[  214.957775][ T3313]  generic_perform_write+0x1a8/0x4a0
[  214.963185][ T3313]  shmem_file_write_iter+0xc2/0xe0
[  214.968368][ T3313]  __kernel_write_iter+0x247/0x4c0
[  214.973509][ T3313]  dump_user_range+0x3ac/0x550
[  214.978311][ T3313]  elf_core_dump+0x1d17/0x1ea0
[  214.983114][ T3313]  do_coredump+0x17fe/0x1f40
[  214.987737][ T3313]  get_signal+0xd4f/0x1000
[  214.992182][ T3313]  arch_do_signal_or_restart+0x95/0x4b0
[  214.997753][ T3313]  irqentry_exit_to_user_mode+0xa7/0x120
[  215.003413][ T3313]  irqentry_exit+0x12/0x50
[  215.007864][ T3313]  asm_exc_page_fault+0x26/0x30
[  215.012772][ T3313] 
[  215.015105][ T3313] read to 0xffff8881205c2240 of 8 bytes by task 3313 on cpu 0:
[  215.022663][ T3313]  shmem_getattr+0x69/0x200
[  215.027200][ T3313]  vfs_getattr+0x172/0x1b0
[  215.031637][ T3313]  vfs_statx+0x12d/0x320
[  215.035896][ T3313]  vfs_fstatat+0xe4/0x130
[  215.040247][ T3313]  __se_sys_newfstatat+0x58/0x260
[  215.045290][ T3313]  __x64_sys_newfstatat+0x55/0x70
[  215.050338][ T3313]  x64_sys_call+0x236d/0x2dc0
[  215.055030][ T3313]  do_syscall_64+0xc9/0x1c0
[  215.059567][ T3313]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  215.065478][ T3313] 
[  215.067812][ T3313] value changed: 0x0000000000003697 -> 0x000000000000369a
[  215.074928][ T3313] 
[  215.077260][ T3313] Reported by Kernel Concurrency Sanitizer on:
[  215.083424][ T3313] CPU: 0 UID: 0 PID: 3313 Comm: syz-executor Tainted: G        W          6.14.0-rc6-syzkaller #0
[  215.094031][ T3313] Tainted: [W]=WARN
[  215.097863][ T3313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  215.107913][ T3313] ==================================================================
[  217.064799][ T3297] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.