last executing test programs:

1m24.778381377s ago: executing program 4 (id=164):
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
ioctl$int_in(r0, 0x5452, &(0x7f0000000040)=0xf0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect$printer(0x0, 0x36, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x1802, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000500)=@generic={&(0x7f00000004c0)='./file0\x00', 0x0, 0x8}, 0x18)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000340), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
syz_open_procfs(0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000780)=@newtaction={0x68, 0x30, 0xb, 0x0, 0x0, {}, [{0x54, 0x1, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PTYPE={0x6, 0x4}, @TCA_SKBEDIT_PARMS={0x18}]}, {0x4}, {0xc, 0xa}, {0xc, 0x9, {0xf5}}}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x10}, 0x0)

1m21.555221623s ago: executing program 4 (id=176):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x20}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r1}, 0x18)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r3, 0x0, r5, 0x0, 0x8000f28, 0x0)
splice(r4, 0x0, r3, 0x0, 0x7f, 0xe)
write(r2, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1000002, 0x4012831, 0xffffffffffffffff, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000580)='smaps_rollup\x00')
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
lseek(r6, 0x2004, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x4020, 0x0)

1m17.432051474s ago: executing program 3 (id=191):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
open(0x0, 0x14927e, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffd000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0xb, 0x7, 0x2, 0xff22, 0x1}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r3, &(0x7f0000000000), &(0x7f0000000180)=@tcp}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000000040)={r3, &(0x7f0000000040), &(0x7f0000002100)=""/4096}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x3, &(0x7f0000000100)={r3, &(0x7f0000000100), 0x0}, 0x20)

1m17.02594844s ago: executing program 4 (id=193):
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000040)='./bus\x00', 0x2029c1b, 0x0, 0x1, 0x0, &(0x7f0000000080))

1m16.898788113s ago: executing program 4 (id=195):
mount$9p_fd(0x0, &(0x7f0000000980)='.\x00', 0x0, 0x104000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)
umount2(&(0x7f0000000040)='.\x00', 0x2)

1m16.719755783s ago: executing program 4 (id=197):
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
setsockopt$llc_int(r0, 0x10c, 0x7, 0x0, 0x0)

1m16.574889671s ago: executing program 4 (id=200):
syz_usb_connect(0x4, 0x90, &(0x7f0000000040)=ANY=[@ANYBLOB="12010102138d28200819201300000102030109027e0080ffffff000904ae0e051966858f0b240600013a6af75c828205240009000d020000000000000400fdff0606241a8d000809050308000402080607250182070100090509001000a903080725018134000009050c10000408018d072501000706000725010009"], 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x18)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x15)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f00000005c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xf94d8000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCDELDLCI(r1, 0x8981, &(0x7f00000003c0)={'\x00', 0x2})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
getuid()
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r4, 0x8916, &(0x7f0000000040)={'lo\x00', {0x2, 0x4e21, @remote}})
r5 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x78, 0x24, 0xd0f, 0x70bd2b, 0x0, {0x60, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0xd9, 0x0, 0x1}, 0x80, 0x0, 0x0, 0x0, 0x0, 0xf, 0x2, 0x0, 0x0, 0x0, {0x0, 0x0, 0x6}}}}]}, 0x78}}, 0x0)

1m16.257196996s ago: executing program 3 (id=201):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000300), &(0x7f00000002c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0xd, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x4010}, 0x0)

1m15.159996402s ago: executing program 32 (id=200):
syz_usb_connect(0x4, 0x90, &(0x7f0000000040)=ANY=[@ANYBLOB="12010102138d28200819201300000102030109027e0080ffffff000904ae0e051966858f0b240600013a6af75c828205240009000d020000000000000400fdff0606241a8d000809050308000402080607250182070100090509001000a903080725018134000009050c10000408018d072501000706000725010009"], 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x18)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000000)=ANY=[], 0x15)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f00000005c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xf94d8000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCDELDLCI(r1, 0x8981, &(0x7f00000003c0)={'\x00', 0x2})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
getuid()
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r4, 0x8916, &(0x7f0000000040)={'lo\x00', {0x2, 0x4e21, @remote}})
r5 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x78, 0x24, 0xd0f, 0x70bd2b, 0x0, {0x60, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0xd9, 0x0, 0x1}, 0x80, 0x0, 0x0, 0x0, 0x0, 0xf, 0x2, 0x0, 0x0, 0x0, {0x0, 0x0, 0x6}}}}]}, 0x78}}, 0x0)

1m15.138987272s ago: executing program 3 (id=206):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=ANY=[@ANYRES16=r2, @ANYBLOB="010328bd7000fedbdf251c0000000c00018008000100", @ANYRES32=r3], 0x20}}, 0x10)

1m14.967354669s ago: executing program 3 (id=209):
mount$9p_fd(0x0, &(0x7f0000000980)='.\x00', 0x0, 0x104000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x262)
umount2(&(0x7f0000000040)='.\x00', 0x2)

1m13.981241789s ago: executing program 3 (id=212):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000003c0)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x8, 0x2, 0x4, 0x5}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0xe, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xeb}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, 0x0, 0x0, 0x1000, 0x0)
io_setup(0x7, &(0x7f0000000280))
r7 = socket$inet_udp(0x2, 0x2, 0x0)
close(r7)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000080)={'syz_tun\x00'})
sendmsg$nl_route(r8, 0x0, 0x8000002)

1m11.640197332s ago: executing program 3 (id=217):
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
ioctl$int_in(r0, 0x5452, &(0x7f0000000040)=0xf0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect$printer(0x0, 0x36, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x1802, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000500)=@generic={&(0x7f00000004c0)='./file0\x00', 0x0, 0x8}, 0x18)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000340), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
syz_open_procfs(0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000780)=@newtaction={0x68, 0x30, 0xb, 0x0, 0x0, {}, [{0x54, 0x1, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PTYPE={0x6, 0x4}, @TCA_SKBEDIT_PARMS={0x18}]}, {0x4}, {0xc, 0xa}, {0xc, 0x9, {0xf5}}}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x10}, 0x0)

1m11.257869616s ago: executing program 33 (id=217):
r0 = openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
ioctl$int_in(r0, 0x5452, &(0x7f0000000040)=0xf0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect$printer(0x0, 0x36, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x1802, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$OBJ_GET_PROG(0x7, &(0x7f0000000500)=@generic={&(0x7f00000004c0)='./file0\x00', 0x0, 0x8}, 0x18)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000340), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
syz_open_procfs(0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000780)=@newtaction={0x68, 0x30, 0xb, 0x0, 0x0, {}, [{0x54, 0x1, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PTYPE={0x6, 0x4}, @TCA_SKBEDIT_PARMS={0x18}]}, {0x4}, {0xc, 0xa}, {0xc, 0x9, {0xf5}}}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x10}, 0x0)

6.368977945s ago: executing program 1 (id=537):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
madvise(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0xa)

5.988484764s ago: executing program 1 (id=542):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat$hwrng(0xffffffffffffff9c, 0x0, 0x12200, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000007c0)={0x3, 0xc, 0x0, 0x0, 0xfffffff5, 0x0, 0x0, 0x0, 0x10}, 0x94)
r0 = syz_usb_connect$cdc_ecm(0x2, 0x56, &(0x7f0000000300)=ANY=[@ANYBLOB="12010000020000082505a5a44000000001010902440001010000000904000003020600000524060000"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)

5.919760515s ago: executing program 6 (id=544):
r0 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_ADD(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x30, r0, 0x1, 0xffffff80, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0xc, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x5}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}]}, 0x30}, 0x1, 0x0, 0x0, 0x4000840}, 0x0)

5.499043944s ago: executing program 6 (id=549):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f00000004c0)=ANY=[@ANYBLOB="1809000000000000000000000001000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r0}, &(0x7f0000000540), &(0x7f0000000580)=r2}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r0, &(0x7f0000000780)}, 0x20)

5.217024932s ago: executing program 6 (id=551):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x20000000000002a5, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
r2 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000240)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000001f80)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000980)=@newqdisc={0x468, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0xfff2}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x43c, 0x2, [@TCA_TBF_RATE64={0xc, 0x4, 0x5ec888eb7598db49}, @TCA_TBF_PARMS={0x28, 0x1, {{0x3, 0x1, 0x8, 0x2, 0xff, 0x7}, {0x4, 0x0, 0x3, 0xa159, 0x1000, 0x7}, 0x3, 0x8, 0x41e}}, @TCA_TBF_PTAB={0x404, 0x3, [0x4, 0x2, 0x8, 0xfff, 0x0, 0x8ba, 0xa1, 0x4d91, 0x7fffffff, 0x63c4, 0x0, 0x7ffd, 0x8, 0x255, 0x6, 0xa, 0xd81, 0x3, 0xa, 0xa, 0x7, 0x6, 0x2, 0x200, 0x1, 0x5, 0xb96, 0x7, 0x0, 0xffffffff, 0x200, 0x3, 0x80000001, 0x7c, 0xfffffffc, 0x5, 0x1, 0x2, 0x8, 0x6, 0x1, 0xd, 0x80, 0xe, 0x80, 0x90000000, 0x3800000, 0x0, 0xfffff30b, 0x0, 0xf5, 0x81, 0xfffffffa, 0x80, 0x101, 0x3f, 0xfffffbff, 0x36a5, 0x4, 0x6, 0x200, 0x1ba, 0x9, 0xab, 0x6, 0xfffffff7, 0x6, 0x0, 0x3, 0x1, 0x963, 0x1ff, 0x2, 0xfffffffd, 0x6, 0x9, 0x0, 0x3, 0x0, 0xb09, 0x3ff, 0x7, 0x8000, 0x4, 0x8, 0x1000, 0x101, 0x5, 0x3, 0x6, 0x9, 0x3, 0x1, 0x8762, 0x8e, 0x5, 0xfffff76b, 0x0, 0x4, 0x4275c4e9, 0x8, 0x5, 0x800, 0x0, 0x955, 0x5, 0x6cdf13a0, 0x9, 0x3, 0x5, 0x10001, 0xff, 0x80000001, 0xed2, 0x5, 0xfffffffa, 0x2, 0x18d1, 0x0, 0x3, 0x9486, 0x80, 0x5, 0x80000000, 0xdb, 0x3, 0x80, 0xffff8000, 0x5, 0x8, 0x7, 0x1, 0x2, 0x8008, 0x2, 0x0, 0x2, 0x81, 0x3, 0x1, 0x6bf, 0x7, 0xea, 0x4, 0xc1, 0x9, 0x1, 0x5, 0x283, 0x1ff, 0x4, 0x40, 0x7, 0x4, 0x7, 0xff, 0x400, 0x8, 0x7fffffff, 0xfffffff8, 0x8, 0xfffffff4, 0x8, 0xc, 0x96, 0x6, 0x4, 0x62cc, 0x2, 0x7, 0x2eb7, 0x10001, 0xcbf, 0x10000, 0x101, 0x9, 0xfffffffa, 0x1, 0x8, 0x800, 0x8001, 0xf, 0x5, 0x8, 0x8d, 0xffffffff, 0x2, 0x7, 0x1, 0x61, 0xffffffff, 0x494, 0xb, 0x1, 0x1, 0xd1, 0xd, 0x9, 0x1002, 0xffffffff, 0x6, 0x3, 0xfffffffb, 0xffff, 0xff, 0x5, 0xe, 0x401, 0x2, 0x8cc5, 0x8, 0x159, 0xfffffff7, 0x81, 0x382ae49b, 0x9, 0xffffffff, 0xffff, 0xdf3b, 0xfffffffb, 0x6, 0xfffffeff, 0x8dc3, 0x20000001, 0x5, 0x9, 0x2, 0xfffff801, 0x0, 0x5, 0x5, 0x7, 0x7, 0x7f, 0x7, 0x1, 0x0, 0xffffffff, 0xdfed, 0xb, 0x77, 0x7, 0xff, 0xb331, 0x9, 0x6, 0x9, 0x7, 0x5, 0x400, 0x10001, 0x1, 0x800, 0x6000, 0xfe000000, 0xfffffffd]}]}}]}, 0x468}}, 0x0)

4.395369205s ago: executing program 7 (id=556):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x19, 0x4, 0x4, 0xc, 0x0, 0xffffffffffffffff, 0x6}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000d40)={<r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000080)="31de76fb398bc62d058b8a96924594f5476a0824be53f7a5949f80614c42391e4b80412938c955d34d37eb96ba7849c3eb823bb36724bd6f6d0219cfe5c884afcd2bdea5acf9c877c03dcdbbb3e47417b6707c27d4c5c1db1924071f6b6f23c7d199", 0x62}], 0x1, &(0x7f00000001c0)=[@ip_tos_int={{0x14}}, @ip_ttl={{0x14}}, @ip_ttl={{0x14}}, @ip_tos_u8={{0x11}}, @ip_tos_u8={{0x11, 0x2}}, @ip_retopts={{0x28, 0x0, 0x7, {[@lsrr={0x83, 0x3}, @generic={0x0, 0x3, "96"}, @generic={0x0, 0xf, "206a77bdd1a004129054e7704a"}]}}}], 0xa0}, 0x0)

4.287362945s ago: executing program 0 (id=557):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000003c0)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x8, 0x2, 0x4, 0x5}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0xe, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xeb}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, 0x0, 0x0, 0x1000, 0x0)
io_setup(0x7, &(0x7f0000000280))
r7 = socket$inet_udp(0x2, 0x2, 0x0)
close(r7)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r9=>0x0})
sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@newlink={0x30, 0x10, 0xffffffffffffffff, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x115}, [@IFLA_LINK={0x8, 0x5, r9}, @IFLA_MASTER={0x8, 0xa, r9}]}, 0x30}, 0x1, 0x0, 0x0, 0x28001}, 0x8000002)

4.1925565s ago: executing program 6 (id=558):
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
r0 = socket(0x10, 0x3, 0x0)
write(r0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0}}], 0x344, 0x10122, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x62181)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r1, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0x1f4, {}, {}, @raw32={[0x2600]}}], 0xffc8)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)

4.179051045s ago: executing program 7 (id=559):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
timer_create(0x0, &(0x7f0000001180)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{0x77359400}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xe4776000)
io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xc8df, 0x8000, 0xa, 0x20002f7})

3.137982413s ago: executing program 7 (id=564):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x1, 0x2, &(0x7f0000000340)=ANY=[@ANYBLOB="9110bf000000000095"], 0x0}, 0x94)

3.108032828s ago: executing program 0 (id=565):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000840), 0x81, r0}, 0x38)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r3}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
mount_setattr(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x8000, &(0x7f0000001dc0)={0x89, 0x72, 0x20000}, 0x20)
sendmsg$nl_xfrm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000800)=ANY=[@ANYBLOB="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", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="fc010000000000000000000000000000000000fe32000000ac1414bb000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000001000000000000000000000000000043050000000000000400000000000000ffffffffffffff7f0000000000000000000000000000000000000000000000000000000028bd7000003500000a000400000000000000000060001200726663343130362867636d2861657329290000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000060000000217d66d38547aa140db8a200000000c538c7cb7a"], 0x150}, 0x1, 0x0, 0x0, 0x880}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
syz_mount_image$ext4(0x0, &(0x7f00000001c0)='./file0\x00', 0x1809049, 0x0, 0xfe, 0x0, 0x0)
r4 = socket(0x1e, 0x805, 0x0)
sendmsg$NFT_MSG_GETSETELEM(r4, &(0x7f0000000300)={&(0x7f0000000400), 0xc, &(0x7f0000000440)={&(0x7f0000005b00)={0x20, 0xd, 0xa, 0x3, 0x0, 0x0, {0x3, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x24000091}, 0x2004c000)
connect$tipc(r4, 0x0, 0x0)
connect$tipc(r4, 0x0, 0x0)
unshare(0x40080)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r5 = memfd_create(0x0, 0x5)
fstatfs(r5, 0x0)
close(r4)
poll(0x0, 0x0, 0x40)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl802154(&(0x7f00000000c0), r6)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r8, 0x8933, &(0x7f0000000340)={'wpan0\x00', <r9=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB="01002bbd7000fddbdf230800000008000300", @ANYRES32=r9], 0x1c}, 0x1, 0x0, 0x0, 0x10}, 0x20000800)
lsetxattr$security_capability(0x0, 0x0, &(0x7f0000000040)=@v3, 0x18, 0x0)
ioctl$sock_netdev_private(0xffffffffffffffff, 0x89f6, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)

2.887080009s ago: executing program 7 (id=567):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000002060101000000000000000000f90003050005000a0000000900020073797a3000000000050001009f"], 0x30}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="300000001c00010000"], 0x30}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)

2.796554951s ago: executing program 5 (id=568):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000015000000002aeab1dd180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
syz_init_net_socket$llc(0x1a, 0x801, 0x0)

2.704775894s ago: executing program 1 (id=569):
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000100)=@newqdisc={0x58, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x4}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x4, 0x6, 0x100, 0x4005d, 0x0, 0x7ff, 0x1fe}}, {0x4}}]}]}, 0x58}}, 0x0)

2.694434135s ago: executing program 6 (id=570):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000001400010000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f00000008c0)="d800000018007b29e00212ba0d8105040a601800fe0f040b067c55a1bc000900b80006990600000015000500fe800000000000000300014002000c0901ac04000bd67f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04fb95cae8c9010000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad8ffd5e1cace81ccd40dd601edef3d93452a92307ff0ff0e97031e9f05e9f16e9cb500"/216, 0xd8}], 0x1, 0x0, 0x0, 0x2663}, 0x0)

2.635986686s ago: executing program 5 (id=571):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x19, 0x4, 0x4, 0xc, 0x0, 0xffffffffffffffff, 0x6}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000d40)={<r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000080)="31de76fb398bc62d058b8a96924594f5476a0824be53f7a5949f80614c42391e4b80412938c955d34d37eb96ba7849c3eb823bb36724bd6f6d0219cfe5c884afcd2bdea5acf9c877c03dcdbbb3e47417b6707c27d4c5c1db1924071f6b6f23c7d199c799c9b0c41101e625fcdb7bbfd12a3eeeef4540a5698f058aaf6a141e5d333929b92a7f64e925bf0ef424c3ef29fcd5fd", 0x93}], 0x1, &(0x7f00000001c0)=[@ip_tos_int={{0x14}}, @ip_ttl={{0x14}}, @ip_ttl={{0x14}}, @ip_tos_u8={{0x11}}, @ip_tos_u8={{0x11, 0x2}}, @ip_retopts={{0x28, 0x0, 0x7, {[@lsrr={0x83, 0x3}, @generic={0x0, 0x3, "96"}, @generic={0x0, 0xf, "206a77bdd1a004129054e7704a"}]}}}], 0xa0}, 0x0)

2.588395361s ago: executing program 2 (id=572):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0xae, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x94)
r0 = socket$inet6(0xa, 0x3, 0x3c)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x5000, 0x0, @loopback, 0x5}, 0x1c)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000100)=',', 0xffdf}], 0x1)

2.498513024s ago: executing program 0 (id=573):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000004000000b705000008000000850000006a"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', r2, 0x0, 0x100000000}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000938500000071000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x3f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r4, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x3, r4, {0x2, 0x0, @multicast2}, 0x2}}, 0x2e)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x41, &(0x7f0000000440)={&(0x7f0000001940)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x4000c00}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r5 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f0000000140)={'veth0_to_team\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0xffffffff, 0x0, 0x0, 0x4, 0x2, 0x1}})
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000000)=@ethtool_cmd={0x2c, 0x6, 0x4, 0x0, 0x0, 0x0, 0x0, 0x9, 0xff, 0xff, 0x0, 0x0, 0x3}})
ioctl$sock_inet_SIOCSIFFLAGS(r5, 0x8914, &(0x7f0000000040)={'veth0_to_team\x00', 0x100})
r6 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r6, 0x402, 0x8000001f)
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r8=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r7, &(0x7f00000004c0)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @mcast2}, {0xa, 0x4e20, 0x7, @mcast2, 0x3}, r8}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r7, &(0x7f0000000280)={0x3, 0x40, 0xfa00, {{0xa, 0x4e21, 0x9, @private1={0xfc, 0x1, '\x00', 0x1}, 0x5}, {0xa, 0x4e20, 0x6, @mcast1, 0x9}, r8, 0x1}}, 0x48)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x1, 0x0, 0x2, 0x5}}, 0x20)
r9 = open(&(0x7f0000000000)='.\x00', 0x0, 0x4)
fcntl$notify(r9, 0x402, 0x8000003d)

2.461196412s ago: executing program 5 (id=574):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[], 0x64}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x6c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x2c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0xfd}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x6c}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x38, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x38}}, 0x0)

2.379013373s ago: executing program 6 (id=575):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ff"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x20}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r1}, 0x18)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
splice(r3, 0x0, r5, 0x0, 0x8000f28, 0x0)
splice(r4, 0x0, r3, 0x0, 0x7f, 0xe)
write(r2, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1000002, 0x4012831, 0xffffffffffffffff, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f0000000580)='smaps_rollup\x00')
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
lseek(r6, 0x2004, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x4020, 0x0)

2.378079069s ago: executing program 2 (id=576):
timer_create(0x0, &(0x7f0000001180)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{0x77359400}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xe4776000)
io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xc8df, 0x8000, 0xa, 0x20002f7})

2.312335171s ago: executing program 1 (id=577):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000005c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'bridge_slave_1\x00', <r2=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB="7c0000001000010400"/20, @ANYRES32=r2, @ANYBLOB="00000000000000005c001280110001006272696467655f736c6176650000000044000580050005000000000005002000010000000500"], 0x7c}}, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x400000000000235, 0x0)

2.239757399s ago: executing program 0 (id=578):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r4 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r4, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
ioctl$RTC_SET_TIME(0xffffffffffffffff, 0x4024700a, 0x0)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x41, &(0x7f0000000000)=0x655e, 0x4)
r5 = dup2(r4, r4)
write$tun(r5, &(0x7f0000000040)=ANY=[], 0x46)
recvmmsg(r5, &(0x7f00000049c0), 0x0, 0x2000, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r7}, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'bridge0\x00', <r8=>0x0})
syz_open_procfs(r1, &(0x7f0000000080)='net/dev_mcast\x00')
r9 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r9, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000640)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14615, 0xef}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACSEC_ICV_LEN={0x5, 0x3, 0x8}]}}}, @IFLA_LINK={0x8, 0x5, r8}]}, 0x44}}, 0x0)

2.185469915s ago: executing program 5 (id=579):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x1, 0x2, &(0x7f0000000340)=ANY=[@ANYBLOB="9110bf000000000095"], 0x0}, 0x94)

2.140852247s ago: executing program 2 (id=580):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f00000004c0)=ANY=[@ANYBLOB="1809000000000000000000000001000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r0}, &(0x7f0000000540), &(0x7f0000000580)=r2}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r0, &(0x7f0000000780)}, 0x20)

1.968261193s ago: executing program 1 (id=581):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000100), 0x2, 0x4fd, &(0x7f0000000b00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101042, 0x45)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x8041, 0x1c3)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$EXT4_IOC_MIGRATE(r1, 0x6609)

1.934187321s ago: executing program 2 (id=582):
r0 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x1e, 0x0, 0x310)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000000)=0x13)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3ffff)
bind$netlink(r2, &(0x7f0000000000)={0x10, 0x0, 0x0, 0x80065c9}, 0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a300000000040000000030a01010000000000000000010000000900030073797a310000000014000480080002400000000008000140000000000900010073797a300000000070000000060a010400000000000000000100000048000480240001800b00010072656a65637400001400028008000140000000000500020000000000200001800700010072740000140002800800014000000009080002400000000008000b40000000000900010073797a300000000014000000110001"], 0xf8}, 0x1, 0x0, 0x0, 0x2040441}, 0x0)

1.856835894s ago: executing program 5 (id=583):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1088d8b8588d72ec29c48f0af5f2d9f51c4b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465ad32b77a74e802a0dc6bf25cca242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767042361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae645ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1fb8f72cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa7956488bef241875f3b4b6ab7929a57affe760e797724f4fce1093b62d7e8c7123d890decacec55bf404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f870b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f154772f514216bdf57d2a40d40b51ab67903ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1594e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f68df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c471c784ae7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec30cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89f0000377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f0059161c5e0000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe34124172e436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f491d8e97c862e29e457060000007ac691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104ebc1581848f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426ca85e82ccf821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ad6acf5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bdc4a60d637545ed4c8a1c649c3ce54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c5140200000054d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a3bc38613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae0040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483f02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e9180100000000000000654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272ab28a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece98c077b358e752b439132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac48f1201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6df5e8a795b140fcc09e8a7b694d12932917facd8ceaa4e2d0d16bb0b95387fcd5ff136d8abddf94daf442bbff744591931872a36cf921ad69f2127386e8b0f9afee4da8d3fbec809fbb3ca0fded2859cf25d4c6155d396c5b9bd1a928923123f63f4c40688eae69990a9419456247bbaeb7948de84d2ff875414883bb1e503d4bfebc01bc12a53ea06bf38e571157bd642dac25dbee7832c58378374a39483d6721eec96c28911db21c0c006b42afc90000000000000000000000700000000000000000008ce4ea442c1a207108b35511186c5e860278f6463f52f3990ce08b1bfccc3cff4b5ae27b610aa9ba11b47d4f94c439e055cdbb2b12c983885c93ea4ab4ca1e02d831ae162ee104"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff27}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, 0x0)
getitimer(0x2, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)

1.838854293s ago: executing program 7 (id=584):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
socket$xdp(0x2c, 0x3, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x73cea2d47785b264, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r4}, 0x18)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000000140)=@raw={'raw\x00', 0x8, 0x3, 0x268, 0x320, 0xa, 0x148, 0x368, 0x60, 0x400, 0x2a8, 0x2a8, 0x400, 0x2a8, 0x7fffffe, 0x0, {[{{@ip={@multicast2, @multicast2, 0x0, 0x0, 'bridge0\x00', 'rose0\x00'}, 0x0, 0xc8, 0x138, 0x0, {0x200003ae, 0x7f00}, [@common=@inet=@hashlimit1={{0x58}, {'veth1_to_team\x00', {0x0, 0x0, 0x2, 0x0, 0x0, 0xffffffff, 0x7}}}]}, @common=@unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f2f7b9f28413d9d8ad470ad2b60c45cb4ea6e7bf902bdc2ff8a9304d9f655c746adc0bdc773506378bc2d27efd6abb05175089830cc46186074d7de46d5af300"}}}, {{@ip={@empty, @empty, 0x0, 0x0, 'syzkaller0\x00', 'veth0_to_team\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@MARK={0x28}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x2c8)
mkdir(0x0, 0x0)
getpeername$packet(r5, 0x0, &(0x7f0000000080))
pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r6, &(0x7f0000000300)=ANY=[@ANYBLOB="15000000"], 0x15)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000000)='GPL\x00', 0x401, 0x0, 0x0, 0x41000, 0x9, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, 0x94)
request_key(&(0x7f0000000780)='asymmetric\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f00000003c0)='incremental-fs\x00', 0xfffffffffffffffe)
syz_clone(0x41200100, 0x0, 0x0, 0x0, 0x0, 0x0)

1.108103112s ago: executing program 0 (id=585):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYBLOB], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7}, 0x18)
r2 = syz_genetlink_get_family_id$ethtool(0x0, r0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002dbd7000fedbdf2531000000180001801400020064756d6d7930"], 0x2c}, 0x1, 0x0, 0x0, 0x2004c890}, 0x2000c800)

1.023379839s ago: executing program 2 (id=586):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x19, 0x4, 0x4, 0xc, 0x0, 0xffffffffffffffff, 0x6}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000d40)={<r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000080)="31de76fb398bc62d058b8a96924594f5476a0824be53f7a5949f80614c42391e4b80412938c955d34d37eb96ba7849c3eb823bb36724bd6f6d0219cfe5c884afcd2bdea5acf9c877c03dcdbbb3e47417b6707c27d4c5c1db1924071f6b6f23c7d199c799c9b0c41101e625fcdb7bbfd12a3eeeef4540a5698f058aaf6a141e5d333929b92a7f64e925bf0ef424c3ef29fcd5fd", 0x93}], 0x1, &(0x7f00000001c0)=[@ip_tos_int={{0x14}}, @ip_ttl={{0x14}}, @ip_ttl={{0x14}}, @ip_tos_u8={{0x11}}, @ip_tos_u8={{0x11, 0x2}}, @ip_retopts={{0x28, 0x0, 0x7, {[@lsrr={0x83, 0x3}, @generic={0x0, 0x3, "96"}, @generic={0x0, 0xf, "206a77bdd1a004129054e7704a"}]}}}], 0xa0}, 0x0)

964.441903ms ago: executing program 5 (id=587):
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x7cb641, 0x0)
close(r2)
socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0xfffffffd, {0x0, 0x0, 0x0, r4, {0x1, 0xd}, {0x7}, {0x10, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x40085}, 0x40000)
recvmmsg(r5, &(0x7f0000001480)=[{{0x0, 0x0, 0x0}, 0x5d}], 0x1, 0x10022, 0x0)

228.527124ms ago: executing program 7 (id=588):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x1ffffdc1, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000ff0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000680)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x473, &(0x7f0000000bc0)="$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")

106.714273ms ago: executing program 0 (id=589):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001280)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000100), 0x237}, 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000007c0)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x1f00, 0xd, 0x0, &(0x7f00000007c0)="9f44948721919580684010a405", 0x0, 0x7ff, 0x0, 0xb1, 0xe, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39", &(0x7f0000000380)="8c5911c525f5cf4c4ecf207ad2ec", 0x0, 0x0, 0xffffffff}, 0x50)

63.873741ms ago: executing program 2 (id=590):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000040000000800"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000004000000b705000008000000850000006a"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='kmem_cache_free\x00', r2, 0x0, 0x100000000}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000938500000071000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x3f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r4, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x3, r4, {0x2, 0x0, @multicast2}, 0x2}}, 0x2e)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x41, &(0x7f0000000440)={&(0x7f0000001940)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x4000c00}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r5 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f0000000140)={'veth0_to_team\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0xffffffff, 0x0, 0x0, 0x4, 0x2, 0x1}})
ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000000)=@ethtool_cmd={0x2c, 0x6, 0x4, 0x0, 0x0, 0x0, 0x0, 0x9, 0xff, 0xff, 0x0, 0x0, 0x3}})
ioctl$sock_inet_SIOCSIFFLAGS(r5, 0x8914, &(0x7f0000000040)={'veth0_to_team\x00', 0x100})
r6 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r6, 0x402, 0x8000001f)
r7 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000040)={<r8=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r7, &(0x7f00000004c0)={0x3, 0x40, 0xfa02, {{0x6000000, 0x0, 0x0, @mcast2}, {0xa, 0x4e20, 0x7, @mcast2, 0x3}, r8}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r7, &(0x7f0000000280)={0x3, 0x40, 0xfa00, {{0xa, 0x4e21, 0x9, @private1={0xfc, 0x1, '\x00', 0x1}, 0x5}, {0xa, 0x4e20, 0x6, @mcast1, 0x9}, r8, 0x1}}, 0x48)
write$RDMA_USER_CM_CMD_CREATE_ID(r7, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x1, 0x0, 0x2, 0x5}}, 0x20)
r9 = open(&(0x7f0000000000)='.\x00', 0x0, 0x4)
fcntl$notify(r9, 0x402, 0x8000003d)

0s ago: executing program 1 (id=591):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[], 0x64}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x6c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x2c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0xfd}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x6c}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)={0x38, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x38}}, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.63' (ED25519) to the list of known hosts.
[   85.300977][ T5815] cgroup: Unknown subsys name 'net'
[   85.455005][ T5815] cgroup: Unknown subsys name 'cpuset'
[   85.464255][ T5815] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   87.042345][ T5815] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   90.004632][ T5838] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   90.027080][ T5848] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   90.040394][ T5848] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   90.046454][ T5845] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   90.054795][ T5845] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[   90.055288][ T5848] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   90.070697][ T5845] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   90.090620][ T5845] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   90.090726][ T5848] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   90.111919][ T5845] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[   90.121147][ T5849] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   90.128763][ T5845] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   90.128803][ T5848] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   90.140157][ T5845] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   90.145461][ T5848] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   90.150733][ T5845] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[   90.157745][ T5848] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   90.163657][ T5850] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   90.178720][ T5848] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   90.181370][ T5845] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   90.194076][ T5850] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   90.195061][ T5848] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   90.202611][ T5850] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   90.208877][ T5848] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   90.215950][ T5148] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[   90.234435][ T5850] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[   90.241829][ T5848] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   90.244200][ T5850] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   90.260574][ T5848] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   90.268085][ T5848] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   90.969758][ T5828] chnl_net:caif_netlink_parms(): no params data found
[   91.036682][ T5827] chnl_net:caif_netlink_parms(): no params data found
[   91.191452][ T5829] chnl_net:caif_netlink_parms(): no params data found
[   91.238813][  T977] cfg80211: failed to load regulatory.db
[   91.339110][ T5826] chnl_net:caif_netlink_parms(): no params data found
[   91.550458][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.557623][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.566459][ T5827] bridge_slave_0: entered allmulticast mode
[   91.574154][ T5827] bridge_slave_0: entered promiscuous mode
[   91.582504][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.589622][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.596876][ T5828] bridge_slave_0: entered allmulticast mode
[   91.604319][ T5828] bridge_slave_0: entered promiscuous mode
[   91.617891][ T5830] chnl_net:caif_netlink_parms(): no params data found
[   91.661009][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.668814][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.676462][ T5827] bridge_slave_1: entered allmulticast mode
[   91.684205][ T5827] bridge_slave_1: entered promiscuous mode
[   91.692321][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.699450][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.706656][ T5828] bridge_slave_1: entered allmulticast mode
[   91.714884][ T5828] bridge_slave_1: entered promiscuous mode
[   91.757766][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.765117][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.773178][ T5829] bridge_slave_0: entered allmulticast mode
[   91.781004][ T5829] bridge_slave_0: entered promiscuous mode
[   91.852682][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.859906][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.867583][ T5829] bridge_slave_1: entered allmulticast mode
[   91.875045][ T5829] bridge_slave_1: entered promiscuous mode
[   91.952817][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.965893][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.989553][ T5831] chnl_net:caif_netlink_parms(): no params data found
[   92.025437][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   92.037009][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   92.046331][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.053947][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.061732][ T5826] bridge_slave_0: entered allmulticast mode
[   92.069116][ T5826] bridge_slave_0: entered promiscuous mode
[   92.093918][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   92.106699][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   92.146707][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.154004][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.161647][ T5826] bridge_slave_1: entered allmulticast mode
[   92.169048][ T5826] bridge_slave_1: entered promiscuous mode
[   92.191119][ T5839] Bluetooth: hci4: command tx timeout
[   92.275561][ T5838] Bluetooth: hci1: command tx timeout
[   92.281236][ T5850] Bluetooth: hci5: command tx timeout
[   92.287010][ T5839] Bluetooth: hci3: command tx timeout
[   92.318949][ T5827] team0: Port device team_slave_0 added
[   92.327878][ T5828] team0: Port device team_slave_0 added
[   92.336577][ T5828] team0: Port device team_slave_1 added
[   92.350860][ T5838] Bluetooth: hci2: command tx timeout
[   92.356735][ T5839] Bluetooth: hci0: command tx timeout
[   92.370783][ T5830] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.377964][ T5830] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.385481][ T5830] bridge_slave_0: entered allmulticast mode
[   92.393201][ T5830] bridge_slave_0: entered promiscuous mode
[   92.403496][ T5829] team0: Port device team_slave_0 added
[   92.411589][ T5827] team0: Port device team_slave_1 added
[   92.419396][ T5829] team0: Port device team_slave_1 added
[   92.456706][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   92.473640][ T5830] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.480894][ T5830] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.488009][ T5830] bridge_slave_1: entered allmulticast mode
[   92.496378][ T5830] bridge_slave_1: entered promiscuous mode
[   92.532629][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0
[   92.539598][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   92.565734][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.580795][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   92.648114][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.655310][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   92.681396][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.734963][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0
[   92.742084][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   92.768389][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.780573][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0
[   92.787523][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   92.813717][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.846304][ T5831] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.853775][ T5831] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.861076][ T5831] bridge_slave_0: entered allmulticast mode
[   92.868617][ T5831] bridge_slave_0: entered promiscuous mode
[   92.879957][ T5830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   92.893024][ T5830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   92.903447][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.910546][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   92.936693][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.948698][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.955834][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   92.982171][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.995926][ T5826] team0: Port device team_slave_0 added
[   93.002488][ T5831] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.009673][ T5831] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.016864][ T5831] bridge_slave_1: entered allmulticast mode
[   93.024472][ T5831] bridge_slave_1: entered promiscuous mode
[   93.077976][ T5826] team0: Port device team_slave_1 added
[   93.115367][ T5830] team0: Port device team_slave_0 added
[   93.189043][ T5830] team0: Port device team_slave_1 added
[   93.228992][ T5828] hsr_slave_0: entered promiscuous mode
[   93.236146][ T5828] hsr_slave_1: entered promiscuous mode
[   93.259471][ T5831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   93.304365][ T5829] hsr_slave_0: entered promiscuous mode
[   93.311483][ T5829] hsr_slave_1: entered promiscuous mode
[   93.317717][ T5829] debugfs: 'hsr0' already exists in 'hsr'
[   93.324046][ T5829] Cannot create hsr debugfs directory
[   93.347855][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0
[   93.354897][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   93.380976][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   93.394540][ T5831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   93.422965][ T5827] hsr_slave_0: entered promiscuous mode
[   93.429458][ T5827] hsr_slave_1: entered promiscuous mode
[   93.435799][ T5827] debugfs: 'hsr0' already exists in 'hsr'
[   93.441542][ T5827] Cannot create hsr debugfs directory
[   93.468897][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1
[   93.476035][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   93.502365][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   93.527585][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_0
[   93.534662][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   93.560637][ T5830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   93.616402][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_1
[   93.623751][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   93.649839][ T5830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   93.723033][ T5831] team0: Port device team_slave_0 added
[   93.787621][ T5831] team0: Port device team_slave_1 added
[   93.959639][ T5826] hsr_slave_0: entered promiscuous mode
[   93.966191][ T5826] hsr_slave_1: entered promiscuous mode
[   93.972761][ T5826] debugfs: 'hsr0' already exists in 'hsr'
[   93.978506][ T5826] Cannot create hsr debugfs directory
[   93.991204][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_0
[   93.998145][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   94.024965][ T5831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   94.042622][ T5830] hsr_slave_0: entered promiscuous mode
[   94.049076][ T5830] hsr_slave_1: entered promiscuous mode
[   94.055648][ T5830] debugfs: 'hsr0' already exists in 'hsr'
[   94.061425][ T5830] Cannot create hsr debugfs directory
[   94.105088][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_1
[   94.112336][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   94.138906][ T5831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   94.271037][ T5839] Bluetooth: hci4: command tx timeout
[   94.346391][ T5831] hsr_slave_0: entered promiscuous mode
[   94.353266][ T5831] hsr_slave_1: entered promiscuous mode
[   94.359498][ T5831] debugfs: 'hsr0' already exists in 'hsr'
[   94.365747][ T5839] Bluetooth: hci3: command tx timeout
[   94.365824][ T5839] Bluetooth: hci1: command tx timeout
[   94.365891][ T5839] Bluetooth: hci5: command tx timeout
[   94.387660][ T5831] Cannot create hsr debugfs directory
[   94.430207][ T5838] Bluetooth: hci2: command tx timeout
[   94.435653][ T5838] Bluetooth: hci0: command tx timeout
[   94.535644][ T5829] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   94.548483][ T5829] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   94.608414][ T5829] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   94.660960][ T5829] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   94.778344][ T5828] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   94.811570][ T5828] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   94.850701][ T5828] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   94.861902][ T5828] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   94.925167][ T5827] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   94.951390][ T5827] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   94.981084][ T5827] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   95.009725][ T5827] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   95.106655][ T5826] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   95.117720][ T5826] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   95.139594][ T5826] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   95.151916][ T5826] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   95.182024][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0
[   95.266065][ T5829] 8021q: adding VLAN 0 to HW filter on device team0
[   95.284016][ T5830] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   95.295313][ T5830] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   95.332141][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0
[   95.339338][ T5830] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   95.352634][ T5830] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   95.384601][ T2971] bridge0: port 1(bridge_slave_0) entered blocking state
[   95.391876][ T2971] bridge0: port 1(bridge_slave_0) entered forwarding state
[   95.430404][   T65] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.437751][   T65] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.499674][ T5831] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   95.513051][ T5831] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   95.524613][ T5831] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   95.534967][ T5831] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   95.582645][ T5828] 8021q: adding VLAN 0 to HW filter on device team0
[   95.639807][   T65] bridge0: port 1(bridge_slave_0) entered blocking state
[   95.646990][   T65] bridge0: port 1(bridge_slave_0) entered forwarding state
[   95.671273][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0
[   95.684851][   T65] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.691991][   T65] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.800332][ T5827] 8021q: adding VLAN 0 to HW filter on device team0
[   95.865561][ T3500] bridge0: port 1(bridge_slave_0) entered blocking state
[   95.872763][ T3500] bridge0: port 1(bridge_slave_0) entered forwarding state
[   95.907289][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0
[   95.928710][ T3500] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.935927][ T3500] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.991492][ T5826] 8021q: adding VLAN 0 to HW filter on device team0
[   96.009930][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0
[   96.058730][ T2971] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.065931][ T2971] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.106727][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0
[   96.147352][ T2971] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.154574][ T2971] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.189542][ T5831] 8021q: adding VLAN 0 to HW filter on device team0
[   96.243033][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0
[   96.266805][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.273968][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.352388][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.353444][ T5838] Bluetooth: hci4: command tx timeout
[   96.359694][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.389666][ T5830] 8021q: adding VLAN 0 to HW filter on device team0
[   96.427836][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0
[   96.443820][ T5838] Bluetooth: hci5: command tx timeout
[   96.444200][ T5839] Bluetooth: hci1: command tx timeout
[   96.449259][ T5838] Bluetooth: hci3: command tx timeout
[   96.461850][ T5829] veth0_vlan: entered promiscuous mode
[   96.514341][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.521544][ T5838] Bluetooth: hci0: command tx timeout
[   96.521577][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.526952][ T5838] Bluetooth: hci2: command tx timeout
[   96.597727][ T3500] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.604962][ T3500] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.627989][ T5829] veth1_vlan: entered promiscuous mode
[   96.705236][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0
[   96.899792][ T5829] veth0_macvtap: entered promiscuous mode
[   96.968734][ T5829] veth1_macvtap: entered promiscuous mode
[   97.085550][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0
[   97.124251][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0
[   97.202008][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1
[   97.278329][   T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.337509][ T5828] veth0_vlan: entered promiscuous mode
[   97.367308][   T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.376516][   T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.413476][ T5826] veth0_vlan: entered promiscuous mode
[   97.434908][   T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.481974][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0
[   97.500985][ T5828] veth1_vlan: entered promiscuous mode
[   97.524860][ T5826] veth1_vlan: entered promiscuous mode
[   97.575336][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0
[   97.598813][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.612465][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.671158][ T5828] veth0_macvtap: entered promiscuous mode
[   97.702630][ T5828] veth1_macvtap: entered promiscuous mode
[   97.709423][ T5827] veth0_vlan: entered promiscuous mode
[   97.732501][ T3536] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.738491][ T5826] veth0_macvtap: entered promiscuous mode
[   97.750987][ T3536] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.775390][ T5826] veth1_macvtap: entered promiscuous mode
[   97.794219][ T5827] veth1_vlan: entered promiscuous mode
[   97.806949][ T5830] veth0_vlan: entered promiscuous mode
[   97.839046][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0
[   97.854515][ T5829] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   97.860080][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0
[   97.895902][ T5830] veth1_vlan: entered promiscuous mode
[   97.938156][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1
[   97.949098][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1
[   97.973611][ T5831] veth0_vlan: entered promiscuous mode
[   98.028760][   T13] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.040416][   T13] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.052856][ T5830] veth0_macvtap: entered promiscuous mode
[   98.075767][ T5831] veth1_vlan: entered promiscuous mode
[   98.096832][ T5827] veth0_macvtap: entered promiscuous mode
[   98.106837][   T13] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.117746][   T13] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   98.129898][ T2971] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.144923][ T5830] veth1_macvtap: entered promiscuous mode
[   98.163088][ T2971] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.172151][ T2971] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.187333][ T5827] veth1_macvtap: entered promiscuous mode
[   98.236228][ T2971] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   98.289443][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0
[   98.349353][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1
[   98.431671][ T5838] Bluetooth: hci4: command tx timeout
[   98.436875][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0
[   98.460256][   T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.482747][   T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.499264][ T5831] veth0_macvtap: entered promiscuous mode
[   98.519084][ T5838] Bluetooth: hci1: command tx timeout
[   98.519263][ T5839] Bluetooth: hci5: command tx timeout
[   98.524614][ T5838] Bluetooth: hci3: command tx timeout
[   98.532317][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.548814][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1
[   98.580734][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.592277][ T5838] Bluetooth: hci2: command tx timeout
[   98.592325][ T5839] Bluetooth: hci0: command tx timeout
[   98.604924][ T5982] netlink: 24 bytes leftover after parsing attributes in process `syz.3.11'.
[   98.607122][   T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.624224][   T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   98.639184][ T5831] veth1_macvtap: entered promiscuous mode
[   98.751778][ T3536] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.760665][ T3536] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.760684][   T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.814069][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0
[   98.828042][   T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.864429][   T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.904401][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1
[   98.933487][ T3536] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   98.934058][   T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   98.946515][ T3536] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   98.967349][ T5989] netlink: 'syz.3.14': attribute type 12 has an invalid length.
[   99.067053][ T3536] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   99.090554][ T3536] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   99.104879][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.121136][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.155307][ T3536] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   99.169254][ T3536] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   99.213837][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.248159][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.283848][ T5994] wÞ££‘ uses obsolete (PF_INET,SOCK_PACKET)
[   99.296237][ T5994] xt_policy: output policy not valid in PREROUTING and INPUT
[   99.315876][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.326304][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.455580][ T3536] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.476555][ T3536] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.533640][   T65] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.555206][   T65] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.719172][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.756439][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   99.979166][ T3536] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.007638][ T3536] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.050975][  T977] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  100.250711][  T977] usb 4-1: Using ep0 maxpacket: 32
[  100.278835][  T977] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  100.335154][  T977] usb 4-1: New USB device found, idVendor=06f8, idProduct=301b, bcdDevice=bb.39
[  100.385270][  T977] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  100.418701][  T977] usb 4-1: Product: syz
[  100.439589][  T977] usb 4-1: Manufacturer: syz
[  100.465396][  T977] usb 4-1: SerialNumber: syz
[  100.473312][ T6026] netlink: 'syz.4.22': attribute type 13 has an invalid length.
[  100.495870][  T977] usb 4-1: config 0 descriptor??
[  100.566748][  T977] gspca_main: gspca_pac7302-2.14.0 probing 06f8:301b
[  100.888288][ T6033] netlink: 4 bytes leftover after parsing attributes in process `syz.0.25'.
[  100.935860][ T6026] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.936114][ T6033] netlink: 4 bytes leftover after parsing attributes in process `syz.0.25'.
[  100.943847][ T6026] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.278769][  T977] gspca_pac7302: reg_w() failed i: 78 v: 00 error -110
[  101.306133][  T977] gspca_pac7302 4-1:0.0: probe with driver gspca_pac7302 failed with error -110
[  101.660523][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  101.863612][ T6026] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  101.927596][ T6026] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  101.954645][   T30] audit: type=1326 audit(1760483004.914:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.5.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f109238eec9 code=0x7ffc0000
[  102.004286][   T30] audit: type=1326 audit(1760483004.934:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.5.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f109238eec9 code=0x7ffc0000
[  102.007582][ T6057] netlink: 56 bytes leftover after parsing attributes in process `syz.5.33'.
[  102.051016][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  102.256392][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  102.460651][    T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!!
[  102.563062][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  103.070491][   T30] audit: type=1326 audit(1760483004.934:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.5.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f109238eec9 code=0x7ffc0000
[  103.213418][   T30] audit: type=1326 audit(1760483004.934:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.5.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f109238eec9 code=0x7ffc0000
[  103.391926][   T30] audit: type=1326 audit(1760483004.934:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.5.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f109238eec9 code=0x7ffc0000
[  103.432666][   T30] audit: type=1326 audit(1760483004.934:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.5.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f109238eec9 code=0x7ffc0000
[  103.511999][   T30] audit: type=1326 audit(1760483004.934:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.5.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f109238eec9 code=0x7ffc0000
[  103.559889][   T30] audit: type=1326 audit(1760483004.934:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.5.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7f109238eec9 code=0x7ffc0000
[  103.654676][   T30] audit: type=1326 audit(1760483004.934:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.5.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f109238eec9 code=0x7ffc0000
[  103.709166][   T30] audit: type=1326 audit(1760483004.934:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.5.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f109238d97f code=0x7ffc0000
[  103.832382][ T6064] bridge0: entered promiscuous mode
[  103.902094][ T1140] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  103.930649][ T1140] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  104.109509][  T974] usb 4-1: USB disconnect, device number 2
[  104.179263][ T1140] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  104.222898][ T1140] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  104.549142][ T6085] loop5: detected capacity change from 0 to 1024
[  104.594907][ T6085] =======================================================
[  104.594907][ T6085] WARNING: The mand mount option has been deprecated and
[  104.594907][ T6085]          and is ignored by this kernel. Remove the mand
[  104.594907][ T6085]          option from the mount to silence this warning.
[  104.594907][ T6085] =======================================================
[  104.722401][ T6085] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  104.986132][ T6085] EXT4-fs error (device loop5): ext4_ext_check_inode:523: inode #11: comm syz.5.41: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  105.073489][ T6095] Zero length message leads to an empty skb
[  105.079559][ T6085] EXT4-fs error (device loop5): ext4_orphan_get:1397: comm syz.5.41: couldn't read orphan inode 11 (err -117)
[  105.135910][ T6085] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.255565][ T6085] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.41: Invalid block bitmap block 0 in block_group 0
[  105.289500][ T6085] EXT4-fs error (device loop5): ext4_acquire_dquot:6945: comm syz.5.41: Failed to acquire dquot type 0
[  105.362119][ T6098] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000.
[  105.543122][ T5827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.557848][ T6104] loop0: detected capacity change from 0 to 256
[  105.594741][ T6105] netlink: 4 bytes leftover after parsing attributes in process `syz.4.48'.
[  106.331509][ T6125] loop2: detected capacity change from 0 to 512
[  106.371573][ T6125] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  106.410622][ T6129] netlink: 'syz.1.58': attribute type 12 has an invalid length.
[  106.446371][ T6125] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.57: Failed to acquire dquot type 1
[  106.449283][ T6131] netlink: 'syz.5.59': attribute type 10 has an invalid length.
[  106.496218][ T6125] EXT4-fs (loop2): 1 truncate cleaned up
[  106.565733][ T6125] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.583647][ T6134] netlink: 'syz.5.59': attribute type 10 has an invalid length.
[  106.650932][ T6131] team0: Port device dummy0 added
[  106.668129][ T6134] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  106.717132][ T6134] team0: Failed to send options change via netlink (err -105)
[  106.746714][ T6134] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  106.799582][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.800810][ T6134] team0: Port device dummy0 removed
[  106.853922][ T6134] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  106.868182][ T6136] netlink: 32 bytes leftover after parsing attributes in process `syz.0.60'.
[  107.299493][ T6143] loop2: detected capacity change from 0 to 1024
[  107.440485][ T6143] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.535613][   T30] kauditd_printk_skb: 46 callbacks suppressed
[  107.535634][   T30] audit: type=1800 audit(1760483010.504:54): pid=6143 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.62" name="bus" dev="loop2" ino=18 res=0 errno=0
[  108.036270][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.839012][ T6180] loop3: detected capacity change from 0 to 512
[  108.902443][ T6180] EXT4-fs (loop3): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  109.061400][ T6180] Quota error (device loop3): v2_read_file_info: Free block number 58381 out of range (1, 6).
[  109.134582][ T6180] EXT4-fs warning (device loop3): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  109.222479][   T30] audit: type=1326 audit(1760483012.194:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.4.81" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8a6d8eec9 code=0x7ffc0000
[  109.309904][ T5829] EXT4-fs (loop3): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  109.337125][   T30] audit: type=1326 audit(1760483012.214:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.4.81" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8a6d8eec9 code=0x7ffc0000
[  109.434368][   T30] audit: type=1326 audit(1760483012.224:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.4.81" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff8a6d8eec9 code=0x7ffc0000
[  109.534327][   T30] audit: type=1326 audit(1760483012.234:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.4.81" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8a6d8eec9 code=0x7ffc0000
[  109.645337][   T30] audit: type=1326 audit(1760483012.234:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.4.81" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8a6d8eec9 code=0x7ffc0000
[  109.743296][   T30] audit: type=1326 audit(1760483012.234:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.4.81" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff8a6d8eec9 code=0x7ffc0000
[  109.743355][   T30] audit: type=1326 audit(1760483012.244:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.4.81" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff8a6d8eec9 code=0x7ffc0000
[  109.743406][   T30] audit: type=1326 audit(1760483012.244:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.4.81" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff8a6d8eec9 code=0x7ffc0000
[  110.063471][ T6217] syz.3.90 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  110.065763][ T6210] loop1: detected capacity change from 0 to 1024
[  110.284317][ T6210] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  110.361731][ T6221] loop2: detected capacity change from 0 to 256
[  111.767802][ T6252] netlink: 'syz.2.104': attribute type 12 has an invalid length.
[  111.876376][ T5826] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.923977][ T6254] 9pnet_fd: Insufficient options for proto=fd
[  112.107488][ T6256] netlink: 32 bytes leftover after parsing attributes in process `syz.3.106'.
[  113.277025][ T6279] loop4: detected capacity change from 0 to 1024
[  113.299248][ T6279] EXT4-fs: Ignoring removed mblk_io_submit option
[  113.676569][ T6279] EXT4-fs: inline encryption not supported
[  113.918123][ T6279] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  113.948021][ T6279] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.113: bad orphan inode 11
[  113.960486][ T6279] EXT4-fs (loop4): Remounting filesystem read-only
[  113.974497][ T6279] ext4_test_bit(bit=10, block=4) = 1
[  113.984752][ T6279] is_bad_inode(inode)=0
[  114.011384][ T6279] NEXT_ORPHAN(inode)=3254779904
[  114.067706][ T6279] max_ino=32
[  114.088164][ T6279] i_nlink=0
[  114.122462][ T6279] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  114.228834][ T6271] netlink: 28 bytes leftover after parsing attributes in process `syz.1.115'.
[  114.243782][ T6271] netlink: 108 bytes leftover after parsing attributes in process `syz.1.115'.
[  114.293492][ T6271] netlink: 28 bytes leftover after parsing attributes in process `syz.1.115'.
[  114.315279][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.332196][ T6271] netlink: 108 bytes leftover after parsing attributes in process `syz.1.115'.
[  114.364969][ T6271] netlink: 84 bytes leftover after parsing attributes in process `syz.1.115'.
[  120.571515][ T6383] veth0_to_team: entered promiscuous mode
[  120.750551][ T6386] netlink: 'syz.2.150': attribute type 1 has an invalid length.
[  120.758306][ T6386] netlink: 'syz.2.150': attribute type 2 has an invalid length.
[  122.976884][ T6408] netlink: 4 bytes leftover after parsing attributes in process `syz.1.158'.
[  122.986076][ T6408] netlink: 4 bytes leftover after parsing attributes in process `syz.1.158'.
[  124.664739][ T5944] kernel write not supported for file /57/clear_refs (pid: 5944 comm: kworker/1:6)
[  124.706781][ T6439] netlink: 24 bytes leftover after parsing attributes in process `syz.0.167'.
[  124.825741][ T6439] loop0: detected capacity change from 0 to 1024
[  124.902353][ T6439] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  126.685649][ T6471] netlink: 4 bytes leftover after parsing attributes in process `syz.5.177'.
[  126.698827][ T6471] netlink: 4 bytes leftover after parsing attributes in process `syz.5.177'.
[  127.265356][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.432759][ T6477] 8021q: VLANs not supported on ip6gre0
[  131.056819][ T6533] loop5: detected capacity change from 0 to 1024
[  132.012049][ T6533] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  132.281904][ T5827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.547113][   T30] kauditd_printk_skb: 3 callbacks suppressed
[  132.547132][   T30] audit: type=1326 audit(1760483035.514:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.0.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3829b8eec9 code=0x7ffc0000
[  132.868587][   T30] audit: type=1326 audit(1760483035.514:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.0.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3829b8eec9 code=0x7ffc0000
[  132.911729][   T30] audit: type=1326 audit(1760483035.514:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.0.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f3829b8eec9 code=0x7ffc0000
[  133.169949][   T30] audit: type=1326 audit(1760483035.514:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.0.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3829b8eec9 code=0x7ffc0000
[  133.705428][   T30] audit: type=1326 audit(1760483035.514:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.0.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3829b8eec9 code=0x7ffc0000
[  133.727962][   T30] audit: type=1326 audit(1760483035.544:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.0.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f3829b8eec9 code=0x7ffc0000
[  133.765646][   T30] audit: type=1326 audit(1760483035.544:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.0.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3829b8eec9 code=0x7ffc0000
[  133.880084][   T30] audit: type=1326 audit(1760483035.544:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.0.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3829b8eec9 code=0x7ffc0000
[  133.908131][ T6568] pim6reg: entered allmulticast mode
[  133.917116][ T6389] bridge_slave_1: left allmulticast mode
[  133.935129][ T6389] bridge_slave_1: left promiscuous mode
[  133.961040][ T6389] bridge0: port 2(bridge_slave_1) entered disabled state
[  133.990894][   T30] audit: type=1326 audit(1760483035.544:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.0.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f3829b8eec9 code=0x7ffc0000
[  134.025974][ T6389] bridge_slave_0: left allmulticast mode
[  134.040135][ T6389] bridge_slave_0: left promiscuous mode
[  134.058139][ T6389] bridge0: port 1(bridge_slave_0) entered disabled state
[  134.107412][   T30] audit: type=1326 audit(1760483035.544:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.0.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3829b8eec9 code=0x7ffc0000
[  135.201144][ T5838] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  135.209474][ T5838] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  135.218337][ T5838] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  135.226721][ T5838] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  135.241643][ T5838] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  135.622370][ T6389] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  135.709972][ T6389] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  135.734029][ T6389] bond0 (unregistering): Released all slaves
[  135.853586][ T6571] pim6reg: left allmulticast mode
[  136.634281][ T6614] netlink: 32 bytes leftover after parsing attributes in process `syz.5.221'.
[  136.786273][ T6389] hsr_slave_0: left promiscuous mode
[  136.799435][ T6620] loop0: detected capacity change from 0 to 128
[  136.819406][ T6389] hsr_slave_1: left promiscuous mode
[  136.840901][ T6620] FAT-fs (loop0): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  136.849392][ T6389] batman_adv: batadv0: Removing interface: batadv_slave_0
[  137.315269][ T5839] Bluetooth: hci2: command tx timeout
[  137.321501][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  137.328168][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  137.721290][ T6389] batman_adv: batadv0: Removing interface: batadv_slave_1
[  137.860578][ T5838] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  137.869087][ T5838] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  137.879878][ T5838] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  137.894538][ T5838] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  137.916398][ T5838] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  139.307660][ T6389] team0 (unregistering): Port device team_slave_1 removed
[  139.343490][ T6389] team0 (unregistering): Port device team_slave_0 removed
[  139.391583][ T5839] Bluetooth: hci2: command tx timeout
[  139.965111][ T5839] Bluetooth: hci3: command tx timeout
[  141.587919][ T5839] Bluetooth: hci2: command tx timeout
[  142.030335][ T5838] Bluetooth: hci3: command tx timeout
[  142.058592][ T6587] chnl_net:caif_netlink_parms(): no params data found
[  143.630542][ T5838] Bluetooth: hci2: command tx timeout
[  143.753025][ T6587] bridge0: port 1(bridge_slave_0) entered blocking state
[  143.791610][ T6587] bridge0: port 1(bridge_slave_0) entered disabled state
[  143.798812][ T6587] bridge_slave_0: entered allmulticast mode
[  143.858782][ T6587] bridge_slave_0: entered promiscuous mode
[  143.866065][   T24] kernel write not supported for file /119/clear_refs (pid: 24 comm: kworker/1:0)
[  143.900599][ T6723] netlink: 24 bytes leftover after parsing attributes in process `syz.0.244'.
[  143.916563][ T6587] bridge0: port 2(bridge_slave_1) entered blocking state
[  143.961794][ T6587] bridge0: port 2(bridge_slave_1) entered disabled state
[  144.000242][ T6587] bridge_slave_1: entered allmulticast mode
[  144.020596][ T6587] bridge_slave_1: entered promiscuous mode
[  144.110259][ T5838] Bluetooth: hci3: command tx timeout
[  144.272019][ T6731] loop5: detected capacity change from 0 to 1024
[  144.291291][ T6731] EXT4-fs: Ignoring removed mblk_io_submit option
[  144.319682][ T6731] EXT4-fs: inline encryption not supported
[  144.338410][ T6731] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  144.364835][ T6731] EXT4-fs error (device loop5): ext4_orphan_get:1418: comm syz.5.247: bad orphan inode 11
[  144.384346][ T6731] EXT4-fs (loop5): Remounting filesystem read-only
[  144.392571][ T6731] ext4_test_bit(bit=10, block=4) = 1
[  144.397922][ T6731] is_bad_inode(inode)=0
[  144.403331][ T6731] NEXT_ORPHAN(inode)=3254779904
[  144.408262][ T6731] max_ino=32
[  144.422668][ T6731] i_nlink=0
[  144.428471][ T6731] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.449877][ T6587] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  144.462817][ T6587] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  144.666350][ T5827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.700255][ T6389] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.138606][ T6389] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.166316][ T6587] team0: Port device team_slave_0 added
[  145.184465][ T6587] team0: Port device team_slave_1 added
[  145.762611][ T6760] netlink: 8 bytes leftover after parsing attributes in process `syz.5.254'.
[  146.252163][ T5838] Bluetooth: hci3: command tx timeout
[  146.510761][ T6762] netlink: 'syz.5.254': attribute type 1 has an invalid length.
[  146.518591][ T6762] netlink: 'syz.5.254': attribute type 2 has an invalid length.
[  147.449653][ T6767] loop1: detected capacity change from 0 to 512
[  147.478241][ T6767] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  147.505263][ T6767] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  147.522015][ T6389] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.545544][ T6767] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  147.640818][ T6767] EXT4-fs (loop1): 1 truncate cleaned up
[  147.662420][ T6767] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  147.727753][ T6587] batman_adv: batadv0: Adding interface: batadv_slave_0
[  147.861337][ T6587] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  147.888565][ T6587] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  147.918173][ T6644] chnl_net:caif_netlink_parms(): no params data found
[  147.999058][ T6778] loop5: detected capacity change from 0 to 1024
[  148.042447][ T6778] EXT4-fs: Ignoring removed mblk_io_submit option
[  148.103147][ T6778] EXT4-fs: inline encryption not supported
[  148.138423][ T6778] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  148.247360][ T6778] EXT4-fs error (device loop5): ext4_orphan_get:1418: comm syz.5.259: bad orphan inode 11
[  148.381464][ T6782] netlink: 28 bytes leftover after parsing attributes in process `syz.0.258'.
[  148.517512][ T6778] EXT4-fs (loop5): Remounting filesystem read-only
[  148.606471][ T6778] ext4_test_bit(bit=10, block=4) = 1
[  148.712658][ T6778] is_bad_inode(inode)=0
[  148.791867][ T6778] NEXT_ORPHAN(inode)=3254779904
[  148.936274][ T6778] max_ino=32
[  148.939479][ T6778] i_nlink=0
[  148.952218][ T6778] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.196311][ T5827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.207138][ T6389] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.275654][ T6767] netlink: 16 bytes leftover after parsing attributes in process `syz.1.256'.
[  149.294815][ T6789] loop0: detected capacity change from 0 to 1024
[  149.307106][ T6587] batman_adv: batadv0: Adding interface: batadv_slave_1
[  149.318290][ T6789] EXT4-fs: Ignoring removed bh option
[  149.340116][ T6587] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  149.349706][ T6789] EXT4-fs: inline encryption not supported
[  149.387746][ T6789] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  149.399413][ T6587] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  149.424837][ T5826] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.430290][ T6789] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000]
[  149.494942][ T6789] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 2: comm syz.0.261: lblock 2 mapped to illegal pblock 2 (length 1)
[  149.532760][ T6789] __quota_error: 45 callbacks suppressed
[  149.532776][ T6789] Quota error (device loop0): qtree_write_dquot: dquota write failed
[  149.547093][ T6789] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 48: comm syz.0.261: lblock 0 mapped to illegal pblock 48 (length 1)
[  149.567733][ T6789] Quota error (device loop0): v2_write_file_info: Can't write info structure
[  149.578141][ T6789] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.261: Failed to acquire dquot type 0
[  149.596365][ T6795] loop5: detected capacity change from 0 to 2048
[  149.624678][ T6789] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6305: Corrupt filesystem
[  149.659901][ T6789] EXT4-fs error (device loop0): ext4_evict_inode:254: inode #11: comm syz.0.261: mark_inode_dirty error
[  149.696135][ T6795] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  149.722382][ T6789] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  149.745855][ T6789] EXT4-fs (loop0): 1 orphan inode deleted
[  149.753881][   T30] audit: type=1800 audit(1760483052.724:121): pid=6795 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.264" name="bus" dev="loop5" ino=18 res=0 errno=0
[  149.763259][ T6789] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  149.793015][ T1140] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:6: lblock 1 mapped to illegal pblock 1 (length 1)
[  149.843385][ T1140] Quota error (device loop0): remove_tree: Can't read quota data block 1
[  149.866299][ T1140] EXT4-fs error (device loop0): ext4_release_dquot:6981: comm kworker/u8:6: Failed to release dquot type 0
[  149.866350][ T6789] EXT4-fs error (device loop0): ext4_map_blocks:778: inode #3: block 1: comm syz.0.261: lblock 1 mapped to illegal pblock 1 (length 1)
[  149.906814][ T6789] Quota error (device loop0): find_next_id: Can't read quota tree block 1
[  150.104063][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.176184][ T5830] EXT4-fs error (device loop0): __ext4_get_inode_loc:4832: comm syz-executor: Invalid inode table block 1 in block_group 0
[  150.212079][ T5827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.221149][ T5830] EXT4-fs error (device loop0) in ext4_reserve_inode_write:6305: Corrupt filesystem
[  150.235164][ T5830] EXT4-fs error (device loop0): ext4_quota_off:7229: inode #3: comm syz-executor: mark_inode_dirty error
[  150.311850][ T6587] hsr_slave_0: entered promiscuous mode
[  150.318790][ T6587] hsr_slave_1: entered promiscuous mode
[  150.376555][ T6644] bridge0: port 1(bridge_slave_0) entered blocking state
[  150.409796][ T6644] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.429103][ T6644] bridge_slave_0: entered allmulticast mode
[  150.440845][ T6644] bridge_slave_0: entered promiscuous mode
[  151.248961][ T6644] bridge0: port 2(bridge_slave_1) entered blocking state
[  151.260896][ T6644] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.280281][ T6644] bridge_slave_1: entered allmulticast mode
[  151.296230][ T6644] bridge_slave_1: entered promiscuous mode
[  151.514347][ T6837] loop5: detected capacity change from 0 to 1024
[  151.531013][ T6837] EXT4-fs: Ignoring removed mblk_io_submit option
[  151.555017][ T6644] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  151.556902][ T6837] EXT4-fs: inline encryption not supported
[  151.582196][ T6389] bridge_slave_1: left allmulticast mode
[  151.587955][ T6389] bridge_slave_1: left promiscuous mode
[  151.599494][ T6389] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.623945][ T6837] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  151.667541][ T6837] EXT4-fs error (device loop5): ext4_orphan_get:1418: comm syz.5.272: bad orphan inode 11
[  151.679595][ T6837] EXT4-fs (loop5): Remounting filesystem read-only
[  151.681324][ T6389] bridge_slave_0: left allmulticast mode
[  151.690343][ T6837] ext4_test_bit(bit=10, block=4) = 1
[  151.697401][ T6837] is_bad_inode(inode)=0
[  151.702604][ T6837] NEXT_ORPHAN(inode)=3254779904
[  151.707464][ T6837] max_ino=32
[  151.711407][ T6837] i_nlink=0
[  151.717666][ T6837] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  151.731499][ T6389] bridge_slave_0: left promiscuous mode
[  151.737371][ T6389] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.883008][ T5827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.176234][ T6389] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  152.187321][ T6389] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  152.199061][ T6389] bond0 (unregistering): Released all slaves
[  152.265425][ T6644] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  152.445359][ T6644] team0: Port device team_slave_0 added
[  152.501294][ T6644] team0: Port device team_slave_1 added
[  152.850459][ T6867] 9pnet_fd: Insufficient options for proto=fd
[  153.835734][ T6644] batman_adv: batadv0: Adding interface: batadv_slave_0
[  153.870338][ T6644] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  153.928992][ T6644] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  154.105541][   T30] audit: type=1326 audit(1760483057.044:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6872 comm="syz.1.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  154.138347][ T6644] batman_adv: batadv0: Adding interface: batadv_slave_1
[  154.150307][ T6644] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  154.219004][   T30] audit: type=1326 audit(1760483057.044:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6872 comm="syz.1.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  154.230250][ T6644] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  154.256065][ T6888] loop5: detected capacity change from 0 to 1024
[  154.301394][ T6888] EXT4-fs: Ignoring removed mblk_io_submit option
[  154.307882][ T6888] EXT4-fs: inline encryption not supported
[  154.314577][   T30] audit: type=1326 audit(1760483057.044:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6872 comm="syz.1.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  154.370709][   T30] audit: type=1326 audit(1760483057.044:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6872 comm="syz.1.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  154.399072][ T6888] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  154.439978][ T6888] EXT4-fs error (device loop5): ext4_orphan_get:1418: comm syz.5.287: bad orphan inode 11
[  154.459700][ T6888] EXT4-fs (loop5): Remounting filesystem read-only
[  154.493773][   T30] audit: type=1326 audit(1760483057.044:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6872 comm="syz.1.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  154.517721][ T6888] ext4_test_bit(bit=10, block=4) = 1
[  154.561803][ T6888] is_bad_inode(inode)=0
[  154.565957][ T6888] NEXT_ORPHAN(inode)=3254779904
[  154.610103][ T6888] max_ino=32
[  154.613360][ T6888] i_nlink=0
[  154.618465][ T6888] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  154.643801][   T30] audit: type=1326 audit(1760483057.044:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6872 comm="syz.1.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  154.699363][   T30] audit: type=1326 audit(1760483057.044:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6872 comm="syz.1.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  154.780156][   T30] audit: type=1326 audit(1760483057.044:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6872 comm="syz.1.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  154.843993][   T30] audit: type=1326 audit(1760483057.044:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6872 comm="syz.1.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  154.894184][   T30] audit: type=1326 audit(1760483057.054:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6872 comm="syz.1.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  154.945692][ T6389] hsr_slave_0: left promiscuous mode
[  154.947756][ T5827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.964086][   T30] audit: type=1326 audit(1760483057.054:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6872 comm="syz.1.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  154.994786][ T6389] hsr_slave_1: left promiscuous mode
[  155.008806][ T6389] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  155.050194][ T6389] batman_adv: batadv0: Removing interface: batadv_slave_0
[  155.060400][   T30] audit: type=1326 audit(1760483057.054:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6872 comm="syz.1.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  155.092885][ T6389] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  155.113241][ T6389] batman_adv: batadv0: Removing interface: batadv_slave_1
[  155.143246][   T30] audit: type=1326 audit(1760483057.054:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6872 comm="syz.1.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  155.187410][ T6389] veth1_macvtap: left promiscuous mode
[  155.189194][ T5927] kernel write not supported for file /164/clear_refs (pid: 5927 comm: kworker/0:5)
[  155.210157][ T6389] veth0_macvtap: left promiscuous mode
[  155.215859][ T6389] veth1_vlan: left promiscuous mode
[  155.221356][   T30] audit: type=1326 audit(1760483057.054:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6872 comm="syz.1.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  155.252613][ T6909] netlink: 24 bytes leftover after parsing attributes in process `syz.5.290'.
[  155.280767][ T6389] veth0_vlan: left promiscuous mode
[  155.294614][ T6908] loop5: detected capacity change from 0 to 1024
[  155.340180][   T30] audit: type=1326 audit(1760483057.054:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6872 comm="syz.1.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  155.431909][ T6908] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  155.755171][ T6917] netlink: 4 bytes leftover after parsing attributes in process `syz.2.292'.
[  155.768179][ T6917] netlink: 4 bytes leftover after parsing attributes in process `syz.2.292'.
[  156.131418][ T5827] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.313549][ T6389] team0 (unregistering): Port device team_slave_1 removed
[  157.410739][ T6389] team0 (unregistering): Port device team_slave_0 removed
[  158.429407][ T6644] hsr_slave_0: entered promiscuous mode
[  158.456869][ T6644] hsr_slave_1: entered promiscuous mode
[  158.472222][ T6644] debugfs: 'hsr0' already exists in 'hsr'
[  158.479651][ T6644] Cannot create hsr debugfs directory
[  158.515799][ T6954] netlink: 8 bytes leftover after parsing attributes in process `syz.1.307'.
[  158.525549][ T6954] netlink: 24 bytes leftover after parsing attributes in process `syz.1.307'.
[  159.027264][ T6976] netlink: 32 bytes leftover after parsing attributes in process `syz.0.313'.
[  159.098457][ T6587] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  159.279679][ T6587] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  159.359038][ T6587] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  159.450302][ T6587] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  159.816382][ T6980] loop0: detected capacity change from 0 to 8192
[  160.172247][ T6644] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  160.529171][ T6644] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  160.575415][ T6644] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  160.823535][ T7007] netlink: 'syz.1.321': attribute type 12 has an invalid length.
[  160.919863][ T6644] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  161.941481][ T6587] 8021q: adding VLAN 0 to HW filter on device bond0
[  162.083255][ T6587] 8021q: adding VLAN 0 to HW filter on device team0
[  162.172426][ T3472] bridge0: port 1(bridge_slave_0) entered blocking state
[  162.179642][ T3472] bridge0: port 1(bridge_slave_0) entered forwarding state
[  162.304931][ T3472] bridge0: port 2(bridge_slave_1) entered blocking state
[  162.312141][ T3472] bridge0: port 2(bridge_slave_1) entered forwarding state
[  163.606011][ T6644] 8021q: adding VLAN 0 to HW filter on device bond0
[  163.691207][ T7037] Driver unsupported XDP return value 0 on prog  (id 117) dev N/A, expect packet loss!
[  163.727289][ T6644] 8021q: adding VLAN 0 to HW filter on device team0
[  163.746734][ T7037] netlink: 2 bytes leftover after parsing attributes in process `syz.0.326'.
[  164.132469][ T7049] loop2: detected capacity change from 0 to 2048
[  164.145236][ T7037] bridge0: port 2(bridge_slave_1) entered disabled state
[  164.152914][ T7037] bridge0: port 1(bridge_slave_0) entered disabled state
[  164.173559][ T7049] EXT4-fs: Ignoring removed mblk_io_submit option
[  164.179979][ T7049] EXT4-fs: Ignoring removed i_version option
[  164.301526][ T7049] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  164.430632][   T30] kauditd_printk_skb: 11 callbacks suppressed
[  164.430648][   T30] audit: type=1800 audit(164.401:148): pid=7049 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.329" name="bus" dev="loop2" ino=18 res=0 errno=0
[  164.484035][ T7052] IPVS: starting estimator thread 0...
[  164.610676][ T7062] IPVS: using max 24 ests per chain, 57600 per kthread
[  164.716239][ T7037] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  164.804700][ T7037] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  164.915321][ T7080] netlink: 4 bytes leftover after parsing attributes in process `syz.2.329'.
[  165.170509][ T7064] veth0: entered promiscuous mode
[  165.175755][ T7064] veth0: left promiscuous mode
[  165.187913][ T7049] veth0: entered promiscuous mode
[  165.210356][ T7049] veth0: left promiscuous mode
[  165.391841][   T36] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  165.422509][   T36] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  165.450605][   T36] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  165.530069][   T36] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  165.550435][ T7089] loop1: detected capacity change from 0 to 256
[  165.613655][ T6389] bridge0: port 1(bridge_slave_0) entered blocking state
[  165.620811][ T6389] bridge0: port 1(bridge_slave_0) entered forwarding state
[  165.659331][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.684887][ T6389] bridge0: port 2(bridge_slave_1) entered blocking state
[  165.692053][ T6389] bridge0: port 2(bridge_slave_1) entered forwarding state
[  165.795874][   T30] audit: type=1326 audit(165.761:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7096 comm="syz.5.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f109238eec9 code=0x7ffc0000
[  165.936843][   T30] audit: type=1326 audit(165.801:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7096 comm="syz.5.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f109238eec9 code=0x7ffc0000
[  165.939994][ T6587] 8021q: adding VLAN 0 to HW filter on device batadv0
[  166.049115][ T6644] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  167.096615][ T6644] 8021q: adding VLAN 0 to HW filter on device batadv0
[  167.543668][ T6587] veth0_vlan: entered promiscuous mode
[  167.656026][ T6587] veth1_vlan: entered promiscuous mode
[  167.843364][ T6587] veth0_macvtap: entered promiscuous mode
[  167.909546][ T6587] veth1_macvtap: entered promiscuous mode
[  168.061761][ T6587] batman_adv: batadv0: Interface activated: batadv_slave_0
[  168.191943][ T6587] batman_adv: batadv0: Interface activated: batadv_slave_1
[  168.266652][ T1162] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  168.313801][ T1162] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  168.380301][ T1162] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  168.435322][ T1162] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  168.656423][ T6644] veth0_vlan: entered promiscuous mode
[  168.744460][ T6644] veth1_vlan: entered promiscuous mode
[  168.786525][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  168.821459][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  168.885501][ T7170] netlink: 212408 bytes leftover after parsing attributes in process `syz.2.353'.
[  168.920365][ T7170] openvswitch: netlink: Message has 512 unknown bytes.
[  168.923520][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  168.972683][ T6644] veth0_macvtap: entered promiscuous mode
[  168.982509][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  169.026863][ T6644] veth1_macvtap: entered promiscuous mode
[  169.091623][ T6644] batman_adv: batadv0: Interface activated: batadv_slave_0
[  169.141103][ T6644] batman_adv: batadv0: Interface activated: batadv_slave_1
[  169.195002][ T1140] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  169.221368][ T1140] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  169.265311][ T1140] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  169.320216][ T1140] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  169.640769][ T5840] kernel write not supported for file /168/clear_refs (pid: 5840 comm: kworker/1:4)
[  169.685478][ T7190] netlink: 24 bytes leftover after parsing attributes in process `syz.0.358'.
[  169.718828][ T6389] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  169.729935][ T7190] loop0: detected capacity change from 0 to 1024
[  169.778586][ T6389] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  169.822149][ T7190] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  169.999294][ T6389] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  170.039619][ T6389] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  170.506341][   T30] audit: type=1326 audit(170.471:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7214 comm="syz.7.218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc540d8eec9 code=0x7ffc0000
[  170.579010][ T7219] capability: warning: `syz.6.365' uses deprecated v2 capabilities in a way that may be insecure
[  170.589442][   T30] audit: type=1326 audit(170.501:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7214 comm="syz.7.218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=35 compat=0 ip=0x7fc540d8eec9 code=0x7ffc0000
[  170.671523][   T30] audit: type=1326 audit(170.501:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7214 comm="syz.7.218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc540d8eec9 code=0x7ffc0000
[  170.888578][ T7225] loop7: detected capacity change from 0 to 512
[  170.919673][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.927629][ T7225] EXT4-fs: Ignoring removed bh option
[  171.028049][ T7225] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.179181][ T7225] EXT4-fs error (device loop7): ext4_lookup:1787: inode #12: comm syz.7.367: iget: bad i_size value: 2533274857506816
[  171.260762][ T7232] EXT4-fs error (device loop7): ext4_lookup:1787: inode #12: comm syz.7.367: iget: bad i_size value: 2533274857506816
[  171.338937][ T7225] EXT4-fs error (device loop7): ext4_lookup:1787: inode #12: comm syz.7.367: iget: bad i_size value: 2533274857506816
[  171.401241][ T7225] program syz.7.367 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  171.602488][ T7244] loop5: detected capacity change from 0 to 164
[  171.685099][ T6644] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.703923][ T7244] process 'syz.5.372' launched '/dev/fd/3' with NULL argv: empty string added
[  171.820947][ T7244] syz.5.372: attempt to access beyond end of device
[  171.820947][ T7244] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  171.897014][ T7244] syz.5.372: attempt to access beyond end of device
[  171.897014][ T7244] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[  173.345115][ T7277] netlink: 4 bytes leftover after parsing attributes in process `syz.1.379'.
[  173.355950][ T7277] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  174.878787][ T7304] netlink: 8 bytes leftover after parsing attributes in process `syz.6.386'.
[  174.911539][ T7304] netlink: 'syz.6.386': attribute type 1 has an invalid length.
[  174.919246][ T7304] netlink: 'syz.6.386': attribute type 2 has an invalid length.
[  175.665471][ T7309] loop0: detected capacity change from 0 to 2048
[  175.695813][ T7311] ÿÿÿÿÿÿ: renamed from vlan1 (while UP)
[  175.759822][ T7309] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  176.025133][ T7324] netlink: 96 bytes leftover after parsing attributes in process `syz.1.395'.
[  176.312546][ T7328] vlan2: entered promiscuous mode
[  176.317652][ T7328] syz_tun: entered promiscuous mode
[  176.843654][ T5830] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  176.921290][ T7332] loop6: detected capacity change from 0 to 1024
[  176.951316][ T7332] EXT4-fs: Ignoring removed nobh option
[  177.069388][ T7332] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  177.091848][ T7332] netlink: 4 bytes leftover after parsing attributes in process `syz.6.397'.
[  177.102144][ T7332] netlink: 8 bytes leftover after parsing attributes in process `syz.6.397'.
[  177.365290][ T6587] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.136335][ T7359] netlink: 8 bytes leftover after parsing attributes in process `syz.0.406'.
[  178.155488][ T7359] netlink: 'syz.0.406': attribute type 1 has an invalid length.
[  178.163201][ T7359] netlink: 'syz.0.406': attribute type 2 has an invalid length.
[  180.875849][ T7394] usb usb1: usbfs: interface 0 claimed by hub while 'syz.2.415' sets config #1
[  181.665605][ T7395] netlink: 8 bytes leftover after parsing attributes in process `syz.5.414'.
[  181.785207][ T7400] vlan2: entered promiscuous mode
[  181.790324][ T7400] syz_tun: entered promiscuous mode
[  183.474495][ T7437] netlink: 'syz.2.427': attribute type 12 has an invalid length.
[  183.807169][   T30] audit: type=1326 audit(183.771:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7436 comm="syz.7.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc540d8eec9 code=0x7ffc0000
[  184.002924][   T30] audit: type=1326 audit(183.801:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7436 comm="syz.7.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc540d8eec9 code=0x7ffc0000
[  184.099733][   T30] audit: type=1326 audit(183.801:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7436 comm="syz.7.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7fc540d8eec9 code=0x7ffc0000
[  184.123631][   T30] audit: type=1326 audit(183.801:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7436 comm="syz.7.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc540d8eec9 code=0x7ffc0000
[  184.146331][   T30] audit: type=1326 audit(183.801:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7436 comm="syz.7.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc540d8eec9 code=0x7ffc0000
[  184.287181][   T30] audit: type=1326 audit(183.801:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7436 comm="syz.7.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fc540d8eec9 code=0x7ffc0000
[  184.308997][   T30] audit: type=1326 audit(183.801:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7436 comm="syz.7.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc540d8eec9 code=0x7ffc0000
[  184.370115][   T30] audit: type=1326 audit(183.801:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7436 comm="syz.7.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc540d8eec9 code=0x7ffc0000
[  184.499268][   T30] audit: type=1326 audit(183.811:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7436 comm="syz.7.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fc540d8eec9 code=0x7ffc0000
[  184.556328][ T7465] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  184.625498][ T7461] netlink: 4 bytes leftover after parsing attributes in process `syz.5.437'.
[  184.741909][   T30] audit: type=1326 audit(183.811:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7436 comm="syz.7.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc540d8eec9 code=0x7ffc0000
[  184.744850][ T7461] netlink: 12 bytes leftover after parsing attributes in process `syz.5.437'.
[  184.883515][ T7474] netlink: 8 bytes leftover after parsing attributes in process `syz.2.434'.
[  184.912400][ T7474] netlink: 'syz.2.434': attribute type 1 has an invalid length.
[  184.912471][ T7474] netlink: 'syz.2.434': attribute type 2 has an invalid length.
[  185.582835][ T7481] loop6: detected capacity change from 0 to 128
[  185.634376][ T7481] FAT-fs (loop6): Directory bread(block 414) failed
[  185.634421][ T7481] FAT-fs (loop6): Directory bread(block 415) failed
[  185.634450][ T7481] FAT-fs (loop6): Directory bread(block 416) failed
[  185.634479][ T7481] FAT-fs (loop6): Directory bread(block 417) failed
[  185.634507][ T7481] FAT-fs (loop6): Directory bread(block 418) failed
[  185.634541][ T7481] FAT-fs (loop6): Directory bread(block 419) failed
[  185.634570][ T7481] FAT-fs (loop6): Directory bread(block 420) failed
[  185.634598][ T7481] FAT-fs (loop6): Directory bread(block 421) failed
[  185.641153][ T7481] FAT-fs (loop6): Directory bread(block 414) failed
[  185.641214][ T7481] FAT-fs (loop6): Directory bread(block 415) failed
[  185.903996][ T7493] netlink: 'syz.5.446': attribute type 12 has an invalid length.
[  185.986081][ T7490] netlink: 12 bytes leftover after parsing attributes in process `syz.7.445'.
[  186.228439][ T7495] netlink: 28 bytes leftover after parsing attributes in process `syz.2.443'.
[  187.701668][ T5840] kernel write not supported for file /253/clear_refs (pid: 5840 comm: kworker/1:4)
[  187.755771][ T7524] netlink: 24 bytes leftover after parsing attributes in process `syz.2.454'.
[  187.869217][ T7524] loop2: detected capacity change from 0 to 1024
[  188.088057][ T7532] netlink: 8 bytes leftover after parsing attributes in process `syz.1.455'.
[  188.126975][ T7532] netlink: 'syz.1.455': attribute type 1 has an invalid length.
[  188.135419][ T7532] netlink: 'syz.1.455': attribute type 2 has an invalid length.
[  188.336103][ T7524] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  189.082739][ T7546] loop1: detected capacity change from 0 to 512
[  189.141023][ T7546] EXT4-fs: Ignoring removed nobh option
[  189.209980][ T7554] syz_tun: entered allmulticast mode
[  189.216587][ T7546] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  189.264681][ T7552] netlink: 12 bytes leftover after parsing attributes in process `syz.5.461'.
[  189.486714][ T7559] SET target dimension over the limit!
[  189.592377][ T7547] sctp: [Deprecated]: syz.6.458 (pid 7547) Use of struct sctp_assoc_value in delayed_ack socket option.
[  189.592377][ T7547] Use struct sctp_sack_info instead
[  189.707608][ T7563] netlink: 43 bytes leftover after parsing attributes in process `syz.1.460'.
[  189.879608][ T7546] netlink: 28 bytes leftover after parsing attributes in process `syz.1.460'.
[  189.901263][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.934636][ T7546] netlink: 28 bytes leftover after parsing attributes in process `syz.1.460'.
[  190.020833][ T7546] netlink: 28 bytes leftover after parsing attributes in process `syz.1.460'.
[  190.107366][ T7546] netlink: 28 bytes leftover after parsing attributes in process `syz.1.460'.
[  190.160396][ T7546] netlink: 28 bytes leftover after parsing attributes in process `syz.1.460'.
[  190.199654][ T7546] netlink: 28 bytes leftover after parsing attributes in process `syz.1.460'.
[  190.277916][ T7560] veth0_to_team: left promiscuous mode
[  190.322549][ T7542] syz_tun: left allmulticast mode
[  190.549615][   T30] kauditd_printk_skb: 66 callbacks suppressed
[  190.549633][   T30] audit: type=1326 audit(190.511:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7581 comm="syz.2.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad3b8eec9 code=0x7ffc0000
[  190.706690][   T30] audit: type=1326 audit(190.551:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7581 comm="syz.2.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbad3b8eec9 code=0x7ffc0000
[  190.792244][   T30] audit: type=1326 audit(190.551:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7581 comm="syz.2.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad3b8eec9 code=0x7ffc0000
[  190.846293][   T30] audit: type=1326 audit(190.551:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7581 comm="syz.2.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbad3b8eec9 code=0x7ffc0000
[  191.134803][   T30] audit: type=1326 audit(190.601:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7581 comm="syz.2.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad3b8eec9 code=0x7ffc0000
[  192.070822][ T5826] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.091817][   T30] audit: type=1326 audit(190.601:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7581 comm="syz.2.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad3b8eec9 code=0x7ffc0000
[  192.119474][   T30] audit: type=1326 audit(190.601:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7581 comm="syz.2.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbad3b8eec9 code=0x7ffc0000
[  192.382425][ T7603] netlink: 'syz.0.472': attribute type 1 has an invalid length.
[  192.390146][ T7603] netlink: 'syz.0.472': attribute type 2 has an invalid length.
[  192.681916][   T30] audit: type=1326 audit(190.601:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7581 comm="syz.2.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad3b8eec9 code=0x7ffc0000
[  192.703545][   T30] audit: type=1326 audit(190.601:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7581 comm="syz.2.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbad3b8eec9 code=0x7ffc0000
[  192.725174][   T30] audit: type=1326 audit(190.601:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7581 comm="syz.2.469" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7fbad3b8eec9 code=0x7ffc0000
[  193.092811][ T7610] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  193.102009][ T7610] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  193.111122][ T7610] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  193.120182][ T7610] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  193.121369][ T7614] __nla_validate_parse: 15 callbacks suppressed
[  193.121385][ T7614] netlink: 12 bytes leftover after parsing attributes in process `syz.2.478'.
[  193.129210][ T7610] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  193.129246][ T7610] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  193.162424][ T7610] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  193.171496][ T7610] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  193.180568][ T7610] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  193.189608][ T7610] ip6_tunnel: non-ECT from db5b:6861:58bb:cfe8:875a:6596:9ff5:7b00 with DS=0x31
[  193.209676][ T7053] kernel write not supported for file /252/clear_refs (pid: 7053 comm: kworker/0:12)
[  193.253533][ T7617] netlink: 24 bytes leftover after parsing attributes in process `syz.1.475'.
[  193.358984][ T7617] loop1: detected capacity change from 0 to 1024
[  193.447877][ T7617] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  193.743604][ T7631] sctp: [Deprecated]: syz.0.483 (pid 7631) Use of struct sctp_assoc_value in delayed_ack socket option.
[  193.743604][ T7631] Use struct sctp_sack_info instead
[  193.817555][ T7636] syz_tun: entered allmulticast mode
[  193.874326][ T7630] syz_tun: left allmulticast mode
[  194.242625][ T7646] loop2: detected capacity change from 0 to 512
[  194.243682][ T7646] EXT4-fs: Ignoring removed nomblk_io_submit option
[  194.277644][ T7646] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  194.308467][ T7646] EXT4-fs (loop2): 1 truncate cleaned up
[  194.326918][ T7646] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.978041][ T5826] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.220387][ T7053] IPVS: starting estimator thread 0...
[  195.319077][ T7671] netlink: 12 bytes leftover after parsing attributes in process `syz.5.495'.
[  195.330160][ T7673] IPVS: using max 24 ests per chain, 57600 per kthread
[  195.335527][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.370781][ T7675] netlink: 12 bytes leftover after parsing attributes in process `syz.5.495'.
[  195.381985][ T7671] netlink: 12 bytes leftover after parsing attributes in process `syz.5.495'.
[  195.400239][ T7671] netlink: 20 bytes leftover after parsing attributes in process `syz.5.495'.
[  195.451852][ T7675] netlink: 12 bytes leftover after parsing attributes in process `syz.5.495'.
[  195.481283][ T7675] netlink: 20 bytes leftover after parsing attributes in process `syz.5.495'.
[  196.559719][ T7699] syz_tun: entered allmulticast mode
[  196.788768][ T7044] kernel write not supported for file /275/clear_refs (pid: 7044 comm: kworker/1:7)
[  196.796379][ T7697] sctp: [Deprecated]: syz.5.501 (pid 7697) Use of struct sctp_assoc_value in delayed_ack socket option.
[  196.796379][ T7697] Use struct sctp_sack_info instead
[  196.821473][ T7710] netlink: 24 bytes leftover after parsing attributes in process `syz.2.506'.
[  196.902112][ T7710] loop2: detected capacity change from 0 to 1024
[  196.939531][ T7691] syz_tun: left allmulticast mode
[  197.031538][ T7710] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.092846][ T7718] bond0: entered promiscuous mode
[  197.097879][ T7718] bond_slave_0: entered promiscuous mode
[  197.197378][ T7718] bond_slave_1: entered promiscuous mode
[  197.223661][ T7718] batadv0: entered promiscuous mode
[  197.271814][ T7718] hsr1: entered allmulticast mode
[  197.276871][ T7718] bond0: entered allmulticast mode
[  197.330090][ T7718] bond_slave_0: entered allmulticast mode
[  197.370080][ T7718] bond_slave_1: entered allmulticast mode
[  197.375849][ T7718] batadv0: entered allmulticast mode
[  197.420684][ T7718] 8021q: adding VLAN 0 to HW filter on device hsr1
[  197.461186][ T7718] bond0: left promiscuous mode
[  197.465997][ T7718] bond_slave_0: left promiscuous mode
[  197.493872][ T7718] bond_slave_1: left promiscuous mode
[  197.540227][ T7718] batadv0: left promiscuous mode
[  197.990762][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.755880][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  198.762470][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  198.871419][ T7773] sctp: [Deprecated]: syz.2.523 (pid 7773) Use of struct sctp_assoc_value in delayed_ack socket option.
[  198.871419][ T7773] Use struct sctp_sack_info instead
[  198.889251][ T7773] syz_tun: entered allmulticast mode
[  198.927868][ T7772] syz_tun: left allmulticast mode
[  200.189154][ T7791] netlink: 28 bytes leftover after parsing attributes in process `syz.2.526'.
[  201.381717][   T30] kauditd_printk_skb: 27 callbacks suppressed
[  201.381737][   T30] audit: type=1326 audit(201.331:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7811 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  201.456196][ T7817] sctp: [Deprecated]: syz.2.538 (pid 7817) Use of struct sctp_assoc_value in delayed_ack socket option.
[  201.456196][ T7817] Use struct sctp_sack_info instead
[  201.478259][   T30] audit: type=1326 audit(201.331:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7811 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  201.515425][ T7813] veth0_to_team: entered promiscuous mode
[  201.543466][ T7817] syz_tun: entered allmulticast mode
[  201.585343][ T7816] syz_tun: left allmulticast mode
[  201.600112][   T30] audit: type=1326 audit(201.371:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7811 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  201.693713][   T30] audit: type=1326 audit(201.371:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7811 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  201.795492][   T30] audit: type=1326 audit(201.371:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7811 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  201.885573][   T30] audit: type=1326 audit(201.371:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7811 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  201.977741][   T30] audit: type=1326 audit(201.371:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7811 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  202.001029][ T5840] usb 2-1: new full-speed USB device number 2 using dummy_hcd
[  202.034481][   T30] audit: type=1326 audit(201.371:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7811 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  202.083554][   T30] audit: type=1326 audit(201.371:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7811 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  202.164405][   T30] audit: type=1326 audit(201.371:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7811 comm="syz.1.537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6e778eec9 code=0x7ffc0000
[  202.372232][ T5840] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  202.384345][ T5840] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  202.404486][ T5840] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[  202.413578][ T5840] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  202.440709][ T5840] usb 2-1: SerialNumber: syz
[  202.507311][ T7854] netlink: 12 bytes leftover after parsing attributes in process `syz.5.548'.
[  202.516511][ T7854] netlink: 4 bytes leftover after parsing attributes in process `syz.5.548'.
[  202.525359][ T7854] netlink: 20 bytes leftover after parsing attributes in process `syz.5.548'.
[  202.541724][ T7854] netlink: 12 bytes leftover after parsing attributes in process `syz.5.548'.
[  202.550787][ T7854] netlink: 4 bytes leftover after parsing attributes in process `syz.5.548'.
[  202.559624][ T7854] netlink: 20 bytes leftover after parsing attributes in process `syz.5.548'.
[  203.142926][ T5840] usb 2-1: bad CDC descriptors
[  203.149604][ T5840] usb-storage 2-1:1.0: USB Mass Storage device detected
[  203.165776][ T7859] netlink: 108 bytes leftover after parsing attributes in process `syz.7.552'.
[  203.181888][ T5840] usb-storage 2-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[  203.218979][ T7857] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 !
[  203.338668][ T7869] veth0_to_team: entered promiscuous mode
[  204.660377][ T7898] netlink: 96 bytes leftover after parsing attributes in process `syz.0.565'.
[  204.873157][ T5840] usb 2-1: USB disconnect, device number 2
[  205.096133][ T7917] IPv6: Can't replace route, no match found
[  205.239282][ T7924] veth0_to_team: entered promiscuous mode
[  205.534375][ T7934] netlink: 40 bytes leftover after parsing attributes in process `syz.1.577'.
[  206.416981][ T7950] loop1: detected capacity change from 0 to 512
[  206.565374][ T7950] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.581: bad orphan inode 11862016
[  206.603524][ T7950] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  207.586629][ T7971] loop7: detected capacity change from 0 to 512
[  207.647689][ T5826] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  207.687604][ T7971] 
[  207.689928][ T7971] ======================================================
[  207.696931][ T7971] WARNING: possible circular locking dependency detected
[  207.703930][ T7971] syzkaller #0 Not tainted
[  207.708326][ T7971] ------------------------------------------------------
[  207.715323][ T7971] syz.7.588/7971 is trying to acquire lock:
[  207.721194][ T7971] ffff88805c55ab98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x1cc/0x350
[  207.731220][ T7971] 
[  207.731220][ T7971] but task is already holding lock:
[  207.738562][ T7971] ffff88805c55c610 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2d6/0xee0
[  207.747521][ T7971] 
[  207.747521][ T7971] which lock already depends on the new lock.
[  207.747521][ T7971] 
[  207.757907][ T7971] 
[  207.757907][ T7971] the existing dependency chain (in reverse order) is:
[  207.766900][ T7971] 
[  207.766900][ T7971] -> #1 (sb_internal){.+.+}-{0:0}:
[  207.774192][ T7971]        lock_acquire+0x120/0x360
[  207.779211][ T7971]        percpu_down_read_internal+0x48/0x1c0
[  207.785275][ T7971]        ext4_evict_inode+0x2d6/0xee0
[  207.790633][ T7971]        evict+0x504/0x9c0
[  207.795036][ T7971]        ext4_ext_migrate+0xd23/0x1010
[  207.800492][ T7971]        ext4_ioctl+0x204b/0x48e0
[  207.805499][ T7971]        __se_sys_ioctl+0xfc/0x170
[  207.810595][ T7971]        do_syscall_64+0xfa/0xfa0
[  207.815605][ T7971]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.822002][ T7971] 
[  207.822002][ T7971] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[  207.830425][ T7971]        validate_chain+0xb9b/0x2140
[  207.835709][ T7971]        __lock_acquire+0xab9/0xd20
[  207.840899][ T7971]        lock_acquire+0x120/0x360
[  207.845915][ T7971]        percpu_down_read_internal+0x48/0x1c0
[  207.851975][ T7971]        ext4_writepages+0x1cc/0x350
[  207.857258][ T7971]        do_writepages+0x32e/0x550
[  207.862352][ T7971]        __writeback_single_inode+0x145/0xff0
[  207.868406][ T7971]        writeback_single_inode+0x1f9/0x6a0
[  207.874298][ T7971]        write_inode_now+0x160/0x1d0
[  207.879581][ T7971]        iput+0x830/0xc50
[  207.883900][ T7971]        ext4_xattr_block_set+0x1fce/0x2ac0
[  207.889784][ T7971]        ext4_expand_extra_isize_ea+0x12da/0x1ea0
[  207.896190][ T7971]        __ext4_expand_extra_isize+0x30d/0x400
[  207.902343][ T7971]        __ext4_mark_inode_dirty+0x46c/0x700
[  207.908307][ T7971]        ext4_evict_inode+0x80d/0xee0
[  207.913663][ T7971]        evict+0x504/0x9c0
[  207.918059][ T7971]        ext4_orphan_cleanup+0xc20/0x1460
[  207.923761][ T7971]        ext4_fill_super+0x5920/0x61e0
[  207.929218][ T7971]        get_tree_bdev_flags+0x40e/0x4d0
[  207.934841][ T7971]        vfs_get_tree+0x92/0x2b0
[  207.939768][ T7971]        do_new_mount+0x302/0xa10
[  207.944781][ T7971]        __se_sys_mount+0x313/0x410
[  207.949971][ T7971]        do_syscall_64+0xfa/0xfa0
[  207.954985][ T7971]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  207.961383][ T7971] 
[  207.961383][ T7971] other info that might help us debug this:
[  207.961383][ T7971] 
[  207.971591][ T7971]  Possible unsafe locking scenario:
[  207.971591][ T7971] 
[  207.979018][ T7971]        CPU0                    CPU1
[  207.984361][ T7971]        ----                    ----
[  207.989877][ T7971]   rlock(sb_internal);
[  207.994020][ T7971]                                lock(&sbi->s_writepages_rwsem);
[  208.001729][ T7971]                                lock(sb_internal);
[  208.008306][ T7971]   rlock(&sbi->s_writepages_rwsem);
[  208.013578][ T7971] 
[  208.013578][ T7971]  *** DEADLOCK ***
[  208.013578][ T7971] 
[  208.021699][ T7971] 3 locks held by syz.7.588/7971:
[  208.026700][ T7971]  #0: ffff88805c55c0e0 (&type->s_umount_key#27/1){+.+.}-{4:4}, at: alloc_super+0x1bb/0x930
[  208.036812][ T7971]  #1: ffff88805c55c610 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2d6/0xee0
[  208.046218][ T7971]  #2: ffff88806a88d6d8 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x3eb/0x700
[  208.056494][ T7971] 
[  208.056494][ T7971] stack backtrace:
[  208.062364][ T7971] CPU: 1 UID: 0 PID: 7971 Comm: syz.7.588 Not tainted syzkaller #0 PREEMPT(full) 
[  208.062389][ T7971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  208.062403][ T7971] Call Trace:
[  208.062411][ T7971]  <TASK>
[  208.062420][ T7971]  dump_stack_lvl+0x189/0x250
[  208.062447][ T7971]  ? __pfx_dump_stack_lvl+0x10/0x10
[  208.062470][ T7971]  ? __pfx__printk+0x10/0x10
[  208.062493][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.062519][ T7971]  ? print_lock_name+0xde/0x100
[  208.062546][ T7971]  print_circular_bug+0x2ee/0x310
[  208.062585][ T7971]  check_noncircular+0x134/0x160
[  208.062624][ T7971]  validate_chain+0xb9b/0x2140
[  208.062673][ T7971]  __lock_acquire+0xab9/0xd20
[  208.062705][ T7971]  ? ext4_writepages+0x1cc/0x350
[  208.062739][ T7971]  lock_acquire+0x120/0x360
[  208.062767][ T7971]  ? ext4_writepages+0x1cc/0x350
[  208.062810][ T7971]  percpu_down_read_internal+0x48/0x1c0
[  208.062843][ T7971]  ? ext4_writepages+0x1cc/0x350
[  208.062878][ T7971]  ext4_writepages+0x1cc/0x350
[  208.062914][ T7971]  ? __pfx_ext4_writepages+0x10/0x10
[  208.062955][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.062983][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.063009][ T7971]  ? do_raw_spin_unlock+0x122/0x240
[  208.063032][ T7971]  ? __pfx_ext4_writepages+0x10/0x10
[  208.063068][ T7971]  do_writepages+0x32e/0x550
[  208.063091][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.063117][ T7971]  ? do_raw_spin_lock+0x121/0x290
[  208.063145][ T7971]  __writeback_single_inode+0x145/0xff0
[  208.063169][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.063195][ T7971]  ? do_raw_spin_unlock+0x122/0x240
[  208.063220][ T7971]  writeback_single_inode+0x1f9/0x6a0
[  208.063259][ T7971]  write_inode_now+0x160/0x1d0
[  208.063294][ T7971]  ? __pfx_write_inode_now+0x10/0x10
[  208.063352][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.063380][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.063406][ T7971]  ? do_raw_spin_unlock+0x122/0x240
[  208.063431][ T7971]  iput+0x830/0xc50
[  208.063464][ T7971]  ext4_xattr_block_set+0x1fce/0x2ac0
[  208.063511][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.063544][ T7971]  ? __pfx_ext4_xattr_block_set+0x10/0x10
[  208.063576][ T7971]  ? ext4_xattr_block_find+0x2d4/0x350
[  208.063609][ T7971]  ext4_expand_extra_isize_ea+0x12da/0x1ea0
[  208.063662][ T7971]  __ext4_expand_extra_isize+0x30d/0x400
[  208.063700][ T7971]  __ext4_mark_inode_dirty+0x46c/0x700
[  208.063731][ T7971]  ext4_evict_inode+0x80d/0xee0
[  208.063754][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.063786][ T7971]  ? __pfx_ext4_evict_inode+0x10/0x10
[  208.063808][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.063836][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.063861][ T7971]  ? do_raw_spin_unlock+0x122/0x240
[  208.063886][ T7971]  ? __pfx_ext4_evict_inode+0x10/0x10
[  208.063908][ T7971]  evict+0x504/0x9c0
[  208.063932][ T7971]  ? __pfx_evict+0x10/0x10
[  208.063949][ T7971]  ? do_raw_spin_unlock+0x122/0x240
[  208.063973][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.063999][ T7971]  ? _raw_spin_unlock+0x28/0x50
[  208.064032][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.064058][ T7971]  ? iput+0x946/0xc50
[  208.064090][ T7971]  ext4_orphan_cleanup+0xc20/0x1460
[  208.064120][ T7971]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  208.064144][ T7971]  ? ext4_register_li_request+0x259/0x720
[  208.064165][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.064191][ T7971]  ? errseq_check_and_advance+0x66/0x120
[  208.064226][ T7971]  ext4_fill_super+0x5920/0x61e0
[  208.064265][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.064298][ T7971]  ? __pfx_ext4_fill_super+0x10/0x10
[  208.064331][ T7971]  ? snprintf+0xda/0x120
[  208.064363][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.064389][ T7971]  ? set_blocksize+0x21e/0x500
[  208.064412][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.064441][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.064466][ T7971]  ? sb_set_blocksize+0x104/0x180
[  208.064491][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.064517][ T7971]  ? setup_bdev_super+0x4c1/0x5b0
[  208.064546][ T7971]  get_tree_bdev_flags+0x40e/0x4d0
[  208.064571][ T7971]  ? __pfx_ext4_fill_super+0x10/0x10
[  208.064605][ T7971]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  208.064631][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.064659][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.064688][ T7971]  vfs_get_tree+0x92/0x2b0
[  208.064713][ T7971]  do_new_mount+0x302/0xa10
[  208.064739][ T7971]  ? apparmor_capable+0x137/0x1b0
[  208.064773][ T7971]  ? __pfx_do_new_mount+0x10/0x10
[  208.064799][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.064825][ T7971]  ? ns_capable+0x8a/0xf0
[  208.064857][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.064883][ T7971]  ? kmem_cache_free+0x19b/0x690
[  208.064915][ T7971]  __se_sys_mount+0x313/0x410
[  208.064946][ T7971]  ? __pfx___se_sys_mount+0x10/0x10
[  208.064976][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.065002][ T7971]  ? __x64_sys_mount+0x20/0xc0
[  208.065030][ T7971]  do_syscall_64+0xfa/0xfa0
[  208.065051][ T7971]  ? lockdep_hardirqs_on+0x9c/0x150
[  208.065073][ T7971]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.065094][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  208.065119][ T7971]  ? exc_page_fault+0xab/0x100
[  208.065141][ T7971]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  208.065162][ T7971] RIP: 0033:0x7fc540d9066a
[  208.065180][ T7971] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.065198][ T7971] RSP: 002b:00007fc541cbee68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  208.065219][ T7971] RAX: ffffffffffffffda RBX: 00007fc541cbeef0 RCX: 00007fc540d9066a
[  208.065236][ T7971] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fc541cbeeb0
[  208.065252][ T7971] RBP: 0000200000000180 R08: 00007fc541cbeef0 R09: 0000000000800700
[  208.065267][ T7971] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  208.065282][ T7971] R13: 00007fc541cbeeb0 R14: 0000000000000473 R15: 0000200000000680
[  208.065308][ T7971]  </TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  208.899356][ T7971] ------------[ cut here ]------------
[  208.905174][ T7971] EA inode 11 i_nlink=2
[  208.927675][ T7971] WARNING: CPU: 0 PID: 7971 at fs/ext4/xattr.c:1058 ext4_xattr_inode_update_ref+0x51a/0x5b0
[  208.942077][ T7971] Modules linked in:
[  208.945976][ T7971] CPU: 0 UID: 0 PID: 7971 Comm: syz.7.588 Not tainted syzkaller #0 PREEMPT(full) 
[  208.955376][ T7971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  208.965666][ T7971] RIP: 0010:ext4_xattr_inode_update_ref+0x51a/0x5b0
[  208.972795][ T7971] Code: 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 0f 85 80 00 00 00 41 8b 17 48 c7 c7 40 0e 80 8b 4c 89 e6 e8 07 c3 f9 fe 90 <0f> 0b 90 90 4c 8b 6c 24 28 e9 59 fe ff ff e8 d3 72 c2 08 44 89 f9
[  208.992930][ T7971] RSP: 0018:ffffc90011827100 EFLAGS: 00010246
[  208.998986][ T7971] RAX: c1d4bb16b7192b00 RBX: 0000000000000001 RCX: 0000000000080000
[  209.007747][ T7971] RDX: ffffc9001ea54000 RSI: 000000000007ffff RDI: 0000000000080000
[  209.015991][ T7971] RBP: ffffc900118271f8 R08: 0000000000000003 R09: 0000000000000004
[  209.024108][ T7971] R10: dffffc0000000000 R11: fffffbfff1bfa650 R12: 000000000000000b
[  209.032548][ T7971] R13: ffff888052a38d00 R14: 1ffff1100a54718e R15: ffff888052a38c70
[  209.040720][ T7971] FS:  00007fc541cbf6c0(0000) GS:ffff888125d0c000(0000) knlGS:0000000000000000
[  209.049635][ T7971] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  209.056371][ T7971] CR2: 000056114de03168 CR3: 000000005418c000 CR4: 0000000000350ef0
[  209.064695][ T7971] Call Trace:
[  209.067956][ T7971]  <TASK>
[  209.071343][ T7971]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[  209.077153][ T7971]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[  209.083640][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.089261][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.095253][ T7971]  ? ext4_xattr_inode_iget+0x3d2/0x5f0
[  209.100867][ T7971]  ext4_xattr_set_entry+0xabb/0x1e20
[  209.106152][ T7971]  ext4_xattr_ibody_set+0x254/0x6a0
[  209.111495][ T7971]  ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[  209.117423][ T7971]  __ext4_expand_extra_isize+0x30d/0x400
[  209.123306][ T7971]  __ext4_mark_inode_dirty+0x46c/0x700
[  209.128760][ T7971]  ext4_evict_inode+0x80d/0xee0
[  209.133765][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.139398][ T7971]  ? __pfx_ext4_evict_inode+0x10/0x10
[  209.145022][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.150935][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.156581][ T7971]  ? do_raw_spin_unlock+0x122/0x240
[  209.162117][ T7971]  ? __pfx_ext4_evict_inode+0x10/0x10
[  209.167474][ T7971]  evict+0x504/0x9c0
[  209.171870][ T7971]  ? __pfx_evict+0x10/0x10
[  209.176275][ T7971]  ? do_raw_spin_unlock+0x122/0x240
[  209.181627][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.187248][ T7971]  ? _raw_spin_unlock+0x28/0x50
[  209.192282][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.197910][ T7971]  ? iput+0x946/0xc50
[  209.202043][ T7971]  ext4_orphan_cleanup+0xc20/0x1460
[  209.207234][ T7971]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  209.213034][ T7971]  ? ext4_register_li_request+0x259/0x720
[  209.218740][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.224689][ T7971]  ? errseq_check_and_advance+0x66/0x120
[  209.230631][ T7971]  ext4_fill_super+0x5920/0x61e0
[  209.235574][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.241464][ T7971]  ? __pfx_ext4_fill_super+0x10/0x10
[  209.246746][ T7971]  ? snprintf+0xda/0x120
[  209.251330][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.256955][ T7971]  ? set_blocksize+0x21e/0x500
[  209.263198][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.269595][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.276116][ T7971]  ? sb_set_blocksize+0x104/0x180
[  209.281435][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.287055][ T7971]  ? setup_bdev_super+0x4c1/0x5b0
[  209.292395][ T7971]  get_tree_bdev_flags+0x40e/0x4d0
[  209.297507][ T7971]  ? __pfx_ext4_fill_super+0x10/0x10
[  209.303078][ T7971]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  209.308710][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.314650][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.320559][ T7971]  vfs_get_tree+0x92/0x2b0
[  209.324962][ T7971]  do_new_mount+0x302/0xa10
[  209.329536][ T7971]  ? apparmor_capable+0x137/0x1b0
[  209.334898][ T7971]  ? __pfx_do_new_mount+0x10/0x10
[  209.339918][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.345741][ T7971]  ? ns_capable+0x8a/0xf0
[  209.350117][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.355743][ T7971]  ? kmem_cache_free+0x19b/0x690
[  209.360700][ T7971]  __se_sys_mount+0x313/0x410
[  209.365709][ T7971]  ? __pfx___se_sys_mount+0x10/0x10
[  209.371193][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.376851][ T7971]  ? __x64_sys_mount+0x20/0xc0
[  209.381644][ T7971]  do_syscall_64+0xfa/0xfa0
[  209.386153][ T7971]  ? lockdep_hardirqs_on+0x9c/0x150
[  209.391457][ T7971]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.397536][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.403211][ T7971]  ? exc_page_fault+0xab/0x100
[  209.407958][ T7971]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.413853][ T7971] RIP: 0033:0x7fc540d9066a
[  209.418252][ T7971] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  209.437866][ T7971] RSP: 002b:00007fc541cbee68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  209.446299][ T7971] RAX: ffffffffffffffda RBX: 00007fc541cbeef0 RCX: 00007fc540d9066a
[  209.454289][ T7971] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fc541cbeeb0
[  209.462269][ T7971] RBP: 0000200000000180 R08: 00007fc541cbeef0 R09: 0000000000800700
[  209.470456][ T7971] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  209.478414][ T7971] R13: 00007fc541cbeeb0 R14: 0000000000000473 R15: 0000200000000680
[  209.486635][ T7971]  </TASK>
[  209.489655][ T7971] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  209.496913][ T7971] CPU: 0 UID: 0 PID: 7971 Comm: syz.7.588 Not tainted syzkaller #0 PREEMPT(full) 
[  209.506087][ T7971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  209.516122][ T7971] Call Trace:
[  209.519380][ T7971]  <TASK>
[  209.522295][ T7971]  dump_stack_lvl+0x99/0x250
[  209.526871][ T7971]  ? __asan_memcpy+0x40/0x70
[  209.531446][ T7971]  ? __pfx_dump_stack_lvl+0x10/0x10
[  209.536632][ T7971]  ? __pfx__printk+0x10/0x10
[  209.541215][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.546854][ T7971]  vpanic+0x237/0x6d0
[  209.550836][ T7971]  ? __pfx_vpanic+0x10/0x10
[  209.555342][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.560968][ T7971]  panic+0xb9/0xc0
[  209.564688][ T7971]  ? __pfx_panic+0x10/0x10
[  209.569109][ T7971]  __warn+0x31b/0x4b0
[  209.573088][ T7971]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[  209.579073][ T7971]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[  209.585051][ T7971]  report_bug+0x2be/0x4f0
[  209.589373][ T7971]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[  209.595351][ T7971]  ? ext4_xattr_inode_update_ref+0x51a/0x5b0
[  209.601330][ T7971]  ? ext4_xattr_inode_update_ref+0x51c/0x5b0
[  209.607311][ T7971]  handle_bug+0x84/0x160
[  209.611545][ T7971]  exc_invalid_op+0x1a/0x50
[  209.616040][ T7971]  asm_exc_invalid_op+0x1a/0x20
[  209.620875][ T7971] RIP: 0010:ext4_xattr_inode_update_ref+0x51a/0x5b0
[  209.627461][ T7971] Code: 48 b8 00 00 00 00 00 fc ff df 41 0f b6 04 06 84 c0 0f 85 80 00 00 00 41 8b 17 48 c7 c7 40 0e 80 8b 4c 89 e6 e8 07 c3 f9 fe 90 <0f> 0b 90 90 4c 8b 6c 24 28 e9 59 fe ff ff e8 d3 72 c2 08 44 89 f9
[  209.647052][ T7971] RSP: 0018:ffffc90011827100 EFLAGS: 00010246
[  209.653110][ T7971] RAX: c1d4bb16b7192b00 RBX: 0000000000000001 RCX: 0000000000080000
[  209.661067][ T7971] RDX: ffffc9001ea54000 RSI: 000000000007ffff RDI: 0000000000080000
[  209.669022][ T7971] RBP: ffffc900118271f8 R08: 0000000000000003 R09: 0000000000000004
[  209.676978][ T7971] R10: dffffc0000000000 R11: fffffbfff1bfa650 R12: 000000000000000b
[  209.684938][ T7971] R13: ffff888052a38d00 R14: 1ffff1100a54718e R15: ffff888052a38c70
[  209.692910][ T7971]  ? __pfx_inode_set_ctime_to_ts+0x10/0x10
[  209.698720][ T7971]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[  209.705044][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.710669][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.716297][ T7971]  ? ext4_xattr_inode_iget+0x3d2/0x5f0
[  209.721757][ T7971]  ext4_xattr_set_entry+0xabb/0x1e20
[  209.727048][ T7971]  ext4_xattr_ibody_set+0x254/0x6a0
[  209.732249][ T7971]  ext4_expand_extra_isize_ea+0x13ad/0x1ea0
[  209.738162][ T7971]  __ext4_expand_extra_isize+0x30d/0x400
[  209.743803][ T7971]  __ext4_mark_inode_dirty+0x46c/0x700
[  209.749262][ T7971]  ext4_evict_inode+0x80d/0xee0
[  209.754104][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.759734][ T7971]  ? __pfx_ext4_evict_inode+0x10/0x10
[  209.765093][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.770717][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.776341][ T7971]  ? do_raw_spin_unlock+0x122/0x240
[  209.781531][ T7971]  ? __pfx_ext4_evict_inode+0x10/0x10
[  209.786893][ T7971]  evict+0x504/0x9c0
[  209.790777][ T7971]  ? __pfx_evict+0x10/0x10
[  209.795177][ T7971]  ? do_raw_spin_unlock+0x122/0x240
[  209.800373][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.805996][ T7971]  ? _raw_spin_unlock+0x28/0x50
[  209.810846][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.816473][ T7971]  ? iput+0x946/0xc50
[  209.820455][ T7971]  ext4_orphan_cleanup+0xc20/0x1460
[  209.825648][ T7971]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  209.831270][ T7971]  ? ext4_register_li_request+0x259/0x720
[  209.836978][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.842605][ T7971]  ? errseq_check_and_advance+0x66/0x120
[  209.848240][ T7971]  ext4_fill_super+0x5920/0x61e0
[  209.853185][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.858815][ T7971]  ? __pfx_ext4_fill_super+0x10/0x10
[  209.864096][ T7971]  ? snprintf+0xda/0x120
[  209.868346][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.873971][ T7971]  ? set_blocksize+0x21e/0x500
[  209.878725][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.884352][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.889976][ T7971]  ? sb_set_blocksize+0x104/0x180
[  209.894996][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.900619][ T7971]  ? setup_bdev_super+0x4c1/0x5b0
[  209.905635][ T7971]  get_tree_bdev_flags+0x40e/0x4d0
[  209.910735][ T7971]  ? __pfx_ext4_fill_super+0x10/0x10
[  209.916019][ T7971]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  209.921642][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.927270][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.932898][ T7971]  vfs_get_tree+0x92/0x2b0
[  209.937313][ T7971]  do_new_mount+0x302/0xa10
[  209.941807][ T7971]  ? apparmor_capable+0x137/0x1b0
[  209.946838][ T7971]  ? __pfx_do_new_mount+0x10/0x10
[  209.951865][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.957487][ T7971]  ? ns_capable+0x8a/0xf0
[  209.961812][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.967447][ T7971]  ? kmem_cache_free+0x19b/0x690
[  209.972390][ T7971]  __se_sys_mount+0x313/0x410
[  209.977065][ T7971]  ? __pfx___se_sys_mount+0x10/0x10
[  209.982259][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  209.987887][ T7971]  ? __x64_sys_mount+0x20/0xc0
[  209.992645][ T7971]  do_syscall_64+0xfa/0xfa0
[  209.997138][ T7971]  ? lockdep_hardirqs_on+0x9c/0x150
[  210.002319][ T7971]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.008376][ T7971]  ? srso_alias_return_thunk+0x5/0xfbef5
[  210.014005][ T7971]  ? exc_page_fault+0xab/0x100
[  210.018757][ T7971]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.024637][ T7971] RIP: 0033:0x7fc540d9066a
[  210.029037][ T7971] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  210.048629][ T7971] RSP: 002b:00007fc541cbee68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  210.057033][ T7971] RAX: ffffffffffffffda RBX: 00007fc541cbeef0 RCX: 00007fc540d9066a
[  210.064992][ T7971] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fc541cbeeb0
[  210.072964][ T7971] RBP: 0000200000000180 R08: 00007fc541cbeef0 R09: 0000000000800700
[  210.080940][ T7971] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  210.088906][ T7971] R13: 00007fc541cbeeb0 R14: 0000000000000473 R15: 0000200000000680
[  210.096881][ T7971]  </TASK>
[  210.100077][ T7971] Kernel Offset: disabled
[  210.104388][ T7971] Rebooting in 86400 seconds..