last executing test programs:

19.071734111s ago: executing program 1 (id=4105):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14, 0x10, 0x1, 0x2}, [@NFT_MSG_NEWSET={0x5c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2c}, @NFTA_SET_DESC={0x20, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_DESC_CONCAT={0x14, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}]}, {0x4}]}]}]}], {0x14, 0x10}}, 0x84}}, 0x0)

17.85818098s ago: executing program 3 (id=4108):
socket(0x2, 0x2, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r3, &(0x7f0000000040)=0x1c8, 0x12)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
dup(r4)
r5 = syz_open_dev$video(&(0x7f0000000000), 0x485, 0x40000)
ioctl$VIDIOC_S_SELECTION(r5, 0xc040565f, &(0x7f0000000040)={0x9, 0x100, 0x0, {0x400e802, 0x1, 0x7, 0xfff}})
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup.cpu/syz0\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = memfd_create(&(0x7f0000000680)='\x103q}2\x9a\xce\xaf^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99\x18\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1f\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\tRJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd99C\x9fF\x9c[M=\xa0^\xa8\xed)\xe8Z\xe8\x9b&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xc9\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8ZmH\x98\xaeb\xa5B5)\x80m\xff\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6\x05\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa\x19\x06U)j!\x91\'\x98\xd2kFN\xfa\x80)O\xb9(!n\x9d\x13\x15\xf1\x1a\xb8y\x14l\xd1', 0x7)
ioctl$FS_IOC_RESVSP(r7, 0x402c5828, &(0x7f00000000c0)={0x0, 0x0, 0x1, 0x762})
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r7, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f00000003c0)={0x385200080, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r6}}, 0x58)

17.815450131s ago: executing program 1 (id=4109):
syz_mount_image$nilfs2(&(0x7f0000000dc0), &(0x7f0000000e00)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0040ce91bae94d6588340b3900000000000000b5384050da", @ANYRES16=0x0, @ANYRESHEX=0x0], 0x1, 0xd99, &(0x7f0000000e80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x1ff)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4, 0x11, r0, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write(r1, &(0x7f0000000180)="7e7226ce9b4d692092ffa2b579f0ff5793012c9738a9be19ff3e69a683a0a1bbace0dc3853c661a4e1019e7a1f3af60350126cb99c5f3ace6f5616c00e0fb30b2832398fed6233b8632a001dd0a846cbb8a5d77e3208db486b055edb6ae7917f07ccf4b6811be57047aa17799359e733ec395940d1feb7a9ec2ddadb1ff61070c9c00f9db8e47f74a5271fa77b6e692e6ac97aaae883e5522f8e86c2403aec0ff8dee1cba5d40f0969470b9a2a95f6f22f9d4250809400ea8403a6540948", 0xfffffec6)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x1ff)
ioctl$FS_IOC_FIEMAP(r2, 0xc020660b, &(0x7f0000000340)={0xa, 0x3, 0x0, 0x4000c, 0x1, 0x0, [{0xb, 0x5, 0x4, '\x00', 0x408}]})

17.576543895s ago: executing program 4 (id=4110):
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, 0x0, 0x24044884)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
socket$nl_generic(0x10, 0x3, 0x10)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
mkdir(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={0x0}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xc40a, &(0x7f0000000280)={[{@noblock_validity}, {@dioread_lock}, {@nobh}, {@minixdf}, {@acl}, {@usrjquota, 0x2e}, {@grpquota}, {@nodiscard}, {@jqfmt_vfsv0}, {@noload}], [], 0x2c}, 0x84, 0x459, &(0x7f0000000900)="$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")
accept$unix(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x6)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket(0x1e, 0x4, 0x0)
connect$tipc(r3, 0x0, 0x0)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x14, 0x9, 0x6, 0x201}, 0x14}, 0x1, 0x0, 0x0, 0x10000047}, 0x0)

15.629422785s ago: executing program 2 (id=4111):
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
userfaultfd(0x80801)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$cuse(0xffffff9c, &(0x7f0000000040), 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x305e, &(0x7f00000005c0)={0x0, 0xbc23, 0x10000, 0x2, 0x403f, 0x0, r1}, &(0x7f0000000080)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x40}})
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$wireguard(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b80)={0x60, r6, 0x1, 0x70bd28, 0x0, {}, [@WGDEVICE_A_PEERS={0x4}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}, @WGDEVICE_A_PRIVATE_KEY={0x24}, @WGDEVICE_A_LISTEN_PORT={0x6, 0x6, 0x4e21}]}, 0x60}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000)
io_uring_enter(r2, 0x2def, 0x4000, 0x0, 0x0, 0x0)
r7 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r8, &(0x7f0000000100)={0x20000014})
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd, 0xfffffffffffffffc, 0x4}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0x3, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r9, 0x1, r7, 0x0)
r10 = socket(0x15, 0x5, 0x0)
getsockopt(r10, 0x200000000114, 0x2720, 0x0, &(0x7f0000000000))

15.30574974s ago: executing program 4 (id=4112):
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'wlan0\x00'})
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, 0x0, 0x24044884)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
socket$nl_generic(0x10, 0x3, 0x10)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
mkdir(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={0x0}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xc40a, &(0x7f0000000280)={[{@noblock_validity}, {@dioread_lock}, {@nobh}, {@minixdf}, {@acl}, {@usrjquota, 0x2e}, {@grpquota}, {@nodiscard}, {@jqfmt_vfsv0}, {@noload}], [], 0x2c}, 0x84, 0x459, &(0x7f0000000900)="$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")
accept$unix(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x6)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket(0x1e, 0x4, 0x0)
connect$tipc(r3, 0x0, 0x0)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x10000047}, 0x0)

14.756050559s ago: executing program 1 (id=4114):
socketpair$unix(0x1, 0x1, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
r1 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r1, 0x890b, &(0x7f0000000380)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0x6, @null, @bpq0, 0x0, [@bcast, @bcast, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]})
r2 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
connect$rose(r2, &(0x7f0000000040)=@short={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, 0x1, @null}, 0x1c)
connect$rose(r2, 0x0, 0x0)
ioctl$sock_rose_SIOCDELRT(r0, 0x890c, &(0x7f00000000c0)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0x1}, 0x6, @null, @bpq0, 0x1, [@bcast, @default, @default, @default, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default]})

14.345983255s ago: executing program 1 (id=4116):
socket(0x2, 0x2, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r3, &(0x7f0000000040)=0x1c8, 0x12)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
dup(r4)
ioctl$VIDIOC_S_SELECTION(0xffffffffffffffff, 0xc040565f, &(0x7f0000000040)={0x9, 0x100, 0x0, {0x400e802, 0x1, 0x7, 0xfff}})
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r5, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r5, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup.cpu/syz0\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = memfd_create(&(0x7f0000000680)='\x103q}2\x9a\xce\xaf^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99\x18\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1f\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\tRJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd99C\x9fF\x9c[M=\xa0^\xa8\xed)\xe8Z\xe8\x9b&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xc9\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8ZmH\x98\xaeb\xa5B5)\x80m\xff\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6\x05\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa\x19\x06U)j!\x91\'\x98\xd2kFN\xfa\x80)O\xb9(!n\x9d\x13\x15\xf1\x1a\xb8y\x14l\xd1', 0x7)
ioctl$FS_IOC_RESVSP(r7, 0x402c5828, &(0x7f00000000c0)={0x0, 0x0, 0x1, 0x762})
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r7, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f00000003c0)={0x385200080, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r6}}, 0x58)

11.971443222s ago: executing program 2 (id=4118):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
setresgid(0xffffffffffffffff, 0xee00, 0xffffffffffffffff)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r3)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
write(r4, &(0x7f0000000000)="14000000140005b7ffccca38b9000000010860eb", 0x14)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000340)={0x0, r2}, 0x8)
sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000500)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x20082009}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x34, 0x0, 0x100, 0x2, 0x25dfdbfe, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x8}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x102}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000002}, 0x8000)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1200000004000000040000000900000000000000", @ANYRES32, @ANYBLOB="0400000800000000000000000000020000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="feffffff010000000200"/28], 0x50)
r5 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r5, 0x0, 0x23, &(0x7f0000000100)={@multicast2, @loopback}, 0xc)
r6 = socket(0x23, 0x5, 0x0)
ioctl$sock_SIOCETHTOOL(r6, 0x89f0, &(0x7f0000000800)={'bridge0\x00', &(0x7f0000000240)=@ethtool_coalesce={0xf, 0x4, 0x101, 0xc3a5, 0x9, 0x1ff, 0x4, 0x2, 0xfffffff6, 0x7fb, 0x1, 0xc99d, 0x2, 0x9, 0x8d, 0x7ff, 0x2, 0xa98, 0x8, 0x6, 0x10000040, 0x3, 0xfd}})
fsetxattr$security_evm(r4, &(0x7f00000001c0), &(0x7f0000000300)=@ng={0x4, 0xb, "bc297bcf"}, 0x6, 0x1)
r7 = socket$netlink(0x10, 0x3, 0x0)
writev(r7, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)

11.928226253s ago: executing program 4 (id=4119):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000002c0)="9e", 0x1, 0x0, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f0000000140)=0x3ff, 0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000380)='yeah\x00', 0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r6 = socket$key(0xf, 0x3, 0x2)
r7 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
ioctl$PTP_SYS_OFFSET_EXTENDED(r7, 0xc4c03d09, 0x0)
sendmsg$key(r6, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="0203f3021600000000000000000000000200090008000000e9000000000000000300060000000000020000000000000000000000000000000200010000000000000003fdff000020030005000000000002000000ac1414aa00000000000000000a00080008"], 0xb0}, 0x1, 0x7}, 0x0)
syz_open_dev$video4linux(&(0x7f0000000000), 0xfffb, 0x60082)
sendmsg$inet6(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000380)='h', 0x1}], 0x1}, 0x0)
recvmmsg(r0, &(0x7f0000003780)=[{{0x0, 0x0, 0x0}, 0xd88c}], 0x1, 0x10101, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r9 = bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8)
ioctl$VHOST_SET_LOG_BASE(r9, 0x4008af04, &(0x7f0000000340)=&(0x7f00000001c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r8}, 0x10)

11.262797423s ago: executing program 0 (id=4120):
sendmsg$NL80211_CMD_REGISTER_BEACONS(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[], 0x1c}}, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
pipe2$9p(&(0x7f0000001900), 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x14, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x40}}, 0x14}}, 0x0)

9.843500695s ago: executing program 0 (id=4121):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14, 0x10, 0x1, 0x2}, [@NFT_MSG_NEWSET={0x58, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2c}, @NFTA_SET_DESC={0x1c, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_DESC_CONCAT={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}]}]}]}], {0x14, 0x10}}, 0x80}}, 0x0)

9.203328106s ago: executing program 0 (id=4122):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14}}, 0x54}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14, 0x10, 0x1, 0x2}, [@NFT_MSG_NEWSET={0x104, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2c}, @NFTA_SET_DESC={0xc0, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_DESC_CONCAT={0xb4, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x764f15e2}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x28}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xcb}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}]}]}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0xa4}]}], {0x14, 0x10}}, 0x12c}}, 0x0)

8.89535458s ago: executing program 0 (id=4123):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000005140)='./file0\x00', 0x0, &(0x7f0000005180), 0x11, 0x5109, &(0x7f000000f400)="$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")
r0 = socket$netlink(0x10, 0x3, 0x0)
symlinkat(&(0x7f00000001c0)='./file7\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file6\x00')
renameat2(0xffffffffffffff9c, &(0x7f0000000b80)='./file6\x00', 0xffffffffffffff9c, &(0x7f0000000bc0)='./file3\x00', 0x0)
rename(&(0x7f0000000000)='./file1\x00', &(0x7f0000000080)='./file2\x00')
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0x1a4243c, &(0x7f0000005600)=ANY=[], 0x0, 0x0, &(0x7f0000000000))
close_range(r0, 0xffffffffffffffff, 0x0)

8.89486239s ago: executing program 2 (id=4124):
socket(0x2, 0x2, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r3, &(0x7f0000000040)=0x1c8, 0x12)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
dup(r4)
syz_open_dev$video(&(0x7f0000000000), 0x485, 0x40000)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r5, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r5, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup.cpu/syz0\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = memfd_create(&(0x7f0000000680)='\x103q}2\x9a\xce\xaf^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99\x18\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1f\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\tRJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd99C\x9fF\x9c[M=\xa0^\xa8\xed)\xe8Z\xe8\x9b&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xc9\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8ZmH\x98\xaeb\xa5B5)\x80m\xff\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6\x05\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa\x19\x06U)j!\x91\'\x98\xd2kFN\xfa\x80)O\xb9(!n\x9d\x13\x15\xf1\x1a\xb8y\x14l\xd1', 0x7)
ioctl$FS_IOC_RESVSP(r7, 0x402c5828, &(0x7f00000000c0)={0x0, 0x0, 0x1, 0x762})
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r7, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f00000003c0)={0x385200080, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r6}}, 0x58)

8.502072806s ago: executing program 3 (id=4125):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b80)={0x4c, 0x0, 0x1, 0x70bd28, 0x0, {}, [@WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_PRIVATE_KEY={0x24}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000)

8.196452452s ago: executing program 3 (id=4126):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b80)={0x34, 0x0, 0x1, 0x70bd28, 0x0, {}, [@WGDEVICE_A_PEERS={0x4}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}, @WGDEVICE_A_FLAGS={0x8, 0x5, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000)

8.121659263s ago: executing program 4 (id=4127):
socket(0x2, 0x2, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r3, &(0x7f0000000040)=0x1c8, 0x12)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
dup(r4)
r5 = syz_open_dev$video(&(0x7f0000000000), 0x485, 0x40000)
ioctl$VIDIOC_S_SELECTION(r5, 0xc040565f, &(0x7f0000000040)={0x9, 0x100, 0x0, {0x400e802, 0x1, 0x7, 0xfff}})
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r6, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)

7.865708637s ago: executing program 3 (id=4128):
socket(0x2, 0x2, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r3, &(0x7f0000000040)=0x1c8, 0x12)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
dup(r4)
r5 = syz_open_dev$video(&(0x7f0000000000), 0x485, 0x40000)
ioctl$VIDIOC_S_SELECTION(r5, 0xc040565f, &(0x7f0000000040)={0x9, 0x100, 0x0, {0x400e802, 0x1, 0x7, 0xfff}})
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r6, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r6, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup.cpu/syz0\x00', 0x1ff)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r8 = memfd_create(&(0x7f0000000680)='\x103q}2\x9a\xce\xaf^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99\x18\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1f\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\tRJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd99C\x9fF\x9c[M=\xa0^\xa8\xed)\xe8Z\xe8\x9b&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xc9\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8ZmH\x98\xaeb\xa5B5)\x80m\xff\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6\x05\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa\x19\x06U)j!\x91\'\x98\xd2kFN\xfa\x80)O\xb9(!n\x9d\x13\x15\xf1\x1a\xb8y\x14l\xd1', 0x7)
ioctl$FS_IOC_RESVSP(r8, 0x402c5828, &(0x7f00000000c0)={0x0, 0x0, 0x1, 0x762})
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r8, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f00000003c0)={0x385200080, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r7}}, 0x58)

7.503405052s ago: executing program 1 (id=4129):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
setresgid(0xffffffffffffffff, 0xee00, 0xffffffffffffffff)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r3)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
write(r4, &(0x7f0000000000)="14000000140005b7ffccca38b9000000010860eb", 0x14)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000340)={0x0, r2}, 0x8)
sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000500)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x20082009}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x34, 0x0, 0x100, 0x2, 0x25dfdbfe, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x8}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x102}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000002}, 0x8000)
bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="1200000004000000040000000900000000000000", @ANYRES32, @ANYBLOB="0400000800000000000000000000020000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="feffffff010000000200"/28], 0x50)
r5 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r5, 0x0, 0x23, &(0x7f0000000100)={@multicast2, @loopback}, 0xc)
r6 = socket(0x23, 0x5, 0x0)
ioctl$sock_SIOCETHTOOL(r6, 0x89f0, &(0x7f0000000800)={'bridge0\x00', &(0x7f0000000240)=@ethtool_coalesce={0xf, 0x4, 0x101, 0xc3a5, 0x9, 0x1ff, 0x4, 0x2, 0xfffffff6, 0x7fb, 0x1, 0xc99d, 0x2, 0x9, 0x8d, 0x7ff, 0x2, 0xa98, 0x8, 0x6, 0x10000040, 0x3, 0xfd}})
fsetxattr$security_evm(r4, &(0x7f00000001c0), &(0x7f0000000300)=@ng={0x4, 0xb, "bc297bcf"}, 0x6, 0x1)
r7 = socket$netlink(0x10, 0x3, 0x0)
writev(r7, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)

7.394274274s ago: executing program 0 (id=4130):
socket(0x2, 0x2, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r3, &(0x7f0000000040)=0x1c8, 0x12)
dup(0xffffffffffffffff)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r4, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r4, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup.cpu/syz0\x00', 0x1ff)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = memfd_create(&(0x7f0000000680)='\x103q}2\x9a\xce\xaf^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99\x18\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1f\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\tRJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd99C\x9fF\x9c[M=\xa0^\xa8\xed)\xe8Z\xe8\x9b&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xc9\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8ZmH\x98\xaeb\xa5B5)\x80m\xff\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6\x05\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa\x19\x06U)j!\x91\'\x98\xd2kFN\xfa\x80)O\xb9(!n\x9d\x13\x15\xf1\x1a\xb8y\x14l\xd1', 0x7)
ioctl$FS_IOC_RESVSP(r6, 0x402c5828, &(0x7f00000000c0)={0x0, 0x0, 0x1, 0x762})
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r6, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f00000003c0)={0x385200080, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r5}}, 0x58)

5.631145741s ago: executing program 4 (id=4131):
sendmsg$NL80211_CMD_REGISTER_BEACONS(0xffffffffffffffff, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[], 0x1c}}, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
pipe2$9p(&(0x7f0000001900), 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)={0x38, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x40}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}]}, 0x38}}, 0x0)

5.268544257s ago: executing program 4 (id=4132):
socket(0x2, 0x2, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r3, &(0x7f0000000040)=0x1c8, 0x12)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
dup(r4)
r5 = syz_open_dev$video(&(0x7f0000000000), 0x485, 0x40000)
ioctl$VIDIOC_S_SELECTION(r5, 0xc040565f, &(0x7f0000000040)={0x9, 0x100, 0x0, {0x400e802, 0x1, 0x7, 0xfff}})
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup.cpu/syz0\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = memfd_create(&(0x7f0000000680)='\x103q}2\x9a\xce\xaf^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99\x18\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1f\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\tRJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd99C\x9fF\x9c[M=\xa0^\xa8\xed)\xe8Z\xe8\x9b&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xc9\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8ZmH\x98\xaeb\xa5B5)\x80m\xff\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6\x05\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa\x19\x06U)j!\x91\'\x98\xd2kFN\xfa\x80)O\xb9(!n\x9d\x13\x15\xf1\x1a\xb8y\x14l\xd1', 0x7)
ioctl$FS_IOC_RESVSP(r7, 0x402c5828, &(0x7f00000000c0)={0x0, 0x0, 0x1, 0x762})
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r7, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f00000003c0)={0x385200080, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r6}}, 0x58)

2.663317238s ago: executing program 2 (id=4133):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14, 0x10, 0x1, 0x2}, [@NFT_MSG_NEWSET={0x50, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2c}, @NFTA_SET_DESC={0x14, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_DESC_CONCAT={0x8, 0x2, 0x0, 0x1, [{0x4}]}]}]}], {0x14, 0x10}}, 0x78}}, 0x0)

2.014955598s ago: executing program 2 (id=4134):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14}}, 0x54}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14, 0x10, 0x1, 0x2}, [@NFT_MSG_NEWSET={0x104, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2c}, @NFTA_SET_DESC={0xc0, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_DESC_CONCAT={0xb4, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x764f15e2}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x28}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xcb}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}]}]}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0xa4}]}], {0x14, 0x10}}, 0x12c}}, 0x0)

1.678953774s ago: executing program 2 (id=4135):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000380)='source\xcf\x87\x86\x1bY\x0f\xde\xd6\xcd\xc0\x01\xd3\x19>K\x04\xfe\x86YG\xa5\x0f\xed\xa0\x9f\x1e\x14R\x9e\x04\xfa\xed\xd0TG&\x88\xeaz\x9aD\xf8Tt\x8c\x00{\x1fm\xfe\x9c\xf6_h\x9e\xfc\'', &(0x7f00000001c0)='sou\x01ce', 0x0)
r4 = socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'geneve0\x00'})
socket$igmp(0x2, 0x3, 0x2)
r5 = socket$nl_crypto(0x10, 0x3, 0x15)
sendmsg$nl_crypto(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=ANY=[], 0x118}}, 0x4048850)
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000a80)={{0x2, 0x4e2a, @broadcast}, {0x0, @remote}, 0x4a, {}, 'veth1_to_bridge\x00'})
r6 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(0xffffffffffffffff, 0xc1105511, &(0x7f0000000140)={0xa, 0x0, 0x1, 0x0, 'syz0\x00'})
madvise(&(0x7f0000cd0000/0x4000)=nil, 0xffffffffdf32ffff, 0x16)
ioctl$CEC_ADAP_S_LOG_ADDRS(0xffffffffffffffff, 0xc05c6104, &(0x7f0000000200)={"6080d517", 0x3, 0x9, 0x1, 0x2, 0xfffffffc, "f9a927627a35987cb2070800", "ae6c49d8", "1c4391b3", "aa04df4e", ["e4e7d0b3748a08eb4117a58f", "a42a5eb8b97b66092e22038e", "00284dc8b857e17ccdef2efa", "d89c67314b6a13a76640b81a"]})
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x10, 0x4, 0x8, 0xda, 0x0, r1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
tkill(r6, 0xb)
socket$netlink(0x10, 0x3, 0x400000000000004)
r7 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r7, 0xc018aa3f, &(0x7f0000000140))

1.642579964s ago: executing program 1 (id=4136):
socket(0x2, 0x2, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r3, &(0x7f0000000040)=0x1c8, 0x12)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
dup(r4)
r5 = syz_open_dev$video(&(0x7f0000000000), 0x485, 0x40000)
ioctl$VIDIOC_S_SELECTION(r5, 0xc040565f, &(0x7f0000000040)={0x9, 0x100, 0x0, {0x400e802, 0x1, 0x7, 0xfff}})
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(0xffffffffffffffff, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup.cpu/syz0\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = memfd_create(&(0x7f0000000680)='\x103q}2\x9a\xce\xaf^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99\x18\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1f\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\tRJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd99C\x9fF\x9c[M=\xa0^\xa8\xed)\xe8Z\xe8\x9b&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xc9\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8ZmH\x98\xaeb\xa5B5)\x80m\xff\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6\x05\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa\x19\x06U)j!\x91\'\x98\xd2kFN\xfa\x80)O\xb9(!n\x9d\x13\x15\xf1\x1a\xb8y\x14l\xd1', 0x7)
ioctl$FS_IOC_RESVSP(r7, 0x402c5828, &(0x7f00000000c0)={0x0, 0x0, 0x1, 0x762})
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r7, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f00000003c0)={0x385200080, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r6}}, 0x58)

1.111786832s ago: executing program 0 (id=4137):
syz_mount_image$nilfs2(&(0x7f0000000dc0), &(0x7f0000000e00)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0040ce91bae94d6588340b3900000000000000b5384050da", @ANYRES16=0x0, @ANYRESHEX=0x0], 0x1, 0xd99, &(0x7f0000000e80)="$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")
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x4, 0x11, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x3, 0x32, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write(r0, &(0x7f0000000180)="7e7226ce9b4d692092ffa2b579f0ff5793012c9738a9be19ff3e69a683a0a1bbace0dc3853c661a4e1019e7a1f3af60350126cb99c5f3ace6f5616c00e0fb30b2832398fed6233b8632a001dd0a846cbb8a5d77e3208db486b055edb6ae7917f07ccf4b6811be57047aa17799359e733ec395940d1feb7a9ec2ddadb1ff61070c9c00f9db8e47f74a5271fa77b6e692e6ac97aaae883e5522f8e86c2403aec0ff8dee1cba5d40f0969470b9a2a95f6f22f9d4250809400ea8403a6540948", 0xfffffec6)

1.111214222s ago: executing program 3 (id=4138):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000002c0)="9e", 0x1, 0x0, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x21, &(0x7f0000000140)=0x3ff, 0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r6 = socket$key(0xf, 0x3, 0x2)
r7 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
ioctl$PTP_SYS_OFFSET_EXTENDED(r7, 0xc4c03d09, 0x0)
sendmsg$key(r6, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="0203f3021600000000000000000000000200090008000000e9000000000000000300060000000000020000000000000000000000000000000200010000000000000003fdff000020030005000000000002000000ac1414aa00000000000000000a00080008"], 0xb0}, 0x1, 0x7}, 0x0)
syz_open_dev$video4linux(&(0x7f0000000000), 0xfffb, 0x60082)
sendmsg$inet6(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000380)='h', 0x1}], 0x1}, 0x0)
recvmmsg(r0, &(0x7f0000003780)=[{{0x0, 0x0, 0x0}, 0xd88c}], 0x1, 0x10101, 0x0)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r9 = bpf$ITER_CREATE(0x21, &(0x7f00000000c0), 0x8)
ioctl$VHOST_SET_LOG_BASE(r9, 0x4008af04, &(0x7f0000000340)=&(0x7f00000001c0))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r8}, 0x10)

0s ago: executing program 3 (id=4139):
socket(0x2, 0x2, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r3, &(0x7f0000000040)=0x1c8, 0x12)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
dup(r4)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r5, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r5, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r5, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000280)='./cgroup.cpu/syz0\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = memfd_create(&(0x7f0000000680)='\x103q}2\x9a\xce\xaf^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99\x18\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1f\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\tRJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd99C\x9fF\x9c[M=\xa0^\xa8\xed)\xe8Z\xe8\x9b&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xc9\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05\xd7\xe7X\xc7/\xae5\x93wwT\x13\xbd,\xd6\x16\x84\xcd\xd1\xd8\xe1P_\xbf0\xd8\x8d%Yh\xb5\xb4\"\xf5\x93\xdeh\xce\xa5\xe8\xc8ZmH\x98\xaeb\xa5B5)\x80m\xff\xec\x88\x89\xf07{\x95\xc9\xd0\xee\xe1\x1d\x80\xcc]-\xc2\xa1\x02ELhI\xd9\xf5\xcfk\x8a&i\xc1\xff9T\x8e\xe2rY\xa3\xd2H9\xfe\x0e\x1e\xac\x0f\xc3\xbd{\xd9\xcc\xbe\xa9\x93\xe0\xa4W\x1cn>\xc1\xf1\x9e\"\x93\x19\x19\x1a\xcc\x7fy\xd2~\x05\x99\xe6\x00o\xca\xe0\xc6\xd4\xf5\xa0\xc8P\xd6\x05\xf3\xc6~E\xacI\xd4\xe9\xa1|>\x91.K\x81\xa9+\xcf\xff\xcb\xfa\x0f\xe7n\x83H\x12\xac\x80\x16\xf8\x87Q\x97Az\n`\xb6\xe13A\xec\x8d(\\D\xec\xa6\t1\xa0h\xfc\x1f\xdd1@-4\xb4:\xf8\xd5wP \x84m\xe2\xd9\xfcb\xa0\xc3\xc9\xe7W\x86\xd7$\xa4ml\xee\x97[\xb7\xfa\x19\x06U)j!\x91\'\x98\xd2kFN\xfa\x80)O\xb9(!n\x9d\x13\x15\xf1\x1a\xb8y\x14l\xd1', 0x7)
ioctl$FS_IOC_RESVSP(r7, 0x402c5828, &(0x7f00000000c0)={0x0, 0x0, 0x1, 0x762})
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r7, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f00000003c0)={0x385200080, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r6}}, 0x58)

kernel console output (not intermixed with test programs):

674][ T4941] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1081.656231][ T4941] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1082.010510][T15002] overlayfs: unrecognized mount option "verity=on" or missing value
[ 1082.961646][T14991] loop0: detected capacity change from 0 to 32768
[ 1083.129449][T15011] hub 9-0:1.0: USB hub found
[ 1083.134904][T15011] hub 9-0:1.0: 1 port detected
[ 1084.720550][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1084.770670][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1084.793271][T14645] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1085.230446][  T127] usb 1-1: new full-speed USB device number 6 using dummy_hcd
[ 1085.318472][T15009] loop1: detected capacity change from 0 to 32768
[ 1087.636161][T15051] loop1: detected capacity change from 0 to 8
[ 1087.650674][T15050] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1087.723207][T15050] loop2: detected capacity change from 0 to 128
[ 1087.807713][T15050] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[ 1088.154602][  T127] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1090.091520][T15055] loop0: detected capacity change from 0 to 128
[ 1090.436272][T15055] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[ 1090.731875][  T127] usb 1-1: unable to read config index 0 descriptor/start: -71
[ 1091.911454][  T127] usb 1-1: can't read configurations, error -71
[ 1093.595552][T15066] loop0: detected capacity change from 0 to 512
[ 1093.605067][T15066] EXT4-fs: Ignoring removed nobh option
[ 1094.322238][T15066] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[ 1094.334989][T15066] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.3248: invalid indirect mapped block 2683928664 (level 1)
[ 1094.359306][T15066] EXT4-fs (loop0): 1 truncate cleaned up
[ 1094.365178][T15066] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 1094.792441][T15060] loop2: detected capacity change from 0 to 4096
[ 1095.352154][ T4260] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1095.362758][ T4260] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1095.373462][ T4260] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1095.383886][ T4260] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1095.391559][ T4260] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1095.398874][ T4260] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1095.477240][T15076] 9pnet_fd: Insufficient options for proto=fd
[ 1095.972045][T15069] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:477: comm ext4lazyinit: Invalid block bitmap block 3 in block_group 0
[ 1096.386797][T15073] lo speed is unknown, defaulting to 1000
[ 1096.417603][T13355] EXT4-fs (loop0): unmounting filesystem.
[ 1096.666721][T15085] loop1: detected capacity change from 0 to 8
[ 1097.742425][T15087] loop0: detected capacity change from 0 to 8
[ 1098.210806][T13016] Bluetooth: hci5: command 0x0409 tx timeout
[ 1100.152771][T15104] loop2: detected capacity change from 0 to 40427
[ 1100.286838][T15104] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1100.294781][T15104] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1100.315334][T15104] F2FS-fs (loop2): invalid crc value
[ 1100.341020][ T4260] Bluetooth: hci5: command 0x041b tx timeout
[ 1100.733574][T15104] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1100.856492][T15104] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1100.863877][T15104] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1101.954081][T15117] loop1: detected capacity change from 0 to 4096
[ 1102.275795][T15073] chnl_net:caif_netlink_parms(): no params data found
[ 1102.422315][T13016] Bluetooth: hci5: command 0x040f tx timeout
[ 1102.473435][T15129] loop0: detected capacity change from 0 to 8
[ 1103.676917][T15136] siw: device registration error -23
[ 1104.500575][T13016] Bluetooth: hci5: command 0x0419 tx timeout
[ 1105.465249][T15151] loop1: detected capacity change from 0 to 256
[ 1106.463440][T15158] loop0: detected capacity change from 0 to 8
[ 1106.964842][T15151] FAT-fs (loop1): Directory bread(block 64) failed
[ 1106.984621][T15151] FAT-fs (loop1): Directory bread(block 65) failed
[ 1107.046421][T15151] FAT-fs (loop1): Directory bread(block 66) failed
[ 1107.083804][T15151] FAT-fs (loop1): Directory bread(block 67) failed
[ 1107.127510][T15151] FAT-fs (loop1): Directory bread(block 68) failed
[ 1107.180485][T15151] FAT-fs (loop1): Directory bread(block 69) failed
[ 1107.224633][T15151] FAT-fs (loop1): Directory bread(block 70) failed
[ 1107.231327][T15151] FAT-fs (loop1): Directory bread(block 71) failed
[ 1107.241677][T15151] FAT-fs (loop1): Directory bread(block 72) failed
[ 1107.248723][T15151] FAT-fs (loop1): Directory bread(block 73) failed
[ 1107.439066][T15073] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1107.480627][T15073] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1107.561664][T15073] device bridge_slave_0 entered promiscuous mode
[ 1107.676671][T15073] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1107.704465][T15073] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1107.731754][T15073] device bridge_slave_1 entered promiscuous mode
[ 1108.311440][T15073] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1108.358606][T15073] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1108.630804][T15073] team0: Port device team_slave_0 added
[ 1108.756013][T15073] team0: Port device team_slave_1 added
[ 1108.815411][ T4400] device hsr_slave_0 left promiscuous mode
[ 1108.848297][ T4400] device hsr_slave_1 left promiscuous mode
[ 1108.868383][ T4400] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1108.890802][ T4400] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1108.910238][ T4400] device bridge_slave_1 left promiscuous mode
[ 1108.916594][ T4400] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1108.947682][ T4400] device bridge_slave_0 left promiscuous mode
[ 1108.966478][ T4400] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1109.019439][T15166] loop0: detected capacity change from 0 to 32768
[ 1109.043781][T15166] XFS: attr2 mount option is deprecated.
[ 1109.059819][T15166] XFS: ikeep mount option is deprecated.
[ 1109.108456][T15166] XFS (loop0): Mounting V5 Filesystem
[ 1109.270928][T15166] XFS (loop0): Ending clean mount
[ 1109.313781][T15166] XFS (loop0): Quotacheck needed: Please wait.
[ 1109.373069][T15174] loop1: detected capacity change from 0 to 32768
[ 1109.456804][T15166] XFS (loop0): Quotacheck: Done.
[ 1109.591594][T15187] hub 9-0:1.0: USB hub found
[ 1109.597162][T15187] hub 9-0:1.0: 1 port detected
[ 1110.253504][T15190] siw: device registration error -23
[ 1110.514087][T13355] XFS (loop0): Unmounting Filesystem
[ 1110.532807][ T4400] team0 (unregistering): Port device team_slave_1 removed
[ 1110.645160][ T4400] team0 (unregistering): Port device team_slave_0 removed
[ 1110.812112][T15195] loop1: detected capacity change from 0 to 512
[ 1110.820698][T15195] EXT4-fs: Ignoring removed nobh option
[ 1111.725352][T15195] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[ 1111.739182][T15195] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.3275: invalid indirect mapped block 2683928664 (level 1)
[ 1111.777867][T15195] EXT4-fs (loop1): 1 truncate cleaned up
[ 1111.784192][T15195] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1114.262148][T15199] loop2: detected capacity change from 0 to 8
[ 1115.408770][ T4400] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1115.851301][ T4400] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1115.934135][T15197] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:477: comm ext4lazyinit: Invalid block bitmap block 3 in block_group 0
[ 1116.024332][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1116.031128][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1116.480616][T13014] EXT4-fs (loop1): unmounting filesystem.
[ 1117.887178][T15217] loop1: detected capacity change from 0 to 512
[ 1117.896782][T15217] EXT4-fs: Ignoring removed nobh option
[ 1119.412306][T15217] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[ 1119.423068][T15217] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.3280: invalid indirect mapped block 2683928664 (level 1)
[ 1119.448039][T15217] EXT4-fs (loop1): 1 truncate cleaned up
[ 1119.454024][T15217] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1119.832218][T13014] EXT4-fs (loop1): unmounting filesystem.
[ 1120.575535][T15227] loop1: detected capacity change from 0 to 8
[ 1122.528150][T15221] loop0: detected capacity change from 0 to 32768
[ 1122.543038][T15221] XFS: attr2 mount option is deprecated.
[ 1122.548797][T15221] XFS: ikeep mount option is deprecated.
[ 1122.622996][T15221] XFS (loop0): Mounting V5 Filesystem
[ 1122.633018][ T4400] bond0 (unregistering): Released all slaves
[ 1122.724948][T15221] XFS (loop0): Ending clean mount
[ 1122.761113][T15221] XFS (loop0): Quotacheck needed: Please wait.
[ 1122.820776][T15221] XFS (loop0): Quotacheck: Done.
[ 1122.992540][T15073] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1122.999587][T15073] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1123.174124][T15073] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1123.212971][T13355] XFS (loop0): Unmounting Filesystem
[ 1124.033520][T15073] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1124.071321][T15073] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1124.108126][T15252] block device autoloading is deprecated and will be removed.
[ 1124.227299][T15073] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1124.711569][T15073] device hsr_slave_0 entered promiscuous mode
[ 1124.758372][T15073] device hsr_slave_1 entered promiscuous mode
[ 1124.824331][T15073] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1124.850361][T15073] Cannot create hsr debugfs directory
[ 1125.515916][T15258] loop0: detected capacity change from 0 to 32768
[ 1126.291720][T15276] loop2: detected capacity change from 0 to 512
[ 1126.305689][T15276] EXT4-fs: Ignoring removed nobh option
[ 1128.336640][T15276] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[ 1128.347669][T15276] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.3290: invalid indirect mapped block 2683928664 (level 1)
[ 1129.670601][T15276] EXT4-fs (loop2): 1 truncate cleaned up
[ 1129.710463][T15276] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1129.748013][T15073] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1129.800923][T15073] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1130.003624][T15288] siw: device registration error -23
[ 1130.991262][T15073] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1131.003998][ T4254] EXT4-fs (loop2): unmounting filesystem.
[ 1131.015105][T15073] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1131.393105][T15073] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1131.533152][T15073] 8021q: adding VLAN 0 to HW filter on device team0
[ 1131.590430][ T4300] usb 3-1: new full-speed USB device number 19 using dummy_hcd
[ 1131.600732][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1131.614820][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1131.711319][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1131.732646][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1131.770803][T13810] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1131.778035][T13810] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1131.961007][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1132.088549][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1132.377026][T13810] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1132.384283][T13810] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1132.865150][T15304] loop1: detected capacity change from 0 to 512
[ 1132.876133][T15304] EXT4-fs: Ignoring removed nobh option
[ 1133.990576][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1135.232205][T15304] EXT4-fs: failed to create workqueue
[ 1135.271513][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1135.312340][ T4300] usb 3-1: unable to get BOS descriptor or descriptor too short
[ 1135.344879][ T4300] usb 3-1: unable to read config index 0 descriptor/start: -71
[ 1135.388787][T15304] EXT4-fs (loop1): mount failed
[ 1135.395999][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1135.420375][ T4300] usb 3-1: can't read configurations, error -71
[ 1135.639665][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1135.682468][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1136.345812][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1136.440398][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1136.449673][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1136.458744][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1136.467412][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1136.492880][T13768] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1136.553993][T13768] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1136.588927][T15073] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1137.189497][T15329] loop2: detected capacity change from 0 to 8
[ 1137.780599][T15073] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1138.550592][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1138.558201][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1138.586956][T15316] loop1: detected capacity change from 0 to 32768
[ 1139.664099][T15350] hub 9-0:1.0: USB hub found
[ 1139.669447][T15350] hub 9-0:1.0: 1 port detected
[ 1140.958061][T15346] loop0: detected capacity change from 0 to 512
[ 1141.054537][T15346] EXT4-fs: Ignoring removed nobh option
[ 1141.088290][T15355] loop2: detected capacity change from 0 to 512
[ 1141.097139][T15355] EXT4-fs: Ignoring removed nobh option
[ 1142.696402][T15355] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[ 1142.706238][T15355] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.3308: invalid indirect mapped block 2683928664 (level 1)
[ 1142.724487][T15355] EXT4-fs (loop2): 1 truncate cleaned up
[ 1142.730526][T15355] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1142.830711][T15346] EXT4-fs: failed to create workqueue
[ 1143.057248][T15346] EXT4-fs (loop0): mount failed
[ 1143.271294][ T4254] EXT4-fs (loop2): unmounting filesystem.
[ 1147.046016][T13768] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1147.149491][T13768] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1147.352347][ T4407] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1147.375084][ T4407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1147.403743][T15073] device veth0_vlan entered promiscuous mode
[ 1147.410811][ T4407] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1147.425763][ T4407] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1147.444842][T15073] device veth1_vlan entered promiscuous mode
[ 1147.568301][T15407] loop1: detected capacity change from 0 to 512
[ 1147.581025][T15407] EXT4-fs: Ignoring removed nobh option
[ 1147.683646][T15407] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[ 1147.693566][T15407] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.3320: invalid indirect mapped block 2683928664 (level 1)
[ 1147.713173][T15407] EXT4-fs (loop1): 1 truncate cleaned up
[ 1147.719003][T15407] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1147.771590][ T4941] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1147.845000][ T4941] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1147.991718][ T4941] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1148.170561][ T4941] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1148.328194][T15073] device veth0_macvtap entered promiscuous mode
[ 1148.422860][ T4941] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1148.607676][T15073] device veth1_macvtap entered promiscuous mode
[ 1148.628257][T13014] EXT4-fs (loop1): unmounting filesystem.
[ 1149.491107][T15073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1149.590797][T15073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1149.634222][T15422] loop1: detected capacity change from 0 to 2048
[ 1149.634747][T15073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1149.675673][T15422] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1149.755673][T15073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1149.810563][T15073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1149.840362][T15073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1149.888708][T15073] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1149.935741][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1149.947896][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1149.980475][T14552] usb 2-1: new full-speed USB device number 12 using dummy_hcd
[ 1149.994238][T15073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1150.028927][T15073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1150.061055][T15073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1150.081634][T15402] loop0: detected capacity change from 0 to 32768
[ 1150.143720][T15073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1150.220521][T15429] hub 9-0:1.0: USB hub found
[ 1150.225851][T15429] hub 9-0:1.0: 1 port detected
[ 1153.912560][T15429] read_mapping_page failed!
[ 1153.912603][T15073] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1153.912622][T15073] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1153.914527][T15073] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1154.012663][T14552] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1154.031971][T14552] usb 2-1: unable to read config index 0 descriptor/start: -71
[ 1154.039992][T14552] usb 2-1: can't read configurations, error -71
[ 1154.068028][ T4941] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1154.094991][ T4941] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1156.057583][T15449] overlayfs: unrecognized mount option "verity=on" or missing value
[ 1156.454139][T15461] loop1: detected capacity change from 0 to 8
[ 1156.946936][T13016] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1157.345585][   T48] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1157.354511][   T48] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1157.387447][   T48] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1157.418155][   T48] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1157.428464][   T48] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1159.903804][   T48] Bluetooth: hci2: command 0x0409 tx timeout
[ 1160.281170][T15478] loop1: detected capacity change from 0 to 512
[ 1160.443369][T15478] EXT4-fs: Ignoring removed nobh option
[ 1161.841440][T15478] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[ 1161.851447][T15478] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.3333: invalid indirect mapped block 2683928664 (level 1)
[ 1161.873858][T15478] EXT4-fs (loop1): 1 truncate cleaned up
[ 1161.879657][T15478] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1161.940417][ T4260] Bluetooth: hci2: command 0x041b tx timeout
[ 1162.408372][T15480] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:477: comm ext4lazyinit: Invalid block bitmap block 3 in block_group 0
[ 1162.455559][T13014] EXT4-fs (loop1): unmounting filesystem.
[ 1162.476932][T15458] lo speed is unknown, defaulting to 1000
[ 1162.722751][T15491] loop0: detected capacity change from 0 to 256
[ 1162.737875][T15491] FAT-fs (loop0): Unrecognized mount option "rodil=0" or missing value
[ 1164.020566][ T4260] Bluetooth: hci2: command 0x040f tx timeout
[ 1165.318501][T15482] netlink: 'syz.2.3335': attribute type 4 has an invalid length.
[ 1166.100497][ T4260] Bluetooth: hci2: command 0x0419 tx timeout
[ 1166.380194][T15458] chnl_net:caif_netlink_parms(): no params data found
[ 1167.064260][T15458] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1167.079258][T15458] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1167.127422][T15458] device bridge_slave_0 entered promiscuous mode
[ 1167.237622][T15515] loop0: detected capacity change from 0 to 512
[ 1167.246646][T15515] EXT4-fs: Ignoring removed nobh option
[ 1168.769518][T15515] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[ 1168.779653][T15515] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.3341: invalid indirect mapped block 2683928664 (level 1)
[ 1168.800421][T15515] EXT4-fs (loop0): 1 truncate cleaned up
[ 1168.806216][T15515] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 1169.154584][T15458] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1169.179322][T15458] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1169.241797][T15458] device bridge_slave_1 entered promiscuous mode
[ 1169.679550][T15530] loop1: detected capacity change from 0 to 8
[ 1170.504480][T13355] EXT4-fs (loop0): unmounting filesystem.
[ 1171.158914][T15458] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1171.392547][T15458] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1171.554722][T15545] ptrace attach of "./syz-executor exec"[13355] was attempted by "./syz-executor exec"[15545]
[ 1172.261951][T15458] team0: Port device team_slave_0 added
[ 1173.340134][T15458] team0: Port device team_slave_1 added
[ 1173.928875][T15564] loop1: detected capacity change from 0 to 8
[ 1175.377296][T15458] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1175.431906][T15458] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1175.578837][T15458] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1176.155245][T15572] loop1: detected capacity change from 0 to 512
[ 1176.165441][T15572] EXT4-fs: Ignoring removed nobh option
[ 1176.912719][ T4407] device hsr_slave_0 left promiscuous mode
[ 1177.149790][ T4407] device hsr_slave_1 left promiscuous mode
[ 1177.463901][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1177.470676][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1178.165594][T15572] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[ 1178.184872][T15572] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.3354: invalid indirect mapped block 2683928664 (level 1)
[ 1178.203389][T15572] EXT4-fs (loop1): 1 truncate cleaned up
[ 1178.209533][T15572] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1178.272114][ T4407] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1178.426452][ T4407] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1178.530913][ T4407] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1178.538433][ T4407] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1178.547412][T13014] EXT4-fs (loop1): unmounting filesystem.
[ 1178.554594][ T4407] device bridge_slave_1 left promiscuous mode
[ 1178.645269][ T4407] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1178.711148][ T4407] device bridge_slave_0 left promiscuous mode
[ 1178.869602][ T4407] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1179.756390][ T4407] device veth1_macvtap left promiscuous mode
[ 1179.956265][ T4407] device veth0_macvtap left promiscuous mode
[ 1179.966458][ T4407] device veth1_vlan left promiscuous mode
[ 1179.980548][ T4407] device veth0_vlan left promiscuous mode
[ 1181.600883][T15596] siw: device registration error -23
[ 1181.610513][T15581] loop1: detected capacity change from 0 to 32768
[ 1181.764844][T15581] XFS: attr2 mount option is deprecated.
[ 1181.771251][T15581] XFS: ikeep mount option is deprecated.
[ 1183.028587][T15588] loop0: detected capacity change from 0 to 40427
[ 1183.165276][T15609] loop1: detected capacity change from 0 to 40427
[ 1183.188441][T15609] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1183.194219][T15588] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1183.196364][T15609] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1183.214266][T15609] F2FS-fs (loop1): invalid crc value
[ 1183.240928][T15588] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1183.254482][T15609] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1183.283019][T15588] F2FS-fs (loop0): invalid crc value
[ 1183.316715][T15609] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1183.323958][T15609] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1184.432505][T15588] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1186.685693][ T4407] team0 (unregistering): Port device team_slave_1 removed
[ 1187.326146][ T4407] team0 (unregistering): Port device team_slave_0 removed
[ 1187.575989][ T4407] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1187.736615][ T4407] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1189.390942][ T4407] bond0 (unregistering): Released all slaves
[ 1189.496129][T15458] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1189.503233][T15458] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1189.529609][T15458] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1189.545604][T15634] netlink: 'syz.3.3368': attribute type 4 has an invalid length.
[ 1189.664298][T15643] netlink: 'syz.2.3371': attribute type 4 has an invalid length.
[ 1189.733977][T15646] netlink: 'syz.1.3372': attribute type 4 has an invalid length.
[ 1189.835990][ T4537] lo speed is unknown, defaulting to 1000
[ 1191.422695][T15458] device hsr_slave_0 entered promiscuous mode
[ 1191.465341][T15458] device hsr_slave_1 entered promiscuous mode
[ 1191.510103][T15458] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1191.675853][T15458] Cannot create hsr debugfs directory
[ 1196.206600][T15672] netlink: 'syz.0.3374': attribute type 4 has an invalid length.
[ 1197.219874][T15697] tmpfs: Bad value for 'mpol'
[ 1198.643517][T15705] loop2: detected capacity change from 0 to 40427
[ 1198.674955][T15705] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1198.682829][T15705] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1198.693207][T15705] F2FS-fs (loop2): invalid crc value
[ 1199.407087][T15705] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1199.461320][T15705] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1199.468509][T15705] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1203.098885][T15458] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1203.301566][T15458] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1203.386185][T15738] loop1: detected capacity change from 0 to 40427
[ 1203.435767][T15738] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1203.443726][T15738] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1203.456622][T15738] F2FS-fs (loop1): invalid crc value
[ 1203.477666][T15738] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1203.533137][T15458] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1203.540118][T15738] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1203.547290][T15738] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1203.601774][T15458] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1205.176257][T15458] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1205.699956][ T4407] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1205.778913][ T4407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1205.875146][T15458] 8021q: adding VLAN 0 to HW filter on device team0
[ 1205.950030][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1206.135188][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1206.392479][ T4950] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1206.399820][ T4950] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1207.331511][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1207.458531][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1207.642682][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1208.377296][ T4950] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1208.384538][ T4950] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1208.393187][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1208.414129][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1208.471105][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1208.483184][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1208.493069][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1208.522389][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1208.558877][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1208.596905][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1208.615224][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1208.642504][T15774] tmpfs: Bad value for 'mpol'
[ 1208.643904][T15458] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1208.687991][T15458] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1208.790456][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1208.882756][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1210.770794][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1210.778933][ T4950] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1210.834535][T15458] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1213.249244][T15822] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3408'.
[ 1216.861669][T15851] loop2: detected capacity change from 0 to 40427
[ 1216.902571][T15851] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1216.910489][T15851] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1216.920709][T15851] F2FS-fs (loop2): invalid crc value
[ 1216.961732][T15851] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1216.997005][T15851] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1217.004176][T15851] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1218.458812][ T4260] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1218.477102][ T4260] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1218.493213][ T4260] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1218.506535][ T4260] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1218.514868][ T4260] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1218.522541][ T4260] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1220.208007][T15868] lo speed is unknown, defaulting to 1000
[ 1220.600484][ T4260] Bluetooth: hci2: command 0x0409 tx timeout
[ 1222.047938][T15877] netlink: 'syz.1.3419': attribute type 4 has an invalid length.
[ 1222.660548][   T48] Bluetooth: hci2: command 0x041b tx timeout
[ 1223.053724][T15868] chnl_net:caif_netlink_parms(): no params data found
[ 1224.740411][   T48] Bluetooth: hci2: command 0x040f tx timeout
[ 1224.839326][T15868] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1224.863761][T15868] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1224.873027][T15868] device bridge_slave_0 entered promiscuous mode
[ 1225.324451][T15927] loop1: detected capacity change from 0 to 512
[ 1225.331371][T15868] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1225.338533][T15868] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1225.347818][T15927] EXT4-fs: Ignoring removed nobh option
[ 1225.509030][T15868] device bridge_slave_1 entered promiscuous mode
[ 1225.595265][T15927] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[ 1225.605385][T15927] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.3431: invalid indirect mapped block 2683928664 (level 1)
[ 1225.621542][T15927] EXT4-fs (loop1): 1 truncate cleaned up
[ 1225.627399][T15927] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1226.436059][T13014] EXT4-fs (loop1): unmounting filesystem.
[ 1226.473167][T15868] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1226.627860][T15868] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1226.820379][   T48] Bluetooth: hci2: command 0x0419 tx timeout
[ 1227.061106][T15868] team0: Port device team_slave_0 added
[ 1227.110198][T15945] loop0: detected capacity change from 0 to 2048
[ 1227.140053][T15868] team0: Port device team_slave_1 added
[ 1227.173119][T15945] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1227.336913][   T11] device hsr_slave_0 left promiscuous mode
[ 1227.391039][   T11] device hsr_slave_1 left promiscuous mode
[ 1227.449626][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1227.460355][T14552] usb 1-1: new full-speed USB device number 8 using dummy_hcd
[ 1227.650547][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1228.162352][   T11] device bridge_slave_1 left promiscuous mode
[ 1228.168779][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1228.178290][   T11] device bridge_slave_0 left promiscuous mode
[ 1228.185513][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1230.114287][T14552] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1230.180760][T14552] usb 1-1: unable to read config index 0 descriptor/start: -71
[ 1230.188542][T14552] usb 1-1: can't read configurations, error -71
[ 1231.261536][T15980] siw: device registration error -23
[ 1233.770464][   T11] team0 (unregistering): Port device team_slave_1 removed
[ 1235.132710][   T11] team0 (unregistering): Port device team_slave_0 removed
[ 1235.146237][T16004] binder: 16003:16004 ioctl c0306201 200000000240 returned -11
[ 1235.388076][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1235.518910][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1235.793355][T16011] loop1: detected capacity change from 0 to 40427
[ 1235.811151][T16011] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1235.818948][T16011] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1235.829068][T16011] F2FS-fs (loop1): invalid crc value
[ 1235.884337][T16011] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1235.921284][T16011] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1235.928364][T16011] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1238.919411][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1238.945611][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1238.998968][   T11] bond0 (unregistering): Released all slaves
[ 1239.155120][T15868] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1239.168648][T15868] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1239.277372][T15868] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1239.316336][T15983] netlink: 'syz.0.3444': attribute type 4 has an invalid length.
[ 1239.367098][T15868] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1239.390576][T15868] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1239.717302][T15868] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1242.416975][T15868] device hsr_slave_0 entered promiscuous mode
[ 1242.745083][T15868] device hsr_slave_1 entered promiscuous mode
[ 1242.752030][T15868] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1242.759634][T15868] Cannot create hsr debugfs directory
[ 1244.390950][T14537] libceph: connect (1)[c::]:6789 error -101
[ 1244.650506][T14537] libceph: mon0 (1)[c::]:6789 connect error
[ 1245.615542][ T4710] libceph: connect (1)[c::]:6789 error -101
[ 1245.639112][ T4710] libceph: mon0 (1)[c::]:6789 connect error
[ 1245.718925][T16080] ceph: No mds server is up or the cluster is laggy
[ 1247.799864][T15868] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1247.814194][T15868] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1247.961372][T15868] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1248.013167][T15868] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1248.262895][T16136] netlink: 'syz.0.3488': attribute type 4 has an invalid length.
[ 1248.318841][T15868] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1248.392939][ T5945] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1248.406623][ T5945] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1249.039909][T15868] 8021q: adding VLAN 0 to HW filter on device team0
[ 1249.136123][ T4956] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1249.150801][ T4956] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1249.182200][ T4956] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1249.189442][ T4956] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1249.225674][ T4956] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1249.239096][ T4956] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1249.255509][ T4956] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1249.266928][ T4956] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1249.274170][ T4956] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1249.298059][ T4956] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1249.401863][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1249.436128][T14552] libceph: connect (1)[c::]:6789 error -101
[ 1249.444991][T14552] libceph: mon0 (1)[c::]:6789 connect error
[ 1249.498283][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1249.574815][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1249.730764][ T4303] libceph: connect (1)[c::]:6789 error -101
[ 1249.739082][ T4303] libceph: mon0 (1)[c::]:6789 connect error
[ 1249.746340][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1249.811996][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1249.927260][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1249.973693][T16148] ceph: No mds server is up or the cluster is laggy
[ 1250.117459][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1250.310833][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1250.612961][T15868] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1250.645914][T15868] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1250.667997][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1250.697700][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1252.897715][ T4405] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1252.905447][ T4405] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1252.960507][T15868] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1255.889493][ T4956] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1255.955118][ T4956] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1256.071129][T15868] device veth0_vlan entered promiscuous mode
[ 1256.120284][T15868] device veth1_vlan entered promiscuous mode
[ 1256.148945][T14583] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1256.189537][T14583] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1256.247012][T14583] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1256.310968][T14583] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1256.356718][T14583] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1256.359362][T16207] loop0: detected capacity change from 0 to 40427
[ 1256.377545][T16207] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1256.385463][T16207] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1256.408103][T16207] F2FS-fs (loop0): invalid crc value
[ 1256.441459][T14583] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1256.460883][T14583] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1256.469651][T14583] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1256.504326][T15868] device veth0_macvtap entered promiscuous mode
[ 1256.512826][T16207] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1256.569412][T15868] device veth1_macvtap entered promiscuous mode
[ 1256.591187][T16207] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 1256.598307][T16207] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1256.721311][T15868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1256.830463][T15868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1257.341696][T15868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1257.643773][T15868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1257.675109][T15868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1257.724163][T15868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1257.777733][T15868] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1257.837148][ T4407] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1257.963453][ T4407] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1258.032834][ T4407] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1258.089230][ T4407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1258.372015][T15868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1258.423655][T15868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1258.519432][T15868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1258.553356][T15868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1258.578383][T15868] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1258.617742][T15868] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1258.665469][T15868] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1258.683537][ T4956] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1258.723525][ T4956] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1258.773298][T15868] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1258.818729][T15868] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1258.861019][T15868] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1258.888640][T15868] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1260.253525][T13810] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1260.280284][T13810] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1260.353280][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1260.386727][ T4407] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1260.405930][ T4407] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1260.463337][ T5945] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1260.619045][T16239] netlink: 'syz.3.3508': attribute type 4 has an invalid length.
[ 1263.623214][ T4523] libceph: connect (1)[c::]:6789 error -101
[ 1263.744251][ T4523] libceph: mon0 (1)[c::]:6789 connect error
[ 1263.984521][T16251] ceph: No mds server is up or the cluster is laggy
[ 1264.261256][ T4523] libceph: connect (1)[c::]:6789 error -101
[ 1264.267374][ T4523] libceph: mon0 (1)[c::]:6789 connect error
[ 1265.507775][ T4523] libceph: connect (1)[c::]:6789 error -101
[ 1265.590557][ T4523] libceph: mon0 (1)[c::]:6789 connect error
[ 1266.433647][   T48] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1266.445070][   T48] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1266.453964][   T48] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1266.470892][   T48] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1266.912402][   T48] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1266.923701][   T48] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1267.803812][T16287] netlink: 'syz.0.3518': attribute type 4 has an invalid length.
[ 1267.839617][T16284] lo speed is unknown, defaulting to 1000
[ 1268.666891][T16284] chnl_net:caif_netlink_parms(): no params data found
[ 1268.844052][T13810] tipc: Left network mode
[ 1269.148879][T16284] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1269.184204][T16284] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1269.208734][T16284] device bridge_slave_0 entered promiscuous mode
[ 1269.220855][   T48] Bluetooth: hci1: command 0x0409 tx timeout
[ 1269.313595][T16284] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1269.349944][T16284] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1269.405943][T16284] device bridge_slave_1 entered promiscuous mode
[ 1271.185263][T16327] loop1: detected capacity change from 0 to 512
[ 1271.196278][T16327] EXT4-fs: Ignoring removed nobh option
[ 1271.286268][T16327] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[ 1271.298387][T16327] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.3529: invalid indirect mapped block 2683928664 (level 1)
[ 1271.312842][   T48] Bluetooth: hci1: command 0x041b tx timeout
[ 1271.466779][T16284] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1271.727837][T16284] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1272.388961][T16284] team0: Port device team_slave_0 added
[ 1272.524760][T16284] team0: Port device team_slave_1 added
[ 1272.552778][T13810] IPVS: stopping master sync thread 5008 ...
[ 1272.575129][T16327] EXT4-fs (loop1): 1 truncate cleaned up
[ 1272.857153][T16327] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1273.334391][T13014] EXT4-fs (loop1): unmounting filesystem.
[ 1273.380482][   T48] Bluetooth: hci1: command 0x040f tx timeout
[ 1273.490070][T16284] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1273.690364][T16284] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1274.603996][T16284] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1274.878107][T16284] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1274.895412][T16284] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1275.130044][T16284] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1275.206391][T13810] device hsr_slave_0 left promiscuous mode
[ 1275.263349][T13810] device hsr_slave_1 left promiscuous mode
[ 1275.314956][T13810] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1275.353111][T16361] loop0: detected capacity change from 0 to 4096
[ 1275.359849][T13810] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1275.376314][T13810] device bridge_slave_1 left promiscuous mode
[ 1275.460331][   T48] Bluetooth: hci1: command 0x0419 tx timeout
[ 1275.600535][T13810] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1275.631100][T13810] device bridge_slave_0 left promiscuous mode
[ 1275.637388][T13810] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1275.764083][T16365] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1275.854593][   T26] audit: type=1800 audit(1750654984.135:7): pid=16361 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3537" name="file1" dev="loop0" ino=15 res=0 errno=0
[ 1276.429115][T16373] tmpfs: Bad value for 'mpol'
[ 1276.515858][T16361] syz.0.3537 (16361) used greatest stack depth: 19360 bytes left
[ 1276.605623][T13810] team0 (unregistering): Port device geneve0 removed
[ 1276.843010][T16376] loop0: detected capacity change from 0 to 2048
[ 1276.878732][T16376] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1277.170398][T14552] usb 1-1: new full-speed USB device number 10 using dummy_hcd
[ 1281.083522][T16384] loop1: detected capacity change from 0 to 512
[ 1281.113254][T16384] EXT4-fs: Ignoring removed nobh option
[ 1281.176758][T16384] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[ 1281.186318][T16384] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.3542: invalid indirect mapped block 2683928664 (level 1)
[ 1281.201908][T16384] EXT4-fs (loop1): 1 truncate cleaned up
[ 1281.207958][T16384] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1281.336251][T13014] EXT4-fs (loop1): unmounting filesystem.
[ 1282.555828][T14552] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1282.566012][T14552] usb 1-1: unable to read config index 0 descriptor/start: -71
[ 1282.578726][T14552] usb 1-1: can't read configurations, error -71
[ 1285.363758][  T129] libceph: connect (1)[c::]:6789 error -101
[ 1285.369988][  T129] libceph: mon0 (1)[c::]:6789 connect error
[ 1285.447554][T16421] ceph: No mds server is up or the cluster is laggy
[ 1285.701490][  T129] libceph: connect (1)[c::]:6789 error -101
[ 1285.708304][  T129] libceph: mon0 (1)[c::]:6789 connect error
[ 1287.236956][T16436] loop4: detected capacity change from 0 to 40427
[ 1287.257193][T16436] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1287.266008][T16436] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1287.280965][T16436] F2FS-fs (loop4): invalid crc value
[ 1287.496659][T13810] team0 (unregistering): Port device team_slave_1 removed
[ 1287.622288][T13810] team0 (unregistering): Port device team_slave_0 removed
[ 1287.726472][T13810] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1287.849513][T16436] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1288.969554][T16436] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1288.976743][T16436] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1289.977046][T13810] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1290.457776][T13810] bond0 (unregistering): (slave batadv0): Releasing backup interface
[ 1291.829195][T13810] bond0 (unregistering): Released all slaves
[ 1292.625596][T16284] device hsr_slave_0 entered promiscuous mode
[ 1292.644890][T16284] device hsr_slave_1 entered promiscuous mode
[ 1294.129940][ T4710] libceph: connect (1)[c::]:6789 error -101
[ 1294.137392][ T4710] libceph: mon0 (1)[c::]:6789 connect error
[ 1294.279144][T16477] ceph: No mds server is up or the cluster is laggy
[ 1294.347875][T16457] netlink: 'syz.4.3559': attribute type 4 has an invalid length.
[ 1296.930674][T16284] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1296.967227][T16284] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1297.012417][T16284] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1297.107375][T16284] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1297.448052][T16284] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1297.515460][ T4956] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1297.539174][ T4956] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1297.604687][T16284] 8021q: adding VLAN 0 to HW filter on device team0
[ 1297.851019][T14326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1297.876072][T14326] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1298.097900][T14326] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1298.105139][T14326] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1298.158801][T14326] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1298.193236][T14326] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1298.256096][T14326] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1298.320578][T14326] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1298.327743][T14326] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1298.415834][T14326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1298.491027][T14326] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1298.568544][T14326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1298.625451][T14326] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1298.661095][T14326] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1298.681244][T14326] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1298.745694][T14326] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1298.798314][T14326] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1298.866010][T14326] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1298.926379][T14326] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1298.956936][T14326] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1299.112012][T16284] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1300.342461][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.348853][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1301.148831][T16542] Set syz1 is full, maxelem 1038 reached
[ 1301.319469][T16544] loop1: detected capacity change from 0 to 4096
[ 1301.450671][ T4956] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1301.458212][ T4956] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1301.480298][T16555] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1301.506970][   T26] audit: type=1800 audit(1750655009.785:8): pid=16544 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.3574" name="file1" dev="loop1" ino=15 res=0 errno=0
[ 1301.533426][T16284] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1301.807443][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1301.832558][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1303.707945][T16284] device veth0_vlan entered promiscuous mode
[ 1303.723585][T16284] device veth1_vlan entered promiscuous mode
[ 1303.756745][T16284] device veth0_macvtap entered promiscuous mode
[ 1303.767993][T16284] device veth1_macvtap entered promiscuous mode
[ 1304.009056][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1304.039491][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1304.061253][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1304.070132][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1304.105035][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1304.114758][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1304.130016][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1304.159495][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1304.179793][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1304.211418][T13810] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1304.319553][T16284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1304.362850][T16284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1304.392843][T16284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1304.613350][T16575] loop1: detected capacity change from 0 to 40427
[ 1304.626209][T16575] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1304.634087][T16575] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1304.644743][T16575] F2FS-fs (loop1): invalid crc value
[ 1304.654472][T16575] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1304.704757][T16284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1304.717695][T16575] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1304.724829][T16575] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1304.910037][ T4718] libceph: connect (1)[c::]:6789 error -101
[ 1304.918597][ T4718] libceph: mon0 (1)[c::]:6789 connect error
[ 1305.134803][T16585] 9pnet_fd: Insufficient options for proto=fd
[ 1305.758546][T16284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1305.845798][T16284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1305.935393][T16284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1306.001465][ T4718] libceph: connect (1)[c::]:6789 error -101
[ 1306.026585][ T4718] libceph: mon0 (1)[c::]:6789 connect error
[ 1306.032605][T16284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1306.066588][T16576] ceph: No mds server is up or the cluster is laggy
[ 1306.073885][T16284] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1306.085457][T16284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1306.102888][T16284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1306.113613][T16284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1306.124448][T16284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1306.135810][T16284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1306.146759][T16284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1306.157040][T16284] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1306.167908][T16284] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1306.183007][T16284] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1306.202726][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1306.242166][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1306.284414][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1306.356251][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1306.441968][T16284] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1306.483927][T16284] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1306.520723][T16284] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1306.529654][T16284] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1306.724115][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1306.744610][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1306.797986][ T4956] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1306.818577][ T4956] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1306.842752][ T4956] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1306.897197][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1309.612835][ T4260] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1309.624904][ T4260] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1309.651151][ T4260] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1309.716317][ T4260] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1309.740560][ T4260] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1309.749947][ T4260] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1309.779694][T16622] lo speed is unknown, defaulting to 1000
[ 1310.245188][T16632] loop1: detected capacity change from 0 to 4096
[ 1310.320885][T16622] chnl_net:caif_netlink_parms(): no params data found
[ 1310.382884][T16636] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1310.630515][T14326] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1310.874106][T14326] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1310.923359][T16622] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1310.940357][T16622] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1310.958910][T16622] device bridge_slave_0 entered promiscuous mode
[ 1311.078210][T14326] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1311.140421][T16622] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1311.147589][T16622] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1311.189199][T16622] device bridge_slave_1 entered promiscuous mode
[ 1311.284054][T14326] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1311.448725][T16622] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1311.490093][T16622] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1311.683557][T16622] team0: Port device team_slave_0 added
[ 1311.758727][T16622] team0: Port device team_slave_1 added
[ 1311.794388][ T4260] Bluetooth: hci5: command 0x0409 tx timeout
[ 1312.034190][T16622] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1312.049597][T16622] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1312.097855][T16622] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1312.133440][T16622] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1312.172286][T16622] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1312.253193][ T4537] libceph: connect (1)[c::]:6789 error -101
[ 1312.264717][ T4537] libceph: mon0 (1)[c::]:6789 connect error
[ 1312.333367][T16622] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1312.355103][T16654] ceph: No mds server is up or the cluster is laggy
[ 1312.545825][T16587] Set syz1 is full, maxelem 65536 reached
[ 1312.898415][T16662] loop2: detected capacity change from 0 to 40427
[ 1312.906005][T16662] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1312.913851][T16662] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1312.923662][T16662] F2FS-fs (loop2): invalid crc value
[ 1312.966092][T16662] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1313.023674][T16662] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1313.031825][T16662] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1314.028870][ T4260] Bluetooth: hci5: command 0x041b tx timeout
[ 1314.071898][T16622] device hsr_slave_0 entered promiscuous mode
[ 1314.161989][T16622] device hsr_slave_1 entered promiscuous mode
[ 1314.176847][T16622] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1314.188185][T16622] Cannot create hsr debugfs directory
[ 1314.197577][T14326] tipc: Left network mode
[ 1314.739622][T16686] loop4: detected capacity change from 0 to 4096
[ 1314.867797][T16696] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1315.476507][T14326] bridge0: port 3(gretap0) entered disabled state
[ 1315.561155][ T4303] libceph: connect (1)[c::]:6789 error -101
[ 1315.567200][ T4303] libceph: mon0 (1)[c::]:6789 connect error
[ 1315.800081][T14326] device gretap0 left promiscuous mode
[ 1315.806016][T14326] bridge0: port 3(gretap0) entered disabled state
[ 1315.850921][ T4303] libceph: connect (1)[c::]:6789 error -101
[ 1315.857259][ T4303] libceph: mon0 (1)[c::]:6789 connect error
[ 1316.100606][ T4260] Bluetooth: hci5: command 0x040f tx timeout
[ 1316.408571][T16701] ceph: No mds server is up or the cluster is laggy
[ 1316.410922][  T127] libceph: connect (1)[c::]:6789 error -101
[ 1316.480528][  T127] libceph: mon0 (1)[c::]:6789 connect error
[ 1316.480746][ T4718] libceph: connect (1)[c::]:6789 error -101
[ 1316.494741][T16713] ceph: No mds server is up or the cluster is laggy
[ 1316.515408][ T4718] libceph: mon0 (1)[c::]:6789 connect error
[ 1316.625324][T16719] netlink: 'syz.0.3602': attribute type 4 has an invalid length.
[ 1316.697752][T16622] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1316.983104][ T4304] libceph: connect (1)[c::]:6789 error -101
[ 1316.989129][ T4304] libceph: mon0 (1)[c::]:6789 connect error
[ 1318.180446][ T4260] Bluetooth: hci5: command 0x0419 tx timeout
[ 1318.217636][ T4303] libceph: connect (1)[c::]:6789 error -101
[ 1318.246416][ T4303] libceph: mon0 (1)[c::]:6789 connect error
[ 1318.325068][T16726] ceph: No mds server is up or the cluster is laggy
[ 1318.443011][T16622] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1318.542727][T16622] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1318.734238][T16622] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1318.946904][T16735] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[ 1319.113824][T14326] device hsr_slave_0 left promiscuous mode
[ 1319.120443][T14326] device hsr_slave_1 left promiscuous mode
[ 1319.211461][T14326] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1319.219820][T14326] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1319.291861][T14326] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1319.316498][T14326] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1319.503638][T14326] device bridge_slave_1 left promiscuous mode
[ 1319.509963][T14326] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1319.652670][T16739] loop2: detected capacity change from 0 to 4096
[ 1319.703035][T14326] device bridge_slave_0 left promiscuous mode
[ 1319.847502][T14326] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1319.884996][T16755] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1320.184328][T14326] device veth1_macvtap left promiscuous mode
[ 1320.275252][T14326] device veth0_macvtap left promiscuous mode
[ 1321.945542][T14537] libceph: connect (1)[c::]:6789 error -101
[ 1321.967335][T14537] libceph: mon0 (1)[c::]:6789 connect error
[ 1322.225321][T16773] ceph: No mds server is up or the cluster is laggy
[ 1322.232815][ T4718] libceph: connect (1)[c::]:6789 error -101
[ 1322.238915][ T4718] libceph: mon0 (1)[c::]:6789 connect error
[ 1322.478360][ T4718] libceph: connect (1)[c::]:6789 error -101
[ 1322.508751][ T4718] libceph: mon0 (1)[c::]:6789 connect error
[ 1322.544350][T14326] team0 (unregistering): Port device geneve0 removed
[ 1322.567815][T16776] ceph: No mds server is up or the cluster is laggy
[ 1323.874609][ T4303] libceph: connect (1)[c::]:6789 error -101
[ 1323.880975][ T4303] libceph: mon0 (1)[c::]:6789 connect error
[ 1323.906328][ T4303] libceph: connect (1)[c::]:6789 error -101
[ 1323.920652][ T4303] libceph: mon0 (1)[c::]:6789 connect error
[ 1324.048691][T16795] ceph: No mds server is up or the cluster is laggy
[ 1324.069035][T14326] team0 (unregistering): Port device team_slave_1 removed
[ 1324.267991][T14326] team0 (unregistering): Port device team_slave_0 removed
[ 1324.570808][T14326] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1324.655947][T14326] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1325.157530][T14326] bond0 (unregistering): (slave batadv0): Releasing backup interface
[ 1325.355099][  T127] libceph: connect (1)[c::]:6789 error -101
[ 1325.364449][  T127] libceph: mon0 (1)[c::]:6789 connect error
[ 1325.391251][T16802] ceph: No mds server is up or the cluster is laggy
[ 1325.695017][T14326] bond0 (unregistering): Released all slaves
[ 1326.521914][T16622] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1326.609004][T14583] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1326.627720][T14583] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1327.895890][T16622] 8021q: adding VLAN 0 to HW filter on device team0
[ 1327.961380][ T6887] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1328.137531][ T6887] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1329.142034][ T6887] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1329.149254][ T6887] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1329.400690][ T6887] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1329.467519][ T6887] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1329.484398][ T6887] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1329.491596][ T6887] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1329.505040][ T6887] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1329.650393][T14583] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1329.721714][T16817] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1329.752497][T16817] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1329.839109][T16817] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1329.881581][T16817] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1329.976461][T16817] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1330.052058][T16817] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1330.146609][T16817] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1330.264007][T16622] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1330.523699][T16622] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1330.682839][T16817] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1330.751031][T16817] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1331.140794][T16817] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1331.259811][T16842] loop1: detected capacity change from 0 to 512
[ 1331.363033][T16842] EXT4-fs: Ignoring removed nobh option
[ 1331.390858][T16842] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[ 1331.466676][T16842] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.3626: invalid indirect mapped block 2683928664 (level 1)
[ 1331.531583][T16842] EXT4-fs (loop1): 1 truncate cleaned up
[ 1331.537297][T16842] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1331.808984][T13014] EXT4-fs (loop1): unmounting filesystem.
[ 1332.144602][T14537] libceph: connect (1)[c::]:6789 error -101
[ 1332.150793][T14537] libceph: mon0 (1)[c::]:6789 connect error
[ 1332.166406][T16854] ceph: No mds server is up or the cluster is laggy
[ 1332.173778][T14537] libceph: connect (1)[c::]:6789 error -101
[ 1332.195223][T14537] libceph: mon0 (1)[c::]:6789 connect error
[ 1332.296288][T16846] loop0: detected capacity change from 0 to 40427
[ 1332.332320][T16846] F2FS-fs (loop0): Wrong SSA boundary, start(3584) end(4096) blocks(3072)
[ 1332.361591][T16846] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1332.404579][T14583] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1332.416761][T16846] F2FS-fs (loop0): invalid crc value
[ 1332.427263][T14583] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1332.472177][ T4710] libceph: connect (1)[c::]:6789 error -101
[ 1332.480882][ T4710] libceph: mon0 (1)[c::]:6789 connect error
[ 1332.497275][T16622] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1332.537826][T16846] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10240907051000858085)
[ 1332.733594][T14583] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1333.633523][T16846] F2FS-fs (loop0): sanity_check_inode: inode (ino=3, mode=16877) should not have inline_data, run fsck to fix
[ 1333.683391][ T4304] libceph: connect (1)[c::]:6789 error -101
[ 1333.689477][ T4304] libceph: mon0 (1)[c::]:6789 connect error
[ 1333.761320][T14583] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1333.798724][T16846] F2FS-fs (loop0): Failed to read root inode
[ 1333.855690][T14583] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1333.929387][T14583] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1333.946331][T14583] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1333.955344][T14583] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1333.978776][T16622] device veth0_vlan entered promiscuous mode
[ 1334.031901][T16622] device veth1_vlan entered promiscuous mode
[ 1334.172954][T16874] loop1: detected capacity change from 0 to 512
[ 1334.186035][T16874] EXT4-fs: Ignoring removed nobh option
[ 1334.264530][T16874] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[ 1334.279982][T16874] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.3632: invalid indirect mapped block 2683928664 (level 1)
[ 1334.303617][T16874] EXT4-fs (loop1): 1 truncate cleaned up
[ 1334.309995][T16874] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1334.888255][ T6887] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1335.204475][ T6887] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1335.264499][T13014] EXT4-fs (loop1): unmounting filesystem.
[ 1335.312025][T16622] device veth0_macvtap entered promiscuous mode
[ 1335.369214][T16622] device veth1_macvtap entered promiscuous mode
[ 1335.428427][T16622] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1335.516948][T16622] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1335.571384][T16622] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1335.843811][T16622] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1335.873612][T16622] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1335.914756][T16622] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1335.982523][T16622] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1336.034185][T16622] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1336.199700][T16622] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1336.273074][ T5945] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1336.380798][ T5945] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1336.481763][ T5945] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1336.556286][T16622] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1337.551839][T16622] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1337.562154][T16622] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1337.576179][T16622] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1337.586436][T16622] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1337.597984][T16622] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1337.612277][T16622] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1337.642207][T16622] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1337.742102][T16622] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1337.784067][ T6887] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1337.807977][ T6887] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1337.846454][T16622] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1338.040452][T16622] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1338.049196][T16622] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1338.175987][T16622] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1338.618385][ T4941] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1338.640503][ T4941] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1338.666979][ T6887] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1338.697932][T16817] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1338.714306][T16817] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1338.728360][ T6887] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1341.483778][T16916] loop4: detected capacity change from 0 to 512
[ 1341.494451][T16916] EXT4-fs: Ignoring removed nobh option
[ 1343.380617][ T4260] Bluetooth: hci2: command 0x0406 tx timeout
[ 1343.688614][T16916] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[ 1343.722345][T16916] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.3640: invalid indirect mapped block 2683928664 (level 1)
[ 1343.792795][T16916] EXT4-fs (loop4): 1 truncate cleaned up
[ 1343.798548][T16916] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1343.981699][T16915] Set syz1 is full, maxelem 1038 reached
[ 1344.116182][T15868] EXT4-fs (loop4): unmounting filesystem.
[ 1346.858216][T16939] loop2: detected capacity change from 0 to 512
[ 1346.869086][T16939] EXT4-fs: Ignoring removed nobh option
[ 1348.421919][T16939] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[ 1348.432507][T16939] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.3646: invalid indirect mapped block 2683928664 (level 1)
[ 1348.449115][T16939] EXT4-fs (loop2): 1 truncate cleaned up
[ 1348.455019][T16939] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 1350.151195][T16284] EXT4-fs (loop2): unmounting filesystem.
[ 1350.887672][T16968] loop1: detected capacity change from 0 to 40427
[ 1351.071391][T16968] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1351.079273][T16968] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1351.100707][T16968] F2FS-fs (loop1): invalid crc value
[ 1351.309069][T16968] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1351.411077][T16968] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1351.418208][T16968] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1352.460093][T16979] loop3: detected capacity change from 0 to 512
[ 1352.469697][T16979] EXT4-fs: Ignoring removed nobh option
[ 1354.550445][T16979] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[ 1354.565884][T16979] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.3659: invalid indirect mapped block 2683928664 (level 1)
[ 1354.584809][T16979] EXT4-fs (loop3): 1 truncate cleaned up
[ 1354.590676][T16979] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1355.222920][T16622] EXT4-fs (loop3): unmounting filesystem.
[ 1360.073359][T17028] loop0: detected capacity change from 0 to 40427
[ 1360.095664][T17028] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1360.104042][T17028] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1360.115138][T17028] F2FS-fs (loop0): invalid crc value
[ 1360.211747][T17028] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1360.249527][T17028] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 1360.256707][T17028] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1361.784193][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1361.791928][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1365.836927][T17061] loop0: detected capacity change from 0 to 32768
[ 1365.856224][T17061] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop0 scanned by syz.0.3675 (17061)
[ 1365.881608][T17061] BTRFS info (device loop0): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[ 1365.891881][T17061] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[ 1365.900642][T17061] BTRFS info (device loop0): using free space tree
[ 1366.403646][T17061] BTRFS info (device loop0): enabling ssd optimizations
[ 1368.531213][T13355] BTRFS info (device loop0): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[ 1370.775005][T17109] loop3: detected capacity change from 0 to 40427
[ 1370.786464][T17109] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1370.794353][T17109] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1370.807496][T17109] F2FS-fs (loop3): invalid crc value
[ 1370.873740][T17109] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1370.929904][T17109] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1370.937111][T17109] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1378.146225][T17180] loop2: detected capacity change from 0 to 40427
[ 1378.160904][T17180] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1378.168730][T17180] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1378.199606][T17180] F2FS-fs (loop2): invalid crc value
[ 1378.233827][T17180] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1378.281612][T17180] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1378.288755][T17180] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1381.462000][T17204] tmpfs: Bad value for 'mpol'
[ 1383.192301][ T4718] libceph: connect (1)[c::]:6789 error -101
[ 1383.198470][ T4718] libceph: mon0 (1)[c::]:6789 connect error
[ 1383.412966][T17219] ceph: No mds server is up or the cluster is laggy
[ 1383.480702][ T4718] libceph: connect (1)[c::]:6789 error -101
[ 1383.490370][ T4718] libceph: mon0 (1)[c::]:6789 connect error
[ 1384.660629][ T4718] libceph: connect (1)[c::]:6789 error -101
[ 1384.666709][ T4718] libceph: mon0 (1)[c::]:6789 connect error
[ 1385.042218][T17244] loop3: detected capacity change from 0 to 40427
[ 1385.068435][T17244] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1385.076349][T17244] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1385.087755][T17244] F2FS-fs (loop3): invalid crc value
[ 1385.775332][T17244] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1385.826514][T17244] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1385.833674][T17244] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1388.563413][T17270] loop1: detected capacity change from 0 to 2048
[ 1388.579151][T17270] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1388.880423][ T4537] usb 2-1: new full-speed USB device number 14 using dummy_hcd
[ 1390.176529][   T48] Bluetooth: hci1: command 0x0406 tx timeout
[ 1391.664988][T17101] libceph: connect (1)[c::]:6789 error -101
[ 1391.682197][T17101] libceph: mon0 (1)[c::]:6789 connect error
[ 1391.711069][T17295] ceph: No mds server is up or the cluster is laggy
[ 1391.890112][ T4537] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1391.946711][ T4537] usb 2-1: unable to read config index 0 descriptor/start: -71
[ 1391.973971][ T4537] usb 2-1: can't read configurations, error -71
[ 1393.851915][T17311] loop2: detected capacity change from 0 to 40427
[ 1393.884270][T17311] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1393.892156][T17311] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1393.922238][T17311] F2FS-fs (loop2): invalid crc value
[ 1393.984733][T17311] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1394.045944][T17311] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1394.053335][T17311] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1396.492078][T17337] loop1: detected capacity change from 0 to 2048
[ 1396.534373][T17337] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1397.190296][ T4523] usb 2-1: new full-speed USB device number 16 using dummy_hcd
[ 1397.401889][T17340] loop0: detected capacity change from 0 to 4096
[ 1398.569413][T17345] ceph: No mds server is up or the cluster is laggy
[ 1398.577709][ T4718] libceph: connect (1)[c::]:6789 error -101
[ 1398.584606][ T4718] libceph: mon0 (1)[c::]:6789 connect error
[ 1398.797692][T13355] ntfs3: loop0: ntfs_evict_inode r=5 failed, -22.
[ 1398.810276][T13355] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[ 1399.949461][ T4523] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1399.971346][ T4523] usb 2-1: unable to read config index 0 descriptor/start: -71
[ 1399.978991][ T4523] usb 2-1: can't read configurations, error -71
[ 1401.314898][T17383] loop4: detected capacity change from 0 to 512
[ 1401.324170][T17383] EXT4-fs: Ignoring removed nobh option
[ 1402.378535][T17383] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[ 1402.390844][T17383] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.3753: invalid indirect mapped block 2683928664 (level 1)
[ 1402.430971][T17383] EXT4-fs (loop4): 1 truncate cleaned up
[ 1402.436801][T17383] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1402.478397][T17383] Set syz1 is full, maxelem 1038 reached
[ 1403.087878][T17387] loop1: detected capacity change from 0 to 40427
[ 1403.110376][T17387] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1403.118185][T17387] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1403.128138][T17387] F2FS-fs (loop1): invalid crc value
[ 1403.151741][T17387] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1403.190803][T17387] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1403.197987][T17387] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1403.220277][T17385] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:477: comm ext4lazyinit: Invalid block bitmap block 3 in block_group 0
[ 1404.256607][T15868] EXT4-fs (loop4): unmounting filesystem.
[ 1406.476915][T17415] loop2: detected capacity change from 0 to 8
[ 1407.829918][ T4718] libceph: connect (1)[c::]:6789 error -101
[ 1407.887607][ T4718] libceph: mon0 (1)[c::]:6789 connect error
[ 1407.915573][T17424] ceph: No mds server is up or the cluster is laggy
[ 1407.922984][ T4718] libceph: connect (1)[c::]:6789 error -101
[ 1407.949099][ T4718] libceph: mon0 (1)[c::]:6789 connect error
[ 1408.578386][T17437] loop2: detected capacity change from 0 to 2048
[ 1408.588945][T17437] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1410.163583][ T4523] usb 3-1: new full-speed USB device number 21 using dummy_hcd
[ 1410.699221][T17449] loop0: detected capacity change from 0 to 40427
[ 1410.709886][T17449] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1410.717773][T17449] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1410.731867][T17449] F2FS-fs (loop0): invalid crc value
[ 1410.801720][T17449] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1412.192850][T17449] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 1412.200861][T17449] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1413.356521][ T4523] usb 3-1: unable to get BOS descriptor or descriptor too short
[ 1413.376533][ T4523] usb 3-1: unable to read config index 0 descriptor/start: -71
[ 1413.410213][ T4523] usb 3-1: can't read configurations, error -71
[ 1413.875500][T17476] loop1: detected capacity change from 0 to 8
[ 1417.281008][T17509] loop0: detected capacity change from 0 to 512
[ 1417.292480][T17509] EXT4-fs: Ignoring removed nobh option
[ 1418.899881][T17509] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[ 1418.911483][T17509] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.3782: invalid indirect mapped block 2683928664 (level 1)
[ 1418.931381][T17509] EXT4-fs (loop0): 1 truncate cleaned up
[ 1418.937202][T17509] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 1419.512205][T13355] EXT4-fs (loop0): unmounting filesystem.
[ 1420.048717][T17527] loop1: detected capacity change from 0 to 40427
[ 1420.080297][T17527] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1420.088108][T17527] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1420.099647][T17527] F2FS-fs (loop1): invalid crc value
[ 1420.419587][T17534] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1420.443958][T17534] loop4: detected capacity change from 0 to 128
[ 1420.459737][T17534] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[ 1421.644494][T17527] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1421.768348][T17527] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1421.775734][T17527] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1423.223935][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1423.231702][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1430.236541][T17597] loop4: detected capacity change from 0 to 256
[ 1430.247908][T17597] FAT-fs (loop4): Unrecognized mount option "rodil=0" or missing value
[ 1431.204732][T17595] loop3: detected capacity change from 0 to 40427
[ 1431.295514][T17595] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1431.303406][T17595] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1431.313294][T17595] F2FS-fs (loop3): invalid crc value
[ 1431.342676][T17595] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1431.405970][T17595] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1431.413144][T17595] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1432.759393][T17620] loop2: detected capacity change from 0 to 32768
[ 1432.820817][T17620] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop2 scanned by syz.2.3816 (17620)
[ 1432.838586][T17620] BTRFS info (device loop2): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[ 1432.848920][T17620] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[ 1432.857666][T17620] BTRFS info (device loop2): using free space tree
[ 1434.181929][T17620] BTRFS info (device loop2): enabling ssd optimizations
[ 1434.432580][T16284] BTRFS info (device loop2): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[ 1435.839579][T17652] loop4: detected capacity change from 0 to 40427
[ 1435.854437][T17652] F2FS-fs (loop4): Wrong SSA boundary, start(3584) end(4096) blocks(3072)
[ 1435.887587][T17652] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1435.944517][T17652] F2FS-fs (loop4): invalid crc value
[ 1436.118700][ T4260] Bluetooth: hci5: command 0x0406 tx timeout
[ 1436.289161][T17678] loop0: detected capacity change from 0 to 512
[ 1436.299084][T17678] EXT4-fs: Ignoring removed nobh option
[ 1436.336483][T17652] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10240907051000858085)
[ 1436.402569][T17678] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[ 1436.413932][T17678] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.3826: invalid indirect mapped block 2683928664 (level 1)
[ 1436.430909][T17678] EXT4-fs (loop0): 1 truncate cleaned up
[ 1436.436696][T17678] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 1436.670706][T17681] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:477: comm ext4lazyinit: Invalid block bitmap block 3 in block_group 0
[ 1437.217167][T13355] EXT4-fs (loop0): unmounting filesystem.
[ 1437.237424][T17652] F2FS-fs (loop4): sanity_check_inode: inode (ino=3, mode=16877) should not have inline_data, run fsck to fix
[ 1437.298464][T17652] F2FS-fs (loop4): Failed to read root inode
[ 1437.389575][T14552] libceph: connect (1)[c::]:6789 error -101
[ 1437.401198][T14552] libceph: mon0 (1)[c::]:6789 connect error
[ 1437.416461][T17689] ceph: No mds server is up or the cluster is laggy
[ 1437.675268][T17695] loop3: detected capacity change from 0 to 40427
[ 1437.690888][T14552] libceph: connect (1)[c::]:6789 error -101
[ 1437.697196][T14552] libceph: mon0 (1)[c::]:6789 connect error
[ 1437.723920][T17695] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1437.731908][T17695] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1437.741736][T17695] F2FS-fs (loop3): invalid crc value
[ 1437.838974][T17695] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1437.896514][T17695] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1437.903654][T17695] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1442.005514][T17727] netlink: 'syz.4.3833': attribute type 4 has an invalid length.
[ 1442.066804][T17729] loop1: detected capacity change from 0 to 2048
[ 1442.086906][T17729] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1442.390256][T14552] usb 2-1: new full-speed USB device number 18 using dummy_hcd
[ 1445.170808][T14552] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1445.190279][T14552] usb 2-1: unable to read config index 0 descriptor/start: -71
[ 1445.206313][T14552] usb 2-1: can't read configurations, error -71
[ 1446.191386][T17741] ceph: No mds server is up or the cluster is laggy
[ 1446.198319][T14537] libceph: connect (1)[c::]:6789 error -101
[ 1446.216010][T14537] libceph: mon0 (1)[c::]:6789 connect error
[ 1447.220663][T14537] libceph: connect (1)[c::]:6789 error -101
[ 1447.278960][T17759] loop4: detected capacity change from 0 to 32768
[ 1447.283570][T14537] libceph: mon0 (1)[c::]:6789 connect error
[ 1447.294319][T17759] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop4 scanned by syz.4.3847 (17759)
[ 1447.309198][T17759] BTRFS info (device loop4): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[ 1447.319838][T17759] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[ 1447.328686][T17759] BTRFS info (device loop4): using free space tree
[ 1447.617727][T17761] loop0: detected capacity change from 0 to 40427
[ 1447.642078][T17761] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1447.649866][T17761] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1447.696155][T17761] F2FS-fs (loop0): invalid crc value
[ 1447.734251][T17761] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1447.787451][T17761] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 1447.794679][T17761] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1448.668198][T17759] BTRFS info (device loop4): enabling ssd optimizations
[ 1448.884196][T17793] ceph: No mds server is up or the cluster is laggy
[ 1448.891365][ T4537] libceph: connect (1)[c::]:6789 error -101
[ 1448.899790][ T4537] libceph: mon0 (1)[c::]:6789 connect error
[ 1449.041681][T15868] BTRFS info (device loop4): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[ 1452.802129][T17810] loop2: detected capacity change from 0 to 32768
[ 1453.106273][T17819] hub 9-0:1.0: USB hub found
[ 1453.112671][T17819] hub 9-0:1.0: 1 port detected
[ 1453.969180][T17824] loop3: detected capacity change from 0 to 512
[ 1453.978611][T17824] EXT4-fs: Ignoring removed nobh option
[ 1455.301580][T17822] loop1: detected capacity change from 0 to 40427
[ 1455.354499][T17822] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1455.362439][T17822] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1455.386656][T17822] F2FS-fs (loop1): invalid crc value
[ 1455.447654][T17824] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[ 1455.458204][T17824] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.3858: invalid indirect mapped block 2683928664 (level 1)
[ 1455.485879][T17824] EXT4-fs (loop3): 1 truncate cleaned up
[ 1455.491865][T17824] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1455.541639][T17822] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1455.601884][T17822] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1455.609063][T17822] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1457.885713][T16622] EXT4-fs (loop3): unmounting filesystem.
[ 1458.620911][T17857] loop0: detected capacity change from 0 to 4096
[ 1458.720293][T17862] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1458.903449][T17808] libceph: connect (1)[c::]:6789 error -101
[ 1458.910054][T17808] libceph: mon0 (1)[c::]:6789 connect error
[ 1459.128564][   T26] audit: type=1800 audit(1750655167.405:9): pid=17857 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3864" name="file1" dev="loop0" ino=15 res=0 errno=0
[ 1459.540643][T17808] libceph: connect (1)[c::]:6789 error -101
[ 1459.592064][T17860] ceph: No mds server is up or the cluster is laggy
[ 1459.617119][T17808] libceph: mon0 (1)[c::]:6789 connect error
[ 1459.996096][T17876] loop3: detected capacity change from 0 to 512
[ 1460.005706][T17876] EXT4-fs: Ignoring removed nobh option
[ 1461.116397][T17661] libceph: connect (1)[c::]:6789 error -101
[ 1461.543086][T17876] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[ 1461.561947][T17876] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.3867: invalid indirect mapped block 2683928664 (level 1)
[ 1461.580420][T17876] EXT4-fs (loop3): 1 truncate cleaned up
[ 1461.586269][T17876] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1461.586695][T17661] libceph: mon0 (1)[c::]:6789 connect error
[ 1462.058222][T16622] EXT4-fs (loop3): unmounting filesystem.
[ 1464.074164][T17895] loop2: detected capacity change from 0 to 40427
[ 1464.126322][T17895] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1464.134282][T17895] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1464.146177][T17895] F2FS-fs (loop2): invalid crc value
[ 1464.218271][T17895] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1464.275466][T17895] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1464.282659][T17895] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1464.461522][   T26] audit: type=1326 audit(1750655172.735:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17899 comm="syz.3.3871" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7febdad8e929 code=0x0
[ 1469.592153][T17925] loop3: detected capacity change from 0 to 32768
[ 1469.712993][T17925] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop3 scanned by syz.3.3882 (17925)
[ 1469.837252][T17925] BTRFS info (device loop3): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[ 1469.850409][T17925] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[ 1469.931464][T17925] BTRFS info (device loop3): using free space tree
[ 1471.287072][T17935] loop4: detected capacity change from 0 to 32768
[ 1471.311206][T17935] XFS: attr2 mount option is deprecated.
[ 1471.316928][T17935] XFS: ikeep mount option is deprecated.
[ 1471.589288][T14384] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop3 scanned by udevd (14384)
[ 1471.620764][T17925] BTRFS error (device loop3): open_ctree failed: -12
[ 1471.724621][T17982] netlink: 'syz.1.3887': attribute type 4 has an invalid length.
[ 1472.085091][T17987] loop2: detected capacity change from 0 to 40427
[ 1472.115863][T17987] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1472.123877][T17987] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1472.132889][T17935] XFS (loop4): Mounting V5 Filesystem
[ 1472.153360][T17987] F2FS-fs (loop2): invalid crc value
[ 1472.160092][T17935] XFS (loop4): log mount failed
[ 1472.249888][T17987] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1472.309331][T17987] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1472.317223][T17987] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1480.615441][T18030] loop1: detected capacity change from 0 to 32768
[ 1480.838688][T18030] BTRFS error (device loop1): open_ctree failed: -4
[ 1481.275403][T18053] netlink: 'syz.0.3906': attribute type 4 has an invalid length.
[ 1482.681145][T14384] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop1 scanned by udevd (14384)
[ 1484.663729][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1484.670170][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1488.250100][T18083] loop2: detected capacity change from 0 to 32768
[ 1488.332882][T18083] BTRFS info (device loop2): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[ 1488.366667][T18083] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[ 1488.409251][T18083] BTRFS info (device loop2): using free space tree
[ 1488.839956][T18083] BTRFS error (device loop2): open_ctree failed: -12
[ 1489.030778][T14384] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop2 scanned by udevd (14384)
[ 1489.236563][T18103] netlink: 'syz.4.3919': attribute type 4 has an invalid length.
[ 1489.884784][T18124] loop3: detected capacity change from 0 to 512
[ 1489.893963][T18124] EXT4-fs: Ignoring removed nobh option
[ 1491.449391][T18124] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[ 1491.468779][T18124] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.3921: invalid indirect mapped block 2683928664 (level 1)
[ 1491.485233][T18124] EXT4-fs (loop3): 1 truncate cleaned up
[ 1491.491123][T18124] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1491.660380][T18131] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:477: comm ext4lazyinit: Invalid block bitmap block 3 in block_group 0
[ 1492.201977][T16622] EXT4-fs (loop3): unmounting filesystem.
[ 1492.994482][T18142] loop0: detected capacity change from 0 to 40427
[ 1493.036179][T18142] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1493.044140][T18142] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1493.062468][T18142] F2FS-fs (loop0): invalid crc value
[ 1493.262032][T18142] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1493.328186][T18142] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 1493.335388][T18142] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1498.304547][T18120] libceph: connect (1)[c::]:6789 error -101
[ 1498.313446][T18120] libceph: mon0 (1)[c::]:6789 connect error
[ 1498.330281][T18173] ceph: No mds server is up or the cluster is laggy
[ 1498.337688][T18120] libceph: connect (1)[c::]:6789 error -101
[ 1498.401735][T18120] libceph: mon0 (1)[c::]:6789 connect error
[ 1498.455453][T17094] libceph: connect (1)[c::]:6789 error -101
[ 1498.637459][T17094] libceph: mon0 (1)[c::]:6789 connect error
[ 1498.660722][T18120] libceph: connect (1)[c::]:6789 error -101
[ 1498.666744][T18120] libceph: mon0 (1)[c::]:6789 connect error
[ 1498.708472][T18185] ceph: No mds server is up or the cluster is laggy
[ 1498.720787][T17808] libceph: connect (1)[c::]:6789 error -101
[ 1498.728612][T17808] libceph: mon0 (1)[c::]:6789 connect error
[ 1499.665805][T18205] loop3: detected capacity change from 0 to 40427
[ 1499.694528][T18205] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1499.702550][T18205] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1499.716063][T18205] F2FS-fs (loop3): invalid crc value
[ 1500.697117][T18205] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1500.761934][T18205] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1500.769305][T18205] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1504.740400][T18123] libceph: connect (1)[c::]:6789 error -101
[ 1504.756207][T18123] libceph: mon0 (1)[c::]:6789 connect error
[ 1504.820516][T18243] ceph: No mds server is up or the cluster is laggy
[ 1504.827503][T18123] libceph: connect (1)[c::]:6789 error -101
[ 1504.840593][T18123] libceph: mon0 (1)[c::]:6789 connect error
[ 1505.100621][T18120] libceph: connect (1)[c::]:6789 error -101
[ 1505.106707][T18120] libceph: mon0 (1)[c::]:6789 connect error
[ 1506.034849][T18250] ceph: No mds server is up or the cluster is laggy
[ 1506.045928][T18120] libceph: connect (1)[c::]:6789 error -101
[ 1506.228505][T18120] libceph: mon0 (1)[c::]:6789 connect error
[ 1507.794924][T18120] libceph: connect (1)[c::]:6789 error -101
[ 1507.902024][T18120] libceph: mon0 (1)[c::]:6789 connect error
[ 1508.345447][T18269] lo speed is unknown, defaulting to 1000
[ 1508.352765][T18269] lo speed is unknown, defaulting to 1000
[ 1508.362076][T18269] lo speed is unknown, defaulting to 1000
[ 1508.445035][T18269] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[ 1508.506561][T18269] lo speed is unknown, defaulting to 1000
[ 1508.521363][T18269] lo speed is unknown, defaulting to 1000
[ 1508.547135][T18269] lo speed is unknown, defaulting to 1000
[ 1508.561108][T18269] lo speed is unknown, defaulting to 1000
[ 1508.572432][T18269] lo speed is unknown, defaulting to 1000
[ 1509.490660][T18123] libceph: connect (1)[c::]:6789 error -101
[ 1509.496751][T18123] libceph: mon0 (1)[c::]:6789 connect error
[ 1509.719331][T18123] libceph: connect (1)[c::]:6789 error -101
[ 1509.754346][T18123] libceph: mon0 (1)[c::]:6789 connect error
[ 1509.764008][T18274] ceph: No mds server is up or the cluster is laggy
[ 1510.035082][T18283] loop3: detected capacity change from 0 to 40427
[ 1510.046292][T18123] libceph: connect (1)[c::]:6789 error -101
[ 1510.069015][T18123] libceph: mon0 (1)[c::]:6789 connect error
[ 1510.092988][T18283] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1510.100964][T18283] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1510.121766][T18283] F2FS-fs (loop3): invalid crc value
[ 1510.166869][T18283] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1510.215632][T18283] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1510.222854][T18283] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1513.891562][T18310] loop4: detected capacity change from 0 to 32768
[ 1514.018035][T18314] loop3: detected capacity change from 0 to 512
[ 1514.027357][T18314] EXT4-fs: Ignoring removed nobh option
[ 1514.059604][T18310] BTRFS info (device loop4): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[ 1514.144420][T18314] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[ 1514.154101][T18314] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.3967: invalid indirect mapped block 2683928664 (level 1)
[ 1514.177063][T18314] EXT4-fs (loop3): 1 truncate cleaned up
[ 1514.183060][T18314] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1514.274888][T18310] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[ 1514.401834][T18310] BTRFS info (device loop4): using free space tree
[ 1514.954095][T16622] EXT4-fs (loop3): unmounting filesystem.
[ 1515.023230][T18310] BTRFS info (device loop4): enabling ssd optimizations
[ 1516.068287][T15868] BTRFS info (device loop4): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[ 1517.689014][T18360] loop0: detected capacity change from 0 to 40427
[ 1517.718323][T18360] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1517.726695][T18360] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1517.808677][T18360] F2FS-fs (loop0): invalid crc value
[ 1518.538791][T18360] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1518.635556][T18360] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 1518.642884][T18360] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1520.041620][T18385] loop4: detected capacity change from 0 to 512
[ 1520.051652][T18385] EXT4-fs: Ignoring removed nobh option
[ 1522.399725][T18385] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[ 1522.491154][T18385] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.3973: invalid indirect mapped block 2683928664 (level 1)
[ 1522.546076][T18385] EXT4-fs (loop4): 1 truncate cleaned up
[ 1522.560936][T18385] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1522.921618][T18396] loop3: detected capacity change from 0 to 40427
[ 1522.957132][T18396] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1522.965093][T18396] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1522.982031][T18396] F2FS-fs (loop3): invalid crc value
[ 1523.023582][T18396] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1523.059202][T18396] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1523.067007][T18396] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1524.185791][T15868] EXT4-fs (loop4): unmounting filesystem.
[ 1525.186041][T18424] input: syz0 as /devices/virtual/input/input17
[ 1525.217958][T18424] input: failed to attach handler leds to device input17, error: -6
[ 1526.587119][T18435] lo speed is unknown, defaulting to 1000
[ 1526.695640][T18433] loop0: detected capacity change from 0 to 40427
[ 1526.706562][T18433] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1526.714476][T18433] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1526.738616][T18433] F2FS-fs (loop0): invalid crc value
[ 1526.746694][T18433] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1526.788562][T18433] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 1526.795738][T18433] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1528.493089][   T26] audit: type=1326 audit(1750655236.775:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18434 comm="syz.4.3995" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f516e98e929 code=0x0
[ 1528.726802][T18454] lo speed is unknown, defaulting to 1000
[ 1529.146429][T18459] netlink: 'syz.3.3996': attribute type 4 has an invalid length.
[ 1531.334850][   T26] audit: type=1326 audit(1750655239.615:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18453 comm="syz.1.3998" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1ae758e929 code=0x0
[ 1532.657005][T18478] loop4: detected capacity change from 0 to 40427
[ 1532.664825][T18478] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1532.672659][T18478] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1532.682424][T18478] F2FS-fs (loop4): invalid crc value
[ 1532.771021][T18478] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1532.852272][T18478] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1532.859379][T18478] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1535.644213][T18500] loop1: detected capacity change from 0 to 512
[ 1535.651046][T18500] EXT4-fs: Ignoring removed nobh option
[ 1535.678186][T18500] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[ 1535.686501][T18500] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.4011: invalid indirect mapped block 2683928664 (level 1)
[ 1535.713367][T18500] EXT4-fs (loop1): 1 truncate cleaned up
[ 1535.719059][T18500] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1535.887455][T13014] EXT4-fs (loop1): unmounting filesystem.
[ 1537.118562][T18507] loop1: detected capacity change from 0 to 40427
[ 1537.131991][T18507] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1537.139773][T18507] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1538.019603][T18507] F2FS-fs (loop1): invalid crc value
[ 1538.105216][T18505] netlink: 'syz.3.4013': attribute type 4 has an invalid length.
[ 1538.122252][T18507] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1538.232931][T18507] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1538.240059][T18507] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1541.463898][T18533] netlink: 'syz.4.4012': attribute type 4 has an invalid length.
[ 1544.058646][T18542] netlink: 'syz.3.4023': attribute type 4 has an invalid length.
[ 1546.114698][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1546.177436][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1547.905496][T18573] loop4: detected capacity change from 0 to 40427
[ 1547.939153][T18573] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1547.947148][T18573] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1548.096113][T18573] F2FS-fs (loop4): invalid crc value
[ 1548.865792][T18573] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1548.974207][T18573] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1548.981474][T18573] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1550.739569][T18596] netlink: 'syz.3.4035': attribute type 4 has an invalid length.
[ 1552.750600][T17661] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[ 1553.012026][T17661] usb 1-1: config index 0 descriptor too short (expected 23569, got 27)
[ 1553.035242][T17661] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1553.048984][T17661] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1553.081650][T17661] usb 1-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[ 1553.121120][T17661] usb 1-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[ 1554.167953][T17661] usb 1-1: Manufacturer: syz
[ 1554.200372][T17661] usb 1-1: config 0 descriptor??
[ 1554.221239][T17661] igorplugusb 1-1:0.0: incorrect number of endpoints
[ 1555.116004][T17661] usb 1-1: USB disconnect, device number 12
[ 1555.919694][T18629] siw: device registration error -23
[ 1558.380258][T14552] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[ 1558.591772][T18639] netlink: 'syz.2.4048': attribute type 4 has an invalid length.
[ 1558.601402][T14552] usb 4-1: config index 0 descriptor too short (expected 23569, got 27)
[ 1558.609804][T14552] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1558.667205][T14552] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1558.701193][T14552] usb 4-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[ 1558.725555][T14552] usb 4-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[ 1558.744581][T14552] usb 4-1: Manufacturer: syz
[ 1558.823444][T14552] usb 4-1: config 0 descriptor??
[ 1558.923016][T14552] igorplugusb 4-1:0.0: incorrect number of endpoints
[ 1559.629894][T18643] loop1: detected capacity change from 0 to 40427
[ 1559.889271][T18646] loop4: detected capacity change from 0 to 40427
[ 1559.905113][T18643] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[ 1559.912917][T18643] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[ 1559.930508][T18646] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1559.938308][T18646] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1559.943217][T14552] usb 4-1: USB disconnect, device number 2
[ 1559.951005][T18646] F2FS-fs (loop4): invalid crc value
[ 1559.965393][T18643] F2FS-fs (loop1): invalid crc value
[ 1560.008455][T18646] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 1560.073556][T18646] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1560.080772][T18646] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1561.210358][T18643] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1561.275814][T18643] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[ 1561.283018][T18643] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1561.619664][T18665] 9pnet_fd: Insufficient options for proto=fd
[ 1564.036004][T18669] loop2: detected capacity change from 0 to 2048
[ 1564.113321][T18669] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1564.400326][T14552] usb 3-1: new full-speed USB device number 23 using dummy_hcd
[ 1567.345330][T18117] libceph: connect (1)[c::]:6789 error -101
[ 1567.354466][T18117] libceph: mon0 (1)[c::]:6789 connect error
[ 1567.410508][T18683] ceph: No mds server is up or the cluster is laggy
[ 1567.561351][T14552] usb 3-1: unable to get BOS descriptor or descriptor too short
[ 1567.591241][T14552] usb 3-1: unable to read config index 0 descriptor/start: -71
[ 1567.598882][T14552] usb 3-1: can't read configurations, error -71
[ 1567.670652][T17966] libceph: connect (1)[c::]:6789 error -101
[ 1567.679791][T17966] libceph: mon0 (1)[c::]:6789 connect error
[ 1568.161019][T18701] loop4: detected capacity change from 0 to 512
[ 1568.169731][T18701] EXT4-fs: Ignoring removed nobh option
[ 1569.687887][T18701] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[ 1569.697658][T18701] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.4063: invalid indirect mapped block 2683928664 (level 1)
[ 1569.715883][T18701] EXT4-fs (loop4): 1 truncate cleaned up
[ 1569.721785][T18701] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1570.128390][T18701] Set syz1 is full, maxelem 1038 reached
[ 1570.903386][T15868] EXT4-fs (loop4): unmounting filesystem.
[ 1571.046462][T17967] libceph: connect (1)[c::]:6789 error -101
[ 1571.067772][T17967] libceph: mon0 (1)[c::]:6789 connect error
[ 1571.098743][T18711] ceph: No mds server is up or the cluster is laggy
[ 1571.124278][T17967] libceph: connect (1)[c::]:6789 error -101
[ 1571.198812][T17967] libceph: mon0 (1)[c::]:6789 connect error
[ 1571.699433][T18721] siw: device registration error -23
[ 1575.350931][T18730] netlink: 'syz.1.4066': attribute type 4 has an invalid length.
[ 1575.704848][T18739] loop2: detected capacity change from 0 to 32768
[ 1575.859897][T18742] loop0: detected capacity change from 0 to 512
[ 1575.867167][T18742] EXT4-fs: Ignoring removed nobh option
[ 1576.501317][T18739] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop2 scanned by syz.2.4072 (18739)
[ 1576.825359][T18739] BTRFS info (device loop2): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[ 1576.838010][T18739] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[ 1576.847379][T18739] BTRFS info (device loop2): using free space tree
[ 1577.344460][T18742] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[ 1577.361338][T18742] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.4071: invalid indirect mapped block 2683928664 (level 1)
[ 1577.381063][T18742] EXT4-fs (loop0): 1 truncate cleaned up
[ 1577.386873][T18742] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 1577.425104][T18742] Set syz1 is full, maxelem 65536 reached
[ 1577.911672][T13355] EXT4-fs (loop0): unmounting filesystem.
[ 1578.169554][T18739] BTRFS info (device loop2): enabling ssd optimizations
[ 1578.634299][T16284] BTRFS info (device loop2): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[ 1581.821439][T18783] netlink: 'syz.1.4076': attribute type 4 has an invalid length.
[ 1586.517920][T18823] loop1: detected capacity change from 0 to 512
[ 1586.528278][T18823] EXT4-fs: Ignoring removed nobh option
[ 1588.460354][T18823] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[ 1588.469018][T18823] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.4089: invalid indirect mapped block 2683928664 (level 1)
[ 1588.492269][T18823] EXT4-fs (loop1): 1 truncate cleaned up
[ 1588.498111][T18823] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 1589.792354][T13014] EXT4-fs (loop1): unmounting filesystem.
[ 1590.201717][T18845] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1590.222635][T18845] loop0: detected capacity change from 0 to 128
[ 1590.237803][T18845] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[ 1591.636581][T18846] netlink: 'syz.3.4091': attribute type 4 has an invalid length.
[ 1591.650647][T18849] netlink: 'syz.4.4093': attribute type 4 has an invalid length.
[ 1598.533105][T18890] loop3: detected capacity change from 0 to 512
[ 1598.542456][T18890] EXT4-fs: Ignoring removed nobh option
[ 1599.041044][T18890] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[ 1599.050706][T18890] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.4104: invalid indirect mapped block 2683928664 (level 1)
[ 1599.068850][T18890] EXT4-fs (loop3): 1 truncate cleaned up
[ 1599.075860][T18890] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 1599.635578][T16622] EXT4-fs (loop3): unmounting filesystem.
[ 1599.810002][T18895] ceph: No mds server is up or the cluster is laggy
[ 1599.818912][T17966] libceph: connect (1)[c::]:6789 error -101
[ 1600.000675][T17966] libceph: mon0 (1)[c::]:6789 connect error
[ 1600.130625][T18907] loop4: detected capacity change from 0 to 512
[ 1600.140501][T18907] EXT4-fs: Ignoring removed nobh option
[ 1601.626125][T18907] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[ 1601.641294][T18907] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.4110: invalid indirect mapped block 2683928664 (level 1)
[ 1601.658122][T18907] EXT4-fs (loop4): 1 truncate cleaned up
[ 1601.664171][T18907] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1601.707633][T18905] loop1: detected capacity change from 0 to 4096
[ 1601.995736][T18117] libceph: connect (1)[c::]:6789 error -101
[ 1602.031930][T18117] libceph: mon0 (1)[c::]:6789 connect error
[ 1602.260817][T18912] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1602.304579][   T26] audit: type=1800 audit(1750655310.585:13): pid=18905 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.4109" name="file1" dev="loop1" ino=15 res=0 errno=0
[ 1602.325052][T15868] EXT4-fs (loop4): unmounting filesystem.
[ 1602.369435][   T26] audit: type=1800 audit(1750655310.645:14): pid=18905 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.4109" name="file1" dev="loop1" ino=15 res=0 errno=0
[ 1604.095422][T18928] loop4: detected capacity change from 0 to 512
[ 1604.109809][T18928] EXT4-fs: Ignoring removed nobh option
[ 1604.912801][T18928] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[ 1604.922498][T18928] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.4112: invalid indirect mapped block 2683928664 (level 1)
[ 1604.943410][T18928] EXT4-fs (loop4): 1 truncate cleaned up
[ 1604.949205][T18928] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 1605.434292][T15868] EXT4-fs (loop4): unmounting filesystem.
[ 1607.232877][T18937] netlink: 'syz.2.4118': attribute type 4 has an invalid length.
[ 1607.542710][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1607.549085][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1608.736236][T18954] loop0: detected capacity change from 0 to 32768
[ 1608.765068][T18954] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop0 scanned by syz.0.4123 (18954)
[ 1608.781080][T18954] BTRFS info (device loop0): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[ 1608.791570][T18954] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[ 1608.800349][T18954] BTRFS info (device loop0): using free space tree
[ 1609.225669][T18954] BTRFS info (device loop0): enabling ssd optimizations
[ 1609.965069][T13355] BTRFS info (device loop0): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885
[ 1614.461413][T19002] netlink: 'syz.1.4129': attribute type 4 has an invalid length.
[ 1616.263270][T19020] ceph: No mds server is up or the cluster is laggy
[ 1616.270658][T18117] libceph: connect (1)[c::]:6789 error -101
[ 1616.290402][T18117] libceph: mon0 (1)[c::]:6789 connect error
[ 1616.505463][T19028] loop0: detected capacity change from 0 to 4096
[ 1617.169781][T18117] libceph: connect (1)[c::]:6789 error -101
[ 1617.189672][T18117] libceph: mon0 (1)[c::]:6789 connect error
[ 1617.375421][T19031] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1617.780114][    C0] ==================================================================
[ 1617.788256][    C0] BUG: KASAN: use-after-free in rose_timer_expiry+0x470/0x490
[ 1617.795788][    C0] Read of size 2 at addr ffff888029e0f82a by task syz.1.4136/19019
[ 1617.803729][    C0] 
[ 1617.806102][    C0] CPU: 0 PID: 19019 Comm: syz.1.4136 Not tainted 6.1.141-syzkaller #0
[ 1617.814313][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1617.824421][    C0] Call Trace:
[ 1617.827748][    C0]  <IRQ>
[ 1617.830629][    C0]  dump_stack_lvl+0x168/0x22e
[ 1617.835361][    C0]  ? __lock_acquire+0x7c50/0x7c50
[ 1617.840430][    C0]  ? show_regs_print_info+0x12/0x12
[ 1617.845681][    C0]  ? load_image+0x3b0/0x3b0
[ 1617.850225][    C0]  ? _raw_spin_lock_irqsave+0xb0/0xf0
[ 1617.855636][    C0]  ? __virt_addr_valid+0x188/0x540
[ 1617.860847][    C0]  ? __virt_addr_valid+0x465/0x540
[ 1617.865982][    C0]  ? rose_timer_expiry+0x470/0x490
[ 1617.871103][    C0]  print_report+0xa8/0x220
[ 1617.875528][    C0]  kasan_report+0x10b/0x140
[ 1617.880044][    C0]  ? rose_timer_expiry+0x470/0x490
[ 1617.885187][    C0]  rose_timer_expiry+0x470/0x490
[ 1617.890147][    C0]  call_timer_fn+0x1a0/0x670
[ 1617.894742][    C0]  ? rose_start_t1timer+0xd0/0xd0
[ 1617.899775][    C0]  ? call_timer_fn+0xc1/0x670
[ 1617.904458][    C0]  ? __run_timers+0x7c0/0x7c0
[ 1617.909142][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 1617.914350][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[ 1617.919570][    C0]  ? rose_start_t1timer+0xd0/0xd0
[ 1617.924613][    C0]  __run_timers+0x525/0x7c0
[ 1617.929134][    C0]  ? detach_timer+0x350/0x350
[ 1617.933834][    C0]  ? lock_chain_count+0x20/0x20
[ 1617.938703][    C0]  run_timer_softirq+0x63/0xf0
[ 1617.943484][    C0]  handle_softirqs+0x2a1/0x920
[ 1617.948264][    C0]  ? __irq_exit_rcu+0x12f/0x220
[ 1617.953140][    C0]  ? do_softirq+0x200/0x200
[ 1617.957669][    C0]  ? irqtime_account_irq+0xb2/0x1b0
[ 1617.962888][    C0]  __irq_exit_rcu+0x12f/0x220
[ 1617.967580][    C0]  ? irq_exit_rcu+0x20/0x20
[ 1617.972114][    C0]  irq_exit_rcu+0x5/0x20
[ 1617.976377][    C0]  sysvec_apic_timer_interrupt+0xa0/0xc0
[ 1617.982032][    C0]  </IRQ>
[ 1617.984967][    C0]  <TASK>
[ 1617.987900][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 1617.993974][    C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xa5/0x100
[ 1618.000486][    C0] Code: 74 05 e8 ce 97 6d f7 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f6 44 24 21 02 75 4b f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> c6 13 3e f7 65 8b 05 97 d4 e8 75 85 c0 74 3c 48 c7 04 24 0e 36
[ 1618.020132][    C0] RSP: 0018:ffffc9000ce7f5c0 EFLAGS: 00000206
[ 1618.026222][    C0] RAX: ad0a678285a16500 RBX: 0000000000000a06 RCX: ad0a678285a16500
[ 1618.034212][    C0] RDX: dffffc0000000000 RSI: ffffffff8a6bffe0 RDI: 0000000000000001
[ 1618.042228][    C0] RBP: ffffc9000ce7f658 R08: dffffc0000000000 R09: fffffbfff211705d
[ 1618.050209][    C0] R10: fffffbfff211705d R11: 1ffffffff211705c R12: dffffc0000000000
[ 1618.058183][    C0] R13: 1ffff11005088946 R14: ffff8880284449d0 R15: 1ffff920019cfeb8
[ 1618.066174][    C0]  ? _raw_spin_unlock+0x40/0x40
[ 1618.071044][    C0]  ? __mutex_lock+0x19e/0xaf0
[ 1618.075755][    C0]  __skb_try_recv_datagram+0x179/0x4d0
[ 1618.081229][    C0]  ? sock_load_diag_module+0x130/0x130
[ 1618.086699][    C0]  __unix_dgram_recvmsg+0x2d1/0xd70
[ 1618.091905][    C0]  ? unix_unhash+0x10/0x10
[ 1618.096326][    C0]  ? __schedule+0x10f1/0x40d0
[ 1618.101053][    C0]  ? mark_lock+0x94/0x320
[ 1618.105411][    C0]  ? unix_dgram_recvmsg+0xa9/0xd0
[ 1618.110461][    C0]  ? unix_dgram_sendmsg+0x16c0/0x16c0
[ 1618.115910][    C0]  ____sys_recvmsg+0x292/0x580
[ 1618.120697][    C0]  ? __sys_recvmsg_sock+0x40/0x40
[ 1618.125741][    C0]  ? import_iovec+0x6f/0xa0
[ 1618.130310][    C0]  ___sys_recvmsg+0x1b2/0x510
[ 1618.135006][    C0]  ? __sys_recvmsg+0x270/0x270
[ 1618.139789][    C0]  ? __lock_acquire+0x7c50/0x7c50
[ 1618.144919][    C0]  ? __might_fault+0x4e/0x120
[ 1618.149610][    C0]  ? __might_fault+0xc2/0x120
[ 1618.154300][    C0]  ? __might_fault+0xa6/0x120
[ 1618.158992][    C0]  do_recvmmsg+0x359/0x7d0
[ 1618.163430][    C0]  ? __sys_recvmmsg+0x280/0x280
[ 1618.168289][    C0]  ? do_futex+0x310/0x320
[ 1618.172635][    C0]  ? __se_sys_futex+0x14a/0x440
[ 1618.177507][    C0]  __x64_sys_recvmmsg+0x18d/0x240
[ 1618.182551][    C0]  ? do_recvmmsg+0x7d0/0x7d0
[ 1618.187157][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[ 1618.192374][    C0]  do_syscall_64+0x4c/0xa0
[ 1618.196801][    C0]  ? clear_bhb_loop+0x60/0xb0
[ 1618.201478][    C0]  ? clear_bhb_loop+0x60/0xb0
[ 1618.206156][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1618.212073][    C0] RIP: 0033:0x7f1ae758e929
[ 1618.216515][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1618.236312][    C0] RSP: 002b:00007f1ae73ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1618.244739][    C0] RAX: ffffffffffffffda RBX: 00007f1ae77b6080 RCX: 00007f1ae758e929
[ 1618.252715][    C0] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 0000000000000004
[ 1618.260687][    C0] RBP: 00007f1ae7610b39 R08: 0000000000000000 R09: 0000000000000000
[ 1618.268657][    C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 1618.276650][    C0] R13: 0000000000000000 R14: 00007f1ae77b6080 R15: 00007ffe9448f3d8
[ 1618.284637][    C0]  </TASK>
[ 1618.287656][    C0] 
[ 1618.289975][    C0] Allocated by task 15:
[ 1618.294125][    C0]  kasan_set_track+0x4b/0x70
[ 1618.298724][    C0]  __kasan_kmalloc+0x8e/0xa0
[ 1618.303322][    C0]  __kmalloc_node_track_caller+0xae/0x230
[ 1618.309043][    C0]  __alloc_skb+0x22a/0x7e0
[ 1618.313469][    C0]  skb_copy+0x139/0x790
[ 1618.317634][    C0]  mac80211_hwsim_tx_frame_no_nl+0xd6e/0x1330
[ 1618.323718][    C0]  mac80211_hwsim_tx_frame+0x1b5/0x200
[ 1618.329191][    C0]  mac80211_hwsim_beacon_tx+0x61e/0xae0
[ 1618.334754][    C0]  __iterate_interfaces+0x243/0x500
[ 1618.339959][    C0]  ieee80211_iterate_active_interfaces_atomic+0xd7/0x170
[ 1618.346988][    C0]  mac80211_hwsim_beacon+0xb7/0x1b0
[ 1618.352187][    C0]  __hrtimer_run_queues+0x554/0xd60
[ 1618.357383][    C0]  hrtimer_run_softirq+0x183/0x2a0
[ 1618.362496][    C0]  handle_softirqs+0x2a1/0x920
[ 1618.367266][    C0]  run_ksoftirqd+0x98/0xf0
[ 1618.371681][    C0]  smpboot_thread_fn+0x64a/0xa40
[ 1618.376625][    C0]  kthread+0x29d/0x330
[ 1618.380703][    C0]  ret_from_fork+0x1f/0x30
[ 1618.385127][    C0] 
[ 1618.387447][    C0] Freed by task 4400:
[ 1618.391424][    C0]  kasan_set_track+0x4b/0x70
[ 1618.396024][    C0]  kasan_save_free_info+0x2d/0x50
[ 1618.401049][    C0]  ____kasan_slab_free+0x126/0x1e0
[ 1618.406169][    C0]  slab_free_freelist_hook+0x131/0x1a0
[ 1618.411635][    C0]  __kmem_cache_free+0xb6/0x1f0
[ 1618.416491][    C0]  skb_release_data+0x5db/0x7c0
[ 1618.421355][    C0]  kfree_skb_reason+0x163/0x370
[ 1618.426210][    C0]  ieee80211_iface_work+0x7b3/0xc80
[ 1618.431442][    C0]  process_one_work+0x898/0x1160
[ 1618.436394][    C0]  worker_thread+0xaa2/0x1250
[ 1618.441077][    C0]  kthread+0x29d/0x330
[ 1618.445156][    C0]  ret_from_fork+0x1f/0x30
[ 1618.449594][    C0] 
[ 1618.451921][    C0] Last potentially related work creation:
[ 1618.457632][    C0]  kasan_save_stack+0x3a/0x60
[ 1618.462323][    C0]  __kasan_record_aux_stack+0xb2/0xc0
[ 1618.467696][    C0]  kvfree_call_rcu+0x108/0x870
[ 1618.472469][    C0]  drop_sysctl_table+0x2fa/0x430
[ 1618.477417][    C0]  drop_sysctl_table+0x2e9/0x430
[ 1618.482365][    C0]  unregister_sysctl_table+0x85/0x130
[ 1618.487748][    C0]  mpls_dev_sysctl_unregister+0x8b/0xc0
[ 1618.493300][    C0]  mpls_dev_notify+0x555/0x760
[ 1618.498070][    C0]  raw_notifier_call_chain+0xcb/0x160
[ 1618.503445][    C0]  unregister_netdevice_many+0xfdc/0x1840
[ 1618.509173][    C0]  default_device_exit_batch+0x9c3/0xa50
[ 1618.514814][    C0]  cleanup_net+0x77b/0xb80
[ 1618.519233][    C0]  process_one_work+0x898/0x1160
[ 1618.524169][    C0]  worker_thread+0xaa2/0x1250
[ 1618.528845][    C0]  kthread+0x29d/0x330
[ 1618.532946][    C0]  ret_from_fork+0x1f/0x30
[ 1618.537399][    C0] 
[ 1618.539732][    C0] Second to last potentially related work creation:
[ 1618.546351][    C0]  kasan_save_stack+0x3a/0x60
[ 1618.551037][    C0]  __kasan_record_aux_stack+0xb2/0xc0
[ 1618.556410][    C0]  insert_work+0x54/0x3c0
[ 1618.560743][    C0]  __queue_work+0xba3/0xfb0
[ 1618.565256][    C0]  call_timer_fn+0x1a0/0x670
[ 1618.569845][    C0]  __run_timers+0x550/0x7c0
[ 1618.574348][    C0]  run_timer_softirq+0x63/0xf0
[ 1618.579122][    C0]  handle_softirqs+0x2a1/0x920
[ 1618.583894][    C0]  __irq_exit_rcu+0x12f/0x220
[ 1618.588582][    C0]  irq_exit_rcu+0x5/0x20
[ 1618.592832][    C0]  sysvec_apic_timer_interrupt+0xa0/0xc0
[ 1618.598474][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 1618.604453][    C0] 
[ 1618.606774][    C0] The buggy address belongs to the object at ffff888029e0f800
[ 1618.606774][    C0]  which belongs to the cache kmalloc-512 of size 512
[ 1618.620826][    C0] The buggy address is located 42 bytes inside of
[ 1618.620826][    C0]  512-byte region [ffff888029e0f800, ffff888029e0fa00)
[ 1618.634021][    C0] 
[ 1618.636348][    C0] The buggy address belongs to the physical page:
[ 1618.642770][    C0] page:ffffea0000a78300 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x29e0c
[ 1618.652924][    C0] head:ffffea0000a78300 order:2 compound_mapcount:0 compound_pincount:0
[ 1618.661247][    C0] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 1618.669535][    C0] raw: 00fff00000010200 0000000000000000 dead000000000001 ffff888017441c80
[ 1618.678122][    C0] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000
[ 1618.686705][    C0] page dumped because: kasan: bad access detected
[ 1618.693114][    C0] page_owner tracks the page as allocated
[ 1618.698822][    C0] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 4254, tgid 4254 (syz-executor), ts 88815438330, free_ts 88140568588
[ 1618.720183][    C0]  post_alloc_hook+0x173/0x1a0
[ 1618.724960][    C0]  get_page_from_freelist+0x1a26/0x1ac0
[ 1618.730505][    C0]  __alloc_pages+0x1df/0x4e0
[ 1618.735099][    C0]  alloc_slab_page+0x5d/0x160
[ 1618.739785][    C0]  new_slab+0x87/0x2c0
[ 1618.743858][    C0]  ___slab_alloc+0xbc6/0x1220
[ 1618.748537][    C0]  __kmem_cache_alloc_node+0x1a0/0x260
[ 1618.754003][    C0]  __kmalloc+0xa0/0x240
[ 1618.758159][    C0]  fib6_info_alloc+0x2e/0xe0
[ 1618.762749][    C0]  ip6_route_info_create+0x44f/0x1210
[ 1618.768125][    C0]  ip6_route_add+0x24/0x130
[ 1618.772632][    C0]  addrconf_add_dev+0x253/0x330
[ 1618.777481][    C0]  inet6_addr_add+0x19a/0x9b0
[ 1618.782159][    C0]  inet6_rtm_newaddr+0x617/0x870
[ 1618.787096][    C0]  rtnetlink_rcv_msg+0x79b/0xed0
[ 1618.792040][    C0]  netlink_rcv_skb+0x1de/0x420
[ 1618.796811][    C0] page last free stack trace:
[ 1618.801482][    C0]  free_unref_page_prepare+0x8b4/0x9a0
[ 1618.806947][    C0]  free_unref_page+0x2e/0x3f0
[ 1618.811629][    C0]  qlist_free_all+0x76/0xe0
[ 1618.816132][    C0]  kasan_quarantine_reduce+0x144/0x160
[ 1618.821633][    C0]  __kasan_slab_alloc+0x1e/0x80
[ 1618.826495][    C0]  slab_post_alloc_hook+0x4b/0x480
[ 1618.831618][    C0]  __kmem_cache_alloc_node+0x140/0x260
[ 1618.837086][    C0]  kmalloc_trace+0x26/0xe0
[ 1618.841504][    C0]  netdevice_event+0x325/0x900
[ 1618.846277][    C0]  raw_notifier_call_chain+0xcb/0x160
[ 1618.851647][    C0]  __dev_notify_flags+0x178/0x2d0
[ 1618.856675][    C0]  dev_change_flags+0xe3/0x1a0
[ 1618.861444][    C0]  do_setlink+0xc31/0x3c40
[ 1618.865874][    C0]  rtnl_newlink+0x17d6/0x1ff0
[ 1618.870562][    C0]  rtnetlink_rcv_msg+0x79b/0xed0
[ 1618.875508][    C0]  netlink_rcv_skb+0x1de/0x420
[ 1618.880279][    C0] 
[ 1618.882606][    C0] Memory state around the buggy address:
[ 1618.888230][    C0]  ffff888029e0f700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1618.896292][    C0]  ffff888029e0f780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1618.904354][    C0] >ffff888029e0f800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1618.912413][    C0]                                   ^
[ 1618.917779][    C0]  ffff888029e0f880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1618.925844][    C0]  ffff888029e0f900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1618.933927][    C0] ==================================================================
[ 1618.942095][    C0] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1618.949296][    C0] CPU: 0 PID: 19019 Comm: syz.1.4136 Not tainted 6.1.141-syzkaller #0
[ 1618.957473][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1618.967532][    C0] Call Trace:
[ 1618.970809][    C0]  <IRQ>
[ 1618.973651][    C0]  dump_stack_lvl+0x168/0x22e
[ 1618.978334][    C0]  ? memcpy+0x3c/0x60
[ 1618.982336][    C0]  ? show_regs_print_info+0x12/0x12
[ 1618.987537][    C0]  ? load_image+0x3b0/0x3b0
[ 1618.992044][    C0]  panic+0x2c9/0x710
[ 1618.995935][    C0]  ? asm_common_interrupt+0x22/0x40
[ 1619.001132][    C0]  ? bpf_jit_dump+0xd0/0xd0
[ 1619.005636][    C0]  ? _raw_spin_unlock_irqrestore+0xa5/0x100
[ 1619.011551][    C0]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[ 1619.017450][    C0]  ? _raw_spin_unlock+0x40/0x40
[ 1619.022309][    C0]  check_panic_on_warn+0x80/0xa0
[ 1619.027249][    C0]  ? rose_timer_expiry+0x470/0x490
[ 1619.032366][    C0]  end_report+0x66/0x110
[ 1619.036618][    C0]  kasan_report+0x118/0x140
[ 1619.041140][    C0]  ? rose_timer_expiry+0x470/0x490
[ 1619.046298][    C0]  rose_timer_expiry+0x470/0x490
[ 1619.051248][    C0]  call_timer_fn+0x1a0/0x670
[ 1619.055860][    C0]  ? rose_start_t1timer+0xd0/0xd0
[ 1619.060894][    C0]  ? call_timer_fn+0xc1/0x670
[ 1619.065590][    C0]  ? __run_timers+0x7c0/0x7c0
[ 1619.070295][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 1619.075515][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[ 1619.080720][    C0]  ? rose_start_t1timer+0xd0/0xd0
[ 1619.085753][    C0]  __run_timers+0x525/0x7c0
[ 1619.090266][    C0]  ? detach_timer+0x350/0x350
[ 1619.094963][    C0]  ? lock_chain_count+0x20/0x20
[ 1619.099819][    C0]  run_timer_softirq+0x63/0xf0
[ 1619.104595][    C0]  handle_softirqs+0x2a1/0x920
[ 1619.109373][    C0]  ? __irq_exit_rcu+0x12f/0x220
[ 1619.114233][    C0]  ? do_softirq+0x200/0x200
[ 1619.118753][    C0]  ? irqtime_account_irq+0xb2/0x1b0
[ 1619.123961][    C0]  __irq_exit_rcu+0x12f/0x220
[ 1619.128648][    C0]  ? irq_exit_rcu+0x20/0x20
[ 1619.133167][    C0]  irq_exit_rcu+0x5/0x20
[ 1619.137418][    C0]  sysvec_apic_timer_interrupt+0xa0/0xc0
[ 1619.143062][    C0]  </IRQ>
[ 1619.145994][    C0]  <TASK>
[ 1619.148929][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 1619.154913][    C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xa5/0x100
[ 1619.161425][    C0] Code: 74 05 e8 ce 97 6d f7 48 c7 44 24 20 00 00 00 00 9c 8f 44 24 20 f6 44 24 21 02 75 4b f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> c6 13 3e f7 65 8b 05 97 d4 e8 75 85 c0 74 3c 48 c7 04 24 0e 36
[ 1619.181126][    C0] RSP: 0018:ffffc9000ce7f5c0 EFLAGS: 00000206
[ 1619.187195][    C0] RAX: ad0a678285a16500 RBX: 0000000000000a06 RCX: ad0a678285a16500
[ 1619.195169][    C0] RDX: dffffc0000000000 RSI: ffffffff8a6bffe0 RDI: 0000000000000001
[ 1619.203144][    C0] RBP: ffffc9000ce7f658 R08: dffffc0000000000 R09: fffffbfff211705d
[ 1619.211123][    C0] R10: fffffbfff211705d R11: 1ffffffff211705c R12: dffffc0000000000
[ 1619.219101][    C0] R13: 1ffff11005088946 R14: ffff8880284449d0 R15: 1ffff920019cfeb8
[ 1619.227088][    C0]  ? _raw_spin_unlock+0x40/0x40
[ 1619.231946][    C0]  ? __mutex_lock+0x19e/0xaf0
[ 1619.236632][    C0]  __skb_try_recv_datagram+0x179/0x4d0
[ 1619.242099][    C0]  ? sock_load_diag_module+0x130/0x130
[ 1619.247571][    C0]  __unix_dgram_recvmsg+0x2d1/0xd70
[ 1619.252777][    C0]  ? unix_unhash+0x10/0x10
[ 1619.257201][    C0]  ? __schedule+0x10f1/0x40d0
[ 1619.261883][    C0]  ? mark_lock+0x94/0x320
[ 1619.266220][    C0]  ? unix_dgram_recvmsg+0xa9/0xd0
[ 1619.271249][    C0]  ? unix_dgram_sendmsg+0x16c0/0x16c0
[ 1619.276627][    C0]  ____sys_recvmsg+0x292/0x580
[ 1619.281404][    C0]  ? __sys_recvmsg_sock+0x40/0x40
[ 1619.286444][    C0]  ? import_iovec+0x6f/0xa0
[ 1619.290950][    C0]  ___sys_recvmsg+0x1b2/0x510
[ 1619.295637][    C0]  ? __sys_recvmsg+0x270/0x270
[ 1619.300422][    C0]  ? __lock_acquire+0x7c50/0x7c50
[ 1619.305461][    C0]  ? __might_fault+0x4e/0x120
[ 1619.310149][    C0]  ? __might_fault+0xc2/0x120
[ 1619.314827][    C0]  ? __might_fault+0xa6/0x120
[ 1619.319508][    C0]  do_recvmmsg+0x359/0x7d0
[ 1619.323939][    C0]  ? __sys_recvmmsg+0x280/0x280
[ 1619.328800][    C0]  ? do_futex+0x310/0x320
[ 1619.333157][    C0]  ? __se_sys_futex+0x14a/0x440
[ 1619.338022][    C0]  __x64_sys_recvmmsg+0x18d/0x240
[ 1619.343059][    C0]  ? do_recvmmsg+0x7d0/0x7d0
[ 1619.347660][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[ 1619.352867][    C0]  do_syscall_64+0x4c/0xa0
[ 1619.357298][    C0]  ? clear_bhb_loop+0x60/0xb0
[ 1619.361977][    C0]  ? clear_bhb_loop+0x60/0xb0
[ 1619.366659][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1619.372588][    C0] RIP: 0033:0x7f1ae758e929
[ 1619.377008][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1619.396622][    C0] RSP: 002b:00007f1ae73ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1619.405040][    C0] RAX: ffffffffffffffda RBX: 00007f1ae77b6080 RCX: 00007f1ae758e929
[ 1619.413020][    C0] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 0000000000000004
[ 1619.420996][    C0] RBP: 00007f1ae7610b39 R08: 0000000000000000 R09: 0000000000000000
[ 1619.428968][    C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[ 1619.436944][    C0] R13: 0000000000000000 R14: 00007f1ae77b6080 R15: 00007ffe9448f3d8
[ 1619.444953][    C0]  </TASK>
[ 1619.448276][    C0] Kernel Offset: disabled
[ 1619.452604][    C0] Rebooting in 86400 seconds..