last executing test programs:

1.802437606s ago: executing program 1 (id=2):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r4)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x2c, r5, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x2004c890}, 0x2000c800)

1.506904769s ago: executing program 2 (id=3):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x10008d0, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], 0x1, 0x444a, &(0x7f000000cd00)="$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")
creat(&(0x7f0000000d80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

602.033072ms ago: executing program 1 (id=5):
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x80000, 0x0)
fanotify_mark(0xffffffffffffffff, 0x105, 0x4800002c, r0, 0x0)
syz_mount_image$jffs2(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x808000, &(0x7f0000000300), 0x1, 0x274, &(0x7f0000000340)="$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")
read$FUSE(0xffffffffffffffff, &(0x7f0000002f00)={0x2020}, 0x2020)

270.602409ms ago: executing program 1 (id=6):
r0 = syz_open_dev$vim2m(&(0x7f0000000140), 0x2000000f5, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000003c0)={0x1, @pix_mp={0xe, 0x2, 0x32344d59, 0x5, 0xc, [{0x1152, 0x3deb}, {0x8, 0x9}, {0x0, 0x401}, {0x8, 0x400000d}, {0xd}, {0x1000, 0xffffffff}, {0x7, 0x7}, {0x8, 0x100005}], 0x3, 0x7, 0x8, 0x2, 0x5}})
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)

244.549301ms ago: executing program 1 (id=7):
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8b05, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='&\x00\x00\x00\a'], 0x50)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write(0xffffffffffffffff, &(0x7f0000000000)='\"', 0x1)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

4.39551ms ago: executing program 1 (id=8):
ioctl$TIOCSBRK(0xffffffffffffffff, 0x5427)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
r3 = io_uring_setup(0x5f6f, &(0x7f0000000000)={0x0, 0x84bf, 0x40, 0x20, 0xfffffffc})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r3, 0xb, &(0x7f0000000500)=[@ioring_restriction_sqe_op={0x1, 0x31a1ac19ea15b29b}], 0x1)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r4, &(0x7f0000000680)={0x2ae, 0x7d, 0x40, {{0x500, 0x16d, 0x0, 0xb000000, {0x0, 0x2, 0x4}, 0x0, 0x0, 0x0, 0x5, 0x1b, '\x04nodev{evoo~\x059\xc6\x00\x05\x00\x007\xd9:\x8b\x92\x00\x00\x00', 0x38, 'pJ\x86\xce\xc6\x02\x00}\xfag>\xff\xeb\t\xb55\x1f[\xde\x05@\x00\x00\x00\x00\x18{\x82\x00\xb5\x00\x00+Y_\xcb\x14\x03CT\xb9\xfd\x9e\xf1\x96\xa5\x1c\xd5\x15z\xdc\x81\x03\xb4\x94\xe1', 0x92, '\xcf\xc2m\xd7\xc5\x00\xf0\xdc4l)Vne\nA\x8aVK\x98\xa8BBJ\x97\x83\x7f[\x85Q\xee\xcb\x06\\\xf7\x1d\xe15\xf0s\xa2GAat\xe2\xa8\x04\x9bX\xd9]{\x99\xa9\xac\x9f;3\x82\x84Io\x9d\xcaf\x1dj\xc2f\xa0\x11\xe0\x84\xf3\xc1\xb0\xbe\x1d\xb4m)\xd6\b:E\xfb\xf8\x9e1\xb5\xe3\xdb\xfd\x0e5\xc7H\xde(\x1f\xe2\xba\x18\xef\x86\x8a\x87\xa9\xa4H`\x8c\x1c\xad\x87\xc8\xe0\x1e\x1c\x92\t\x00\xe6\xf8\xde\xb8\x98\x19[\xbe\xee\xe2\xa9\x94\x00'/146, 0x55, '\xf8\xf6i\xfbqm\xcf1^\xca\xf3\x85@\x9a\xc6[\x94\bg\x8c,;\x9e\x1dR\xc3l\xde{\xa4\xa4\x00\xb4\xb0\xb4\xf1h\xa6f\xa8R\x9aE\x1b4\a\xdb\xda\xb2\x88K\xaf\x05\x00\x00\x00\x00\x00\x00\x00G\xec!\xca\xbf\xf2\x0f\x9c\x1c\xbe6\xf4\xfd\x1aL\b\x80\xe8\xe2\x89\xdad\x9a7\x00'}, 0x12c, 'odev/n\xb1{#\x00\xf9\xda\xa5\xee#&n\xcf\x85\xfe\xa6^B\xd9y\xa3\xfd\xe5\xf4u\xda\xf0;\x11r\xd9{\xad\xc7\tZ\xfdv\xfeO\x04A\xf7\xf7t\x1e\xac\x03\x00\x00\xec\xff\x00\x00\xdb\xa0\xc2\xf7\xf0\x9f\xf5<~M\x1a\xd6n-\a\x01\x98\x01\x9f0\x11\x84G\xaa\x9at\xf5\x16\x85\xf5\x06\xae\x89H\x06\x87\x82g\xd5\xa1)\x8dy,J7\xf2\xe1\xcb\xbd$\x82\x92\x9a\r\x89r\xb5\xcfs.\xa5\xb0\xd7#\x85\x9d\xba?\x93\xae\xd3\xb4.\xe7\xca\xc0}\xe0\x9d\x1dh\xa6\x033\xa8\x82F}+1\xaa\xcd\xf9\x18\x85I\xb1\x12]lL\x9b\x18\xc2\xfbV\xc5}}\xc6&\xe49\a\x96\xa1\xebH\'Fi\xab\x13\xf8\xb1\x1d\x14`Y\xf3\x10\xe2cMY?\xece\xd5)\xf3\x82\x06fd\xdf$NL\x90W\np\x04\x9f9\x9f\x06\x1fu\xb7y|\xe1\xfe\x11\xea\x91\x96\t\xd5\x1aA\xdd=\xe3\x04\xbd|~\xd0\xa4V\xf0\xae\x12Qa\x05\xc9\xce\x88}\xf5\xa6\xe0\xb6\xa7}Yl\xf8\x8b\xa6\xe5\xc69|}P!\xd7\x98\x95(\xfd\x179\xe1\xc2\xd8\x7f\xff\x00'/300}}, 0x2ae)
syz_create_resource$binfmt(0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x3, 0x3, 0x9, 0x1, 0xb8}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x80)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r5, 0x6, 0xd, &(0x7f00000004c0)='dctcp\x00', 0x6)
r6 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x31, &(0x7f00000000c0), 0x4)
ioctl$VIDIOC_S_INPUT(r6, 0xc0045627, &(0x7f0000000100)=0x3)
socket$l2tp6(0xa, 0x2, 0x73)
r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r7, &(0x7f0000000000)={0x1f, 0x0, @none, 0x0, 0x1}, 0x4d)
setsockopt$bt_BT_DEFER_SETUP(r7, 0x112, 0xf, &(0x7f0000000080)=0x4, 0x4)

0s ago: executing program 0 (id=1):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = open(0x0, 0xa40, 0x16e)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
pipe2(0x0, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
getdents64(0xffffffffffffffff, &(0x7f0000001f00)=""/4093, 0xffd)
r6 = accept4$phonet_pipe(r2, &(0x7f0000000040), &(0x7f00000000c0)=0x10, 0xa461264e30728ca1)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000100)={{0x1, 0x1, 0x18, r6, {0x7}}, './file0\x00'})
bind$inet6(r5, &(0x7f0000d84000)={0xa, 0x2, 0xfffffffc}, 0x1c)
r7 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r7)
ptrace$setregs(0x1a, r7, 0xc, &(0x7f0000000000))

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.61' (ED25519) to the list of known hosts.
syzkaller login: [   58.915171][ T5775] cgroup: Unknown subsys name 'net'
[   59.046871][ T5775] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   60.433801][ T5775] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   62.362005][ T5789] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   62.381086][ T5789] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   62.389239][ T5789] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   62.397541][ T5789] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   62.411125][ T5789] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   62.418642][ T5789] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   62.475718][ T5789] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   62.486624][   T50] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   62.495217][   T50] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   62.508661][ T5798] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   62.517347][ T5798] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   62.540642][ T5798] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   62.551499][ T5795] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   62.559417][ T5795] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   62.560611][ T5798] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   62.567294][ T5795] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   62.591944][ T5795] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   62.599957][ T5795] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   62.601085][ T5800] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   62.607756][ T5795] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   62.615706][ T5800] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   62.635241][ T5800] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   62.643147][ T5800] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   62.650709][ T5800] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   62.994886][ T5786] chnl_net:caif_netlink_parms(): no params data found
[   63.118179][ T5790] chnl_net:caif_netlink_parms(): no params data found
[   63.133276][ T5786] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.140516][ T5786] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.148004][ T5786] bridge_slave_0: entered allmulticast mode
[   63.155053][ T5786] bridge_slave_0: entered promiscuous mode
[   63.167757][ T5786] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.175584][ T5786] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.183006][ T5786] bridge_slave_1: entered allmulticast mode
[   63.189757][ T5786] bridge_slave_1: entered promiscuous mode
[   63.207980][ T5796] chnl_net:caif_netlink_parms(): no params data found
[   63.254617][ T5786] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   63.272831][ T5786] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   63.363374][ T5786] team0: Port device team_slave_0 added
[   63.404802][ T5786] team0: Port device team_slave_1 added
[   63.457280][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_0
[   63.464312][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.491289][ T5786] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   63.503567][ T5790] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.511525][ T5790] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.518701][ T5790] bridge_slave_0: entered allmulticast mode
[   63.525549][ T5790] bridge_slave_0: entered promiscuous mode
[   63.532511][ T5796] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.539636][ T5796] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.547244][ T5796] bridge_slave_0: entered allmulticast mode
[   63.554339][ T5796] bridge_slave_0: entered promiscuous mode
[   63.562677][ T5796] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.569809][ T5796] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.577130][ T5796] bridge_slave_1: entered allmulticast mode
[   63.584271][ T5796] bridge_slave_1: entered promiscuous mode
[   63.590931][ T5792] chnl_net:caif_netlink_parms(): no params data found
[   63.607207][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_1
[   63.614410][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   63.640691][ T5786] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   63.657284][ T5790] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.664883][ T5790] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.672222][ T5790] bridge_slave_1: entered allmulticast mode
[   63.679017][ T5790] bridge_slave_1: entered promiscuous mode
[   63.739299][ T5796] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   63.753276][ T5796] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   63.799132][ T5790] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   63.827946][ T5786] hsr_slave_0: entered promiscuous mode
[   63.834814][ T5786] hsr_slave_1: entered promiscuous mode
[   63.852099][ T5790] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   63.870522][ T5796] team0: Port device team_slave_0 added
[   63.916729][ T5796] team0: Port device team_slave_1 added
[   63.976900][ T5792] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.984377][ T5792] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.992167][ T5792] bridge_slave_0: entered allmulticast mode
[   63.998932][ T5792] bridge_slave_0: entered promiscuous mode
[   64.006698][ T5796] batman_adv: batadv0: Adding interface: batadv_slave_0
[   64.013945][ T5796] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.042754][ T5796] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   64.057012][ T5790] team0: Port device team_slave_0 added
[   64.067819][ T5792] bridge0: port 2(bridge_slave_1) entered blocking state
[   64.075260][ T5792] bridge0: port 2(bridge_slave_1) entered disabled state
[   64.082525][ T5792] bridge_slave_1: entered allmulticast mode
[   64.089216][ T5792] bridge_slave_1: entered promiscuous mode
[   64.096909][ T5796] batman_adv: batadv0: Adding interface: batadv_slave_1
[   64.104097][ T5796] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.135756][ T5796] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   64.148895][ T5790] team0: Port device team_slave_1 added
[   64.187238][ T5792] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   64.226482][ T5792] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   64.285749][ T5790] batman_adv: batadv0: Adding interface: batadv_slave_0
[   64.293052][ T5790] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.319719][ T5790] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   64.332599][ T5790] batman_adv: batadv0: Adding interface: batadv_slave_1
[   64.339577][ T5790] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.365552][ T5790] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   64.400752][ T5792] team0: Port device team_slave_0 added
[   64.423210][ T5796] hsr_slave_0: entered promiscuous mode
[   64.429452][ T5796] hsr_slave_1: entered promiscuous mode
[   64.436673][ T5796] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   64.444669][ T5796] Cannot create hsr debugfs directory
[   64.452236][ T5792] team0: Port device team_slave_1 added
[   64.486446][ T5792] batman_adv: batadv0: Adding interface: batadv_slave_0
[   64.493648][ T5792] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.520005][ T5792] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   64.531999][ T5800] Bluetooth: hci0: command tx timeout
[   64.562405][ T5792] batman_adv: batadv0: Adding interface: batadv_slave_1
[   64.569403][ T5792] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   64.595707][ T5792] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   64.668946][ T5790] hsr_slave_0: entered promiscuous mode
[   64.676329][ T5790] hsr_slave_1: entered promiscuous mode
[   64.682126][ T5800] Bluetooth: hci3: command tx timeout
[   64.682326][ T5800] Bluetooth: hci1: command tx timeout
[   64.694139][ T5790] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   64.702364][ T5790] Cannot create hsr debugfs directory
[   64.746121][ T5792] hsr_slave_0: entered promiscuous mode
[   64.753058][ T5792] hsr_slave_1: entered promiscuous mode
[   64.759563][ T5792] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   64.762552][ T5800] Bluetooth: hci2: command tx timeout
[   64.767706][ T5792] Cannot create hsr debugfs directory
[   64.951139][ T5786] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   64.961717][ T5786] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   64.996920][ T5786] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   65.006627][ T5786] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   65.109454][ T5796] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   65.131957][ T5796] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   65.142137][ T5796] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   65.157281][ T5796] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   65.214146][ T5790] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   65.243853][ T5790] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   65.255085][ T5790] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   65.266081][ T5790] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   65.328888][ T5792] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   65.338632][ T5792] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   65.355558][ T5792] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   65.365404][ T5792] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   65.483867][ T5786] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.520132][ T5786] 8021q: adding VLAN 0 to HW filter on device team0
[   65.564522][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.571902][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.589552][ T5790] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.613976][ T5792] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.638177][   T78] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.645357][   T78] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.665572][ T5796] 8021q: adding VLAN 0 to HW filter on device bond0
[   65.711661][ T5790] 8021q: adding VLAN 0 to HW filter on device team0
[   65.735062][   T78] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.742280][   T78] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.756341][ T5792] 8021q: adding VLAN 0 to HW filter on device team0
[   65.779461][   T78] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.786731][   T78] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.796860][   T78] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.804099][   T78] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.817081][ T5796] 8021q: adding VLAN 0 to HW filter on device team0
[   65.844519][ T4302] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.851709][ T4302] bridge0: port 1(bridge_slave_0) entered forwarding state
[   65.874940][ T4302] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.882159][ T4302] bridge0: port 2(bridge_slave_1) entered forwarding state
[   65.904014][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.911197][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.242564][ T5786] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.355820][ T5786] veth0_vlan: entered promiscuous mode
[   66.421955][ T5786] veth1_vlan: entered promiscuous mode
[   66.458673][ T5796] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.507296][ T5792] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.519752][ T5786] veth0_macvtap: entered promiscuous mode
[   66.545234][ T5786] veth1_macvtap: entered promiscuous mode
[   66.591983][ T5800] Bluetooth: hci0: command tx timeout
[   66.612714][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_0
[   66.627157][ T5796] veth0_vlan: entered promiscuous mode
[   66.645354][ T5790] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.656575][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_1
[   66.665802][ T5792] veth0_vlan: entered promiscuous mode
[   66.684958][ T5796] veth1_vlan: entered promiscuous mode
[   66.697590][ T5786] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.709208][ T5786] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.718468][ T5786] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   66.727298][ T5786] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   66.741618][ T5792] veth1_vlan: entered promiscuous mode
[   66.751260][ T5789] Bluetooth: hci1: command tx timeout
[   66.758874][ T5800] Bluetooth: hci3: command tx timeout
[   66.831342][ T5800] Bluetooth: hci2: command tx timeout
[   66.894037][ T5790] veth0_vlan: entered promiscuous mode
[   66.908694][   T78] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.916587][ T5792] veth0_macvtap: entered promiscuous mode
[   66.921649][   T78] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.936924][ T5796] veth0_macvtap: entered promiscuous mode
[   66.951805][ T5796] veth1_macvtap: entered promiscuous mode
[   66.977497][ T5792] veth1_macvtap: entered promiscuous mode
[   66.994140][ T5796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   67.006239][ T5796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.017894][ T5796] batman_adv: batadv0: Interface activated: batadv_slave_0
[   67.034634][ T5790] veth1_vlan: entered promiscuous mode
[   67.052894][ T5796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   67.063725][ T5796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.075836][ T5796] batman_adv: batadv0: Interface activated: batadv_slave_1
[   67.095680][ T5792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   67.106672][ T1095] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.107152][ T5792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.116591][ T1095] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.125345][ T5792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   67.144726][ T5792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.156250][ T5792] batman_adv: batadv0: Interface activated: batadv_slave_0
[   67.167747][ T5796] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.177534][ T5796] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.186387][ T5796] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.195131][ T5796] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.225515][ T5792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   67.240447][ T5792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.250962][ T5792] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   67.261537][ T5792] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.274592][ T5792] batman_adv: batadv0: Interface activated: batadv_slave_1
[   67.313728][ T5792] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.323256][ T5792] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.332446][ T5792] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.341789][ T5792] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.422461][ T4302] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.447583][ T4302] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.506570][ T5790] veth0_macvtap: entered promiscuous mode
[   67.518701][ T5790] veth1_macvtap: entered promiscuous mode
[   67.539414][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.559952][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.722774][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   67.765135][ T5874] syz.2.3[5874]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   67.804508][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   67.816526][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   68.001992][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   68.101074][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   68.221363][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   68.422995][ T5790] batman_adv: batadv0: Interface activated: batadv_slave_0
[   68.437366][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   68.448020][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   68.458545][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   68.469116][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   68.479064][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   68.496029][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   68.507887][ T5790] batman_adv: batadv0: Interface activated: batadv_slave_1
[   68.631124][ T4302] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.640496][ T4302] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.643138][ T5790] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   68.664460][ T5790] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   68.673552][ T5800] Bluetooth: hci0: command tx timeout
[   68.696964][ T5790] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   68.702424][ T5874] loop2: detected capacity change from 0 to 32768
[   68.714912][ T5874] =======================================================
[   68.714912][ T5874] WARNING: The mand mount option has been deprecated and
[   68.714912][ T5874]          and is ignored by this kernel. Remove the mand
[   68.714912][ T5874]          option from the mount to silence this warning.
[   68.714912][ T5874] =======================================================
[   68.745153][ T5790] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   68.809722][ T5877] loop1: detected capacity change from 0 to 21
[   68.830801][ T5800] Bluetooth: hci3: command tx timeout
[   68.836268][ T5800] Bluetooth: hci1: command tx timeout
[   68.895652][ T5787] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   68.917173][ T5800] Bluetooth: hci2: command tx timeout
[   68.945008][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.961790][ T5874] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[   69.003880][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.073513][ T4302] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.120386][ T4302] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.219784][ T5031] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.245763][ T5031] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.301387][ T5874] ==================================================================
[   69.309505][ T5874] BUG: KASAN: slab-use-after-free in ocfs2_claim_suballoc_bits+0xeb0/0x2230
[   69.318228][ T5874] Read of size 4 at addr ffff88802a9ad000 by task syz.2.3/5874
[   69.325789][ T5874] 
[   69.328167][ T5874] CPU: 0 PID: 5874 Comm: syz.2.3 Not tainted 6.6.101-syzkaller #0
[   69.335990][ T5874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   69.346071][ T5874] Call Trace:
[   69.349370][ T5874]  <TASK>
[   69.352330][ T5874]  dump_stack_lvl+0x16c/0x230
[   69.357040][ T5874]  ? __lock_acquire+0x7c80/0x7c80
[   69.362103][ T5874]  ? show_regs_print_info+0x20/0x20
[   69.367331][ T5874]  ? load_image+0x3b0/0x3b0
[   69.371848][ T5874]  ? __virt_addr_valid+0x469/0x540
[   69.376958][ T5874]  print_report+0xac/0x220
[   69.381372][ T5874]  ? ocfs2_claim_suballoc_bits+0xeb0/0x2230
[   69.387295][ T5874]  kasan_report+0x117/0x150
[   69.392019][ T5874]  ? add_lock_to_list+0x191/0x280
[   69.397045][ T5874]  ? ocfs2_claim_suballoc_bits+0xeb0/0x2230
[   69.402949][ T5874]  ocfs2_claim_suballoc_bits+0xeb0/0x2230
[   69.408769][ T5874]  ? ocfs2_claim_metadata+0x4a0/0x4a0
[   69.414158][ T5874]  ocfs2_claim_new_inode+0x32a/0x780
[   69.419456][ T5874]  ? trace_ocfs2_claim_new_inode_at_loc+0x1c0/0x1c0
[   69.426048][ T5874]  ? mark_lock+0x94/0x320
[   69.430377][ T5874]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[   69.436356][ T5874]  ? lock_chain_count+0x20/0x20
[   69.441203][ T5874]  ocfs2_mknod_locked+0x101/0x250
[   69.446227][ T5874]  ? trace_ocfs2_symlink_create+0x210/0x210
[   69.452112][ T5874]  ? dquot_alloc_inode+0x211/0xa40
[   69.457224][ T5874]  ? ocfs2_block_signals+0x95/0xd0
[   69.462403][ T5874]  ? ocfs2_free_mem_caches+0x50/0x50
[   69.467693][ T5874]  ? ocfs2_init_security_get+0x139/0x1a0
[   69.473332][ T5874]  ocfs2_mknod+0x107e/0x20f0
[   69.477937][ T5874]  ? ocfs2_mkdir+0x410/0x410
[   69.482531][ T5874]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[   69.488427][ T5874]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[   69.494334][ T5874]  ? ocfs2_inode_unlock+0xa5/0x140
[   69.499443][ T5874]  ? __lock_acquire+0x7c80/0x7c80
[   69.504461][ T5874]  ? __rwlock_init+0x150/0x150
[   69.509223][ T5874]  ? do_raw_spin_unlock+0x121/0x230
[   69.514419][ T5874]  ? rcu_is_watching+0x15/0xb0
[   69.519182][ T5874]  ? ocfs2_lookup+0x495/0x940
[   69.523860][ T5874]  ocfs2_create+0x196/0x410
[   69.528363][ T5874]  ? ocfs2_update_inode_fsync_trans+0x240/0x240
[   69.534597][ T5874]  ? from_kgid+0x15d/0x680
[   69.539008][ T5874]  ? ocfs2_lookup+0x940/0x940
[   69.543675][ T5874]  ? HAS_UNMAPPED_ID+0x11a/0x180
[   69.548610][ T5874]  ? inode_permission+0xf3/0x480
[   69.553545][ T5874]  ? bpf_lsm_inode_create+0x9/0x10
[   69.558646][ T5874]  ? security_inode_create+0xb7/0x100
[   69.564016][ T5874]  ? ocfs2_lookup+0x940/0x940
[   69.568690][ T5874]  path_openat+0x1277/0x3190
[   69.573321][ T5874]  ? do_filp_open+0x3d0/0x3d0
[   69.578002][ T5874]  do_filp_open+0x1c5/0x3d0
[   69.582508][ T5874]  ? vfs_tmpfile+0x490/0x490
[   69.587108][ T5874]  ? _raw_spin_unlock+0x28/0x40
[   69.591958][ T5874]  ? alloc_fd+0x58f/0x630
[   69.596315][ T5874]  do_sys_openat2+0x12c/0x1c0
[   69.600994][ T5874]  ? do_sys_open+0xe0/0xe0
[   69.605405][ T5874]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[   69.611386][ T5874]  ? lock_chain_count+0x20/0x20
[   69.616234][ T5874]  __x64_sys_creat+0x90/0xb0
[   69.620860][ T5874]  do_syscall_64+0x55/0xb0
[   69.625337][ T5874]  ? clear_bhb_loop+0x40/0x90
[   69.630015][ T5874]  ? clear_bhb_loop+0x40/0x90
[   69.634694][ T5874]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   69.640596][ T5874] RIP: 0033:0x7f986b78eb69
[   69.645020][ T5874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.664622][ T5874] RSP: 002b:00007f986c62d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[   69.673031][ T5874] RAX: ffffffffffffffda RBX: 00007f986b9b5fa0 RCX: 00007f986b78eb69
[   69.681085][ T5874] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000d80
[   69.689053][ T5874] RBP: 00007f986b811df1 R08: 0000000000000000 R09: 0000000000000000
[   69.697027][ T5874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   69.705008][ T5874] R13: 0000000000000000 R14: 00007f986b9b5fa0 R15: 00007ffc979d4208
[   69.713085][ T5874]  </TASK>
[   69.716445][ T5874] 
[   69.718768][ T5874] Allocated by task 12:
[   69.722925][ T5874]  kasan_set_track+0x4e/0x70
[   69.727509][ T5874]  __kasan_slab_alloc+0x6c/0x80
[   69.732352][ T5874]  slab_post_alloc_hook+0x6e/0x4d0
[   69.737545][ T5874]  kmem_cache_alloc+0x11e/0x2e0
[   69.742389][ T5874]  alloc_pid+0xa1/0xc20
[   69.746539][ T5874]  copy_process+0x1967/0x3d70
[   69.751225][ T5874]  kernel_clone+0x21b/0x840
[   69.755727][ T5874]  user_mode_thread+0xde/0x130
[   69.760572][ T5874]  call_usermodehelper_exec_work+0x5c/0x220
[   69.766471][ T5874]  process_scheduled_works+0xa45/0x15b0
[   69.772010][ T5874]  worker_thread+0xa55/0xfc0
[   69.776591][ T5874]  kthread+0x2fa/0x390
[   69.780652][ T5874]  ret_from_fork+0x48/0x80
[   69.785190][ T5874]  ret_from_fork_asm+0x11/0x20
[   69.789967][ T5874] 
[   69.792292][ T5874] Last potentially related work creation:
[   69.797999][ T5874]  kasan_save_stack+0x3e/0x60
[   69.802673][ T5874]  __kasan_record_aux_stack+0xaf/0xc0
[   69.808082][ T5874]  call_rcu+0x158/0x930
[   69.812251][ T5874]  release_task+0xc9c/0x1610
[   69.816839][ T5874]  do_exit+0x17ae/0x23c0
[   69.821082][ T5874]  call_usermodehelper_exec_async+0x348/0x350
[   69.827163][ T5874]  ret_from_fork+0x48/0x80
[   69.831578][ T5874]  ret_from_fork_asm+0x11/0x20
[   69.836344][ T5874] 
[   69.838704][ T5874] The buggy address belongs to the object at ffff88802a9ad000
[   69.838704][ T5874]  which belongs to the cache pid of size 224
[   69.852083][ T5874] The buggy address is located 0 bytes inside of
[   69.852083][ T5874]  freed 224-byte region [ffff88802a9ad000, ffff88802a9ad0e0)
[   69.865754][ T5874] 
[   69.868079][ T5874] The buggy address belongs to the physical page:
[   69.874521][ T5874] page:ffffea0000aa6b40 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88802a9addc0 pfn:0x2a9ad
[   69.885993][ T5874] flags: 0xfff00000000800(slab|node=0|zone=1|lastcpupid=0x7ff)
[   69.893562][ T5874] page_type: 0xffffffff()
[   69.897892][ T5874] raw: 00fff00000000800 ffff888019a4c000 ffffea0000aa6650 ffffea0000aca390
[   69.906490][ T5874] raw: ffff88802a9addc0 00000000000c0003 00000001ffffffff 0000000000000000
[   69.915064][ T5874] page dumped because: kasan: bad access detected
[   69.921477][ T5874] page_owner tracks the page as allocated
[   69.927188][ T5874] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 12, tgid 12 (kworker/u4:1), ts 11156051032, free_ts 11154489244
[   69.945174][ T5874]  post_alloc_hook+0x1cd/0x210
[   69.949947][ T5874]  get_page_from_freelist+0x195c/0x19f0
[   69.955494][ T5874]  __alloc_pages+0x1e3/0x460
[   69.960081][ T5874]  alloc_slab_page+0x5d/0x170
[   69.964752][ T5874]  new_slab+0x87/0x2e0
[   69.968818][ T5874]  ___slab_alloc+0xc6d/0x12f0
[   69.973487][ T5874]  kmem_cache_alloc+0x1b7/0x2e0
[   69.978330][ T5874]  alloc_pid+0xa1/0xc20
[   69.982476][ T5874]  copy_process+0x1967/0x3d70
[   69.987141][ T5874]  kernel_clone+0x21b/0x840
[   69.991634][ T5874]  user_mode_thread+0xde/0x130
[   69.996390][ T5874]  call_usermodehelper_exec_work+0x5c/0x220
[   70.002281][ T5874]  process_scheduled_works+0xa45/0x15b0
[   70.007825][ T5874]  worker_thread+0xa55/0xfc0
[   70.012432][ T5874]  kthread+0x2fa/0x390
[   70.016490][ T5874]  ret_from_fork+0x48/0x80
[   70.020909][ T5874] page last free stack trace:
[   70.025567][ T5874]  free_unref_page_prepare+0x7ce/0x8e0
[   70.031030][ T5874]  free_unref_page+0x32/0x2e0
[   70.035711][ T5874]  __mmdrop+0xb4/0x3d0
[   70.039782][ T5874]  free_bprm+0x171/0x3e0
[   70.044025][ T5874]  kernel_execve+0x3c2/0x9c0
[   70.048609][ T5874]  call_usermodehelper_exec_async+0x20b/0x350
[   70.054673][ T5874]  ret_from_fork+0x48/0x80
[   70.059080][ T5874]  ret_from_fork_asm+0x11/0x20
[   70.063842][ T5874] 
[   70.066156][ T5874] Memory state around the buggy address:
[   70.071786][ T5874]  ffff88802a9acf00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   70.079842][ T5874]  ffff88802a9acf80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   70.087892][ T5874] >ffff88802a9ad000: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   70.095942][ T5874]                    ^
[   70.099997][ T5874]  ffff88802a9ad080: fb fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[   70.108045][ T5874]  ffff88802a9ad100: fc fc fc fc fc fc fc fc fb fb fb fb fb fb fb fb
[   70.116098][ T5874] ==================================================================
[   70.319281][ T5874] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   70.326533][ T5874] CPU: 1 PID: 5874 Comm: syz.2.3 Not tainted 6.6.101-syzkaller #0
[   70.334355][ T5874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   70.344431][ T5874] Call Trace:
[   70.347738][ T5874]  <TASK>
[   70.350701][ T5874]  dump_stack_lvl+0x16c/0x230
[   70.355418][ T5874]  ? show_regs_print_info+0x20/0x20
[   70.360644][ T5874]  ? load_image+0x3b0/0x3b0
[   70.365185][ T5874]  panic+0x2c0/0x710
[   70.369114][ T5874]  ? bpf_jit_dump+0xd0/0xd0
[   70.373651][ T5874]  ? _raw_spin_unlock_irqrestore+0xfa/0x110
[   70.379574][ T5874]  ? _raw_spin_unlock+0x40/0x40
[   70.384448][ T5874]  ? print_memory_metadata+0x314/0x400
[   70.389945][ T5874]  ? ocfs2_claim_suballoc_bits+0xeb0/0x2230
[   70.395837][ T5874]  check_panic_on_warn+0x84/0xa0
[   70.400770][ T5874]  ? ocfs2_claim_suballoc_bits+0xeb0/0x2230
[   70.406684][ T5874]  end_report+0x6f/0x140
[   70.410919][ T5874]  kasan_report+0x128/0x150
[   70.415418][ T5874]  ? add_lock_to_list+0x191/0x280
[   70.420527][ T5874]  ? ocfs2_claim_suballoc_bits+0xeb0/0x2230
[   70.426427][ T5874]  ocfs2_claim_suballoc_bits+0xeb0/0x2230
[   70.432159][ T5874]  ? ocfs2_claim_metadata+0x4a0/0x4a0
[   70.437550][ T5874]  ocfs2_claim_new_inode+0x32a/0x780
[   70.442854][ T5874]  ? trace_ocfs2_claim_new_inode_at_loc+0x1c0/0x1c0
[   70.449446][ T5874]  ? mark_lock+0x94/0x320
[   70.453773][ T5874]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[   70.459749][ T5874]  ? lock_chain_count+0x20/0x20
[   70.464596][ T5874]  ocfs2_mknod_locked+0x101/0x250
[   70.469617][ T5874]  ? trace_ocfs2_symlink_create+0x210/0x210
[   70.475502][ T5874]  ? dquot_alloc_inode+0x211/0xa40
[   70.480612][ T5874]  ? ocfs2_block_signals+0x95/0xd0
[   70.485719][ T5874]  ? ocfs2_free_mem_caches+0x50/0x50
[   70.491068][ T5874]  ? ocfs2_init_security_get+0x139/0x1a0
[   70.496699][ T5874]  ocfs2_mknod+0x107e/0x20f0
[   70.501289][ T5874]  ? ocfs2_mkdir+0x410/0x410
[   70.505881][ T5874]  ? _raw_spin_unlock_irqrestore+0x86/0x110
[   70.511840][ T5874]  ? _raw_spin_unlock_irqrestore+0xae/0x110
[   70.517849][ T5874]  ? ocfs2_inode_unlock+0xa5/0x140
[   70.522960][ T5874]  ? __lock_acquire+0x7c80/0x7c80
[   70.528069][ T5874]  ? __rwlock_init+0x150/0x150
[   70.532834][ T5874]  ? do_raw_spin_unlock+0x121/0x230
[   70.538041][ T5874]  ? rcu_is_watching+0x15/0xb0
[   70.542822][ T5874]  ? ocfs2_lookup+0x495/0x940
[   70.547499][ T5874]  ocfs2_create+0x196/0x410
[   70.551998][ T5874]  ? ocfs2_update_inode_fsync_trans+0x240/0x240
[   70.558232][ T5874]  ? from_kgid+0x15d/0x680
[   70.562644][ T5874]  ? ocfs2_lookup+0x940/0x940
[   70.567311][ T5874]  ? HAS_UNMAPPED_ID+0x11a/0x180
[   70.572246][ T5874]  ? inode_permission+0xf3/0x480
[   70.577183][ T5874]  ? bpf_lsm_inode_create+0x9/0x10
[   70.582287][ T5874]  ? security_inode_create+0xb7/0x100
[   70.587658][ T5874]  ? ocfs2_lookup+0x940/0x940
[   70.592416][ T5874]  path_openat+0x1277/0x3190
[   70.597023][ T5874]  ? do_filp_open+0x3d0/0x3d0
[   70.601705][ T5874]  do_filp_open+0x1c5/0x3d0
[   70.606210][ T5874]  ? vfs_tmpfile+0x490/0x490
[   70.610805][ T5874]  ? _raw_spin_unlock+0x28/0x40
[   70.615654][ T5874]  ? alloc_fd+0x58f/0x630
[   70.620073][ T5874]  do_sys_openat2+0x12c/0x1c0
[   70.624773][ T5874]  ? do_sys_open+0xe0/0xe0
[   70.629186][ T5874]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[   70.635165][ T5874]  ? lock_chain_count+0x20/0x20
[   70.640027][ T5874]  __x64_sys_creat+0x90/0xb0
[   70.644710][ T5874]  do_syscall_64+0x55/0xb0
[   70.649141][ T5874]  ? clear_bhb_loop+0x40/0x90
[   70.653839][ T5874]  ? clear_bhb_loop+0x40/0x90
[   70.658515][ T5874]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   70.664410][ T5874] RIP: 0033:0x7f986b78eb69
[   70.668847][ T5874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   70.688652][ T5874] RSP: 002b:00007f986c62d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[   70.697170][ T5874] RAX: ffffffffffffffda RBX: 00007f986b9b5fa0 RCX: 00007f986b78eb69
[   70.705138][ T5874] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000d80
[   70.713100][ T5874] RBP: 00007f986b811df1 R08: 0000000000000000 R09: 0000000000000000
[   70.721078][ T5874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   70.729043][ T5874] R13: 0000000000000000 R14: 00007f986b9b5fa0 R15: 00007ffc979d4208
[   70.737017][ T5874]  </TASK>
[   70.740291][ T5874] Kernel Offset: disabled
[   70.744605][ T5874] Rebooting in 86400 seconds..