last executing test programs:

6.585905162s ago: executing program 2 (id=371):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB], 0xfc}}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETFLOWTABLE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4001}, 0x4004)

6.416543466s ago: executing program 2 (id=375):
r0 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
write$binfmt_register(r0, &(0x7f0000000940)={0x3a, 'syz3', 0x3a, 'E', 0x3a, 0xb, 0x3a, ' ', 0x3a, '\x835\tplb\x11\xcd\xb0\x84\x89\xa5\xf1\xdb\x05\xc4\x91\xe0\xd8/as0i\x17\xb5U\xb5\xe7\xb5\xeb~w\x15>\xf4v\xdd\x87\x03\xab\x85\x91%\x8b\xa9y\xd1\x1d\xa6\xdfh\v\x99=\x92\xc9Z\xce\xba\xf9\xe5\xca<\xef\\\xd9B\b\x80f\x01\xe2-\xeb\xd7U/\xc6\xf1#\xb1+\xd4\xdf\x84d\xc9\x16\xfe\xd5\xbf\x19#\xdd\xd9\\\x93\xf8\xf4<yO\x90>\x84\x01\xd2N\x02)\x18It;\xe63\xd7\x94(\x1e\x03s\x82\xe3\x10\xc9\xda\xb4\x1bT\x8d\xe8\xaap\xfb(\x1a\xb6\xdb\x87\x13\xa0\xe2\x88\x8b\xd1\x8a\xbee\xa9\x91\"1~\xc4r\x7fCq\xf9\xa6%\x8cM9\xcac\xbb\x0f\xb8\x118=\xbb\x8e\x80R\x05V\xe5*\xcc\xbb\x03<\xb1\xee\xb7\xd8\xe4|QU\xc2\xcc?\x81Q\xdb\x0fmV5?\xc6JV\xfd\x8ax\"\x97', 0x3a, './file0', 0x3a, [0x13]}, 0xfe)

6.257077213s ago: executing program 2 (id=377):
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000480)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$xdp(0x2c, 0x3, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="c4000000190001000000000000000000e0000002000000000000000000000000ff02000000000000000000000000000100000000200000000a00000087000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082000000000000000000000fbffffffffffffff0000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000c0015005907350082"], 0xc4}}, 0x2c000010)
sendmsg$nl_xfrm(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@updpolicy={0xb8, 0x15, 0x1, 0x0, 0x25dfdbfd, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in6=@loopback, 0x0, 0x0, 0x4e23, 0x0, 0xa, 0x10}, {0x8, 0x1, 0x0, 0x0, 0x8, 0x0, 0xffffffff, 0xffffffffffffffff}, {0x0, 0xfffffffffffffffa}, 0x4, 0x6e6bb5, 0x0, 0x1, 0x3, 0x3}}, 0xb8}}, 0x0)
r5 = syz_open_dev$cec(&(0x7f0000002340), 0x0, 0x101441)
ioctl$CEC_S_MODE(r5, 0x40046109, &(0x7f0000000180)=0x22)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x4, 0x5, &(0x7f0000000240)=ANY=[@ANYBLOB="180200000001000000000000000000008500000013000000850000000700000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f00000002c0)={{'fd', 0x3d, r6}, 0x2c, {'rootmode', 0x3d, 0x4000}})
socket$inet_sctp(0x2, 0x1, 0x84)
r7 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r7, 0x0, 0x482, &(0x7f00000000c0)={0x84, @multicast2, 0x15, 0x3, 'wrr\x00', 0x30, 0x4, 0x68}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r7, 0x0, 0x487, &(0x7f0000000000)={{0x84, @broadcast, 0x4e21, 0x3, 'fo\x00', 0x11, 0x3240, 0x3a}, {@loopback, 0x4e23, 0x4, 0xc3, 0x12d5c, 0x12d5c}}, 0x44)
syz_fuse_handle_req(r6, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x1c}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

6.181984974s ago: executing program 0 (id=379):
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000002c0)='./file0\x00', 0x10, &(0x7f0000000600), 0x1, 0x5b4, &(0x7f0000000640)="$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")
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet(0x10, 0x3, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
timer_create(0x3, 0x0, &(0x7f0000000000)=<r0=>0x0)
timer_settime(r0, 0x1, &(0x7f0000000880)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
timer_settime(r0, 0x0, &(0x7f0000000080), &(0x7f00000000c0))

5.957788818s ago: executing program 4 (id=380):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
socket$inet(0x2, 0x1, 0x0)
msync(&(0x7f0000003000/0x4000)=nil, 0x4000, 0x6)

5.213589867s ago: executing program 2 (id=382):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.stat\x00', 0x275a, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = socket$inet(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'macvlan1\x00', <r3=>0x0})
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f00000004c0)={r3, 0x3, 0x6, @random="5e1cf8b4c253"}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x200, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000002c0)='kfree\x00', r5}, 0x10)
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f00000000c0)={r3, 0x3, 0x6, @random="cea0300a1672"}, 0x10)
dup2(r0, r1)
socket$nl_generic(0x10, 0x3, 0x10)

4.274906547s ago: executing program 2 (id=386):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
syz_mount_image$msdos(&(0x7f0000000040), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="6572726f72733d636f6e74696e75652c6e6f646f74732c6e6f646f74732c646f74732c646f74732c646f74732c00009191ba4a9b6388d54828a3c3830c42987338a9190197eb172a21b7cfa7523e2b311d1f21fe773c1a557203941edefa8945730f6addf5d620d186e7a427df2c849c4743dde508a71789e24605df9a7108223b334f24b6ef3973fd06e3c8d4d12c", @ANYBLOB="870f835e9a3ebe1b1d745e1f7da842efa1887997109ac6403cdfe9c6723eba8c08dcce0e7e8d0c44a7c5c9bec516247f63f20fa4436c9f3f043027ded5f7e4c4b12fb363d0009f67", @ANYRES32=0x0], 0xff, 0x194, &(0x7f0000000300)="$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")
unlinkat(0xffffffffffffff9c, &(0x7f0000000040)='./file0/file0\x00', 0x0)
rmdir(&(0x7f0000000000)='./file0\x00')

4.089662888s ago: executing program 4 (id=387):
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@random="0448a599dc4c", @local, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x4, 0x1c, 0x66, 0x0, 0x7, 0x2, 0x0, @private=0xa010102, @local}, {0x22, 0x1, 0x0, @empty}}}}}, 0x0)

3.936729453s ago: executing program 2 (id=388):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1c, 0x4, 0x4, 0x2, 0xe002, 0x1, 0xfffffffc, '\x00', 0x0, 0xffffffffffffffff, 0x3}, 0x50)
creat(&(0x7f0000000840)='./mnt\x00', 0x12)
r0 = getpgid(0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
syz_open_dev$vcsu(0x0, 0xd, 0x200)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x17, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000800)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xb, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x54}, 0x1, 0x0, 0x0, 0x4004}, 0x28040000)
r3 = syz_pidfd_open(r0, 0x0)
r4 = pidfd_getfd(r3, r3, 0x0)
setns(r4, 0x66020000)
mount$9p_fd(0x0, &(0x7f0000000980)='.\x00', 0x0, 0x104000, 0x0)
syz_clone(0x498144ee5f62e149, 0x0, 0x17, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r5 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r5, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r7}, 0x10)
umount2(&(0x7f0000000040)='.\x00', 0x2)

3.865486953s ago: executing program 4 (id=390):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'vxcan1\x00'})
bind$can_raw(r0, &(0x7f00000005c0), 0x10)
read(r0, &(0x7f00000027c0)=""/4073, 0xfe9)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000040)=0x56e40e99, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x6, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

3.617508498s ago: executing program 1 (id=392):
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x0, 0x0, 0xffffb9e3, 0x5})
writev(r0, &(0x7f0000000140)=[{0x0}], 0x1)

3.596698147s ago: executing program 0 (id=393):
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$xdp(0x2c, 0x3, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="c4000000190001000000000000000000e0000002000000000000000000000000ff02000000000000000000000000000100000000200000000a00000087000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082000000000000000000000fbffffffffffffff0000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000c0015005907350082"], 0xc4}}, 0x2c000010)
sendmsg$nl_xfrm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@updpolicy={0xb8, 0x15, 0x1, 0x0, 0x25dfdbfd, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in6=@loopback, 0x0, 0x0, 0x4e23, 0x0, 0xa, 0x10}, {0x8, 0x1, 0x0, 0x0, 0x8, 0x0, 0xffffffff, 0xffffffffffffffff}, {0x0, 0xfffffffffffffffa}, 0x4, 0x6e6bb5, 0x0, 0x1, 0x3, 0x3}}, 0xb8}}, 0x0)
r4 = syz_open_dev$cec(&(0x7f0000002340), 0x0, 0x101441)
ioctl$CEC_S_MODE(r4, 0x40046109, &(0x7f0000000180)=0x22)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x4, 0x5, &(0x7f0000000240)=ANY=[@ANYBLOB="180200000001000000000000000000008500000013000000850000000700000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f00000002c0)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x4000}})
socket$inet_sctp(0x2, 0x1, 0x84)
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r6, 0x0, 0x482, &(0x7f00000000c0)={0x84, @multicast2, 0x15, 0x3, 'wrr\x00', 0x30, 0x4, 0x68}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r6, 0x0, 0x487, &(0x7f0000000000)={{0x84, @broadcast, 0x4e21, 0x3, 'fo\x00', 0x11, 0x3240, 0x3a}, {@loopback, 0x4e23, 0x4, 0xc3, 0x12d5c, 0x12d5c}}, 0x44)
syz_fuse_handle_req(r5, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x1c}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

3.549772964s ago: executing program 1 (id=394):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000540), 0x1, 0x783, &(0x7f0000001000)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f0000000140), 0x0, 0x8000c61)
r1 = open(&(0x7f0000000200)='./file1\x00', 0x4827e, 0xdc)
fallocate(r1, 0x0, 0x0, 0x8800000)

3.041992253s ago: executing program 1 (id=395):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fanotify_init(0xf00, 0x1000)
epoll_create1(0x0)
bpf$BPF_PROG_ATTACH(0x8, 0x0, 0x14)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000340)={'netdevsim0\x00', &(0x7f0000000700)=@ethtool_flash={0x33, 0xea6, '.\x00'}})

2.389676124s ago: executing program 4 (id=397):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', 0xffffffffffffffff, 0x0, 0x401}, 0x11)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480))
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
write$binfmt_aout(r1, &(0x7f0000000040)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0xf, "0040001e1d113c812e5d6000"})
r2 = syz_open_pts(r1, 0x0)
dup3(r2, r1, 0x0)
ppoll(&(0x7f0000000140)=[{r1}], 0x1, 0x0, 0x0, 0x0)
ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000180)={0x38000, 0x8, 0x0, 0x6, 0x5, "aa32b73986bbee6bd231334cbfa0b758261a93"})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
setgroups(0x0, 0x0)
setrlimit(0x9, &(0x7f0000000080)={0x8606, 0xffff})
io_setup(0x8f0, &(0x7f0000002400))

1.92077264s ago: executing program 3 (id=401):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x3}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x3, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xff9}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x800009, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$packet(0x11, 0x3, 0x300)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000ee000095"], &(0x7f00000002c0)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f271a76d2686dd4c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$kcm(0x2, 0x922000000001, 0x106)
setsockopt$sock_attach_bpf(r2, 0x1, 0x25, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020641700000000002020007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
ioctl$INCFS_IOC_PERMIT_FILL(0xffffffffffffffff, 0x40046721, 0x0)

1.844952828s ago: executing program 0 (id=402):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000001b40)={0x1c, 0x20000000000000bb, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000040)=r1, 0x4)
sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB="00010000160001"], 0x100}}, 0x0)

1.676818683s ago: executing program 1 (id=403):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x4}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f00000006c0), 0x1, 0x512, &(0x7f0000000c40)="$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")

1.643961426s ago: executing program 0 (id=404):
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x0, 0x0, 0xffffb9e3, 0x5})
writev(r0, &(0x7f0000000140)=[{0x0}], 0x1)

1.453596476s ago: executing program 3 (id=405):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket(0x8000000010, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r1}, 0x10)
write(r0, &(0x7f00000002c0)="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", 0xfc)

1.453369994s ago: executing program 4 (id=406):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd)
r3 = getpid()
r4 = syz_open_procfs(r3, &(0x7f00000000c0)='uid_map\x00')
socket$inet6(0xa, 0x1, 0x0)
mremap(&(0x7f00009d1000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f00002a0000/0x4000)=nil)
pread64(r4, &(0x7f0000000480)=""/177, 0xb1, 0xa6)

1.453223823s ago: executing program 0 (id=407):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'vxcan1\x00'})
bind$can_raw(r0, &(0x7f00000005c0), 0x10)
read(r0, &(0x7f00000027c0)=""/4073, 0xfe9)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f0000000040)=0x56e40e99, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x6, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

1.322574442s ago: executing program 3 (id=408):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000080)=0x454a, 0x4)
connect$inet(r0, &(0x7f0000000580)={0x2, 0x4e21, @empty}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000ff01000000000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$vfat(&(0x7f0000000540), &(0x7f0000000040)='./file0\x00', 0x30044f1, &(0x7f0000000800)=ANY=[@ANYRES64, @ANYRES8, @ANYRES64, @ANYRES64], 0x0, 0x23e, &(0x7f0000000bc0)="$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")

1.008211393s ago: executing program 1 (id=409):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r1}, 0x10)
syz_clone(0x400, 0x0, 0x0, 0x0, 0x0, 0x0)

857.593917ms ago: executing program 3 (id=410):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x6}, 0x18)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x4000)
r1 = socket$pppl2tp(0x18, 0x1, 0x1)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x4}, 0x1c)
connect$pppl2tp(r1, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r2, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32)
writev(r1, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)

719.75112ms ago: executing program 3 (id=411):
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18010000000000000000000000000000850000002e00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

700.0791ms ago: executing program 1 (id=412):
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$xdp(0x2c, 0x3, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="c4000000190001000000000000000000e0000002000000000000000000000000ff02000000000000000000000000000100000000200000000a00000087000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000082000000000000000000000fbffffffffffffff0000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000c0015005907350082"], 0xc4}}, 0x2c000010)
sendmsg$nl_xfrm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@updpolicy={0xb8, 0x15, 0x1, 0x0, 0x25dfdbfd, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in6=@loopback, 0x0, 0x0, 0x4e23, 0x0, 0xa, 0x10}, {0x8, 0x1, 0x0, 0x0, 0x8, 0x0, 0xffffffff, 0xffffffffffffffff}, {0x0, 0xfffffffffffffffa}, 0x4, 0x6e6bb5, 0x0, 0x1, 0x3, 0x3}}, 0xb8}}, 0x0)
r4 = syz_open_dev$cec(&(0x7f0000002340), 0x0, 0x101441)
ioctl$CEC_S_MODE(r4, 0x40046109, &(0x7f0000000180)=0x22)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x4, 0x5, &(0x7f0000000240)=ANY=[@ANYBLOB="180200000001000000000000000000008500000013000000850000000700000095"], &(0x7f00000000c0)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f00000002c0)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x4000}})
socket$inet_sctp(0x2, 0x1, 0x84)
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r6, 0x0, 0x482, &(0x7f00000000c0)={0x84, @multicast2, 0x15, 0x3, 'wrr\x00', 0x30, 0x4, 0x68}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r6, 0x0, 0x487, &(0x7f0000000000)={{0x84, @broadcast, 0x4e21, 0x3, 'fo\x00', 0x11, 0x3240, 0x3a}, {@loopback, 0x4e23, 0x4, 0xc3, 0x12d5c, 0x12d5c}}, 0x44)
syz_fuse_handle_req(r5, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x1c}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

460.753206ms ago: executing program 4 (id=413):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000680)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_DELCHAIN={0xfc, 0x5, 0xa, 0x401, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x1}, @NFTA_CHAIN_HOOK={0x7c, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x219e4ae2}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x49e00293e0ae15c1}, @NFTA_HOOK_DEV={0x14, 0x3, 'sit0\x00'}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_HOOK_DEV={0x14, 0x3, 'vlan0\x00'}, @NFTA_HOOK_DEV={0x14, 0x3, 'wlan0\x00'}, @NFTA_HOOK_DEV={0x14, 0x3, 'vxcan1\x00'}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x3}]}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x5}, @NFTA_CHAIN_COUNTERS={0x4c, 0x8, 0x0, 0x1, [@NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x1}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0xffff}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x4}, @NFTA_COUNTER_PACKETS={0xc, 0x2, 0x1, 0x0, 0x8000000000000000}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0xfff}, @NFTA_COUNTER_BYTES={0xc, 0x1, 0x1, 0x0, 0x1}]}, @NFTA_CHAIN_TYPE={0x8, 0x7, 'nat\x00'}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x2}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x124}, 0x1, 0x0, 0x0, 0x40050}, 0x20000000)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000540)=0x7, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x56, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00'}, 0x10)
r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x80)
r3 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r2}, 0x8)
close(r3)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r2, 0x8, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r4 = syz_open_dev$evdev(&(0x7f00000000c0), 0x78, 0x822b01)
write$char_usb(r4, &(0x7f0000000040), 0x0)
ioctl$BTRFS_IOC_SCRUB(r3, 0xc400941b, &(0x7f0000000880)={<r5=>0x0, 0xe0, 0x4})
ioctl$BTRFS_IOC_SCRUB(r4, 0xc400941b, &(0x7f0000000c80)={r5, 0x3, 0xfff})
bpf$LINK_DETACH(0x22, 0x0, 0x0)
syz_clone(0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$LINK_DETACH(0x22, 0x0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0xfd, &(0x7f00000004c0)=[{&(0x7f0000000380)="2e00000010008188e6b62aa73772cc9f1ba1f848110000005e140602000000000e000a001000000002900000121f", 0x2e}], 0x1}, 0x40)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000480), 0x5013c0, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008188040f80ec59acbc0413a1f848110000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x8084)
syz_extract_tcp_res$synack(&(0x7f0000000080)={0x41424344, <r6=>0x41424344}, 0x1, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaae3aaaa48ffa4318cfae1d6f295d31800140600fc000000000000000000000000000001fe8000000000800000000000000000aafffe4001", @ANYRES32=0x41424344, @ANYRES32=r6, @ANYBLOB="5002000090780000"], 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000900)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @remote, @remote, {[], {{0x0, 0x4e22, r6, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0)

320.812328ms ago: executing program 3 (id=414):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
fanotify_init(0xf00, 0x1000)
epoll_create1(0x0)
bpf$BPF_PROG_ATTACH(0x8, 0x0, 0x14)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000340)={'netdevsim0\x00', &(0x7f0000000700)=@ethtool_flash={0x33, 0xea6, '.\x00'}})

0s ago: executing program 0 (id=415):
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
connect$netlink(r2, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x25dfdbfc}, 0xc)
getsockname$packet(r2, &(0x7f0000000340)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x70bd2b, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0x0, 0x2}, {0x0, 0xffef}, {0xfff3, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x8008014}, 0x4000)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.150' (ED25519) to the list of known hosts.
[   69.543684][ T5814] cgroup: Unknown subsys name 'net'
[   69.650006][ T5814] cgroup: Unknown subsys name 'cpuset'
[   69.659162][ T5814] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   71.079633][ T5814] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   71.572091][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[   71.580621][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[   73.281091][ T5841] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   73.290884][ T5841] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   73.299496][ T5842] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   73.310256][ T5842] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   73.318234][ T5842] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   73.323603][ T5841] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   73.327926][ T5842] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   73.341036][ T5842] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   73.342567][ T5844] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   73.350858][ T5842] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   73.363605][ T5842] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   73.365647][ T5846] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   73.372843][ T5842] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   73.377669][ T5841] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   73.393987][ T5844] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   73.394019][ T5842] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   73.409448][ T5847] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   73.412255][ T5842] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   73.417100][ T5841] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   73.425276][ T5842] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   73.432807][   T52] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   73.441933][ T5841] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   73.462313][ T5841] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   73.471040][   T52] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   73.479788][   T52] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   74.144006][ T5825] chnl_net:caif_netlink_parms(): no params data found
[   74.230969][ T5828] chnl_net:caif_netlink_parms(): no params data found
[   74.276968][ T5824] chnl_net:caif_netlink_parms(): no params data found
[   74.324108][ T5827] chnl_net:caif_netlink_parms(): no params data found
[   74.404268][ T5826] chnl_net:caif_netlink_parms(): no params data found
[   74.470672][ T5825] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.477953][ T5825] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.485368][ T5825] bridge_slave_0: entered allmulticast mode
[   74.493296][ T5825] bridge_slave_0: entered promiscuous mode
[   74.544075][ T5825] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.551267][ T5825] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.558483][ T5825] bridge_slave_1: entered allmulticast mode
[   74.565554][ T5825] bridge_slave_1: entered promiscuous mode
[   74.600247][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.607895][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.615099][ T5828] bridge_slave_0: entered allmulticast mode
[   74.622486][ T5828] bridge_slave_0: entered promiscuous mode
[   74.661145][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.668481][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.675752][ T5828] bridge_slave_1: entered allmulticast mode
[   74.683056][ T5828] bridge_slave_1: entered promiscuous mode
[   74.695355][ T5824] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.702669][ T5824] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.709923][ T5824] bridge_slave_0: entered allmulticast mode
[   74.717112][ T5824] bridge_slave_0: entered promiscuous mode
[   74.763013][ T5824] bridge0: port 2(bridge_slave_1) entered blocking state
[   74.770591][ T5824] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.777852][ T5824] bridge_slave_1: entered allmulticast mode
[   74.784910][ T5824] bridge_slave_1: entered promiscuous mode
[   74.795385][ T5825] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   74.853459][ T5825] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   74.893672][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   74.903707][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.911048][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.918797][ T5827] bridge_slave_0: entered allmulticast mode
[   74.925787][ T5827] bridge_slave_0: entered promiscuous mode
[   74.960968][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   74.970484][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state
[   74.978118][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.985263][ T5826] bridge_slave_0: entered allmulticast mode
[   74.992782][ T5826] bridge_slave_0: entered promiscuous mode
[   75.005622][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.013245][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.020486][ T5827] bridge_slave_1: entered allmulticast mode
[   75.028370][ T5827] bridge_slave_1: entered promiscuous mode
[   75.038208][ T5824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.050444][ T5825] team0: Port device team_slave_0 added
[   75.085018][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.092315][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.099885][ T5826] bridge_slave_1: entered allmulticast mode
[   75.107460][ T5826] bridge_slave_1: entered promiscuous mode
[   75.128313][ T5824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   75.155184][ T5825] team0: Port device team_slave_1 added
[   75.176788][ T5828] team0: Port device team_slave_0 added
[   75.231080][ T5828] team0: Port device team_slave_1 added
[   75.264109][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.276853][ T5824] team0: Port device team_slave_0 added
[   75.283646][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_0
[   75.290802][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   75.318311][ T5825] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   75.345304][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.357578][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   75.369079][ T5824] team0: Port device team_slave_1 added
[   75.385540][ T5825] batman_adv: batadv0: Adding interface: batadv_slave_1
[   75.393013][ T5825] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   75.418966][ T5825] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   75.430890][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0
[   75.438071][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   75.464035][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   75.476819][ T5830] Bluetooth: hci0: command tx timeout
[   75.478292][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   75.482542][ T5830] Bluetooth: hci4: command tx timeout
[   75.538159][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1
[   75.545123][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   75.571713][ T5830] Bluetooth: hci1: command tx timeout
[   75.576188][   T52] Bluetooth: hci2: command tx timeout
[   75.577242][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   75.582883][ T5830] Bluetooth: hci3: command tx timeout
[   75.625419][ T5827] team0: Port device team_slave_0 added
[   75.634982][ T5827] team0: Port device team_slave_1 added
[   75.657618][ T5826] team0: Port device team_slave_0 added
[   75.664139][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_0
[   75.671219][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   75.697694][ T5824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   75.752924][ T5826] team0: Port device team_slave_1 added
[   75.775454][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_1
[   75.782749][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   75.808950][ T5824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   75.832330][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0
[   75.839360][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   75.865616][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   75.882634][ T5825] hsr_slave_0: entered promiscuous mode
[   75.889368][ T5825] hsr_slave_1: entered promiscuous mode
[   75.930150][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1
[   75.937210][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   75.963294][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   75.975802][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0
[   75.982935][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   76.009217][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   76.026182][ T5828] hsr_slave_0: entered promiscuous mode
[   76.032628][ T5828] hsr_slave_1: entered promiscuous mode
[   76.039733][ T5828] debugfs: 'hsr0' already exists in 'hsr'
[   76.045537][ T5828] Cannot create hsr debugfs directory
[   76.073021][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1
[   76.080195][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   76.106134][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   76.234252][ T5824] hsr_slave_0: entered promiscuous mode
[   76.240958][ T5824] hsr_slave_1: entered promiscuous mode
[   76.247334][ T5824] debugfs: 'hsr0' already exists in 'hsr'
[   76.253086][ T5824] Cannot create hsr debugfs directory
[   76.327119][ T5827] hsr_slave_0: entered promiscuous mode
[   76.333577][ T5827] hsr_slave_1: entered promiscuous mode
[   76.339999][ T5827] debugfs: 'hsr0' already exists in 'hsr'
[   76.345730][ T5827] Cannot create hsr debugfs directory
[   76.382398][ T5826] hsr_slave_0: entered promiscuous mode
[   76.388864][ T5826] hsr_slave_1: entered promiscuous mode
[   76.394995][ T5826] debugfs: 'hsr0' already exists in 'hsr'
[   76.400771][ T5826] Cannot create hsr debugfs directory
[   76.898152][ T5828] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   76.911094][ T5828] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   76.922584][ T5828] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   76.933726][ T5828] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   77.002141][ T5825] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   77.019130][ T5825] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   77.038944][ T5825] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   77.062618][ T5825] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   77.134786][ T5824] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   77.148414][ T5824] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   77.161926][ T5824] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   77.180427][ T5824] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   77.305011][ T5827] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   77.321986][ T5827] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   77.340233][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.349583][ T5827] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   77.384210][ T5827] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   77.457685][ T5828] 8021q: adding VLAN 0 to HW filter on device team0
[   77.484336][ T5825] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.499279][ T5826] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   77.513847][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.521086][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.542193][ T5826] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   77.553065][ T5826] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   77.559978][ T5830] Bluetooth: hci4: command tx timeout
[   77.566773][ T5830] Bluetooth: hci0: command tx timeout
[   77.575489][ T5826] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   77.622075][ T5824] 8021q: adding VLAN 0 to HW filter on device bond0
[   77.635942][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.643072][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.650588][ T5830] Bluetooth: hci3: command tx timeout
[   77.651442][   T52] Bluetooth: hci2: command tx timeout
[   77.656034][ T5145] Bluetooth: hci1: command tx timeout
[   77.672894][ T5825] 8021q: adding VLAN 0 to HW filter on device team0
[   77.699648][ T3528] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.706903][ T3528] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.731351][ T3528] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.738549][ T3528] bridge0: port 2(bridge_slave_1) entered forwarding state
[   77.799483][ T5824] 8021q: adding VLAN 0 to HW filter on device team0
[   77.865646][ T5825] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   77.891787][ T3528] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.899032][ T3528] bridge0: port 1(bridge_slave_0) entered forwarding state
[   77.945213][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.952462][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.047494][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.129148][ T5827] 8021q: adding VLAN 0 to HW filter on device team0
[   78.173742][ T3528] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.181003][ T3528] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.232044][ T3528] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.239280][ T3528] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.277406][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.342241][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0
[   78.383962][ T5826] 8021q: adding VLAN 0 to HW filter on device team0
[   78.423443][ T3528] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.430650][ T3528] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.489618][ T3501] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.496855][ T3501] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.515625][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0
[   78.570419][ T5828] veth0_vlan: entered promiscuous mode
[   78.650101][ T5828] veth1_vlan: entered promiscuous mode
[   78.675465][ T5824] 8021q: adding VLAN 0 to HW filter on device batadv0
[   78.743607][ T5826] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   78.764957][ T5825] veth0_vlan: entered promiscuous mode
[   78.795053][ T5825] veth1_vlan: entered promiscuous mode
[   78.874602][ T5828] veth0_macvtap: entered promiscuous mode
[   78.894115][ T5824] veth0_vlan: entered promiscuous mode
[   78.913183][ T5828] veth1_macvtap: entered promiscuous mode
[   78.924928][ T5825] veth0_macvtap: entered promiscuous mode
[   78.947868][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0
[   79.001595][ T5824] veth1_vlan: entered promiscuous mode
[   79.011981][ T5825] veth1_macvtap: entered promiscuous mode
[   79.043623][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0
[   79.072988][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0
[   79.088985][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1
[   79.105547][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1
[   79.138428][ T3528] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.151287][ T3528] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.163493][ T3528] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.181702][ T3528] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.190765][ T3528] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.217120][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.233867][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.243886][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.315383][ T5827] veth0_vlan: entered promiscuous mode
[   79.331907][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0
[   79.341725][ T5824] veth0_macvtap: entered promiscuous mode
[   79.374857][ T5824] veth1_macvtap: entered promiscuous mode
[   79.388440][ T5827] veth1_vlan: entered promiscuous mode
[   79.474964][ T3152] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.479564][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0
[   79.497300][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1
[   79.527759][ T3152] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.543495][   T36] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.563293][   T36] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.614796][   T36] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.625121][   T36] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.636639][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.644483][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.646476][   T52] Bluetooth: hci0: command tx timeout
[   79.651842][ T5830] Bluetooth: hci4: command tx timeout
[   79.700914][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.721473][ T5830] Bluetooth: hci3: command tx timeout
[   79.721738][   T52] Bluetooth: hci2: command tx timeout
[   79.727077][ T5830] Bluetooth: hci1: command tx timeout
[   79.741596][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.778239][ T5827] veth0_macvtap: entered promiscuous mode
[   79.815596][ T5827] veth1_macvtap: entered promiscuous mode
[   79.835359][ T5828] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   79.915705][ T3528] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.933870][ T3528] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.980569][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0
[   79.996786][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   80.004638][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   80.051187][ T5946] Driver unsupported XDP return value 0 on prog  (id 3) dev N/A, expect packet loss!
[   80.051306][ T5826] veth0_vlan: entered promiscuous mode
[   80.080479][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1
[   80.151146][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   80.162339][ T5826] veth1_vlan: entered promiscuous mode
[   80.180485][   T65] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   80.197654][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   80.251871][   T65] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   80.285824][   T65] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   80.309384][   T65] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   80.330828][   T30] audit: type=1326 audit(1762653100.038:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5953 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[   80.368381][   T30] audit: type=1326 audit(1762653100.048:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5953 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[   80.451731][ T5826] veth0_macvtap: entered promiscuous mode
[   80.479619][   T30] audit: type=1326 audit(1762653100.048:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5953 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=281 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[   80.537052][ T5826] veth1_macvtap: entered promiscuous mode
[   80.577181][   T30] audit: type=1326 audit(1762653100.048:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5953 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[   80.645370][   T30] audit: type=1326 audit(1762653100.048:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5953 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[   80.669017][   T30] audit: type=1326 audit(1762653100.048:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5953 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[   80.693178][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   80.715648][ T5962] mmap: syz.3.4 (5962) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   80.719180][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0
[   80.739420][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   80.774511][   T30] audit: type=1326 audit(1762653100.048:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5953 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[   80.819672][ T5965] loop0: detected capacity change from 0 to 2048
[   80.829422][   T30] audit: type=1326 audit(1762653100.048:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5953 comm="syz.2.3" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[   80.872620][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1
[   80.902034][   T30] audit: type=1326 audit(1762653100.478:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5956 comm="syz.2.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[   80.947944][ T3152] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   80.957390][   T65] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   80.963820][ T3152] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   80.974535][   T30] audit: type=1326 audit(1762653100.478:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5956 comm="syz.2.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[   81.010148][   T65] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.039436][ T3152] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   81.050534][ T5965] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.064404][ T3152] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   81.359846][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   81.527972][ T5982] netlink: 104 bytes leftover after parsing attributes in process `syz.2.12'.
[   81.552447][   T10] IPVS: starting estimator thread 0...
[   81.716442][ T5830] Bluetooth: hci4: command tx timeout
[   81.726855][ T5830] Bluetooth: hci0: command tx timeout
[   81.757057][ T5983] IPVS: using max 25 ests per chain, 60000 per kthread
[   81.796576][ T5830] Bluetooth: hci2: command tx timeout
[   81.802494][ T5830] Bluetooth: hci1: command tx timeout
[   81.811975][ T5830] Bluetooth: hci3: command tx timeout
[   82.026760][ T3152] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.096385][ T3152] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.257180][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.287723][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.450868][ T5993] loop2: detected capacity change from 0 to 2048
[   82.509267][ T5993] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   82.749368][ T6004] loop4: detected capacity change from 0 to 512
[   82.820263][ T6004] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   83.013726][ T6009] syz.0.23: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[   83.079422][ T6009] CPU: 0 UID: 0 PID: 6009 Comm: syz.0.23 Not tainted syzkaller #0 PREEMPT(full) 
[   83.079449][ T6009] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   83.079467][ T6009] Call Trace:
[   83.079475][ T6009]  <TASK>
[   83.079484][ T6009]  dump_stack_lvl+0x189/0x250
[   83.079520][ T6009]  ? __pfx_dump_stack_lvl+0x10/0x10
[   83.079548][ T6009]  ? __pfx__printk+0x10/0x10
[   83.079570][ T6009]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[   83.079593][ T6009]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[   83.079617][ T6009]  ? cpuset_print_current_mems_allowed+0x2ee/0x360
[   83.079642][ T6009]  warn_alloc+0x214/0x310
[   83.079671][ T6009]  ? __pfx_warn_alloc+0x10/0x10
[   83.079698][ T6009]  ? kasan_save_track+0x4f/0x80
[   83.079714][ T6009]  ? kasan_save_track+0x3e/0x80
[   83.079729][ T6009]  ? __kasan_kmalloc+0x93/0xb0
[   83.079746][ T6009]  ? __kmalloc_cache_noprof+0x3e2/0x700
[   83.079762][ T6009]  ? xskq_create+0x56/0x170
[   83.079784][ T6009]  ? xsk_setsockopt+0x4dc/0x8d0
[   83.079802][ T6009]  ? do_sock_setsockopt+0x17c/0x1b0
[   83.079823][ T6009]  ? __x64_sys_setsockopt+0x13f/0x1b0
[   83.079844][ T6009]  ? do_syscall_64+0xfa/0xfa0
[   83.079871][ T6009]  __vmalloc_node_range_noprof+0x134/0x1640
[   83.079935][ T6009]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   83.079962][ T6009]  ? __kasan_kmalloc+0x93/0xb0
[   83.079988][ T6009]  vmalloc_user_noprof+0xad/0xf0
[   83.080007][ T6009]  ? xskq_create+0xbf/0x170
[   83.080031][ T6009]  xskq_create+0xbf/0x170
[   83.080056][ T6009]  xsk_init_queue+0xb0/0x110
[   83.080082][ T6009]  xsk_setsockopt+0x4dc/0x8d0
[   83.080106][ T6009]  ? __pfx_xsk_setsockopt+0x10/0x10
[   83.080130][ T6009]  ? __pfx_aa_sk_perm+0x10/0x10
[   83.080158][ T6009]  ? aa_sock_opt_perm+0xff/0x1b0
[   83.080188][ T6009]  ? bpf_lsm_socket_setsockopt+0x9/0x20
[   83.080206][ T6009]  ? __pfx_xsk_setsockopt+0x10/0x10
[   83.080228][ T6009]  do_sock_setsockopt+0x17c/0x1b0
[   83.080256][ T6009]  __x64_sys_setsockopt+0x13f/0x1b0
[   83.080286][ T6009]  do_syscall_64+0xfa/0xfa0
[   83.080311][ T6009]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.080329][ T6009]  ? clear_bhb_loop+0x60/0xb0
[   83.080352][ T6009]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   83.080370][ T6009] RIP: 0033:0x7f53c278f6c9
[   83.080390][ T6009] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   83.080405][ T6009] RSP: 002b:00007f53c35f0038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[   83.080425][ T6009] RAX: ffffffffffffffda RBX: 00007f53c29e5fa0 RCX: 00007f53c278f6c9
[   83.080439][ T6009] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000005
[   83.080450][ T6009] RBP: 00007f53c2811f91 R08: 0000000000000004 R09: 0000000000000000
[   83.080462][ T6009] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[   83.080473][ T6009] R13: 00007f53c29e6038 R14: 00007f53c29e5fa0 R15: 00007ffdf0f029f8
[   83.080507][ T6009]  </TASK>
[   83.080518][ T6009] Mem-Info:
[   83.386506][ T6009] active_anon:8822 inactive_anon:0 isolated_anon:0
[   83.386506][ T6009]  active_file:2823 inactive_file:39903 isolated_file:0
[   83.386506][ T6009]  unevictable:768 dirty:1673 writeback:0
[   83.386506][ T6009]  slab_reclaimable:10421 slab_unreclaimable:94066
[   83.386506][ T6009]  mapped:32167 shmem:4528 pagetables:1183
[   83.386506][ T6009]  sec_pagetables:0 bounce:0
[   83.386506][ T6009]  kernel_misc_reclaimable:0
[   83.386506][ T6009]  free:1323205 free_pcp:18135 free_cma:0
[   83.489774][ T6009] Node 0 active_anon:34088kB inactive_anon:0kB active_file:11292kB inactive_file:159412kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:117268kB dirty:6684kB writeback:0kB shmem:15576kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12116kB pagetables:4504kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[   83.552647][ T6009] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:8kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:64kB pagetables:128kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[   83.587251][ T6009] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   83.690515][ T6009] lowmem_reserve[]: 0 2495 2496 2496 2496
[   83.706913][ T6009] Node 0 DMA32 free:1399228kB boost:0kB min:34232kB low:42788kB high:51344kB reserved_highatomic:0KB free_highatomic:0KB active_anon:22788kB inactive_anon:0kB active_file:11292kB inactive_file:159412kB unevictable:1536kB writepending:6684kB zspages:0kB present:3129332kB managed:2555368kB mlocked:0kB bounce:0kB free_pcp:60720kB local_pcp:23340kB free_cma:0kB
[   83.795172][ T5826] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.810565][ T6009] lowmem_reserve[]: 0 0 1 1 1
[   83.815338][ T6009] Node 0 Normal free:0kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   83.870099][ T6024] team_slave_0: entered promiscuous mode
[   83.875887][ T6024] team_slave_1: entered promiscuous mode
[   83.887602][ T6009] lowmem_reserve[]: 0 0 0 0 0
[   83.892367][ T6009] Node 1 Normal free:3877128kB boost:0kB min:55652kB low:69564kB high:83476kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:8kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:26508kB local_pcp:12728kB free_cma:0kB
[   83.925738][ T6009] lowmem_reserve[]: 0 0 0 0 0
[   83.931053][ T6009] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   83.935806][ T6022] team_slave_0: left promiscuous mode
[   83.944306][ T6009] Node 0 
[   83.949374][ T6022] team_slave_1: left promiscuous mode
[   83.976057][ T6009] DMA32: 73*4kB (UM) 19*8kB (UM) 20*16kB (UM) 18*32kB (UME) 10*64kB (UM) 11*128kB (UM) 10*256kB (UME) 7*512kB (ME) 7*1024kB (UME) 3*2048kB (UM) 336*4096kB (M) = 1399100kB
[   84.017916][ T6023] netlink: 8 bytes leftover after parsing attributes in process `syz.3.27'.
[   84.078261][ T6009] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[   84.139191][ T6009] Node 1 Normal: 38*4kB (UE) 56*8kB (UME) 53*16kB (UME) 43*32kB (UME) 14*64kB (UME) 7*128kB (UME) 3*256kB (UM) 4*512kB (UME) 3*1024kB (UME) 2*2048kB (UE) 943*4096kB (M) = 3877128kB
[   84.226037][ T6009] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   84.258945][ T6009] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   84.320225][ T6032] loop1: detected capacity change from 0 to 512
[   84.327174][ T6009] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   84.356006][ T6009] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   84.375835][ T6009] 44548 total pagecache pages
[   84.380914][ T6009] 0 pages in swap cache
[   84.385082][ T6009] Free swap  = 124996kB
[   84.389821][ T6009] Total swap = 124996kB
[   84.408125][ T6009] 2097051 pages RAM
[   84.416263][ T6009] 0 pages HighMem/MovableOnly
[   84.421080][ T6009] 426247 pages reserved
[   84.440709][ T6009] 0 pages cma reserved
[   84.569943][ T6032] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.612949][ T6032] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   84.823226][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.907419][ T6044] netlink: 36 bytes leftover after parsing attributes in process `syz.0.33'.
[   85.167610][ T6049] loop0: detected capacity change from 0 to 512
[   85.214729][ T6049] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   85.228302][ T6049] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.669024][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   85.675571][ T6059] netlink: 8 bytes leftover after parsing attributes in process `syz.1.39'.
[   85.881271][ T6063] loop1: detected capacity change from 0 to 512
[   85.936326][ T6063] EXT4-fs: Ignoring removed i_version option
[   85.942360][ T6063] EXT4-fs: inline encryption not supported
[   85.993978][ T6063] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   86.052601][ T6063] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.40: bg 0: block 131: padding at end of block bitmap is not set
[   86.085460][ T6063] EXT4-fs (loop1): Remounting filesystem read-only
[   86.093183][ T6063] EXT4-fs (loop1): 1 truncate cleaned up
[   86.100857][ T6063] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   86.212898][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   86.318984][ T6073] netlink: 36 bytes leftover after parsing attributes in process `syz.0.45'.
[   86.416900][ T5951] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   86.532671][ T6076] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   86.606178][ T5951] usb 3-1: Using ep0 maxpacket: 8
[   86.636370][ T5951] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   86.656055][ T5951] usb 3-1: config 0 has no interfaces?
[   86.671913][ T5951] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[   86.702325][ T5951] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   86.751240][ T5951] usb 3-1: config 0 descriptor??
[   86.852275][ T6088] netlink: 8 bytes leftover after parsing attributes in process `syz.3.51'.
[   86.930356][  T794] cfg80211: failed to load regulatory.db
[   87.029935][ T6093] netlink: 'syz.2.43': attribute type 10 has an invalid length.
[   87.051847][ T6093] netlink: 40 bytes leftover after parsing attributes in process `syz.2.43'.
[   87.091101][ T6093] team0: entered promiscuous mode
[   87.167257][ T6093] team_slave_0: entered promiscuous mode
[   87.215858][ T6093] team_slave_1: entered promiscuous mode
[   87.227551][ T6093] team0: entered allmulticast mode
[   87.232800][ T6093] team_slave_0: entered allmulticast mode
[   87.276229][ T6093] team_slave_1: entered allmulticast mode
[   87.284353][ T6093] bridge0: port 3(team0) entered blocking state
[   87.309434][ T6093] bridge0: port 3(team0) entered disabled state
[   87.527536][ T6093] bridge0: port 3(team0) entered blocking state
[   87.534303][ T6093] bridge0: port 3(team0) entered forwarding state
[   87.619755][ T6099] 9pnet_virtio: no channels available for device syz
[   88.277547][   T24] usb 3-1: USB disconnect, device number 2
[   88.393714][ T6085] infiniband syz!: set active
[   88.409458][ T6085] infiniband syz!: added team_slave_0
[   88.640950][ T6085] RDS/IB: syz!: added
[   88.668730][ T6085] smc: adding ib device syz! with port count 1
[   88.719212][ T6085] smc:    ib device syz! port 1 has no pnetid
[   89.127615][ T6115] loop2: detected capacity change from 0 to 512
[   89.144976][ T6115] =======================================================
[   89.144976][ T6115] WARNING: The mand mount option has been deprecated and
[   89.144976][ T6115]          and is ignored by this kernel. Remove the mand
[   89.144976][ T6115]          option from the mount to silence this warning.
[   89.144976][ T6115] =======================================================
[   89.265191][ T6119] loop3: detected capacity change from 0 to 512
[   89.286780][ T6115] EXT4-fs (loop2): orphan cleanup on readonly fs
[   89.333241][ T6122] tipc: Started in network mode
[   89.338385][ T6122] tipc: Node identity ac14140f, cluster identity 4711
[   89.341378][ T6115] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.59: bg 0: block 248: padding at end of block bitmap is not set
[   89.345696][ T6122] tipc: New replicast peer: 255.255.255.83
[   89.365721][ T6122] tipc: Enabled bearer <udp:q>, priority 10
[   89.421631][ T6119] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   89.435321][ T6115] __quota_error: 6 callbacks suppressed
[   89.435339][ T6115] Quota error (device loop2): write_blk: dquota write failed
[   89.462514][ T6119] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   89.486739][ T6115] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   89.514084][ T6115] EXT4-fs error (device loop2): ext4_acquire_dquot:6946: comm syz.2.59: Failed to acquire dquot type 1
[   89.552022][ T6115] EXT4-fs (loop2): 1 truncate cleaned up
[   89.575845][ T6115] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   89.595058][   T30] audit: type=1800 audit(1762653109.318:18): pid=6119 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.62" name="file2" dev="loop3" ino=16 res=0 errno=0
[   89.639757][ T6115] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[   89.868436][ T6115] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[   89.882496][ T5824] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.903289][ T6115] ext4 filesystem being remounted at /9/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   90.085207][ T6134] netlink: 4 bytes leftover after parsing attributes in process `syz.3.65'.
[   90.130038][   T30] audit: type=1326 audit(1762653109.838:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6114 comm="syz.2.59" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[   90.212734][ T6135] netlink: 104 bytes leftover after parsing attributes in process `syz.0.66'.
[   90.226117][ T5902] IPVS: starting estimator thread 0...
[   90.229385][   T30] audit: type=1326 audit(1762653109.838:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6114 comm="syz.2.59" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[   90.292158][   T30] audit: type=1326 audit(1762653109.838:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6114 comm="syz.2.59" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[   90.317216][ T6136] IPVS: using max 27 ests per chain, 64800 per kthread
[   90.329227][   T30] audit: type=1326 audit(1762653109.838:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6114 comm="syz.2.59" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[   90.362965][   T30] audit: type=1326 audit(1762653109.838:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6114 comm="syz.2.59" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[   90.439524][   T30] audit: type=1326 audit(1762653109.848:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6114 comm="syz.2.59" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[   90.466692][   T30] audit: type=1326 audit(1762653109.858:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6114 comm="syz.2.59" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[   90.490057][  T794] tipc: Node number set to 2886997007
[   90.900564][ T6141] netlink: 16 bytes leftover after parsing attributes in process `syz.1.68'.
[   91.624962][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   91.846262][ T6155] loop3: detected capacity change from 0 to 2048
[   91.891587][ T6155] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   91.938663][ T6165] loop0: detected capacity change from 0 to 512
[   92.021577][ T6165] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   92.059132][   T12] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[   92.112903][   T12] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[   92.127642][ T6165] ext4 filesystem being mounted at /23/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   92.144477][   T12] EXT4-fs (loop3): This should not happen!! Data will be lost
[   92.144477][   T12] 
[   92.218295][   T12] EXT4-fs (loop3): Total free blocks count 0
[   92.224323][   T12] EXT4-fs (loop3): Free/Dirty block details
[   92.245107][ T6172] netlink: 16 bytes leftover after parsing attributes in process `syz.2.80'.
[   92.257609][   T12] EXT4-fs (loop3): free_blocks=2415919504
[   92.263388][   T12] EXT4-fs (loop3): dirty_blocks=32
[   92.278999][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.296812][   T12] EXT4-fs (loop3): Block reservation details
[   92.306955][   T12] EXT4-fs (loop3): i_reserved_data_blocks=2
[   92.326403][   T12] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 1 with error 28
[   92.790416][ T6176] loop0: detected capacity change from 0 to 8192
[   92.977198][ T6188] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   93.308827][ T6194] loop2: detected capacity change from 0 to 128
[   93.393427][ T6194] syz.2.87: attempt to access beyond end of device
[   93.393427][ T6194] loop2: rw=2049, sector=138, nr_sectors = 8 limit=128
[   93.485575][ T6194] syz.2.87: attempt to access beyond end of device
[   93.485575][ T6194] loop2: rw=2049, sector=146, nr_sectors = 6 limit=128
[   93.564649][ T6194] syz.2.87: attempt to access beyond end of device
[   93.564649][ T6194] loop2: rw=0, sector=150, nr_sectors = 2 limit=128
[   93.578665][ T6194] syz.2.87: attempt to access beyond end of device
[   93.578665][ T6194] loop2: rw=2049, sector=138, nr_sectors = 8 limit=128
[   93.581499][ T6202] pim6reg: entered allmulticast mode
[   93.605821][ T6199] loop0: detected capacity change from 0 to 2048
[   93.664877][ T6199] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.701052][ T6204] loop4: detected capacity change from 0 to 512
[   93.839661][ T6204] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   93.882819][ T6213] capability: warning: `syz.3.93' uses deprecated v2 capabilities in a way that may be insecure
[   93.985816][ T6204] ext4 filesystem being mounted at /6/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.056556][ T3501] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[   94.116550][ T3501] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[   94.189796][ T3501] EXT4-fs (loop0): This should not happen!! Data will be lost
[   94.189796][ T3501] 
[   94.231200][ T5826] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.246110][ T3501] EXT4-fs (loop0): Total free blocks count 0
[   94.252135][ T3501] EXT4-fs (loop0): Free/Dirty block details
[   94.277177][ T3501] EXT4-fs (loop0): free_blocks=2415919504
[   94.282945][ T3501] EXT4-fs (loop0): dirty_blocks=32
[   94.336292][ T3501] EXT4-fs (loop0): Block reservation details
[   94.342315][ T3501] EXT4-fs (loop0): i_reserved_data_blocks=2
[   94.383103][ T3501] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 1 with error 28
[   94.676199][   T30] kauditd_printk_skb: 44 callbacks suppressed
[   94.676217][   T30] audit: type=1326 audit(1762653114.388:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.0.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[   94.721183][ T6235] loop4: detected capacity change from 0 to 1024
[   94.747435][   T30] audit: type=1326 audit(1762653114.398:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.0.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[   94.772882][ T6233] netlink: 'syz.0.96': attribute type 13 has an invalid length.
[   94.825687][ T6235] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[   94.853598][   T30] audit: type=1326 audit(1762653114.398:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.0.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[   94.896850][ T6235] ext4 filesystem being mounted at /8/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   94.930272][   T30] audit: type=1326 audit(1762653114.498:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.0.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[   94.930328][   T30] audit: type=1326 audit(1762653114.498:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.0.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[   94.930368][   T30] audit: type=1326 audit(1762653114.498:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.0.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[   94.930407][   T30] audit: type=1326 audit(1762653114.498:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.0.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[   94.930446][   T30] audit: type=1326 audit(1762653114.498:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.0.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[   94.980539][   T30] audit: type=1326 audit(1762653114.708:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.0.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[   95.011297][   T30] audit: type=1326 audit(1762653114.738:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.0.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[   95.023600][ T6235] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.102: bg 0: block 112: padding at end of block bitmap is not set
[   95.026796][ T6235] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 52 with error 117
[   95.026841][ T6235] EXT4-fs (loop4): This should not happen!! Data will be lost
[   95.026841][ T6235] 
[   95.030246][ T6235] EXT4-fs error (device loop4): ext4_map_blocks:819: inode #15: comm syz.4.102: lblock 0 mapped to illegal pblock 0 (length 1)
[   95.138941][ T5826] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[   95.501531][ T6252] loop2: detected capacity change from 0 to 2048
[   95.567278][ T6252] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   95.593612][ T6233] bridge0: port 2(bridge_slave_1) entered disabled state
[   95.594709][ T6233] bridge0: port 1(bridge_slave_0) entered disabled state
[   95.692406][   T49] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[   95.719752][   T49] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[   95.748995][   T49] EXT4-fs (loop2): This should not happen!! Data will be lost
[   95.748995][   T49] 
[   95.776182][   T49] EXT4-fs (loop2): Total free blocks count 0
[   95.782326][   T49] EXT4-fs (loop2): Free/Dirty block details
[   95.804107][   T49] EXT4-fs (loop2): free_blocks=2415919504
[   95.818977][   T49] EXT4-fs (loop2): dirty_blocks=32
[   95.832649][   T49] EXT4-fs (loop2): Block reservation details
[   95.841261][ T6258] loop1: detected capacity change from 0 to 512
[   95.847811][   T49] EXT4-fs (loop2): i_reserved_data_blocks=2
[   95.866925][ T3528] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 1 with error 28
[   95.904366][ T6258] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   95.917967][ T6258] ext4 filesystem being mounted at /29/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   96.145691][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.181349][ T6233] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   96.213129][ T6233] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   96.612522][ T6249] pim6reg: entered allmulticast mode
[   96.650058][   T36] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   96.712623][ T6271] netlink: 104 bytes leftover after parsing attributes in process `syz.2.111'.
[   96.755078][   T36] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   96.977980][   T36] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   97.202706][   T36] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   97.485867][ T6282] netlink: 264 bytes leftover after parsing attributes in process `syz.1.115'.
[   98.699298][ T6296] loop3: detected capacity change from 0 to 2048
[   98.779513][ T6299] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[   98.788007][ T6299] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[   98.797296][ T6299] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[   98.962520][ T6296] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   99.085078][ T6296] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[   99.188901][ T6281] loop2: detected capacity change from 0 to 40427
[   99.283964][ T5824] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.295582][ T6281] F2FS-fs (loop2): invalid crc value
[   99.665149][ T6281] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[   99.742768][ T6281] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  100.197289][ T6326] xt_CT: You must specify a L4 protocol and not use inversions on it
[  100.229566][ T6326] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  100.423328][ T5825] syz-executor: attempt to access beyond end of device
[  100.423328][ T5825] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  100.457886][ T5825] CPU: 0 UID: 0 PID: 5825 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  100.457910][ T5825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  100.457919][ T5825] Call Trace:
[  100.457926][ T5825]  <TASK>
[  100.457934][ T5825]  dump_stack_lvl+0x189/0x250
[  100.457964][ T5825]  ? __pfx_dump_stack_lvl+0x10/0x10
[  100.457988][ T5825]  ? __pfx_queue_work_on+0x10/0x10
[  100.458013][ T5825]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  100.458033][ T5825]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  100.458062][ T5825]  f2fs_handle_critical_error+0x37c/0x540
[  100.458093][ T5825]  f2fs_write_end_io+0x886/0xb60
[  100.458131][ T5825]  __submit_merged_bio+0x27a/0x6a0
[  100.458161][ T5825]  __submit_merged_write_cond+0x255/0x530
[  100.458192][ T5825]  f2fs_write_data_pages+0x261d/0x3000
[  100.458246][ T5825]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  100.458343][ T5825]  ? __lock_acquire+0xab9/0xd20
[  100.458374][ T5825]  ? do_raw_spin_lock+0x121/0x290
[  100.458403][ T5825]  ? do_raw_spin_unlock+0x122/0x240
[  100.458420][ T5825]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  100.458439][ T5825]  do_writepages+0x32e/0x550
[  100.458474][ T5825]  ? do_raw_spin_unlock+0x122/0x240
[  100.458497][ T5825]  filemap_fdatawrite+0x199/0x240
[  100.458521][ T5825]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  100.458592][ T5825]  ? do_raw_spin_unlock+0x122/0x240
[  100.458615][ T5825]  f2fs_sync_dirty_inodes+0x31f/0x830
[  100.458650][ T5825]  f2fs_write_checkpoint+0x93e/0x2440
[  100.458668][ T5825]  ? __lock_acquire+0xab9/0xd20
[  100.458717][ T5825]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  100.458791][ T5825]  kill_f2fs_super+0x2cc/0x6d0
[  100.458817][ T5825]  ? __pfx_kill_f2fs_super+0x10/0x10
[  100.458857][ T5825]  ? shrinker_free+0x2ce/0x3e0
[  100.458880][ T5825]  deactivate_locked_super+0xbc/0x130
[  100.458902][ T5825]  cleanup_mnt+0x425/0x4c0
[  100.458920][ T5825]  ? lockdep_hardirqs_on+0x9c/0x150
[  100.458945][ T5825]  task_work_run+0x1d4/0x260
[  100.458966][ T5825]  ? __pfx_task_work_run+0x10/0x10
[  100.458989][ T5825]  ? exit_to_user_mode_loop+0x55/0x4f0
[  100.459013][ T5825]  exit_to_user_mode_loop+0xff/0x4f0
[  100.459033][ T5825]  ? rcu_is_watching+0x15/0xb0
[  100.459059][ T5825]  do_syscall_64+0x2e9/0xfa0
[  100.459082][ T5825]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.459099][ T5825]  ? clear_bhb_loop+0x60/0xb0
[  100.459120][ T5825]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  100.459136][ T5825] RIP: 0033:0x7fe4d4d909f7
[  100.459151][ T5825] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  100.459164][ T5825] RSP: 002b:00007fff74436118 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  100.459182][ T5825] RAX: 0000000000000000 RBX: 00007fe4d4e11d7d RCX: 00007fe4d4d909f7
[  100.459194][ T5825] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff744361d0
[  100.459204][ T5825] RBP: 00007fff744361d0 R08: 0000000000000000 R09: 0000000000000000
[  100.459213][ T5825] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff74437260
[  100.459224][ T5825] R13: 00007fe4d4e11d7d R14: 0000000000018778 R15: 00007fff744372a0
[  100.459254][ T5825]  </TASK>
[  100.463938][ T5825] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  100.822712][   T30] kauditd_printk_skb: 79 callbacks suppressed
[  100.822729][   T30] audit: type=1326 audit(1762653120.548:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6330 comm="syz.4.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f819878f6c9 code=0x7ffc0000
[  100.940998][   T30] audit: type=1326 audit(1762653120.608:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6330 comm="syz.4.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7f819878f6c9 code=0x7ffc0000
[  100.972874][   T30] audit: type=1326 audit(1762653120.608:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6330 comm="syz.4.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f819878f6c9 code=0x7ffc0000
[  101.215965][   T30] audit: type=1326 audit(1762653120.608:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6330 comm="syz.4.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f819878f6c9 code=0x7ffc0000
[  101.701653][ T6352] loop1: detected capacity change from 0 to 512
[  101.737327][ T6352] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  101.871109][ T6352] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.138: inode has both inline data and extents flags
[  101.889968][ T6352] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.138: couldn't read orphan inode 15 (err -117)
[  101.923378][ T6352] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.961401][ T6362] loop3: detected capacity change from 0 to 1024
[  103.002288][ T6362] EXT4-fs: Ignoring removed oldalloc option
[  103.043061][ T6362] EXT4-fs: Ignoring removed oldalloc option
[  103.105189][ T6362] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.296419][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  103.934418][ T6358] loop4: detected capacity change from 0 to 40427
[  104.012316][ T6358] F2FS-fs (loop4): invalid crc value
[  104.159670][ T6383] netlink: 104 bytes leftover after parsing attributes in process `syz.1.146'.
[  104.174278][   T24] IPVS: starting estimator thread 0...
[  104.307044][ T6384] IPVS: using max 24 ests per chain, 57600 per kthread
[  104.366211][ T6358] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  104.418330][ T6358] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  104.944792][ T6377] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  104.953117][ T6377] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  104.961602][ T6377] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[  105.123690][ T5826] syz-executor: attempt to access beyond end of device
[  105.123690][ T5826] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  105.167743][ T5826] CPU: 0 UID: 0 PID: 5826 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  105.167769][ T5826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  105.167783][ T5826] Call Trace:
[  105.167790][ T5826]  <TASK>
[  105.167798][ T5826]  dump_stack_lvl+0x189/0x250
[  105.167839][ T5826]  ? __pfx_dump_stack_lvl+0x10/0x10
[  105.167864][ T5826]  ? __pfx_queue_work_on+0x10/0x10
[  105.167885][ T5826]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  105.167907][ T5826]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  105.167947][ T5826]  f2fs_handle_critical_error+0x37c/0x540
[  105.167981][ T5826]  f2fs_write_end_io+0x886/0xb60
[  105.168019][ T5826]  __submit_merged_bio+0x27a/0x6a0
[  105.168052][ T5826]  __submit_merged_write_cond+0x255/0x530
[  105.168084][ T5826]  f2fs_write_data_pages+0x261d/0x3000
[  105.168139][ T5826]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  105.168206][ T5826]  ? __page_cache_release+0x8a6/0xbb0
[  105.168237][ T5826]  ? folios_put_refs+0x584/0x670
[  105.168269][ T5826]  ? __lock_acquire+0xab9/0xd20
[  105.168298][ T5826]  ? do_raw_spin_lock+0x121/0x290
[  105.168323][ T5826]  ? do_raw_spin_unlock+0x122/0x240
[  105.168339][ T5826]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  105.168356][ T5826]  do_writepages+0x32e/0x550
[  105.168390][ T5826]  ? do_raw_spin_unlock+0x122/0x240
[  105.168412][ T5826]  filemap_fdatawrite+0x199/0x240
[  105.168442][ T5826]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  105.168514][ T5826]  ? do_raw_spin_unlock+0x122/0x240
[  105.168536][ T5826]  f2fs_sync_dirty_inodes+0x31f/0x830
[  105.168570][ T5826]  f2fs_write_checkpoint+0x93e/0x2440
[  105.168589][ T5826]  ? __lock_acquire+0xab9/0xd20
[  105.168638][ T5826]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  105.168716][ T5826]  kill_f2fs_super+0x2cc/0x6d0
[  105.168741][ T5826]  ? __pfx_kill_f2fs_super+0x10/0x10
[  105.168779][ T5826]  ? shrinker_free+0x2ce/0x3e0
[  105.168807][ T5826]  deactivate_locked_super+0xbc/0x130
[  105.168829][ T5826]  cleanup_mnt+0x425/0x4c0
[  105.168847][ T5826]  ? lockdep_hardirqs_on+0x9c/0x150
[  105.168873][ T5826]  task_work_run+0x1d4/0x260
[  105.168894][ T5826]  ? __pfx_task_work_run+0x10/0x10
[  105.168917][ T5826]  ? exit_to_user_mode_loop+0x55/0x4f0
[  105.168943][ T5826]  exit_to_user_mode_loop+0xff/0x4f0
[  105.168962][ T5826]  ? rcu_is_watching+0x15/0xb0
[  105.168990][ T5826]  do_syscall_64+0x2e9/0xfa0
[  105.169013][ T5826]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.169030][ T5826]  ? clear_bhb_loop+0x60/0xb0
[  105.169052][ T5826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  105.169068][ T5826] RIP: 0033:0x7f81987909f7
[  105.169084][ T5826] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  105.169098][ T5826] RSP: 002b:00007ffd56d13138 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  105.169116][ T5826] RAX: 0000000000000000 RBX: 00007f8198811d7d RCX: 00007f81987909f7
[  105.169128][ T5826] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd56d131f0
[  105.169138][ T5826] RBP: 00007ffd56d131f0 R08: 0000000000000000 R09: 0000000000000000
[  105.169149][ T5826] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd56d14280
[  105.169160][ T5826] R13: 00007f8198811d7d R14: 0000000000019906 R15: 00007ffd56d142c0
[  105.169192][ T5826]  </TASK>
[  105.169199][ T5826] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  107.295595][ T6423] netlink: 104 bytes leftover after parsing attributes in process `syz.1.158'.
[  108.073714][ T6435] loop1: detected capacity change from 0 to 2048
[  108.124500][ T6435] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  109.391860][   T30] audit: type=1326 audit(1762653129.118:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6449 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[  109.966342][   T30] audit: type=1326 audit(1762653129.118:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6449 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[  109.989860][   T30] audit: type=1326 audit(1762653129.118:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6449 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[  110.123256][   T30] audit: type=1326 audit(1762653129.148:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6449 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[  110.146536][   T30] audit: type=1326 audit(1762653129.148:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6449 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[  110.170288][   T30] audit: type=1326 audit(1762653129.158:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6449 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[  110.194251][   T30] audit: type=1326 audit(1762653129.158:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6449 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[  110.288087][   T30] audit: type=1326 audit(1762653129.158:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6449 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[  110.335577][ T6456] loop1: detected capacity change from 0 to 512
[  110.353481][   T30] audit: type=1326 audit(1762653129.158:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6449 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[  110.385312][   T30] audit: type=1326 audit(1762653129.158:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6449 comm="syz.0.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f53c278f6c9 code=0x7ffc0000
[  110.414672][ T6456] EXT4-fs (loop1): external journal device major/minor numbers have changed
[  110.476416][ T6456] EXT4-fs (loop1): couldn't read superblock of external journal
[  110.546088][ T5895] IPVS: starting estimator thread 0...
[  110.636048][ T6461] IPVS: using max 29 ests per chain, 69600 per kthread
[  110.752682][ T6463] bridge0: port 3(macsec1) entered blocking state
[  110.761486][ T6463] bridge0: port 3(macsec1) entered disabled state
[  110.769603][ T6463] macsec1: entered allmulticast mode
[  110.775057][ T6463] bridge0: entered allmulticast mode
[  110.783747][ T6463] macsec1: left allmulticast mode
[  110.790988][ T6463] bridge0: left allmulticast mode
[  111.195322][ T6478] loop4: detected capacity change from 0 to 1024
[  111.228024][ T6478] ext4: Unknown parameter 'nouser_xattr'
[  111.687015][ T6488] netlink: 32 bytes leftover after parsing attributes in process `syz.4.182'.
[  111.771337][ T6478] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[  112.883598][ T6521] netlink: 4 bytes leftover after parsing attributes in process `syz.4.196'.
[  113.116926][ T6521] netlink: 4 bytes leftover after parsing attributes in process `syz.4.196'.
[  114.333261][ T6544] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  114.341873][ T6544] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  114.350447][ T6544] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  114.375557][ T5824] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.813708][ T6554] ALSA: seq fatal error: cannot create timer (-19)
[  115.086624][ T6564] netlink: 28 bytes leftover after parsing attributes in process `syz.2.212'.
[  115.136989][ T6564] netlink: 28 bytes leftover after parsing attributes in process `syz.2.212'.
[  116.125816][   T30] kauditd_printk_skb: 33 callbacks suppressed
[  116.125850][   T30] audit: type=1326 audit(1762653135.848:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6568 comm="syz.2.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  116.231594][   T30] audit: type=1326 audit(1762653135.898:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6568 comm="syz.2.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  116.302922][   T30] audit: type=1326 audit(1762653135.898:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6568 comm="syz.2.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  116.412539][   T30] audit: type=1326 audit(1762653135.908:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6568 comm="syz.2.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  116.495717][   T30] audit: type=1326 audit(1762653135.928:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6568 comm="syz.2.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  116.576104][   T30] audit: type=1326 audit(1762653135.928:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6568 comm="syz.2.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  116.666085][   T30] audit: type=1326 audit(1762653135.928:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6568 comm="syz.2.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  116.704085][ T6584] syz.0.219 (6584) used greatest stack depth: 15832 bytes left
[  116.804455][   T30] audit: type=1326 audit(1762653135.928:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6568 comm="syz.2.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  116.862823][   T30] audit: type=1326 audit(1762653135.938:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6568 comm="syz.2.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  116.938726][ T6592] netlink: 24 bytes leftover after parsing attributes in process `syz.2.223'.
[  116.957121][   T30] audit: type=1326 audit(1762653135.938:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6568 comm="syz.2.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  117.086101][ T6597] overlayfs: failed lookup in lower (newroot/60, name='file1', err=-40): overlapping layers
[  117.436788][ T6606] netlink: 4 bytes leftover after parsing attributes in process `syz.3.230'.
[  117.447719][ T6605] netlink: 16 bytes leftover after parsing attributes in process `syz.4.229'.
[  117.770219][ T6609] qrtr: Invalid version 247
[  118.505407][ T6606] team0: Port device team_slave_1 removed
[  119.118442][ T6635] overlayfs: failed to resolve './file0': -2
[  119.340048][ T6638] netlink: 4 bytes leftover after parsing attributes in process `syz.3.242'.
[  119.451983][ T6638] netlink: 4 bytes leftover after parsing attributes in process `syz.3.242'.
[  120.258820][ T6655] netlink: 24 bytes leftover after parsing attributes in process `syz.3.249'.
[  120.402322][ T6655] netlink: 8 bytes leftover after parsing attributes in process `syz.3.249'.
[  120.461587][ T6658] usb usb6: usbfs: interface 0 claimed by hub while 'syz.2.250' sets config #5
[  120.522043][ T6658] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  121.610486][ T6683] netlink: 'syz.2.257': attribute type 4 has an invalid length.
[  121.618261][ T6683] netlink: 17 bytes leftover after parsing attributes in process `syz.2.257'.
[  123.567156][ T6710] netlink: 24 bytes leftover after parsing attributes in process `syz.3.269'.
[  123.723975][   T30] kauditd_printk_skb: 39 callbacks suppressed
[  123.723993][   T30] audit: type=1326 audit(1762653143.448:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6716 comm="syz.2.271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  123.822234][   T30] audit: type=1326 audit(1762653143.448:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6716 comm="syz.2.271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  123.899335][   T30] audit: type=1326 audit(1762653143.448:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6716 comm="syz.2.271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  124.146206][   T30] audit: type=1326 audit(1762653143.448:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6716 comm="syz.2.271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  124.195989][   T30] audit: type=1326 audit(1762653143.448:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6716 comm="syz.2.271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  124.258509][   T30] audit: type=1326 audit(1762653143.448:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6716 comm="syz.2.271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  124.335329][   T30] audit: type=1326 audit(1762653143.448:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6716 comm="syz.2.271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  124.411235][   T30] audit: type=1326 audit(1762653143.448:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6716 comm="syz.2.271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  124.516242][   T30] audit: type=1326 audit(1762653143.488:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6716 comm="syz.2.271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  124.608278][   T30] audit: type=1326 audit(1762653143.488:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6716 comm="syz.2.271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4d4d8f6c9 code=0x7ffc0000
[  125.387486][ T6755] loop2: detected capacity change from 0 to 512
[  125.423556][ T6755] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  125.502196][ T6755] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  125.582027][ T6755] EXT4-fs (loop2): 1 truncate cleaned up
[  125.626673][ T6755] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.812138][ T6755] loop8: detected capacity change from 0 to 7
[  125.831123][ T6755] Dev loop8: unable to read RDB block 7
[  125.846241][ T6755]  loop8: unable to read partition table
[  125.856459][ T6755] loop8: partition table beyond EOD, truncated
[  125.909586][ T6755] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5)
[  125.990520][ T6764] netlink: 8 bytes leftover after parsing attributes in process `syz.1.289'.
[  126.522616][ T6755] slcan: can't register candev
[  127.728712][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.920991][ T6816] netlink: 8 bytes leftover after parsing attributes in process `syz.4.300'.
[  131.043665][ T6833] lo speed is unknown, defaulting to 1000
[  131.058213][ T6833] lo speed is unknown, defaulting to 1000
[  131.064983][ T6833] lo speed is unknown, defaulting to 1000
[  131.220060][   T30] kauditd_printk_skb: 4 callbacks suppressed
[  131.220085][   T30] audit: type=1326 audit(1762653150.948:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6850 comm="syz.3.312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53a8f8f6c9 code=0x7ffc0000
[  131.257323][   T30] audit: type=1326 audit(1762653150.948:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6850 comm="syz.3.312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53a8f8f6c9 code=0x7ffc0000
[  131.287588][   T30] audit: type=1326 audit(1762653150.988:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6850 comm="syz.3.312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f53a8f8f6c9 code=0x7ffc0000
[  131.331983][   T30] audit: type=1326 audit(1762653150.988:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6850 comm="syz.3.312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53a8f8f6c9 code=0x7ffc0000
[  131.490715][   T30] audit: type=1326 audit(1762653150.988:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6850 comm="syz.3.312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53a8f8f6c9 code=0x7ffc0000
[  131.523624][   T30] audit: type=1326 audit(1762653151.008:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6850 comm="syz.3.312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f53a8f8f6c9 code=0x7ffc0000
[  131.555392][   T30] audit: type=1326 audit(1762653151.008:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6850 comm="syz.3.312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53a8f8f6c9 code=0x7ffc0000
[  131.663442][   T30] audit: type=1326 audit(1762653151.008:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6850 comm="syz.3.312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53a8f8f6c9 code=0x7ffc0000
[  131.716745][   T30] audit: type=1326 audit(1762653151.018:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6850 comm="syz.3.312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f53a8f8f6c9 code=0x7ffc0000
[  131.760977][ T6833] infiniband syz2: set active
[  131.765785][ T5895] lo speed is unknown, defaulting to 1000
[  131.772714][ T6833] infiniband syz2: added lo
[  131.773376][   T30] audit: type=1326 audit(1762653151.018:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6850 comm="syz.3.312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53a8f8f6c9 code=0x7ffc0000
[  131.839186][ T6833] RDS/IB: syz2: added
[  131.853701][ T6833] smc: adding ib device syz2 with port count 1
[  131.863860][ T6833] smc:    ib device syz2 port 1 has no pnetid
[  131.876288][  T793] lo speed is unknown, defaulting to 1000
[  131.883580][ T6833] lo speed is unknown, defaulting to 1000
[  132.446571][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  132.524783][ T6882] netlink: 104 bytes leftover after parsing attributes in process `syz.0.326'.
[  133.003178][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  133.009739][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  133.227963][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  133.238793][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  133.583017][ T6833] lo speed is unknown, defaulting to 1000
[  133.604114][ T6894] loop1: detected capacity change from 0 to 164
[  133.694014][ T6894] netlink: 4 bytes leftover after parsing attributes in process `syz.1.330'.
[  134.017981][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  134.289713][ T6911] loop0: detected capacity change from 0 to 128
[  134.521570][ T6919] netlink: 104 bytes leftover after parsing attributes in process `syz.1.338'.
[  134.548304][ T3501] kworker/u8:7: attempt to access beyond end of device
[  134.548304][ T3501] loop0: rw=1, sector=145, nr_sectors = 16 limit=128
[  134.598547][ T3501] kworker/u8:7: attempt to access beyond end of device
[  134.598547][ T3501] loop0: rw=1, sector=169, nr_sectors = 8 limit=128
[  134.626738][ T3501] kworker/u8:7: attempt to access beyond end of device
[  134.626738][ T3501] loop0: rw=1, sector=185, nr_sectors = 8 limit=128
[  134.643222][ T6833] lo speed is unknown, defaulting to 1000
[  134.644509][ T3501] kworker/u8:7: attempt to access beyond end of device
[  134.644509][ T3501] loop0: rw=1, sector=201, nr_sectors = 8 limit=128
[  134.666957][ T3501] kworker/u8:7: attempt to access beyond end of device
[  134.666957][ T3501] loop0: rw=1, sector=217, nr_sectors = 8 limit=128
[  134.690487][ T3501] kworker/u8:7: attempt to access beyond end of device
[  134.690487][ T3501] loop0: rw=1, sector=233, nr_sectors = 8 limit=128
[  134.704505][ T3501] kworker/u8:7: attempt to access beyond end of device
[  134.704505][ T3501] loop0: rw=1, sector=249, nr_sectors = 8 limit=128
[  134.719291][ T3501] kworker/u8:7: attempt to access beyond end of device
[  134.719291][ T3501] loop0: rw=1, sector=265, nr_sectors = 8 limit=128
[  134.737976][ T3501] kworker/u8:7: attempt to access beyond end of device
[  134.737976][ T3501] loop0: rw=1, sector=281, nr_sectors = 8 limit=128
[  134.817796][ T3501] kworker/u8:7: attempt to access beyond end of device
[  134.817796][ T3501] loop0: rw=1, sector=297, nr_sectors = 8 limit=128
[  135.668314][ T6833] lo speed is unknown, defaulting to 1000
[  137.123070][ T6949] lo speed is unknown, defaulting to 1000
[  137.302748][ T6953] netlink: 'syz.1.351': attribute type 39 has an invalid length.
[  137.401716][ T6958] netlink: 104 bytes leftover after parsing attributes in process `syz.4.350'.
[  137.904602][ T6833] lo speed is unknown, defaulting to 1000
[  138.286185][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  138.436959][ T6970] netlink: 'syz.1.357': attribute type 12 has an invalid length.
[  138.739163][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  138.749658][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  138.760194][    T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!!
[  138.770081][    T0] NOHZ tick-stop error: local softirq work is pending, handler #248!!!
[  138.779647][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  138.889492][ T6985] netlink: 4 bytes leftover after parsing attributes in process `syz.4.363'.
[  138.943992][ T6982] loop2: detected capacity change from 0 to 512
[  138.959658][ T6979] ALSA: seq fatal error: cannot create timer (-19)
[  139.027060][ T6982] __quota_error: 67 callbacks suppressed
[  139.027080][ T6982] Quota error (device loop2): v2_read_file_info: Free block number 1 out of range (1, 6).
[  139.098769][ T6982] EXT4-fs warning (device loop2): ext4_enable_quotas:7181: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  139.317680][ T6982] EXT4-fs (loop2): mount failed
[  139.377296][ T6995] netlink: 104 bytes leftover after parsing attributes in process `syz.1.365'.
[  140.335719][ T6999] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[  141.194499][ T7026] loop0: detected capacity change from 0 to 1024
[  141.260560][ T7027] netlink: 104 bytes leftover after parsing attributes in process `syz.2.377'.
[  141.778635][ T7026] Quota error (device loop0): do_check_range: Getting block 64 out of range 1-5
[  141.835849][ T7026] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[  141.983943][ T7026] EXT4-fs error (device loop0): ext4_acquire_dquot:6946: comm syz.0.379: Failed to acquire dquot type 0
[  142.049023][ T7026] EXT4-fs error (device loop0): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  142.098359][ T7026] EXT4-fs error (device loop0): ext4_do_update_inode:5636: inode #13: comm syz.0.379: corrupted inode contents
[  142.744959][ T7026] EXT4-fs error (device loop0): ext4_dirty_inode:6521: inode #13: comm syz.0.379: mark_inode_dirty error
[  142.769802][ T7026] EXT4-fs error (device loop0): ext4_do_update_inode:5636: inode #13: comm syz.0.379: corrupted inode contents
[  142.793633][ T7026] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #13: comm syz.0.379: mark_inode_dirty error
[  142.837314][ T7026] EXT4-fs error (device loop0): ext4_do_update_inode:5636: inode #13: comm syz.0.379: corrupted inode contents
[  142.865982][ T7026] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #13: comm syz.0.379: mark_inode_dirty error
[  142.866310][ T7042] loop1: detected capacity change from 0 to 1024
[  142.951521][ T7046] loop2: detected capacity change from 0 to 256
[  142.980356][ T7026] EXT4-fs error (device loop0): ext4_do_update_inode:5636: inode #13: comm syz.0.379: corrupted inode contents
[  143.008362][ T7042] Quota error (device loop1): v2_read_file_info: Number of blocks too big for quota file size (6144 > 256).
[  143.022765][ T7026] EXT4-fs error (device loop0) in ext4_orphan_del:301: Corrupt filesystem
[  143.064020][ T7042] EXT4-fs warning (device loop1): ext4_enable_quotas:7181: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  143.074427][ T7026] EXT4-fs error (device loop0): ext4_do_update_inode:5636: inode #13: comm syz.0.379: corrupted inode contents
[  143.080349][ T7042] EXT4-fs (loop1): mount failed
[  143.128117][ T7026] EXT4-fs error (device loop0): ext4_truncate:4641: inode #13: comm syz.0.379: mark_inode_dirty error
[  143.140050][ T7026] EXT4-fs error (device loop0) in ext4_process_orphan:343: Corrupt filesystem
[  143.150544][ T7026] EXT4-fs (loop0): 1 truncate cleaned up
[  143.158458][ T7026] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.545423][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.706633][ T7065] loop1: detected capacity change from 0 to 2048
[  143.888360][ T7065] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  143.955061][ T7065] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  144.104553][ T7072] netlink: 104 bytes leftover after parsing attributes in process `syz.0.393'.
[  144.130588][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.645514][ T7052] lo speed is unknown, defaulting to 1000
[  144.781183][ T7077] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22
[  144.789597][ T7077] netdevsim netdevsim1: Direct firmware load for . failed with error -22
[  144.798120][ T7077] netdevsim netdevsim1: Falling back to sysfs fallback for: .
[  144.908238][ T7082] netlink: 4 bytes leftover after parsing attributes in process `syz.3.398'.
[  144.936520][ T7082] netlink: 4 bytes leftover after parsing attributes in process `syz.3.398'.
[  145.464387][ T7092] netlink: 8 bytes leftover after parsing attributes in process `syz.0.402'.
[  145.630173][ T7095] loop1: detected capacity change from 0 to 512
[  145.720043][ T7095] EXT4-fs (loop1): 1 orphan inode deleted
[  145.743639][ T6936] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  145.749329][ T7104] netlink: 'syz.3.405': attribute type 12 has an invalid length.
[  145.801621][ T6936] EXT4-fs error (device loop1): ext4_release_dquot:6982: comm kworker/u8:12: Failed to release dquot type 1
[  145.966854][ T7095] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.009952][ T7109] loop3: detected capacity change from 0 to 256
[  146.021938][ T7095] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.148388][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.823736][ T7125] netlink: 104 bytes leftover after parsing attributes in process `syz.1.412'.
[  147.294899][ T7132] netlink: 'syz.0.415': attribute type 1 has an invalid length.
[  147.311534][ T7130] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[  147.320141][ T7130] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[  147.328667][ T7130] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[  147.355072][ T7134] netlink: 4 bytes leftover after parsing attributes in process `syz.0.415'.
[  147.407083][    C0] ------------[ cut here ]------------
[  147.412805][    C0] WARNING: ./include/linux/ns_common.h:255 at put_cred_rcu+0x2c5/0x340, CPU#0: ksoftirqd/0/15
[  147.423267][    C0] Modules linked in:
[  147.427444][    C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Not tainted syzkaller #0 PREEMPT(full) 
[  147.436710][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  147.447014][    C0] RIP: 0010:put_cred_rcu+0x2c5/0x340
[  147.452348][    C0] Code: 5c 41 5d 41 5e 41 5f 5d e9 b8 25 8e 00 e8 13 a7 32 00 4c 89 e7 be 03 00 00 00 e8 a6 02 02 03 e9 b8 fe ff ff e8 fc a6 32 00 90 <0f> 0b 90 eb 9f e8 f1 a6 32 00 4c 89 ff be 03 00 00 00 e8 84 02 02
[  147.472020][    C0] RSP: 0018:ffffc90000147888 EFLAGS: 00010246
[  147.478139][    C0] RAX: ffffffff818ed934 RBX: ffff88801abec3a0 RCX: ffff88801ceebd00
[  147.486162][    C0] RDX: 0000000000000100 RSI: 0000000000000004 RDI: 0000000000000000
[  147.494240][    C0] RBP: 0000000000000004 R08: ffff88803002c193 R09: 1ffff11006005832
[  147.502299][    C0] R10: dffffc0000000000 R11: ffffed1006005833 R12: dffffc0000000000
[  147.510324][    C0] R13: ffff88801abec300 R14: ffff88803002c000 R15: ffff88803002c190
[  147.518367][    C0] FS:  0000000000000000(0000) GS:ffff888125ec2000(0000) knlGS:0000000000000000
[  147.527348][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  147.533969][    C0] CR2: 00007f53c35cef98 CR3: 000000003a918000 CR4: 00000000003526f0
[  147.542009][    C0] Call Trace:
[  147.545301][    C0]  <TASK>
[  147.548295][    C0]  ? __pfx_put_cred_rcu+0x10/0x10
[  147.553329][    C0]  ? rcu_core+0xc37/0x1770
[  147.557832][    C0]  rcu_core+0xcab/0x1770
[  147.562127][    C0]  ? __pfx_rcu_core+0x10/0x10
[  147.566879][    C0]  ? rcu_qs+0xc4/0x170
[  147.570985][    C0]  ? __pfx_rcu_qs+0x10/0x10
[  147.575523][    C0]  ? sched_clock_cpu+0x74/0x430
[  147.580461][    C0]  ? rcu_softirq_qs+0xf2/0x350
[  147.585256][    C0]  ? __pfx_rcu_softirq_qs+0x10/0x10
[  147.590531][    C0]  handle_softirqs+0x286/0x870
[  147.595337][    C0]  ? run_ksoftirqd+0x9b/0x100
[  147.600088][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  147.605403][    C0]  ? smpboot_thread_fn+0x4d/0xa60
[  147.610502][    C0]  ? smpboot_thread_fn+0x4d/0xa60
[  147.615553][    C0]  run_ksoftirqd+0x9b/0x100
[  147.620213][    C0]  ? __pfx_run_ksoftirqd+0x10/0x10
[  147.625365][    C0]  smpboot_thread_fn+0x542/0xa60
[  147.630369][    C0]  ? smpboot_thread_fn+0x4d/0xa60
[  147.635428][    C0]  kthread+0x711/0x8a0
[  147.639543][    C0]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  147.645028][    C0]  ? __pfx_kthread+0x10/0x10
[  147.649656][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  147.654872][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  147.660209][    C0]  ? __pfx_kthread+0x10/0x10
[  147.664824][    C0]  ret_from_fork+0x599/0xb30
[  147.669501][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  147.674650][    C0]  ? __switch_to_asm+0x39/0x70
[  147.679464][    C0]  ? __switch_to_asm+0x33/0x70
[  147.684246][    C0]  ? __pfx_kthread+0x10/0x10
[  147.688894][    C0]  ret_from_fork_asm+0x1a/0x30
[  147.693699][    C0]  </TASK>
[  147.696774][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  147.704066][    C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Not tainted syzkaller #0 PREEMPT(full) 
[  147.713284][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  147.723356][    C0] Call Trace:
[  147.726646][    C0]  <TASK>
[  147.729676][    C0]  dump_stack_lvl+0x99/0x250
[  147.734289][    C0]  ? __asan_memcpy+0x40/0x70
[  147.738906][    C0]  ? __pfx_dump_stack_lvl+0x10/0x10
[  147.744129][    C0]  ? __pfx__printk+0x10/0x10
[  147.748757][    C0]  vpanic+0x237/0x6d0
[  147.752792][    C0]  ? __pfx_vpanic+0x10/0x10
[  147.757310][    C0]  ? is_bpf_text_address+0x292/0x2b0
[  147.762619][    C0]  ? is_bpf_text_address+0x26/0x2b0
[  147.767861][    C0]  panic+0xb9/0xc0
[  147.771603][    C0]  ? __pfx_panic+0x10/0x10
[  147.776039][    C0]  ? ret_from_fork_asm+0x1a/0x30
[  147.780996][    C0]  __warn+0x334/0x4c0
[  147.785010][    C0]  ? put_cred_rcu+0x2c5/0x340
[  147.789701][    C0]  ? put_cred_rcu+0x2c5/0x340
[  147.794384][    C0]  report_bug+0x2be/0x4f0
[  147.798971][    C0]  ? put_cred_rcu+0x2c5/0x340
[  147.803640][    C0]  ? put_cred_rcu+0x2c5/0x340
[  147.808310][    C0]  ? put_cred_rcu+0x2c7/0x340
[  147.812979][    C0]  handle_bug+0x84/0x160
[  147.817214][    C0]  exc_invalid_op+0x1a/0x50
[  147.821717][    C0]  asm_exc_invalid_op+0x1a/0x20
[  147.826557][    C0] RIP: 0010:put_cred_rcu+0x2c5/0x340
[  147.831833][    C0] Code: 5c 41 5d 41 5e 41 5f 5d e9 b8 25 8e 00 e8 13 a7 32 00 4c 89 e7 be 03 00 00 00 e8 a6 02 02 03 e9 b8 fe ff ff e8 fc a6 32 00 90 <0f> 0b 90 eb 9f e8 f1 a6 32 00 4c 89 ff be 03 00 00 00 e8 84 02 02
[  147.851429][    C0] RSP: 0018:ffffc90000147888 EFLAGS: 00010246
[  147.857493][    C0] RAX: ffffffff818ed934 RBX: ffff88801abec3a0 RCX: ffff88801ceebd00
[  147.865465][    C0] RDX: 0000000000000100 RSI: 0000000000000004 RDI: 0000000000000000
[  147.873430][    C0] RBP: 0000000000000004 R08: ffff88803002c193 R09: 1ffff11006005832
[  147.881483][    C0] R10: dffffc0000000000 R11: ffffed1006005833 R12: dffffc0000000000
[  147.889452][    C0] R13: ffff88801abec300 R14: ffff88803002c000 R15: ffff88803002c190
[  147.897427][    C0]  ? put_cred_rcu+0x2c4/0x340
[  147.902126][    C0]  ? put_cred_rcu+0x2c4/0x340
[  147.906808][    C0]  ? __pfx_put_cred_rcu+0x10/0x10
[  147.911838][    C0]  ? rcu_core+0xc37/0x1770
[  147.916273][    C0]  rcu_core+0xcab/0x1770
[  147.920553][    C0]  ? __pfx_rcu_core+0x10/0x10
[  147.925236][    C0]  ? rcu_qs+0xc4/0x170
[  147.929303][    C0]  ? __pfx_rcu_qs+0x10/0x10
[  147.933802][    C0]  ? sched_clock_cpu+0x74/0x430
[  147.938654][    C0]  ? rcu_softirq_qs+0xf2/0x350
[  147.943416][    C0]  ? __pfx_rcu_softirq_qs+0x10/0x10
[  147.948619][    C0]  handle_softirqs+0x286/0x870
[  147.953387][    C0]  ? run_ksoftirqd+0x9b/0x100
[  147.958062][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  147.963342][    C0]  ? smpboot_thread_fn+0x4d/0xa60
[  147.968362][    C0]  ? smpboot_thread_fn+0x4d/0xa60
[  147.973380][    C0]  run_ksoftirqd+0x9b/0x100
[  147.977881][    C0]  ? __pfx_run_ksoftirqd+0x10/0x10
[  147.982995][    C0]  smpboot_thread_fn+0x542/0xa60
[  147.987938][    C0]  ? smpboot_thread_fn+0x4d/0xa60
[  147.992967][    C0]  kthread+0x711/0x8a0
[  147.997025][    C0]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  148.002479][    C0]  ? __pfx_kthread+0x10/0x10
[  148.007070][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  148.012320][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  148.017511][    C0]  ? __pfx_kthread+0x10/0x10
[  148.022094][    C0]  ret_from_fork+0x599/0xb30
[  148.026681][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[  148.031796][    C0]  ? __switch_to_asm+0x39/0x70
[  148.036550][    C0]  ? __switch_to_asm+0x33/0x70
[  148.041306][    C0]  ? __pfx_kthread+0x10/0x10
[  148.045887][    C0]  ret_from_fork_asm+0x1a/0x30
[  148.050658][    C0]  </TASK>
[  148.053812][    C0] Kernel Offset: disabled
[  148.058117][    C0] Rebooting in 86400 seconds..