last executing test programs:

1m18.97449605s ago: executing program 1 (id=3219):
openat$nullb(0xffffffffffffff9c, &(0x7f0000000240), 0x4000000004002, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_wait_time\x00', 0x26e1, 0x0)
close(r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
open(&(0x7f0000000080)='./bus\x00', 0x143142, 0x0)
mount(0x0, &(0x7f0000000280)='./bus\x00', &(0x7f00000001c0)='9p\x00', 0x2, &(0x7f0000000300)='trans=rdma,')
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x6, 0xbaa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000), &(0x7f0000000200), 0xa7c, r4}, 0x38)

1m15.654396769s ago: executing program 1 (id=3228):
socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$MRT_FLUSH(0xffffffffffffffff, 0x0, 0xd4, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0xffff, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'veth1_to_bridge\x00'})
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000280)={0x100000011, @multicast2, 0x0, 0x0, 'rr\x00', 0xc, 0x88, 0x17}, 0x2c)
socket$alg(0x26, 0x5, 0x0)

1m15.187898988s ago: executing program 1 (id=3231):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty, 0x9}, 0xfffffffffffffec8)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r1, &(0x7f0000000340)={0x2, 0x4e24, @loopback}, 0x10)
sendmmsg(r1, &(0x7f0000003ec0)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000000c0)="a0346e7133", 0x5}], 0x1}}, {{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000002c0)="4291d705", 0x4}], 0x1}}, {{0x0, 0x0, &(0x7f0000000a00)=[{&(0x7f0000000540)="12fa96df3d313bd99221cab3543e3baf90c03b6efdb60c2056abd3403ebe5c6f57fe16c44f29ba0caa692ec02473dfd6b47911b7f8fdfd6de0f619111fde80c8845fc83f0df41b5ba43f29e22c12defa1df80cbc8a0ce335bc3679453454bf9229c4cdc1984d72e457fd7d07f71603f1bce9ed0f525df93c45a1d3fac7579e94838444cb52946f3da43a548773dc69b7f7214f7adbf6a622bc3c25a1c6dfb9a54769f9937d97c3be38dc22834e345d43b1af89d2f361290cf3a561c826c4b19f035f101541d4faadaae3b30b37042f7dc07efec1", 0xd4}, {&(0x7f0000000440)="ae4905c4cbb6d81899465464d779952d92a01af0466a3fbcf614bc300ad98a0aaa76dfa948148adb0c7b68dfce0c34da058eb37f2391b8c4f8d14b6061dd52ac071389fcc54ead0a0be2f0dda7a4a4cb3ce10f17afcf6400e00130559afc6159da19", 0x62}, {&(0x7f0000000740)="1588cc8eb4f20fb55f6da674dddf50eaef3772be0689b487fcddae698b761304ad66f325b5d87958a366115254be84391d456b35c1b0f040156e1db6b22e14186dfa816dcc49aa7474c3e9da9a2f45171ece8c2e6269639448296abc954b2ffdd4147cc2ab98296bdd73415acffa525fb4942df8141fb668cf99c6d932f65f279623f426e420839efa6f11ae51de", 0x8e}], 0x3}}], 0x3, 0x0)
recvmmsg(r1, &(0x7f00000048c0)=[{{0x0, 0x25, &(0x7f0000004a00)=[{&(0x7f0000001a00)=""/4099, 0x1003}], 0x1}}], 0x1003, 0x10122, 0x0)
r2 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', 0x830000, 0xffffffffffffffff, 0x0, 0x0, 0x0)
mount$binder(0x0, &(0x7f00000035c0)='./file0\x00', &(0x7f0000003600), 0x0, &(0x7f0000003640)={[{@stats}]})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
chroot(&(0x7f0000000040)='./file0\x00')
umount2(&(0x7f0000000080)='./file0\x00', 0x0)
r3 = epoll_create1(0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'pim6reg\x00'})
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000040))
recvmmsg(r0, &(0x7f00000004c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)=""/21, 0x15}, 0x592a}], 0x1, 0x0, 0x0)
close(r2)
setsockopt$inet6_int(r0, 0x29, 0x42, &(0x7f0000000100)=0x1e79, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x20000000, &(0x7f0000000300)={0xa, 0x4e20, 0xff, @mcast1, 0x1}, 0x1c)

1m12.872749932s ago: executing program 1 (id=3241):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
writev(r1, &(0x7f0000000000)=[{&(0x7f00000000c0)="14", 0x1f68}], 0x2)
r2 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r0, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x1], 0x0, 0x0, 0x1, 0x1}}, 0x40)
geteuid()
r3 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x44)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000001, 0x12, r3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000100)=ANY=[@ANYBLOB="4c0000001800010000000000f8dbdf25022000fcff0200090000000008000100e000000206001c004e20000008000700e000000208000200ffffffff080001"], 0x4c}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
bind$bt_hci(r5, 0x0, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYRES32=r1, @ANYRES64=r2, @ANYRES32=r3, @ANYRESOCT=r0, @ANYRESDEC=r5], 0x50}}, 0x0)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000540)={[{@jqfmt_vfsold}, {@barrier}, {@user_xattr}, {@noload}, {@mblk_io_submit}, {@commit={'commit', 0x3d, 0x5}}, {@journal_async_commit}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x400}}]}, 0xfe, 0x471, &(0x7f0000001300)="$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")
r7 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r7, &(0x7f0000000100)='./file0\x00', 0x4)
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000080)='./bus\x00', 0x3000002, &(0x7f0000000d40)=ANY=[@ANYBLOB="71756965742c66696c655f756d61736b3d30303030303030303030303030303030303030303030352c71756965742c706172743d3078303030303030303030303030303030342c696f636861727365743d64656661756c742c63726561746f723d4131dbde2c747970653da982adb32c66696c655f756d61736b3d30303030303030303030303030303030303030303031302c7569643d", @ANYRESHEX=0x0, @ANYBLOB="2c64bf3227906d61736b3d30303030303030303030b03b30303030303030303030332c63fc89666f6465706167653d6b6f69389b94d2f857e16e0a0c7a10af9faa79a531e7f2dfcb3f831f921104488797a77c95725f3a9afb574e7d45"], 0x1, 0x2e9, &(0x7f00000001c0)="$eJzs3btuE0scx/HfrO3YyYlyNpejI9GAApGgiQhQIBpHyC09FQJiR4qwgkiCBDQERIl4APq8AlS8AA2IF4CKigdIt2hmx/fdzQXHG4fvR7I1np2Z/Y921zv/lRILwF/rdu373vWf9mWkggqSbkmBpIpUlPSf/q883dzZ2Gk26lkDFVwP+zKKe5qBNmubjaSutp/r4YX2U1HT3XU4GVEUrf7IOwjkzl39CQKp7K9Dt70y4rhOyq50Pu8YRq37AJt97euZZnIMBwBwCvj7f+BvEyVXZRQE0pK/7Z+p+/9+3gEM143mQFWU2aHr/u9Wd5Gxx/dft6mT77kUzm4PWlniYYIp9X2eUHxm9SwwzUFZpYslmFzfKGp57ZXqgV6r6nU1W3Dv9fjUbTkg2sWE3DRD+mgl3ZmKZ+NWlP1aIa1vNBtlW0iIf/5oe/xz5rP5au6ZUO9Vb6//ipGxh8kdqbDvSAUlG//V9BH/cb1sK/m0v1qtBj1NZt1Ozvk9eAfMspKckah1Rs12HhrstiOI4/yY3mtOvY8V4tmtpM/O9ZpP6hW2P6X0WujpVfBnwvLa42bmo5STZd6Zu2ZRv/RBta71f2DjW9JhrkzbxrX0Z0Y8n4nklkXXMhy4c3QulwvtCLzy8SaGo3irh7qpme3nLx4Vms3Gli08SCg8md4yvqb0Rkpsc4xCeUjj2IJ2OzWR9TKKDts9Gl4YZfXXXBnSyHHBfn+0a+zlk9TYXmXtmiB9wE8a3DQztFCHUagkRHhaCrUvUv+mvYGaMShEkZSyKe8vKIzCtmkddF8xmXNAGDW77jKRqbRW8n5V51Ik+xZmrNOzk8zeEVfaGVzvUnDOvU8lZ3CracOmZnBde7yWkjO6nOviZelSV6VRZjYS+jjPCFPTN93n+T8AAAAAAAAAAAAAAAAAAMC4GcVfGuQ9RwAAAAAAAAAAAAAAAAAAAAAAxt2xfv836X/Eu9//Dfn9X2CM/A4AAP//vFd4PQ==")
r8 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r8, &(0x7f0000000840)=""/155, 0x9b)
sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0xffffffffffffff18, &(0x7f0000000100)=[{&(0x7f0000000000)="2f0000001c0005c5ffffff000d000000020000000b000000ec0091c913000180f0ffffeb", 0x1dd}], 0x1}, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000500)=[{&(0x7f0000000000)='0', 0x1}, {&(0x7f00000002c0)='2', 0x1}], 0x2, 0x0, 0x0)
socket(0x22, 0x2, 0xfffffffb)
openat$iommufd(0xffffffffffffff9c, &(0x7f00000001c0), 0x44a400, 0x0)

1m10.040457783s ago: executing program 1 (id=3250):
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000040)={0x0, <r0=>0x0})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={r0, 0xffffffffffffffff, 0x0, 0x5, &(0x7f00000000c0)='+3\\\'\x00'}, 0x30)
getpid()
socketpair(0x15, 0x4, 0x2, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x12, r1, 0x4000)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0x11000000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
ioctl(r5, 0x8b1a, &(0x7f0000000040))
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
prlimit64(0x0, 0x7, &(0x7f0000000300), 0x0)
pipe2$9p(0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100))

1m7.79268046s ago: executing program 1 (id=3256):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0xfea7)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'sha384-avx2\x00'}, 0x24)
recvmmsg(0xffffffffffffffff, &(0x7f0000006b40)=[{{&(0x7f0000000140)=@tipc, 0x80, 0x0}, 0x480a}, {{&(0x7f00000002c0)=@x25, 0x80, 0x0}, 0xffffffff}], 0x2, 0x40000000, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r3, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r2, {0x2, 0x0, @rand_addr=0x64010100}, 0xb}}, 0x26)
sendmmsg$inet(r3, &(0x7f0000005f80)=[{{0x0, 0x0, &(0x7f0000005dc0)=[{&(0x7f00000010c0)="7d5107673289eeae3f806c5c62db497a0299399ab6101c3b", 0x1}], 0x1}}], 0x4000000000001ce, 0x8040)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
r4 = syz_io_uring_setup(0x697f, &(0x7f0000000480)={0x0, 0x0, 0x1, 0xfffffffd, 0x278}, &(0x7f0000000080)=<r5=>0x0, &(0x7f00000005c0))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r6 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
close(r6)
r7 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r7, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000040)=[<r8=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r6, 0xc06864a1, &(0x7f0000000200)={0x0, 0x0, r8, <r9=>0x0})
r10 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
close(r10)
r11 = syz_open_dev$dri(0x0, 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r11, 0xc04064a0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_GETCRTC(r11, 0xc06864a1, &(0x7f0000000300)={0x0, 0x0, 0x0, <r12=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r10, 0xc06864ce, &(0x7f0000000600)={r12})
ioctl$DRM_IOCTL_MODE_GETFB2(r7, 0xc06864ce, &(0x7f0000000080)={r9, 0x2, 0x0, 0x4, 0x2, [], [0x7, 0x3, 0x1, 0x1ff], [0x3ff, 0x3, 0x8, 0x3], [0xfffffffffffffff7, 0x5, 0x9, 0x2]})
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r6, 0x100000000)
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x44000006, 0x0}, 0x0, 0x8, &(0x7f0000000440))
r13 = memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x0)
fallocate(r13, 0x0, 0x400000000000000, 0x7)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x5, &(0x7f0000000000)=0xfffffffd, 0x0, 0x4)
io_uring_enter(r4, 0x56d, 0x0, 0x3, 0x0, 0x4c)

52.142655783s ago: executing program 32 (id=3256):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0xfea7)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'sha384-avx2\x00'}, 0x24)
recvmmsg(0xffffffffffffffff, &(0x7f0000006b40)=[{{&(0x7f0000000140)=@tipc, 0x80, 0x0}, 0x480a}, {{&(0x7f00000002c0)=@x25, 0x80, 0x0}, 0xffffffff}], 0x2, 0x40000000, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r3, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r2, {0x2, 0x0, @rand_addr=0x64010100}, 0xb}}, 0x26)
sendmmsg$inet(r3, &(0x7f0000005f80)=[{{0x0, 0x0, &(0x7f0000005dc0)=[{&(0x7f00000010c0)="7d5107673289eeae3f806c5c62db497a0299399ab6101c3b", 0x1}], 0x1}}], 0x4000000000001ce, 0x8040)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
r4 = syz_io_uring_setup(0x697f, &(0x7f0000000480)={0x0, 0x0, 0x1, 0xfffffffd, 0x278}, &(0x7f0000000080)=<r5=>0x0, &(0x7f00000005c0))
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r6 = creat(&(0x7f0000000180)='./file0\x00', 0x0)
close(r6)
r7 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r7, 0xc04064a0, &(0x7f0000000140)={0x0, &(0x7f0000000040)=[<r8=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r6, 0xc06864a1, &(0x7f0000000200)={0x0, 0x0, r8, <r9=>0x0})
r10 = creat(&(0x7f0000000280)='./file0\x00', 0x0)
close(r10)
r11 = syz_open_dev$dri(0x0, 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r11, 0xc04064a0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_GETCRTC(r11, 0xc06864a1, &(0x7f0000000300)={0x0, 0x0, 0x0, <r12=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r10, 0xc06864ce, &(0x7f0000000600)={r12})
ioctl$DRM_IOCTL_MODE_GETFB2(r7, 0xc06864ce, &(0x7f0000000080)={r9, 0x2, 0x0, 0x4, 0x2, [], [0x7, 0x3, 0x1, 0x1ff], [0x3ff, 0x3, 0x8, 0x3], [0xfffffffffffffff7, 0x5, 0x9, 0x2]})
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r6, 0x100000000)
rt_sigaction(0x19, &(0x7f0000000000)={0xfffffffffffffffc, 0x44000006, 0x0}, 0x0, 0x8, &(0x7f0000000440))
r13 = memfd_create(&(0x7f00000006c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\xc0LF;\xd6\x84\x195\x06\x00\x00\x00~\xf3S\x12\"p^\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1aZS\x01*\x1b\xfd\xbcMA\xdcq\xa1\x00\xb3\xf9\x91r\x7f\xdc\xf1\xc3G,\xdb\xccS\x15\x95b\x17\xab\xe4?\x96\x95\xa4kP\x99YO\xb8V\xd5p\x90X\xaaf', 0x0)
fallocate(r13, 0x0, 0x400000000000000, 0x7)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x5, &(0x7f0000000000)=0xfffffffd, 0x0, 0x4)
io_uring_enter(r4, 0x56d, 0x0, 0x3, 0x0, 0x4c)

12.52829645s ago: executing program 0 (id=3368):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000280)={0xf0f022})
openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x0, 0x0)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
connect$pppl2tp(r4, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x2, 0x0, 0x2, 0x0, {0xa, 0x0, 0x0, @loopback, 0x826f}}}, 0x32)
readv(r3, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

10.538913839s ago: executing program 0 (id=3373):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0x19, 0x20000000, 0x0)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000300000000"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r0, r2}, 0x10)
syz_emit_ethernet(0xfdef, 0x0, 0x0)
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='xfs\x00', 0x0, &(0x7f0000000140)='grpquota')
syz_emit_ethernet(0x4a, &(0x7f0000000280)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r5, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x20}}, 0x0)

10.125275945s ago: executing program 5 (id=3376):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000005b80)={{{@in6=@remote, @in6=@rand_addr=' \x01\x00', 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x1}, {0x0, 0x0, 0x40000, 0xfffffffffffffffc}}, {{@in6=@private2, 0x0, 0x6c}, 0x0, @in6=@dev}}, 0xe8)
syz_emit_ethernet(0x3e, &(0x7f0000000500)={@local, @random="f368656e065b", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x4, 0x0, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @dev}}}}}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bind$netlink(0xffffffffffffffff, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8822d55593a2179}, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
getpid()
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000280)={{{@in6=@empty, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1d}, {0x0, 0x4, 0x0, 0x0, 0x0, 0x9, 0x0, 0x40000000000000}, {0x0, 0x1000000000, 0x53e5, 0x9}, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1}, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x32}, 0x2, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1502, 0x4, 0x0, 0x0, 0x0, 0xfffffffd}}, 0xe8)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x34, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETFLOWTABLE(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000540)={0x2c, 0x17, 0xa, 0x3, 0x0, 0x0, {0x5, 0x0, 0x7}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x44000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bea100000000000007010000f8ffffffb702000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x11, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000100000000001c00090008000000", @ANYRES32=r3], 0x4c}}, 0x0)
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001d40)=[{&(0x7f0000000100)=ANY=[@ANYBLOB="2c00000010008100000000000080000000000000", @ANYRES32=0x0, @ANYBLOB="0a043cbf", @ANYRES32, @ANYBLOB="0a001b"], 0x2c}], 0x1, 0x0, 0x0, 0x1}, 0x0)

9.109263944s ago: executing program 2 (id=3378):
r0 = syz_open_procfs(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000240)={0xf, 0x1, 0x2, 0x0, 0xe})
connect$unix(r2, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$UFFDIO_CONTINUE(0xffffffffffffffff, 0xc020aa07, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b00000000001b000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000006ffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0x2)
ioctl$TIOCVHANGUP(r4, 0x5437, 0x2)
r5 = socket(0x40000000015, 0x5, 0x0)
bind$inet6(r5, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x24, 0x14, 0x800, 0x70bd2a, 0x25dfdbfc, {0x1}, [@typed={0x8, 0xc3, 0x0, 0x0, @ipv4=@loopback}, @typed={0x8, 0x51, 0x0, 0x0, @ipv4=@loopback}]}, 0x24}, 0x1, 0x0, 0x0, 0x4c00}, 0x800)
sendto$inet6(r5, 0x0, 0x0, 0x4000001, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000056, &(0x7f0000000540)={[{@usrjquota}, {@nodelalloc}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@noblock_validity}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}, {@journal_dev={'journal_dev', 0x3d, 0x7}}, {@nombcache}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@user_xattr}, {@bh}, {@dioread_lock}]}, 0x1, 0x54f, &(0x7f0000000b00)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbZdnamc8HbnvOvTc995t7v6fn5iQkgKE1kf0oRLwcEd8kEQfbto1GvnFibb/V+1dnsyWJRuPTv5JI8nWt/ZP89/688lJE/PZVxPHCxnZryysLpXI5Xczrk/XKpcna8sqJC5XSfDqfXpyemTn19sz0e+++M7BY3zj7z/ef3P7w1NdHV7/75e6hm0mcjgP5tvY4nsC19spETOTPyVicfmTHqQE0tpMk230A9GUkz/OxyPqAgzGSZz3w//dlRDSAIZXIfxhSrXFA695+QPfBz417H6zdAG2Mf3TttZHY07w32reaPHRnlN3vjg+g/ayNX/+8dTNbYnCvQwBs6dr1iDg5Orqx/0vy/q9/J3vY59E29H/w7NzOxj9vdhr/FNbHP9Fh/LO/Q+72Y+v8L9wdQDNdZeO/9zuOf9cnrcZH8toLzTHfWHL+QjnN+rYXI+JYjO3O6pvN55xavdPotq19/JctWfutsWB+HHdHdz/8mLlSvfQkMbe7dz3ilY7j32T9/Ccdzn/2fJztsY0j6a3Xum3bOv6nq/FTxOsdz/+DGa1k8/nJyeb1MNm6Kjb6+8aR37u1v93xZ+d/3+bxjyft87W1x2/jxz3/pt229Xv970o+a5Z35euulOr1xamIXcnHG9dPP3hsq97aP4v/2NHN+79O1//eiPi8x/hvHP751f7jf7qy+Oce6/w/fuHOR1/80K393s7/W83SsXxNL/1frwf4JM8dAAAAAAAA7DSFiDgQSaG4Xi4UisW193ccjn2FcrVWP36+unRxLpqflR2PsUJrpvtg2/shpvL3w7bq04/UZyLiUER8O7K3WS/OVstz2x08AAAAAAAAAAAAAAAAAAAA7BD7u3z+P/PHyHYfHfDU+cpvGF5b5v8gvukJ2JH8/4fhJf9heMl/GF7yH4aX/IfhJf9heMl/GF7yHwAAAAAAAAAAAAAAAAAAAAAAAAAAAAbq7Jkz2dJYvX91NqvPXV5eWqhePjGX1haKlaXZ4mx18VJxvlqdL6fF2Wplq79XrlYvTU3H0pXJelqrT9aWV85VqksX6+cuVErz6bl07JlEBQAAAAAAAAAAAAAAAAAAAM+X2vLKQqlcThcVFPoqjO6Mw1AYcGG7eyYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeOC/AAAA///ktDiZ")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x42, 0x20)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
fallocate(r8, 0x11, 0x7fffe, 0x7000000)
ioctl$FS_IOC_RESVSP(r7, 0x40305839, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1000})
pwritev2(0xffffffffffffffff, &(0x7f00000001c0)=[{0x0}], 0x1, 0xe7b, 0x0, 0x0)

8.584530982s ago: executing program 3 (id=3380):
r0 = socket$kcm(0x10, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat$mixer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = creat(0x0, 0x0)
chdir(0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
openat$drirender128(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet(0x2, 0x3, 0x4)
r4 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'team_slave_0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000018c0)=@newqdisc={0x148, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_red={{0x8}, {0x11c, 0x2, [@TCA_RED_STAB={0x104, 0x2, "8a3dd3734e73788b868dea7eff81e35dd2950f773e1032036c96bae821ac194fb5f4dfbb585a6486efceae6b65cd33ef0fa375f316445951cf2d0348521f5f18cca30cc2fbbfba892fef199d015245ea31ee7f46e778fde33ace52d4858ecc99159aff877dacf78566cc475aba11131445384f1cee3bc9e5471255e8d98b57df24d44bfba5c579ac818ca8079137cdb0a67d7c2c08a957a748f338d71ea06ba67572130911eaa000b3b518478032ae11587f000000000000d884ada018ede502695ac3b6e19fb376c034d89400dd534f85020c2e08a69f553712536edbc32adffb1940b1a2f2e1eed79ec07a1a4140ef5c41ba49d40739cd00"}, @TCA_RED_PARMS={0x14, 0x1, {0x9e, 0x2, 0x2, 0x16, 0xb, 0x6, 0x4}}]}}]}, 0x148}}, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
r6 = syz_clone3(&(0x7f0000000400)={0x4c010000, &(0x7f00000001c0), &(0x7f0000000200), &(0x7f0000000240), {0x23}, &(0x7f0000000300)=""/108, 0x6c, &(0x7f0000000380), &(0x7f00000003c0)=[0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0], 0x5, {r2}}, 0x58)
getpgid(r6)
r7 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r7, 0xc0045516, &(0x7f0000000b00)=0x6)
io_setup(0x7, &(0x7f0000000280)=<r8=>0x0)
io_submit(r8, 0x1, &(0x7f0000000080)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r7, 0x0}])
ioctl$SOUND_MIXER_WRITE_RECSRC(r1, 0xc0044dff, &(0x7f0000000080)=0x3ff)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r9 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000380), 0x145a83, 0x0)
read$FUSE(r9, &(0x7f0000000800)={0x2020}, 0x2020)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x2100, 0xb)
fsetxattr$system_posix_acl(r10, &(0x7f0000000000)='system.posix_acl_access\x00', &(0x7f00000000c0)={{}, {0x20, 0x1}, [], {0x4, 0x1}, [], {0x10, 0x2}}, 0x1001, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f848120000005e0c0000000000000e000a001400000002800000121f", 0x2e}], 0x1}, 0x0)

7.728887162s ago: executing program 2 (id=3381):
sendmsg$RDMA_NLDEV_CMD_PORT_GET(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x40c4}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x5e0, 0x65, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x9}, {0x0, 0xb}}, [@TCA_CHAIN={0x8}, @filter_kind_options=@f_bpf={{0x8}, {0x4b0, 0x2, [@TCA_BPF_NAME={0xc, 0x7, './file0\x00'}, @TCA_BPF_OPS={{0x6}, {0x4}}, @TCA_BPF_CLASSID={0x8, 0x3, {0xa, 0x1}}, @TCA_BPF_FLAGS={0x8}, @TCA_BPF_CLASSID={0x8, 0x3, {0x3, 0x1}}, @TCA_BPF_CLASSID={0x8, 0x3, {0xfff3, 0xfff3}}, @TCA_BPF_ACT={0x460, 0x1, [@m_skbedit={0x84, 0x2, 0x0, 0x0, {{0xc}, {0x1c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x6}, @TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0xfff2, 0xb}}, @TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0x6, 0x9}}]}, {0x3d, 0x6, "ff98f8a247352d5d640305fc1c38d43ee762861ec8e69c92fa4e8a79c3b236b9485f2c4519084c29a1231e7f35441ad8f0f3ce2c9c7e4226df"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_skbmod={0x138, 0x1d, 0x0, 0x0, {{0xb}, {0x34, 0x2, 0x0, 0x1, [@TCA_SKBMOD_DMAC={0xa}, @TCA_SKBMOD_PARMS={0x24, 0x2, {{0x5, 0xd, 0x8, 0x3, 0x7}, 0x7}}]}, {0xd9, 0x6, "802397e6dcb8c3cb6d5f04e555a772dc914b99729db1319db5cd1a0ca190a248935e25c5f06b562520857a2c35a8d4d10bab2599d7e03cb98581ce26a6d7fc8230ccf7f656d692b9da5f233e355ebda8004fd0cdc17bacde35bc98b59861f015ed82f2581fb41c14f735ceeda0bf4bbc5548b81ee1b3f4d0cdf8472d104de4e9f6a8abcc578b0a7a4fb82c497bcbd827e36d4de90a575e43dea40400ea8f2f9976fe973a2ff14d002a86b01df4a3a6c81193f162b549cd1eb38d2b02538ff2d3cf499e72571048079336b5ac19f7b87ca226e64dcc"}, {0xc}, {0xc, 0x8, {0x1, 0x2}}}}, @m_ife={0xa0, 0xb, 0x0, 0x0, {{0x8}, {0x1c, 0x2, 0x0, 0x1, [@TCA_IFE_TYPE={0x6, 0x5, 0xfffc}, @TCA_IFE_TYPE={0x6, 0x5, 0xfff7}, @TCA_IFE_TYPE={0x6, 0x5, 0xa}]}, {0x5d, 0x6, "cc4be6c6a104326842d18c8d6ccea2e56ba53f37611edeaa9d40ea81087b54a2a0a1e40636da2cfd865af8ccf46dedf09dc91261046745b56d8a7ca38d67dade250bfb20d91b1df74f78eda7e21a7590b1ae81ec074aafacf2"}, {0xc, 0x7, {0x1}}, {0xc}}}, @m_mpls={0x9c, 0x20, 0x0, 0x0, {{0x9}, {0x4c, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{0xce4a, 0x4886, 0x2000000e, 0x9, 0x7fff}, 0x4}}, @TCA_MPLS_PARMS={0x1c, 0x2, {{0x8, 0x7, 0x20000000, 0x3, 0xffffffff}, 0x2}}, @TCA_MPLS_PROTO={0x6, 0x4, 0x88a8}, @TCA_MPLS_BOS={0x5, 0x8, 0x1}]}, {0x25, 0x6, "c4af9d2908931087f9dc07ccfeb5f5d78b317229b0411c68ae30b2b8ff40058284"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_xt={0x74, 0x6, 0x0, 0x0, {{0x7}, {0x14, 0x2, 0x0, 0x1, [@TCA_IPT_INDEX={0x8, 0x3, 0x6}, @TCA_IPT_INDEX={0x8, 0x3, 0x9}]}, {0x39, 0x6, "ed2511adc95be372f22d545c2c4592ec6cd4ccd68f04461f25c35d6c4adf1ebd919e2c14afaef6238e3b06aa8eac5836901c121c49"}, {0xc}, {0xc, 0x8, {0x2, 0x1}}}}, @m_skbedit={0xf0, 0x11, 0x0, 0x0, {{0xc}, {0x44, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0x2, 0x4}}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x1, 0x9, 0x8, 0x3, 0x8}}, @TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x1}, @TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0xc, 0xffff}}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0xbb4}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0x9}]}, {0x81, 0x6, "0cfe66f7c763189e41cb95acc1a8e692d096a9de466d06b22077b0cd684faf273144014a8f712277ba4d0a4a2db9e08d1a106d0cdc5fe7aea0a3f33dca642cd14a3bd5e2f097fa846a0f357aae80f10eb6e7bc89e07eb87f00c8fa1159049390d9e5f0d6f874cfc78bb7b2643f9bd8ca8c5254ea69adde2549dc3a5e68"}, {0xc}, {0xc, 0x8, {0x1}}}}]}, @TCA_BPF_OPS={{0x6}, {0x4}}, @TCA_BPF_FLAGS={0x8}]}}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_flower={{0xb}, {0x48, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST_MASK={0x14, 0x22, [0x0, 0xff, 0xff, 0xffffff00]}, @TCA_FLOWER_KEY_ICMPV6_CODE={0x5}, @TCA_FLOWER_KEY_PORT_SRC_MAX={0x6, 0x58, 0x4e21}, @TCA_FLOWER_KEY_UDP_SRC_MASK={0x6}, @TCA_FLOWER_KEY_ICMPV6_TYPE={0x5}, @TCA_FLOWER_KEY_ICMPV6_TYPE_MASK={0x5}, @TCA_FLOWER_KEY_SCTP_DST_MASK={0x6}]}}, @filter_kind_options=@f_route={{0xa}, {0x94, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_FROM={0x8, 0x3, 0x59}, @TCA_ROUTE4_ACT={0x78, 0x6, [@m_nat={0x40, 0x0, 0x0, 0x0, {{0x8}, {0x4}, {0x16, 0x6, "3eaed48f5023f5c36bc9d8619f3e2af20800"}, {0xc}, {0xc}}}, @m_connmark={0x34, 0x0, 0x0, 0x0, {{0xd}, {0x4}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}]}]}}]}, 0x5e0}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

7.474913791s ago: executing program 5 (id=3383):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x1650c2, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000340)={[{@nogrpid}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@jqfmt_vfsv0}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
pwritev2(0xffffffffffffffff, &(0x7f0000000600)=[{&(0x7f0000000080)='W', 0x473b3cf43ac28f1f}], 0x1, 0x800be6b, 0x0, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(0xffffffffffffffff, 0x0, 0xd2, &(0x7f0000000000)={@loopback, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, "c686820513ee45399033a436e2323f58be128a8a9238a39110969b24e04c133a", 0x82bf, 0x0, 0x7, 0x255}, 0x3c)
r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
creat(&(0x7f0000000100)='./file0\x00', 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='freezer.parent_freezing\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9, 0x12, r2, 0x0)
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r3, &(0x7f0000003100)=[{{&(0x7f0000000240)={0xa, 0x0, 0x0, @remote}, 0x1c, 0x0}}, {{&(0x7f0000000440)={0xa, 0x0, 0x0, @mcast2, 0x4}, 0x1c, 0x0, 0x0, &(0x7f0000000840)=ANY=[], 0x28}}], 0x2, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
read$FUSE(r4, &(0x7f0000006380)={0x2020}, 0x2020)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r0, &(0x7f00000005c0)={&(0x7f00000004c0), 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x48, r1, 0x100, 0x70bd2a, 0x25dfdbfb, {}, [@L2TP_ATTR_L2SPEC_LEN={0x5, 0x6, 0x2}, @L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_FD={0x8, 0x17, @l2tp6=r0}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0x7}, @L2TP_ATTR_IFNAME={0x14, 0x8, 'bond_slave_1\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x4040}, 0x14)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=@setlink={0x40, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_PROTO_DOWN={0x5}, @IFLA_IFNAME={0x14, 0x3, 'macvlan1\x00'}, @IFLA_AF_SPEC={0x4}]}, 0x40}}, 0x0)
read$snddsp(r0, &(0x7f0000000740)=""/56, 0x38)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)

7.42241512s ago: executing program 2 (id=3384):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
kcmp(0x0, 0x0, 0x4, r0, r1)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000bdb000/0x3000)=nil, 0x3000, &(0x7f0000000040)='&\x00')
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)

7.255890547s ago: executing program 3 (id=3385):
socket$nl_xfrm(0x10, 0x3, 0x6)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
r3 = syz_open_dev$loop(&(0x7f0000000080), 0x3, 0x800)
ioctl$BLKTRACESETUP(r3, 0xc0481273, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r4}, 0x10)
openat$ptp0(0xffffffffffffff9c, 0x0, 0x1a1402, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
add_key$keyring(0x0, &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000280)='1K', 0x2}], 0x1}, 0x801)
ioctl$sock_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f00000000c0))
fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0)
openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r5, &(0x7f0000000040)='d', 0x1, 0x0, &(0x7f0000000400)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)

7.255286387s ago: executing program 0 (id=3386):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket(0x10, 0x3, 0x0)
sendto$inet6(r1, &(0x7f0000000100)="c10e000018001f06b9409b0dffff110d0207be040205060506100a044300040018000000fac8388827a685a168d9a44604094565360c648dcaaf6c26c291214549932fde4a460c89b6ec0cff3959547f509058ba86c902fc3a10004a320c0400160012000a00000000000000000000080756ede4ccbe5880", 0xec1, 0x0, 0x0, 0x9e5e111c47e3504f)

6.082422737s ago: executing program 4 (id=3387):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2000}, [@call={0x85, 0x0, 0x0, 0xf}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af0ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f00000000c0), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

5.589517951s ago: executing program 2 (id=3388):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20)
r1 = accept4(r0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), r1)
sendmmsg$alg(r1, &(0x7f0000001a80)=[{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000140)="4295658be8aabe9aa177fe006c77e79bb95dbcc24010e5189ca50716e6d513a1f3d1", 0x22}], 0x1, 0x0, 0x0, 0x20000001}], 0x1, 0x4)
sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x48, 0x0, 0x800, 0x70bd2b, 0x25dfdbfb, {}, [@BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @local}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x2}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x2}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x1}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}]}, 0x48}, 0x1, 0x0, 0x0, 0x44008044}, 0x800)

5.331134304s ago: executing program 0 (id=3389):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$kcm(0x10, 0x400000002, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000080)='net/igmp6\x00')
lseek(r4, 0x8, 0x0)
sendmsg$inet(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="1c0000005e007f029e3b470d649b72ab25399cd956c07dead6a93690", 0x1c}], 0x1}, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r5 = syz_open_dev$usbmon(&(0x7f00000001c0), 0x0, 0x0)
ioctl$MON_IOCG_STATS(r5, 0x80089203, &(0x7f0000000080))
r6 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000080)={'syz0\x00', {}, 0x27, [0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff3bc1, 0x4b1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x10000000], [0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa0000000, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffffc, 0x0, 0x5, 0x0, 0x2], [0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x1002, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffa, 0x0, 0x40, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, 0x45c)
preadv(0xffffffffffffffff, &(0x7f0000003780)=[{&(0x7f0000001300)=""/170, 0xaa}], 0x1, 0xffff, 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)

5.330460342s ago: executing program 4 (id=3390):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000080)={0x9, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @loopback}}}, 0x108)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f0000000400)={0x9, {{0x2, 0x0, @multicast2}}, 0x1}, 0x90)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$rds(0xffffffffffffffff, &(0x7f0000005c80)={&(0x7f0000000000)={0x2, 0x0, @empty}, 0x10, 0x0}, 0x4000000)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000180)={'vxcan1\x00', <r2=>0x0})
bind$can_j1939(r1, &(0x7f0000000540)={0x1d, r2, 0x1, {0x0, 0xff, 0x1}}, 0x18)
connect$can_j1939(r1, &(0x7f0000000280)={0x1d, r2}, 0x18)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETOBJ_RESET(r3, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000240)={&(0x7f0000000580)={0x4c, 0x15, 0xa, 0x401, 0x0, 0x0, {0x3, 0x0, 0x7}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x1}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x3}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000801}, 0x840)
sendmmsg(r1, &(0x7f00000038c0)=[{{0x0, 0x0, 0x0}}], 0x3ffffffffffff06, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r4)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r1, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TEST(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x14, 0xb, 0x6, 0x5}, 0x14}}, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)={@map, 0xffffffffffffffff, 0x1c, 0x2024, 0x0, @void, @void, @value}, 0x20)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a31000000002c000380080001"], 0x10c}}, 0x0)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x5}, 0x0, 0x0)

5.283997146s ago: executing program 5 (id=3391):
connect$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = io_uring_setup(0x2e34, &(0x7f0000000180))
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
setns(r2, 0x24020000)
creat(&(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r5 = dup(r4)
write$FUSE_BMAP(r5, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r5, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@cache_mmap}], [], 0x6b}})
chmod(&(0x7f0000000140)='./file0\x00', 0x0)
r6 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
write$UHID_INPUT(r6, &(0x7f0000000540)={0x8, {"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", 0x1000}}, 0x1006)
umount2(&(0x7f0000000540)='.\x00', 0x2)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000640)={'wlan0\x00'})
close_range(r0, 0xffffffffffffffff, 0x0)

5.014636406s ago: executing program 5 (id=3392):
r0 = syz_open_procfs(0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000240)={0xf, 0x1, 0x2, 0x0, 0xe})
connect$unix(r2, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$UFFDIO_CONTINUE(0xffffffffffffffff, 0xc020aa07, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b00000000001b000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000006ffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000040)=0x2)
ioctl$TIOCVHANGUP(r4, 0x5437, 0x2)
r5 = socket(0x40000000015, 0x5, 0x0)
bind$inet6(r5, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x24, 0x14, 0x800, 0x70bd2a, 0x25dfdbfc, {0x1}, [@typed={0x8, 0xc3, 0x0, 0x0, @ipv4=@loopback}, @typed={0x8, 0x51, 0x0, 0x0, @ipv4=@loopback}]}, 0x24}, 0x1, 0x0, 0x0, 0x4c00}, 0x800)
sendto$inet6(r5, 0x0, 0x0, 0x4000001, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000056, &(0x7f0000000540)={[{@usrjquota}, {@nodelalloc}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@noblock_validity}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}, {@journal_dev={'journal_dev', 0x3d, 0x7}}, {@nombcache}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@user_xattr}, {@bh}, {@dioread_lock}]}, 0x1, 0x54f, &(0x7f0000000b00)="$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")
r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x42, 0x20)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
fallocate(r8, 0x11, 0x7fffe, 0x7000000)
ioctl$FS_IOC_RESVSP(r7, 0x40305839, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1000})
pwritev2(0xffffffffffffffff, &(0x7f00000001c0)=[{0x0}], 0x1, 0xe7b, 0x0, 0x0)

4.990269311s ago: executing program 3 (id=3393):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
kcmp(0x0, 0x0, 0x4, r0, r1)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
socket$inet_smc(0x2b, 0x1, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000bdb000/0x3000)=nil, 0x3000, &(0x7f0000000040)='&\x00')
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)

2.273405986s ago: executing program 5 (id=3394):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000100)={0x400, 0x300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x0, 0x1}, {}, 0x0, 0x3f0, 0x0, 0xfca, 0x0, 0x0, 0x0, 0x3, 0x0, 0x5, 0x0, 0x8000000, 0x10, 0x0, 0x3})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000680), r1)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r3=>0x0})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={0x24, r2, 0x1, 0x8000001, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_MEASUREMENT_DURATION={0x6, 0xeb, 0x30}]}, 0x24}}, 0x4044000)
r5 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000200)={@initdev={0xfe, 0x88, '\x00', 0xfc, 0x0}, 0x800, 0x0, 0x1, 0x1}, 0x20)
setsockopt$inet6_int(r5, 0x29, 0x1000000000021, &(0x7f0000000180)=0x1, 0x23)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e23, 0x380000, @remote, 0xc39}, 0x1c)
setitimer(0x0, &(0x7f0000000440)={{0x77359400}, {0x77359400}}, &(0x7f00000002c0))
r6 = socket$nl_sock_diag(0x10, 0x3, 0x4)
accept4(r6, &(0x7f0000000380)=@ax25={{}, [@null, @rose, @default, @remote, @rose, @rose, @bcast, @rose]}, &(0x7f0000000400)=0x80, 0x80800)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x75}, @printk={@lx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xffffffff}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r8 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GET_LEASE(r8, 0xc01064c8, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)})
ioctl$DRM_IOCTL_MODE_SETGAMMA(r8, 0xc02064a5, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x0, 0x0})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r7}, 0x10)
syz_clone(0xa49a4080, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)
r9 = syz_io_uring_setup(0x95, &(0x7f0000000140), &(0x7f0000000240)=<r10=>0x0, &(0x7f0000000100)=<r11=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r10, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r10, r11, &(0x7f0000000280)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f00000001c0)={0x129102, 0x0, 0x9}, &(0x7f0000000500)='./file2\x00', 0x18})
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000500), 0x101, 0x0)
io_uring_enter(r9, 0x47f6, 0xbacc, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000240), r4)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000300)={@local}, &(0x7f00000004c0)=0x37)

2.272661388s ago: executing program 2 (id=3395):
sendmsg$RDMA_NLDEV_CMD_PORT_GET(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x40c4}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x5e0, 0x65, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x9}, {0x0, 0xb}}, [@TCA_CHAIN={0x8}, @filter_kind_options=@f_bpf={{0x8}, {0x4b0, 0x2, [@TCA_BPF_NAME={0xc, 0x7, './file0\x00'}, @TCA_BPF_OPS={{0x6}, {0x4}}, @TCA_BPF_CLASSID={0x8, 0x3, {0xa, 0x1}}, @TCA_BPF_FLAGS={0x8}, @TCA_BPF_CLASSID={0x8, 0x3, {0x3, 0x1}}, @TCA_BPF_CLASSID={0x8, 0x3, {0xfff3, 0xfff3}}, @TCA_BPF_ACT={0x460, 0x1, [@m_skbedit={0x84, 0x2, 0x0, 0x0, {{0xc}, {0x1c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x6}, @TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0xfff2, 0xb}}, @TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0x6, 0x9}}]}, {0x3d, 0x6, "ff98f8a247352d5d640305fc1c38d43ee762861ec8e69c92fa4e8a79c3b236b9485f2c4519084c29a1231e7f35441ad8f0f3ce2c9c7e4226df"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_skbmod={0x138, 0x1d, 0x0, 0x0, {{0xb}, {0x34, 0x2, 0x0, 0x1, [@TCA_SKBMOD_DMAC={0xa}, @TCA_SKBMOD_PARMS={0x24, 0x2, {{0x5, 0xd, 0x8, 0x3, 0x7}, 0x7}}]}, {0xd9, 0x6, "802397e6dcb8c3cb6d5f04e555a772dc914b99729db1319db5cd1a0ca190a248935e25c5f06b562520857a2c35a8d4d10bab2599d7e03cb98581ce26a6d7fc8230ccf7f656d692b9da5f233e355ebda8004fd0cdc17bacde35bc98b59861f015ed82f2581fb41c14f735ceeda0bf4bbc5548b81ee1b3f4d0cdf8472d104de4e9f6a8abcc578b0a7a4fb82c497bcbd827e36d4de90a575e43dea40400ea8f2f9976fe973a2ff14d002a86b01df4a3a6c81193f162b549cd1eb38d2b02538ff2d3cf499e72571048079336b5ac19f7b87ca226e64dcc"}, {0xc}, {0xc, 0x8, {0x1, 0x2}}}}, @m_ife={0xa0, 0xb, 0x0, 0x0, {{0x8}, {0x1c, 0x2, 0x0, 0x1, [@TCA_IFE_TYPE={0x6, 0x5, 0xfffc}, @TCA_IFE_TYPE={0x6, 0x5, 0xfff7}, @TCA_IFE_TYPE={0x6, 0x5, 0xa}]}, {0x5d, 0x6, "cc4be6c6a104326842d18c8d6ccea2e56ba53f37611edeaa9d40ea81087b54a2a0a1e40636da2cfd865af8ccf46dedf09dc91261046745b56d8a7ca38d67dade250bfb20d91b1df74f78eda7e21a7590b1ae81ec074aafacf2"}, {0xc, 0x7, {0x1}}, {0xc}}}, @m_mpls={0x9c, 0x20, 0x0, 0x0, {{0x9}, {0x4c, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{0xce4a, 0x4886, 0x2000000e, 0x9, 0x7fff}, 0x4}}, @TCA_MPLS_PARMS={0x1c, 0x2, {{0x8, 0x7, 0x20000000, 0x3, 0xffffffff}, 0x2}}, @TCA_MPLS_PROTO={0x6, 0x4, 0x88a8}, @TCA_MPLS_BOS={0x5, 0x8, 0x1}]}, {0x25, 0x6, "c4af9d2908931087f9dc07ccfeb5f5d78b317229b0411c68ae30b2b8ff40058284"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_xt={0x74, 0x6, 0x0, 0x0, {{0x7}, {0x14, 0x2, 0x0, 0x1, [@TCA_IPT_INDEX={0x8, 0x3, 0x6}, @TCA_IPT_INDEX={0x8, 0x3, 0x9}]}, {0x39, 0x6, "ed2511adc95be372f22d545c2c4592ec6cd4ccd68f04461f25c35d6c4adf1ebd919e2c14afaef6238e3b06aa8eac5836901c121c49"}, {0xc}, {0xc, 0x8, {0x2, 0x1}}}}, @m_skbedit={0xf0, 0x11, 0x0, 0x0, {{0xc}, {0x44, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0x2, 0x4}}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x1, 0x9, 0x8, 0x3, 0x8}}, @TCA_SKBEDIT_PTYPE={0x6, 0x7, 0x1}, @TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0xc, 0xffff}}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0xbb4}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0x9}]}, {0x81, 0x6, "0cfe66f7c763189e41cb95acc1a8e692d096a9de466d06b22077b0cd684faf273144014a8f712277ba4d0a4a2db9e08d1a106d0cdc5fe7aea0a3f33dca642cd14a3bd5e2f097fa846a0f357aae80f10eb6e7bc89e07eb87f00c8fa1159049390d9e5f0d6f874cfc78bb7b2643f9bd8ca8c5254ea69adde2549dc3a5e68"}, {0xc}, {0xc, 0x8, {0x1}}}}]}, @TCA_BPF_OPS={{0x6}, {0x4}}, @TCA_BPF_FLAGS={0x8}]}}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_flower={{0xb}, {0x48, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST_MASK={0x14, 0x22, [0x0, 0xff, 0xff, 0xffffff00]}, @TCA_FLOWER_KEY_ICMPV6_CODE={0x5}, @TCA_FLOWER_KEY_PORT_SRC_MAX={0x6, 0x58, 0x4e21}, @TCA_FLOWER_KEY_UDP_SRC_MASK={0x6}, @TCA_FLOWER_KEY_ICMPV6_TYPE={0x5}, @TCA_FLOWER_KEY_ICMPV6_TYPE_MASK={0x5}, @TCA_FLOWER_KEY_SCTP_DST_MASK={0x6}]}}, @filter_kind_options=@f_route={{0xa}, {0x94, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_FROM={0x8, 0x3, 0x59}, @TCA_ROUTE4_ACT={0x78, 0x6, [@m_nat={0x40, 0x0, 0x0, 0x0, {{0x8}, {0x4}, {0x16, 0x6, "3eaed48f5023f5c36bc9d8619f3e2af20800"}, {0xc}, {0xc}}}, @m_connmark={0x34, 0x0, 0x0, 0x0, {{0xd}, {0x4}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x1}}}}]}]}}]}, 0x5e0}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

2.236946665s ago: executing program 4 (id=3396):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000d40)={0x64, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x12, 0x3, 'bitmap:ip,mac\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0x18, 0x7, 0x0, 0x1, [@IPSET_ATTR_CIDR={0x5, 0x3, 0x1f}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x64}}, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="400000000906010200000000000a0000000000000900020073797a31000000000500010007000000180007800c00018008000140"], 0x40}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084)

2.074193841s ago: executing program 0 (id=3397):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
syz_genetlink_get_family_id$nfc(&(0x7f0000000100), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$kcm(0x10, 0x400000002, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000080)='net/igmp6\x00')
lseek(r4, 0x8, 0x0)
sendmsg$inet(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000140)="1c0000005e007f029e3b470d649b72ab25399cd956c07dead6a93690", 0x1c}], 0x1}, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
ioctl$MON_IOCG_STATS(0xffffffffffffffff, 0x80089203, &(0x7f0000000080))
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000080)={'syz0\x00', {}, 0x27, [0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff3bc1, 0x4b1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x10000000], [0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa0000000, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffffc, 0x0, 0x5, 0x0, 0x2], [0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x1002, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffa, 0x0, 0x40, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9]}, 0x45c)
ioctl$UI_DEV_CREATE(0xffffffffffffffff, 0x5501)
preadv(0xffffffffffffffff, &(0x7f0000003780)=[{&(0x7f0000001300)=""/170, 0xaa}], 0x1, 0xffff, 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)

2.011199468s ago: executing program 3 (id=3398):
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x2008082, &(0x7f0000000800)={[{@noload}]}, 0x1, 0x549, &(0x7f0000001800)="$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")
r1 = socket$inet6_sctp(0xa, 0x801, 0x84)
syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x2)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, 0xffffffffffffffff, 0x0)
shutdown(r1, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x50)
openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x121c02, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
r3 = socket(0x1, 0x803, 0x0)
pipe(&(0x7f0000000100))
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="840000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="a5fdad88000000005c00128009000100766c616e000000004c0002800600010000000000400003800c00010000000000040000000c000100000800000b0000000c00010000000000000000000c00010001000000070000000c0001000c0100000000000008000500", @ANYRES32=r4], 0x84}}, 0x0)

1.832049688s ago: executing program 4 (id=3399):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000d40)={0x64, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x12, 0x3, 'bitmap:ip,mac\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0x18, 0x7, 0x0, 0x1, [@IPSET_ATTR_CIDR={0x5, 0x3, 0x1f}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x64}}, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="400000000906010200000000000a0000000000000900020073797a31000000000500010007000000180007800c"], 0x40}, 0x1, 0x0, 0x0, 0x10000047}, 0x4000084)

1.652314206s ago: executing program 4 (id=3400):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x402, &(0x7f00000000c0)={[{@stripe={'stripe', 0x3d, 0x6}}, {@nodelalloc}, {@jqfmt_vfsold}, {@noblock_validity}, {@noauto_da_alloc}, {@delalloc}, {@resuid}, {@nodiscard}, {@jqfmt_vfsv1}]}, 0xfc, 0x550, &(0x7f0000000b00)="$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")
r0 = io_uring_setup(0x5f84, 0x0)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(r0, 0x18, &(0x7f00000001c0)={0xb, 0xffffffffffffffff, 0x0, {0xc, 0xf000000000}, 0x8}, 0x1)
r1 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r3, &(0x7f0000004200)='t', 0x1)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7ffff000)
r4 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$sock_int(r4, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4)
r5 = socket$inet6(0xa, 0x80002, 0x0)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c)
fallocate(r1, 0x0, 0xb7d4, 0x1001f0)

1.159873571s ago: executing program 3 (id=3401):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000280)={'wlan0\x00', @multicast})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)

920.071566ms ago: executing program 3 (id=3402):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x1650c2, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000340)={[{@nogrpid}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@jqfmt_vfsv0}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
pwritev2(0xffffffffffffffff, &(0x7f0000000600)=[{&(0x7f0000000080)='W', 0x473b3cf43ac28f1f}], 0x1, 0x800be6b, 0x0, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(0xffffffffffffffff, 0x0, 0xd2, &(0x7f0000000000)={@loopback, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, "c686820513ee45399033a436e2323f58be128a8a9238a39110969b24e04c133a", 0x82bf, 0x0, 0x7, 0x255}, 0x3c)
r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000300)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
creat(&(0x7f0000000100)='./file0\x00', 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='freezer.parent_freezing\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9, 0x12, r2, 0x0)
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r3, &(0x7f0000003100)=[{{&(0x7f0000000240)={0xa, 0x0, 0x0, @remote}, 0x1c, 0x0}}, {{&(0x7f0000000440)={0xa, 0x0, 0x0, @mcast2, 0x4}, 0x1c, 0x0, 0x0, &(0x7f0000000840)=ANY=[], 0x28}}], 0x2, 0x0)
r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
read$FUSE(r4, &(0x7f0000006380)={0x2020}, 0x2020)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r0, &(0x7f00000005c0)={&(0x7f00000004c0), 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x48, r1, 0x100, 0x70bd2a, 0x25dfdbfb, {}, [@L2TP_ATTR_L2SPEC_LEN={0x5, 0x6, 0x2}, @L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_FD={0x8, 0x17, @l2tp6=r0}, @L2TP_ATTR_DATA_SEQ={0x5, 0x4, 0x7}, @L2TP_ATTR_IFNAME={0x14, 0x8, 'bond_slave_1\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x4040}, 0x14)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=@setlink={0x40, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_PROTO_DOWN={0x5}, @IFLA_IFNAME={0x14, 0x3, 'macvlan1\x00'}, @IFLA_AF_SPEC={0x4}]}, 0x40}}, 0x0)
read$snddsp(r0, &(0x7f0000000740)=""/56, 0x38)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)

919.468419ms ago: executing program 5 (id=3403):
creat(0x0, 0xdc)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$qrtr(0x2a, 0x2, 0x0)
mount_setattr(0xffffffffffffff9c, 0x0, 0x8900, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x5, 0x1000087}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port0\x00', 0x65, 0x11cfa, 0x2d00, 0x8000008, 0x3, 0x4, 0x1, 0x0, 0x7cce8c743ee810df})
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(0x0, 0x2, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r0, 0x5)
setsockopt(r1, 0x800000000010d, 0x8000000011, &(0x7f00001c9fff), 0xc5)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e20, @local}, 0x10)
sendmmsg(r1, &(0x7f0000002980), 0x400000000000239, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

848.021382ms ago: executing program 0 (id=3404):
socket$nl_xfrm(0x10, 0x3, 0x6)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
r3 = syz_open_dev$loop(&(0x7f0000000080), 0x3, 0x800)
ioctl$BLKTRACESETUP(r3, 0xc0481273, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r4}, 0x10)
openat$ptp0(0xffffffffffffff9c, 0x0, 0x1a1402, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
add_key$keyring(0x0, &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000280)='1K', 0x2}], 0x1}, 0x801)
ioctl$sock_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f00000000c0))
fsconfig$FSCONFIG_CMD_RECONFIGURE(0xffffffffffffffff, 0x7, 0x0, 0x0, 0x0)
openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000000), 0x500, 0x0)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r5, &(0x7f0000000040)='d', 0x1, 0x0, &(0x7f0000000400)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)

720.659999ms ago: executing program 2 (id=3405):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
writev(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000280)={0xf0f022})
openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0d05605, &(0x7f00000000c0)={0x2, @pix={0xfeedcafe, 0x8, 0x31435641, 0x9, 0x5, 0x98, 0x3, 0x6, 0x0, 0x6, 0x2, 0x74c3924ecb75b6cd}})
readv(r3, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

0s ago: executing program 4 (id=3406):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(camellia)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd301e5a47b2f3caa73dcd2a6a370554375a", 0x20)
r1 = accept4(r0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), r1)
sendmmsg$alg(r1, &(0x7f0000001a80)=[{0x0, 0x0, &(0x7f0000000880)=[{0x0}, {&(0x7f0000000240)="b9109f6d93bcc95ba65afb9226129fada2adbe07d10862703bd68fc8565d334a9b515fc7c4f4745d1331b9c30fc670dafaa9234af99b97caee89c55b7cfc05fcf7ad50a225c472ae653ba5661841ce9d46ca4494b80bd87811a12c6e60761013ed75758cabd60a0bc80fee8b8c060634e1da23c056e7f2e48c82b237966ee497e986739d274105b9", 0x88}, {&(0x7f00000003c0)="7f197dd2a84e184aa3136724905dbeb3b15bde54e5270aa31113af4aefca086c8a0a7654d23ac15672edb06147069441302c4cb400c1ec29b7d97d113034830c0908db3bd3f0bcba", 0x48}, {&(0x7f0000000440)="1c2cf221c7159dfc427bed5f65262fae167abaddf3006b054d99d52e349d86398f128aa94024b794f11b59857f02854260", 0x31}], 0x4, 0x0, 0x0, 0x20000001}], 0x1, 0x4)

kernel console output (not intermixed with test programs):

led to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  405.298142][T11940] BTRFS error (device loop3): open_ctree failed
[  405.365980][T11985] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  405.463658][ T9531] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  405.646584][ T9531] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  405.665881][ T9531] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  406.066115][T11999] netlink: 1284 bytes leftover after parsing attributes in process `syz.1.2155'.
[  406.075770][T11999] openvswitch: netlink: Missing key (keys=40, expected=80)
[  406.465698][ T9531] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  406.475779][ T9531] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  406.489031][ T9531] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  406.503792][ T9531] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  406.527909][   T29] audit: type=1800 audit(1735967881.149:106): pid=11996 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2155" name="file1" dev="loop1" ino=15 res=0 errno=0
[  406.534535][ T9531] usb 5-1: config 0 descriptor??
[  406.802005][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  407.066118][ T9531] plantronics 0003:047F:FFFF.0006: ignoring exceeding usage max
[  407.077567][ T9531] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[  407.161076][ T9531] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  408.060513][T12016] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2164'.
[  408.077944][T12014] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2163'.
[  408.093718][T12014] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2163'.
[  408.125558][T12022] loop1: detected capacity change from 0 to 128
[  408.133832][T12014] netlink: 38 bytes leftover after parsing attributes in process `syz.3.2163'.
[  408.183810][T12021] lo speed is unknown, defaulting to 1000
[  408.190721][T12021] lo speed is unknown, defaulting to 1000
[  408.622040][    T8] usb 5-1: USB disconnect, device number 13
[  408.856033][T12041] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2167'.
[  409.716801][T12044] loop3: detected capacity change from 0 to 1024
[  409.750644][T12040] loop2: detected capacity change from 0 to 32768
[  409.944452][T12030] loop5: detected capacity change from 0 to 32768
[  409.975130][T12030] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.2170 (12030)
[  410.131089][T12030] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  410.143582][T12030] BTRFS info (device loop5): using sha256 (sha256-ni) checksum algorithm
[  410.152085][T12030] BTRFS info (device loop5): using free-space-tree
[  411.073729][T12044] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  411.377834][T12040] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  411.409415][T12030] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  411.410097][T12030] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  411.431044][T12030] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  411.481068][T12040] XFS (loop2): Ending clean mount
[  411.535486][T12030] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  411.535747][T12030] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  411.547156][T12030] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  411.551297][T12040] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  411.557594][T12030] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  411.557870][T12030] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  411.558117][T12030] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  411.558363][T12030] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  411.558639][T12030] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  411.805101][T12030] BTRFS error (device loop5): open_ctree failed
[  411.958648][T12097] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2178'.
[  412.207206][   T29] audit: type=1800 audit(1735967886.829:107): pid=12100 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2172" name="file1" dev="loop3" ino=15 res=0 errno=0
[  412.334255][T12102] lo speed is unknown, defaulting to 1000
[  412.353143][T12102] lo speed is unknown, defaulting to 1000
[  413.590665][T12119] loop5: detected capacity change from 0 to 32768
[  414.716071][T12119] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  414.996891][ T5832] (syz-executor,5832,1):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 72
[  415.573512][ T5832] ocfs2: Unmounting device (7,5) on (node local)
[  416.292846][ T5843] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  416.667164][T12150] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2196'.
[  416.777593][ T9528] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  417.369730][T12158] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2198'.
[  417.649899][T12168] lo speed is unknown, defaulting to 1000
[  417.657129][T12168] lo speed is unknown, defaulting to 1000
[  417.779640][ T9528] usb 3-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad
[  417.788838][ T9528] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  417.803656][ T9528] usb 3-1: config 0 descriptor??
[  417.811997][ T9528] gspca_main: spca508-2.14.0 probing 8086:0110
[  418.021037][T12177] lo speed is unknown, defaulting to 1000
[  418.032893][T12177] lo speed is unknown, defaulting to 1000
[  418.053049][ T9528] gspca_spca508: reg_read err -32
[  418.075390][ T9528] gspca_spca508: reg_read err -32
[  418.083362][ T9528] gspca_spca508: reg_read err -32
[  418.090529][ T9528] gspca_spca508: reg_read err -71
[  418.099290][ T9528] gspca_spca508: reg_read err -71
[  418.111803][T12184] loop4: detected capacity change from 0 to 256
[  418.118818][ T9528] gspca_spca508: reg write: error -71
[  418.125576][ T9528] spca508 3-1:0.0: probe with driver spca508 failed with error -71
[  418.140368][ T9528] usb 3-1: USB disconnect, device number 8
[  418.300121][T12190] loop3: detected capacity change from 0 to 128
[  418.369995][T12190] EXT4-fs (loop3): Test dummy encryption mode enabled
[  418.437851][T12190] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  418.453307][T12190] ext4 filesystem being mounted at /395/w��5�T��)�`)Y�F�nA��@T<�3�ڂ$���r�cnH�<�p�r��>�wC�" ��-������8 supports timestamps until 2038-01-19 (0x7fffffff)
[  418.502047][T12190] EXT4-fs error (device loop3): ext4_validate_block_bitmap:423: comm syz.3.2208: bg 0: bad block bitmap checksum
[  418.685631][T12197] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  418.716535][ T5843] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  418.765506][T12204] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2213'.
[  419.005087][T12184] loop4: detected capacity change from 0 to 40427
[  419.059744][T12206] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2214'.
[  420.665386][T12228] lo speed is unknown, defaulting to 1000
[  420.672228][T12228] lo speed is unknown, defaulting to 1000
[  420.873350][T12224] loop0: detected capacity change from 0 to 512
[  420.942052][T12224] EXT4-fs: Ignoring removed mblk_io_submit option
[  420.967141][   T29] audit: type=1800 audit(1735967895.579:108): pid=12239 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2222" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  421.016958][T12241] loop5: detected capacity change from 0 to 1024
[  421.033873][T12224] EXT4-fs: Mount option(s) incompatible with ext3
[  421.087650][T12224] loop0: detected capacity change from 0 to 64
[  421.126810][T12224] hfs: Unknown parameter 'd�2'�mask'
[  421.294136][T12248] loop1: detected capacity change from 0 to 128
[  421.295116][T12241] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  421.358478][T12248] EXT4-fs (loop1): Test dummy encryption mode enabled
[  421.468869][T12248] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  421.552240][T12248] ext4 filesystem being mounted at /378/w��5�T��)�`)Y�F�nA��@T<�3�ڂ$���r�cnH�<�p�r��>�wC�" ��-������8 supports timestamps until 2038-01-19 (0x7fffffff)
[  421.648382][T12248] EXT4-fs error (device loop1): ext4_validate_block_bitmap:423: comm syz.1.2226: bg 0: bad block bitmap checksum
[  422.074345][   T29] audit: type=1800 audit(1735967896.669:109): pid=12253 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2225" name="file1" dev="loop5" ino=15 res=0 errno=0
[  422.094963][    C1] vkms_vblank_simulate: vblank timer overrun
[  422.118983][T12264] loop2: detected capacity change from 0 to 1024
[  422.126397][T12264] EXT4-fs: Ignoring removed bh option
[  422.163486][T12254] siw: device registration error -23
[  422.393911][T12265] bridge0: port 2(bridge_slave_1) entered blocking state
[  422.403255][T12265] bridge0: port 2(bridge_slave_1) entered forwarding state
[  422.411152][T12265] bridge0: port 1(bridge_slave_0) entered blocking state
[  422.418426][T12265] bridge0: port 1(bridge_slave_0) entered forwarding state
[  422.469341][T12265] 8021q: adding VLAN 0 to HW filter on device bond0
[  422.742206][T12264] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  422.770664][T12265] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  422.800554][T12253] netlink: 1284 bytes leftover after parsing attributes in process `syz.5.2225'.
[  422.835796][ T9528] lo speed is unknown, defaulting to 1000
[  422.837283][ T5829] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  422.852585][T12253] openvswitch: netlink: Missing key (keys=40, expected=80)
[  423.046496][ T5842] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  423.446321][T12277] loop0: detected capacity change from 0 to 1024
[  423.484181][T12282] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2232'.
[  423.664503][T12283] loop1: detected capacity change from 0 to 1024
[  423.676330][T12283] EXT4-fs: Ignoring removed bh option
[  424.018780][T12283] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  424.462441][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  424.513232][T12277] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  424.832195][T12293] lo speed is unknown, defaulting to 1000
[  424.839211][T12293] lo speed is unknown, defaulting to 1000
[  424.918128][T12290] netlink: 1284 bytes leftover after parsing attributes in process `syz.0.2234'.
[  424.927457][T12290] openvswitch: netlink: Missing key (keys=40, expected=80)
[  424.953973][   T29] audit: type=1800 audit(1735967899.539:110): pid=12290 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2234" name="file1" dev="loop0" ino=15 res=0 errno=0
[  426.356053][ T5832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  426.423931][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  427.122265][T12320] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2243'.
[  427.972085][T12327] siw: device registration error -23
[  428.330201][T12337] qrtr: Invalid version 49
[  429.058427][T12346] loop3: detected capacity change from 0 to 1024
[  429.370923][T12352] loop2: detected capacity change from 0 to 1024
[  429.382784][T12352] EXT4-fs: Ignoring removed bh option
[  429.997099][T12346] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  430.275522][T12352] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  430.815979][T12368] netlink: 1284 bytes leftover after parsing attributes in process `syz.3.2254'.
[  430.826081][T12368] openvswitch: netlink: Missing key (keys=40, expected=80)
[  431.208764][   T29] audit: type=1800 audit(1735967905.819:111): pid=12361 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2254" name="file1" dev="loop3" ino=15 res=0 errno=0
[  431.525205][ T5842] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  431.541603][ T5843] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  431.604825][T12358] lo speed is unknown, defaulting to 1000
[  431.630564][T12364] loop4: detected capacity change from 0 to 4096
[  431.639860][T12358] lo speed is unknown, defaulting to 1000
[  431.680215][T12364] ntfs3: Unknown parameter '�'ۋ���a������'
[  432.268931][T12360] loop5: detected capacity change from 0 to 512
[  432.284786][T12360] EXT4-fs: Ignoring removed mblk_io_submit option
[  432.371440][T12360] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  432.496106][T12381] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2262'.
[  432.520244][T12360] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  432.528544][T12360] System zones: 1-12
[  432.590414][T12360] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.2257: corrupted in-inode xattr: e_value size too large
[  432.846622][T12390] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2264'.
[  432.860633][T12360] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.2257: couldn't read orphan inode 15 (err -117)
[  433.531587][T12360] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  433.689327][T12396] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2268'.
[  433.820307][T12399] lo speed is unknown, defaulting to 1000
[  433.856242][ T5832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  433.867251][T12399] lo speed is unknown, defaulting to 1000
[  434.978716][T12414] netlink: 'syz.2.2272': attribute type 10 has an invalid length.
[  435.303351][T12421] lo speed is unknown, defaulting to 1000
[  435.310673][T12421] lo speed is unknown, defaulting to 1000
[  436.080180][T12423] loop4: detected capacity change from 0 to 1024
[  436.087607][T12423] EXT4-fs: Ignoring removed bh option
[  436.513937][T12423] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  436.827312][ T5833] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.949844][T12431] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2279'.
[  437.779535][T12446] loop5: detected capacity change from 0 to 4096
[  437.819191][T12453] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2284'.
[  437.853147][T12446] ntfs3: Unknown parameter '�'ۋ���a������'
[  438.016862][T12443] lo speed is unknown, defaulting to 1000
[  438.319348][T12443] lo speed is unknown, defaulting to 1000
[  439.607284][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  440.178746][T12474] netlink: 'syz.2.2289': attribute type 12 has an invalid length.
[  440.946144][T12495] loop2: detected capacity change from 0 to 1024
[  440.953396][T12495] EXT4-fs: Ignoring removed bh option
[  441.961509][T12482] lo speed is unknown, defaulting to 1000
[  441.966402][T12498] loop4: detected capacity change from 0 to 32768
[  442.040952][T12498] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  442.073163][T12490] lo speed is unknown, defaulting to 1000
[  442.089051][T12482] lo speed is unknown, defaulting to 1000
[  442.105565][T12495] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  442.213213][T12490] lo speed is unknown, defaulting to 1000
[  442.348889][ T5833] (syz-executor,5833,0):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 72
[  442.415147][ T5842] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  442.427871][ T5833] ocfs2: Unmounting device (7,4) on (node local)
[  442.448460][T12510] loop5: detected capacity change from 0 to 512
[  442.476542][T12510] EXT4-fs: Ignoring removed mblk_io_submit option
[  442.523107][T12510] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  442.638464][T12510] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  442.700085][T12510] System zones: 1-12
[  442.797580][T12513] lo speed is unknown, defaulting to 1000
[  442.805282][T12513] lo speed is unknown, defaulting to 1000
[  442.971523][T12510] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.2301: corrupted in-inode xattr: e_value size too large
[  442.999564][T12510] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.2301: couldn't read orphan inode 15 (err -117)
[  443.051274][T12510] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  443.226979][T12531] binder: Binderfs stats mode cannot be changed during a remount
[  443.405251][T12536] netlink: 'syz.0.2306': attribute type 12 has an invalid length.
[  443.506065][ T5832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  445.100804][T12557] loop4: detected capacity change from 0 to 32768
[  445.187462][T12557] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  445.320422][T12566] lo speed is unknown, defaulting to 1000
[  445.416768][T12566] lo speed is unknown, defaulting to 1000
[  445.531162][T12575] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2322'.
[  445.577992][T12574] lo speed is unknown, defaulting to 1000
[  445.630997][T12574] lo speed is unknown, defaulting to 1000
[  445.638034][ T5833] (syz-executor,5833,0):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 72
[  445.708939][ T5833] ocfs2: Unmounting device (7,4) on (node local)
[  446.062181][T12578] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2321'.
[  447.060239][T12560] loop3: detected capacity change from 0 to 32768
[  447.093992][T12584] lo speed is unknown, defaulting to 1000
[  447.100912][T12584] lo speed is unknown, defaulting to 1000
[  447.331380][T12605] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2330'.
[  448.342330][T12627] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2337'.
[  448.474632][T12622] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2336'.
[  448.510862][T12622] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2336'.
[  448.573879][T12622] netlink: 38 bytes leftover after parsing attributes in process `syz.3.2336'.
[  448.780237][T12638] syzkaller1: entered promiscuous mode
[  448.786011][T12638] syzkaller1: entered allmulticast mode
[  448.805229][T12638] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2339'.
[  449.571555][T12640] loop4: detected capacity change from 0 to 1024
[  449.615419][    C1] vkms_vblank_simulate: vblank timer overrun
[  449.670594][T12640] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  450.290258][T12653] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2347'.
[  450.707515][T12646] loop5: detected capacity change from 0 to 32768
[  450.714216][T12646] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.2343 (12646)
[  451.135380][T12672] netlink: 1284 bytes leftover after parsing attributes in process `syz.4.2341'.
[  451.135421][T12672] openvswitch: netlink: Missing key (keys=40, expected=80)
[  451.409383][T12646] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  451.420502][T12646] BTRFS info (device loop5): using sha256 (sha256-ni) checksum algorithm
[  451.429209][T12646] BTRFS info (device loop5): using free-space-tree
[  451.447617][   T29] audit: type=1800 audit(1735967925.969:112): pid=12670 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2341" name="file1" dev="loop4" ino=15 res=0 errno=0
[  451.643371][ T5833] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  451.754147][T12692] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2357'.
[  451.791426][T12692] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2357'.
[  451.800834][T12692] netlink: 'syz.1.2357': attribute type 1 has an invalid length.
[  451.809772][T12692] netlink: 10 bytes leftover after parsing attributes in process `syz.1.2357'.
[  453.011206][T12713] syzkaller1: entered promiscuous mode
[  453.016875][T12713] syzkaller1: entered allmulticast mode
[  453.111819][T12716] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2358'.
[  453.336790][T12711] loop3: detected capacity change from 0 to 32768
[  453.462640][T12711] JBD2: Ignoring recovery information on journal
[  453.472587][T12711] jbd2_journal_bmap: journal block not found at offset 64 on loop3-27
[  453.481328][T12711] JBD2: bad block at offset 64
[  453.506204][T12711] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  453.597660][T12718] loop4: detected capacity change from 0 to 8192
[  453.607088][T12718] vfat: Unknown parameter '�18446744073709551615���(R�@��q��x}>:Lǖh�"��4ݡ+Ʀ`)�K}>�2"5�|�jك��y�i�H��?o:1M��W�Zܸf�2@�o��/V�w��{7����"v���Qh���e�2��P߅�G*�'
[  454.014368][ T5832] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  454.334657][T12727] loop2: detected capacity change from 0 to 1024
[  454.370343][ T5843] ocfs2: Unmounting device (7,3) on (node local)
[  454.381947][T12727] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  455.262751][T12742] loop3: detected capacity change from 0 to 32768
[  455.599315][T12761] netlink: 1284 bytes leftover after parsing attributes in process `syz.2.2367'.
[  455.608727][T12761] openvswitch: netlink: Missing key (keys=40, expected=80)
[  455.639758][   T29] audit: type=1800 audit(1735967930.259:113): pid=12759 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2367" name="file1" dev="loop2" ino=15 res=0 errno=0
[  455.955476][T12765] binder: Binderfs stats mode cannot be changed during a remount
[  456.076462][T12742] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  456.128855][ T5842] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  456.707650][T12742] XFS (loop3): Ending clean mount
[  456.729141][T12742] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  456.782993][T12781] netlink: 892 bytes leftover after parsing attributes in process `syz.2.2378'.
[  457.301163][T12792] syzkaller1: entered promiscuous mode
[  457.306955][T12792] syzkaller1: entered allmulticast mode
[  457.319830][T12792] netlink: 36 bytes leftover after parsing attributes in process `syz.1.2380'.
[  458.023902][T12791] loop5: detected capacity change from 0 to 512
[  458.239336][T12791] EXT4-fs: Ignoring removed mblk_io_submit option
[  458.466759][T12786] loop0: detected capacity change from 0 to 32768
[  458.519152][T12791] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  458.549478][T12786] JBD2: Ignoring recovery information on journal
[  458.566931][T12786] jbd2_journal_bmap: journal block not found at offset 64 on loop0-27
[  458.575998][T12786] JBD2: bad block at offset 64
[  458.812153][T12791] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  458.823084][T12791] System zones: 1-12
[  458.837998][T12786] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  458.907953][T12811] loop3: detected capacity change from 0 to 1024
[  458.915787][T12811] EXT4-fs: Ignoring removed bh option
[  459.367695][T12811] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  460.028367][T12791] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2240: inode #15: comm syz.5.2383: corrupted in-inode xattr: e_value size too large
[  460.041534][ T5843] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  460.061917][T12791] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.2383: couldn't read orphan inode 15 (err -117)
[  460.082696][T12791] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  460.103304][ T5827] ocfs2: Unmounting device (7,0) on (node local)
[  460.215891][T12821] loop3: detected capacity change from 0 to 1024
[  460.271702][ T5832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  460.305297][T12821] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  461.227451][   T29] audit: type=1800 audit(1735967935.829:114): pid=12835 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2390" name="file1" dev="loop3" ino=15 res=0 errno=0
[  461.332970][T12836] netlink: 1284 bytes leftover after parsing attributes in process `syz.3.2390'.
[  461.342388][T12836] openvswitch: netlink: Missing key (keys=40, expected=80)
[  461.734594][T12803] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  461.753663][T12803] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  461.762901][T12803] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  461.783791][T12803] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  461.811267][T12803] bond2: left promiscuous mode
[  461.862040][ T5843] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  461.886023][T12831] loop5: detected capacity change from 0 to 512
[  461.893206][T12831] EXT4-fs: Ignoring removed mblk_io_submit option
[  461.905981][T12831] EXT4-fs: Mount option(s) incompatible with ext3
[  461.992436][T12831] loop5: detected capacity change from 0 to 64
[  462.024440][T12831] hfs: Unknown parameter 'd�2'�mask'
[  462.277916][T12850] loop4: detected capacity change from 0 to 512
[  462.327391][T12850] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  463.604380][T12865] loop0: detected capacity change from 0 to 32768
[  463.659923][T12850] EXT4-fs (loop4): 1 truncate cleaned up
[  463.711580][T12867] syzkaller1: entered promiscuous mode
[  463.717462][T12867] syzkaller1: entered allmulticast mode
[  463.835957][T12869] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2398'.
[  463.890467][T12850] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  463.990815][T12865] JBD2: Ignoring recovery information on journal
[  464.000647][T12865] jbd2_journal_bmap: journal block not found at offset 64 on loop0-27
[  464.013853][T12865] JBD2: bad block at offset 64
[  464.301595][T12865] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  465.532370][ T5827] ocfs2: Unmounting device (7,0) on (node local)
[  465.619415][ T5833] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  466.432267][T12891] loop1: detected capacity change from 0 to 1024
[  466.509620][T12891] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  466.516180][   T29] audit: type=1800 audit(1735967941.139:115): pid=12891 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2412" name="file1" dev="loop1" ino=15 res=0 errno=0
[  466.540737][T12891] netlink: 1284 bytes leftover after parsing attributes in process `syz.1.2412'.
[  466.540779][T12891] openvswitch: netlink: Missing key (keys=40, expected=80)
[  466.568066][T12902] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2406'.
[  466.606101][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  466.923584][T12906] loop1: detected capacity change from 0 to 32768
[  467.058147][T12906] JBD2: Ignoring recovery information on journal
[  467.061551][T12906] jbd2_journal_bmap: journal block not found at offset 64 on loop1-27
[  467.061578][T12906] JBD2: bad block at offset 64
[  467.090806][T12906] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  468.214828][T12913] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  468.293434][ T5829] ocfs2: Unmounting device (7,1) on (node local)
[  468.835656][T12930] loop5: detected capacity change from 0 to 1024
[  468.842852][T12930] EXT4-fs: Ignoring removed bh option
[  469.268188][T12930] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  469.325890][T12935] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2425'.
[  469.540772][ T5832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  469.718706][T12951] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2431'.
[  470.112711][T12953] loop1: detected capacity change from 0 to 8192
[  470.158787][T12953] vfat: Unknown parameter '�18446744073709551615���(R�@��q��x}>:Lǖh�"��4ݡ+Ʀ`)�K}>�2"5�|�jك��y�i�H��?o:1M��W�Zܸf�2@�o��/V�w��{7����"v���Qh���e�2��P߅�G*�'
[  471.039373][T12942] loop4: detected capacity change from 0 to 32768
[  471.070619][T12942] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.2427 (12942)
[  471.109592][T12942] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  471.127545][T12942] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm
[  471.186275][T12942] BTRFS info (device loop4): using free-space-tree
[  471.331600][T12997] loop0: detected capacity change from 0 to 64
[  471.405975][T12942] syz.4.2427 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  472.034409][ T5833] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  472.149377][T13008] bridge0: port 1(bridge_slave_0) entered blocking state
[  472.156613][T13008] bridge0: port 1(bridge_slave_0) entered forwarding state
[  472.167617][T13008] 8021q: adding VLAN 0 to HW filter on device bond0
[  472.281990][T13008] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  472.561164][T13015] loop1: detected capacity change from 0 to 1024
[  472.569002][T13015] EXT4-fs: Ignoring removed bh option
[  472.671974][T13015] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  473.708231][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  473.961020][T13032] loop0: detected capacity change from 0 to 8192
[  473.968531][T13032] vfat: Unknown parameter '�18446744073709551615���(R�@��q��x}>:Lǖh�"��4ݡ+Ʀ`)�K}>�2"5�|�jك��y�i�H��?o:1M��W�Zܸf�2@�o��/V�w��{7����"v���Qh���e�2��P߅�G*�'
[  474.064491][T13031] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2447'.
[  474.364802][T13046] netlink: 36 bytes leftover after parsing attributes in process `syz.5.2457'.
[  474.951531][T13026] loop2: detected capacity change from 0 to 512
[  474.992375][T13026] EXT4-fs: Ignoring removed mblk_io_submit option
[  475.015834][T13026] EXT4-fs: Mount option(s) incompatible with ext3
[  475.047244][T13026] loop2: detected capacity change from 0 to 64
[  475.064910][T13026] hfs: Unknown parameter 'd�2'�mask'
[  475.127406][T13041] bridge0: port 1(bridge_slave_0) entered disabled state
[  475.359475][T13041] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  475.450526][T13053] loop4: detected capacity change from 0 to 32768
[  475.460684][T13053] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.2460 (13053)
[  475.477722][T13041] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  475.491002][T13053] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  475.505275][T13053] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm
[  475.517419][T13053] BTRFS info (device loop4): using free-space-tree
[  475.648386][T13041] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  475.673895][T13041] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  475.698967][T13041] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  475.718952][T13041] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  476.023764][ T5833] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  476.138908][T13081] netlink: 892 bytes leftover after parsing attributes in process `syz.1.2467'.
[  476.184524][T13085] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2468'.
[  476.331626][T13084] loop3: detected capacity change from 0 to 512
[  476.366549][T13089] netlink: 'syz.5.2468': attribute type 1 has an invalid length.
[  476.394464][T13084] EXT4-fs: Ignoring removed mblk_io_submit option
[  476.423259][T13089] netlink: 224 bytes leftover after parsing attributes in process `syz.5.2468'.
[  476.509737][T13084] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  476.533466][T13084] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  476.541753][T13084] System zones: 1-12
[  477.500647][T13084] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.2466: corrupted in-inode xattr: e_value size too large
[  477.627045][T13091] 8021q: adding VLAN 0 to HW filter on device bond0
[  477.635793][T13091] 8021q: adding VLAN 0 to HW filter on device team0
[  477.819023][T13084] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2466: couldn't read orphan inode 15 (err -117)
[  477.859392][T13091] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  477.892977][T13106] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2472'.
[  478.013121][T13110] loop4: detected capacity change from 0 to 1024
[  478.024394][T13110] EXT4-fs: Ignoring removed bh option
[  478.116094][T13110] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  478.663401][T13084] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  478.701732][ T5833] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  478.851060][T13121] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2477'.
[  479.022614][T13121] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2477'.
[  479.032118][T13121] netlink: 'syz.1.2477': attribute type 1 has an invalid length.
[  479.943709][T13121] netlink: 10 bytes leftover after parsing attributes in process `syz.1.2477'.
[  480.052659][ T5843] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  480.496307][T13139] netlink: 892 bytes leftover after parsing attributes in process `syz.1.2483'.
[  480.616906][T13141] syzkaller1: entered promiscuous mode
[  480.622846][T13141] syzkaller1: entered allmulticast mode
[  480.642751][T13141] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2480'.
[  481.535603][T13151] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2486'.
[  481.690404][T13158] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2487'.
[  481.702918][T13157] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  481.756041][T13155] netlink: 'syz.3.2486': attribute type 1 has an invalid length.
[  481.782286][T13155] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2486'.
[  481.924335][T13164] loop0: detected capacity change from 0 to 1024
[  482.047845][T13164] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  482.372508][T13177] loop2: detected capacity change from 0 to 1024
[  482.379726][T13177] EXT4-fs: Ignoring removed bh option
[  482.596367][T13177] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  483.055469][   T29] audit: type=1800 audit(1735967957.679:116): pid=13182 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2490" name="file1" dev="loop0" ino=15 res=0 errno=0
[  483.093883][T13183] loop3: detected capacity change from 0 to 512
[  483.127780][T13183] EXT4-fs: Ignoring removed mblk_io_submit option
[  483.206307][T13186] loop5: detected capacity change from 0 to 1024
[  483.213191][T13183] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  483.288502][T13183] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  483.298303][T13186] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  483.319387][T13183] System zones: 1-12
[  483.326866][T13182] netlink: 1284 bytes leftover after parsing attributes in process `syz.0.2490'.
[  483.341227][ T5842] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  483.542920][T13183] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.2493: corrupted in-inode xattr: e_value size too large
[  483.567609][T13194] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2495'.
[  483.578803][T13194] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2495'.
[  483.589113][T13194] netlink: 'syz.4.2495': attribute type 1 has an invalid length.
[  483.608904][T13182] openvswitch: netlink: Missing key (keys=40, expected=80)
[  483.618684][T13183] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2493: couldn't read orphan inode 15 (err -117)
[  483.644022][T13194] netlink: 10 bytes leftover after parsing attributes in process `syz.4.2495'.
[  483.700016][   T29] audit: type=1800 audit(1735967958.319:117): pid=13197 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2496" name="file1" dev="loop5" ino=15 res=0 errno=0
[  483.715029][T13183] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  483.932034][T13198] openvswitch: netlink: Missing key (keys=40, expected=80)
[  484.488176][ T5843] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  484.733798][T13211] syzkaller1: entered promiscuous mode
[  484.739404][T13211] syzkaller1: entered allmulticast mode
[  485.757385][T13213] loop3: detected capacity change from 0 to 32768
[  485.805522][T13213] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.2501 (13213)
[  485.827375][T13213] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  485.841511][T13213] BTRFS info (device loop3): using sha256 (sha256-ni) checksum algorithm
[  485.863023][T13213] BTRFS info (device loop3): using free-space-tree
[  485.960078][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  486.658853][ T5832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  486.981485][T13246] loop1: detected capacity change from 0 to 1024
[  486.992803][T13246] EXT4-fs: Ignoring removed bh option
[  487.169295][T13246] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  487.569659][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  487.744751][T13258] __nla_validate_parse: 2 callbacks suppressed
[  487.744777][T13258] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2511'.
[  487.767236][ T5843] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  487.783121][T13258] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2511'.
[  487.801546][T13258] netlink: 26 bytes leftover after parsing attributes in process `syz.4.2511'.
[  488.030576][T13262] loop5: detected capacity change from 0 to 1024
[  488.041960][T13262] EXT4-fs: Ignoring removed bh option
[  488.251440][T13262] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  488.864549][ T5832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  488.874586][T13271] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2514'.
[  489.385316][T13279] siw: device registration error -23
[  489.435284][T13275] loop0: detected capacity change from 0 to 32768
[  489.628648][T13275] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  491.333484][T13275] XFS (loop0): Ending clean mount
[  491.358208][T13275] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  492.298508][T13312] loop1: detected capacity change from 0 to 1024
[  492.310363][T13312] EXT4-fs: Ignoring removed bh option
[  492.447378][T13312] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  492.892402][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  492.892717][T13298] bridge0: port 2(bridge_slave_1) entered disabled state
[  492.892907][T13298] bridge0: port 1(bridge_slave_0) entered disabled state
[  493.177951][T13321] loop0: detected capacity change from 0 to 1024
[  493.206262][T13298] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  493.207027][T13321] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  493.315381][T13298] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  493.542467][T13298] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  493.565356][T13298] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  493.579633][T13298] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  493.592060][   T29] audit: type=1800 audit(1735967968.219:118): pid=13325 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2527" name="file1" dev="loop0" ino=15 res=0 errno=0
[  493.626016][T13298] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  493.717188][ T9531] lo speed is unknown, defaulting to 1000
[  493.812681][T13329] netlink: 1284 bytes leftover after parsing attributes in process `syz.0.2527'.
[  493.847269][T13329] openvswitch: netlink: Missing key (keys=40, expected=80)
[  493.935582][T13318] bridge0: port 2(bridge_slave_1) entered blocking state
[  493.943078][T13318] bridge0: port 2(bridge_slave_1) entered forwarding state
[  493.955597][T13318] 8021q: adding VLAN 0 to HW filter on device bond0
[  493.966813][T13318] 8021q: adding VLAN 0 to HW filter on device team0
[  493.994200][T13318] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  494.059590][T13338] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2529'.
[  494.151045][T13331] loop4: detected capacity change from 0 to 512
[  494.224754][T13331] EXT4-fs: Ignoring removed mblk_io_submit option
[  494.253931][T13331] EXT4-fs: Mount option(s) incompatible with ext3
[  494.386356][T13345] binder: Binderfs stats mode cannot be changed during a remount
[  494.406691][T13331] loop4: detected capacity change from 0 to 64
[  494.420640][T13331] hfs: Unknown parameter 'd�2'�mask'
[  494.877573][T13356] tmpfs: Bad value for 'mpol'
[  495.451250][T13353] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2534'.
[  496.537274][T13359] loop4: detected capacity change from 0 to 32768
[  497.030840][T13359] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  497.054886][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  497.290359][T13359] XFS (loop4): Ending clean mount
[  497.349846][T13359] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  497.383386][T13386] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  497.617200][T13389] siw: device registration error -23
[  498.225187][T13399] netlink: 1284 bytes leftover after parsing attributes in process `syz.4.2544'.
[  498.235165][T13399] openvswitch: netlink: Missing key (keys=40, expected=80)
[  501.047983][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  502.029413][T13424] loop0: detected capacity change from 0 to 512
[  502.047106][T13424] EXT4-fs: Ignoring removed mblk_io_submit option
[  502.075866][T13424] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  502.134086][T13424] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  502.149787][T13423] loop5: detected capacity change from 0 to 1024
[  502.164189][T13424] System zones: 1-12
[  502.169950][T13427] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2554'.
[  502.187360][T13424] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.2553: corrupted in-inode xattr: e_value size too large
[  502.235672][T13424] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.2553: couldn't read orphan inode 15 (err -117)
[  502.287308][T13424] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  502.321251][T13423] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  503.428108][T13422] loop3: detected capacity change from 0 to 32768
[  504.051320][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  504.081162][T13422] JBD2: Ignoring recovery information on journal
[  504.103893][   T29] audit: type=1800 audit(1735967978.679:119): pid=13449 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2552" name="file1" dev="loop5" ino=15 res=0 errno=0
[  504.180842][T13422] jbd2_journal_bmap: journal block not found at offset 64 on loop3-27
[  504.197141][T13448] siw: device registration error -23
[  504.222506][T13457] binder: Binderfs stats mode cannot be changed during a remount
[  504.252467][T13449] netlink: 1284 bytes leftover after parsing attributes in process `syz.5.2552'.
[  504.283851][T13422] JBD2: bad block at offset 64
[  504.351678][T13422] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  504.421078][T13449] openvswitch: netlink: Missing key (keys=40, expected=80)
[  505.948663][ T5843] ocfs2: Unmounting device (7,3) on (node local)
[  506.247431][T13483] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2572'.
[  506.525079][ T5832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  506.549950][T13479] loop4: detected capacity change from 0 to 32768
[  506.690474][T13490] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2575'.
[  506.720546][T13479] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.2569 (13479)
[  506.878081][T13494] loop1: detected capacity change from 0 to 512
[  506.910640][T13479] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  506.922098][T13494] EXT4-fs: Ignoring removed mblk_io_submit option
[  507.061197][T13496] loop5: detected capacity change from 0 to 1024
[  507.072523][T13496] EXT4-fs: Ignoring removed bh option
[  507.347446][T13496] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  507.585393][T13479] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm
[  507.662660][T13479] BTRFS info (device loop4): using free-space-tree
[  507.889689][T13494] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  507.914700][T13494] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  507.922720][T13494] System zones: 1-12
[  508.097839][T13507] loop2: detected capacity change from 0 to 1024
[  508.110432][T13507] EXT4-fs: Ignoring removed bh option
[  508.187754][ T5832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  508.360854][T13507] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  508.774309][T13479] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  508.774667][T13479] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  508.880942][T13494] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.2576: corrupted in-inode xattr: e_value size too large
[  509.016555][ T5842] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  509.740857][T13479] BTRFS error (device loop4): open_ctree failed
[  509.750914][T13494] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.2576: couldn't read orphan inode 15 (err -117)
[  509.809182][T13494] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  510.114466][T13539] siw: device registration error -23
[  510.135074][T13539] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2581'.
[  510.147943][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  510.261318][T13543] binder: Binderfs stats mode cannot be changed during a remount
[  510.744219][T13537] loop3: detected capacity change from 0 to 32768
[  510.831683][T13537] JBD2: Ignoring recovery information on journal
[  510.878321][T13537] jbd2_journal_bmap: journal block not found at offset 64 on loop3-27
[  510.965297][T13537] JBD2: bad block at offset 64
[  510.995541][T13537] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  511.168091][T13559] netlink: 48 bytes leftover after parsing attributes in process `syz.5.2587'.
[  511.612181][T13563] tmpfs: Bad value for 'mpol'
[  512.778038][T13564] bridge0: port 2(bridge_slave_1) entered disabled state
[  512.785472][T13564] bridge0: port 1(bridge_slave_0) entered disabled state
[  512.827656][T13564] team_slave_0: left promiscuous mode
[  512.833754][T13564] team_slave_1: left promiscuous mode
[  513.428323][T13580] loop2: detected capacity change from 0 to 1024
[  513.435722][T13580] EXT4-fs: Ignoring removed bh option
[  514.608863][T13582] loop0: detected capacity change from 0 to 1024
[  514.619129][T13582] EXT4-fs: Ignoring removed bh option
[  515.214383][T13577] input: syz0 as /devices/virtual/input/input12
[  515.315389][T13582] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  515.315389][T13580] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  515.392759][T13589] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2591'.
[  515.624637][ T5842] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  515.638163][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  516.055848][T13564] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  516.120199][T13564] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  516.308125][T13599] kAFS: No cell specified
[  516.836024][T13564] netdevsim netdevsim5 netdevsim0: left promiscuous mode
[  516.979153][T13564] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  517.014964][T13564] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  517.052089][T13564] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  517.081745][T13564] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  517.163550][T13591] loop4: detected capacity change from 0 to 32768
[  517.177167][ T9531] lo speed is unknown, defaulting to 1000
[  517.183275][T13591] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.2594 (13591)
[  517.206099][T13591] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  517.216723][T13591] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm
[  517.225356][T13591] BTRFS info (device loop4): using free-space-tree
[  517.240192][T13604] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2598'.
[  517.563392][T13621] lo speed is unknown, defaulting to 1000
[  517.588590][T13621] lo speed is unknown, defaulting to 1000
[  517.789720][ T5843] ocfs2: Unmounting device (7,3) on (node local)
[  517.838167][T13628] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2601'.
[  517.945726][ T5833] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  518.305366][T13633] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2605'.
[  518.320708][T13603] loop0: detected capacity change from 0 to 32768
[  518.337380][T13603] BTRFS: device /dev/loop0 (7:0) using temp-fsid 692a13c9-930f-45c3-9152-6432463d07e2
[  518.337471][T13603] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.2597 (13603)
[  518.441894][T13638] syzkaller1: entered promiscuous mode
[  518.441986][T13638] syzkaller1: entered allmulticast mode
[  518.549908][T13641] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2604'.
[  519.131429][T13603] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  519.131539][T13603] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm
[  519.131577][T13603] BTRFS info (device loop0): using free-space-tree
[  519.352539][T13658] loop4: detected capacity change from 0 to 128
[  519.484518][T13658] EXT4-fs (loop4): Test dummy encryption mode enabled
[  519.507589][T13658] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  519.508053][T13658] ext4 filesystem being mounted at /386/w��5�T��)�`)Y�F�nA��@T<�3�ڂ$���r�cnH�<�p�r��>�wC�" ��-������8 supports timestamps until 2038-01-19 (0x7fffffff)
[  519.524902][T13658] EXT4-fs error (device loop4): ext4_validate_block_bitmap:423: comm syz.4.2603: bg 0: bad block bitmap checksum
[  519.929573][T13671] loop1: detected capacity change from 0 to 1024
[  519.937317][T13671] EXT4-fs: Ignoring removed bh option
[  520.046970][T13673] kAFS: No cell specified
[  521.257775][ T5827] BTRFS info (device loop0): last unmount of filesystem 692a13c9-930f-45c3-9152-6432463d07e2
[  521.276361][ T5833] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  521.421858][T13671] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  521.775273][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  521.982513][T13689] loop3: detected capacity change from 0 to 32768
[  522.149276][T13694] siw: device registration error -23
[  522.162441][T13694] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2618'.
[  522.378503][T13689] JBD2: Ignoring recovery information on journal
[  522.389921][T13689] jbd2_journal_bmap: journal block not found at offset 64 on loop3-27
[  522.398219][T13689] JBD2: bad block at offset 64
[  522.472914][T13689] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  522.541879][T13708] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2620'.
[  522.770334][T13710] loop5: detected capacity change from 0 to 64
[  522.830995][T13714] loop1: detected capacity change from 0 to 128
[  523.928449][T13726] kAFS: No cell specified
[  524.638681][ T5843] ocfs2: Unmounting device (7,3) on (node local)
[  525.063072][T13720] loop5: detected capacity change from 0 to 32768
[  525.073367][T13720] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.2624 (13720)
[  525.087078][T13731] bridge0: port 2(bridge_slave_1) entered disabled state
[  525.091255][T13720] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  525.104886][T13720] BTRFS info (device loop5): using sha256 (sha256-ni) checksum algorithm
[  525.113692][T13720] BTRFS info (device loop5): using free-space-tree
[  525.268692][T13731] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  525.297846][T13731] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  525.332158][T13755] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2624'.
[  525.433017][T13731] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  525.451597][T13731] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  525.469168][T13731] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  525.478776][T13731] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  525.599034][T13731] bond2: left promiscuous mode
[  525.614708][T13731] bond3: left promiscuous mode
[  525.717472][ T5832] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  525.914389][T13759] overlayfs: failed to resolve './file1': -2
[  525.960006][T13761] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2635'.
[  527.283026][T13776] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2638'.
[  527.293532][T13775] loop2: detected capacity change from 0 to 64
[  529.314540][T13797] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2645'.
[  529.572848][T13800] lo speed is unknown, defaulting to 1000
[  529.588728][T13800] lo speed is unknown, defaulting to 1000
[  529.695374][T13802] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2650'.
[  530.512362][   T29] audit: type=1326 audit(1735968005.129:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13823 comm="syz.3.2656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9827385d29 code=0x7ffc0000
[  530.518398][T13798] loop1: detected capacity change from 0 to 32768
[  530.535178][   T29] audit: type=1326 audit(1735968005.129:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13823 comm="syz.3.2656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f9827385d29 code=0x7ffc0000
[  530.563900][   T29] audit: type=1326 audit(1735968005.129:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13823 comm="syz.3.2656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9827385d29 code=0x7ffc0000
[  530.621420][   T29] audit: type=1326 audit(1735968005.239:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13823 comm="syz.3.2656" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9827385d29 code=0x7ffc0000
[  530.667953][T13798] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2644 (13798)
[  530.701091][T13798] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  530.723990][T13798] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm
[  530.732490][T13798] BTRFS info (device loop1): using free-space-tree
[  530.734959][T13831] netlink: 'syz.0.2658': attribute type 12 has an invalid length.
[  530.866037][T13843] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2659'.
[  530.949498][T13848] binder_alloc: 13847: binder_alloc_buf, no vma
[  531.173892][T13857] loop0: detected capacity change from 0 to 64
[  531.192177][T13854] loop3: detected capacity change from 0 to 512
[  531.215807][T13854] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  531.294368][T13862] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2664'.
[  531.364068][T13854] EXT4-fs (loop3): 1 truncate cleaned up
[  531.370969][T13854] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  531.534053][ T5829] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  531.657762][T13870] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2666'.
[  531.715410][ T5843] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  532.215696][T13881] bridge0: entered allmulticast mode
[  532.522101][T13885] loop3: detected capacity change from 0 to 128
[  532.567311][   T29] audit: type=1326 audit(1735968007.189:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13886 comm="syz.1.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a9ab85d29 code=0x7ffc0000
[  532.610449][   T29] audit: type=1326 audit(1735968007.189:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13886 comm="syz.1.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f7a9ab85d29 code=0x7ffc0000
[  532.617037][T13891] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2674'.
[  532.698706][   T29] audit: type=1326 audit(1735968007.189:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13886 comm="syz.1.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a9ab85d29 code=0x7ffc0000
[  532.813069][   T29] audit: type=1326 audit(1735968007.189:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13886 comm="syz.1.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f7a9ab85d29 code=0x7ffc0000
[  532.899259][   T29] audit: type=1326 audit(1735968007.189:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13886 comm="syz.1.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a9ab85d29 code=0x7ffc0000
[  532.989143][   T29] audit: type=1326 audit(1735968007.189:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13886 comm="syz.1.2673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7a9ab84690 code=0x7ffc0000
[  533.101820][T13900] vivid-002: disconnect
[  533.167872][T13903] loop4: detected capacity change from 0 to 64
[  533.319560][T13906] loop2: detected capacity change from 0 to 512
[  533.372844][T13906] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  533.488601][T13906] EXT4-fs (loop2): 1 truncate cleaned up
[  533.506037][T13906] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  533.813184][T13914] ip6t_REJECT: ECHOREPLY is not supported
[  534.711065][ T5842] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  534.755395][T13900] vivid-002: reconnect
[  534.999084][T13932] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2688'.
[  535.155257][T13938] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2691'.
[  535.265271][T13936] netlink: 'syz.1.2692': attribute type 10 has an invalid length.
[  535.374137][T13943] loop5: detected capacity change from 0 to 1024
[  535.537403][T13948] ip6t_REJECT: ECHOREPLY is not supported
[  536.382918][T13951] loop0: detected capacity change from 0 to 512
[  536.421926][T13951] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  536.484994][T13951] EXT4-fs (loop0): 1 truncate cleaned up
[  536.491935][T13949] hfsplus: xattr searching failed
[  536.511041][T13951] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  536.551158][T13952] hfsplus: xattr searching failed
[  536.959389][T13530] hfsplus: b-tree write err: -5, ino 3
[  537.031120][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  537.544354][T13982] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2708'.
[  537.699538][T13985] loop0: detected capacity change from 0 to 1024
[  537.710477][T13985] EXT4-fs: Ignoring removed bh option
[  538.058125][   T29] kauditd_printk_skb: 34 callbacks suppressed
[  538.058198][   T29] audit: type=1800 audit(1735968012.159:164): pid=13979 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2706" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  538.085089][    C0] vkms_vblank_simulate: vblank timer overrun
[  538.370954][T13985] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  538.505851][T13994] netlink: 'syz.2.2710': attribute type 10 has an invalid length.
[  538.664869][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  539.088034][T14001] syzkaller1: entered promiscuous mode
[  539.094149][T14001] syzkaller1: entered allmulticast mode
[  539.113943][T14001] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2713'.
[  539.890296][T14008] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2715'.
[  539.959761][T14011] loop0: detected capacity change from 0 to 128
[  540.660616][T14024] loop0: detected capacity change from 0 to 512
[  540.712001][T14024] EXT4-fs: Ignoring removed mblk_io_submit option
[  540.769277][T14024] EXT4-fs: Mount option(s) incompatible with ext3
[  540.850612][T14024] loop0: detected capacity change from 0 to 64
[  540.914418][T14024] hfs: Unknown parameter 'd�2'�mask'
[  542.196508][T14037] loop3: detected capacity change from 0 to 1024
[  542.204138][T14037] EXT4-fs: Ignoring removed bh option
[  542.509860][T14037] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  542.924959][T14048] loop5: detected capacity change from 0 to 1024
[  543.009251][ T5843] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  543.058306][   T29] audit: type=1800 audit(1735968017.679:165): pid=14043 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2725" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  543.219683][T14053] hfsplus: xattr searching failed
[  543.263869][T14053] hfsplus: xattr searching failed
[  543.304649][T14053] hfsplus: xattr searching failed
[  543.608936][T14061] syzkaller1: entered promiscuous mode
[  543.614675][T14061] syzkaller1: entered allmulticast mode
[  543.635375][T14061] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2729'.
[  543.831121][T14060] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2732'.
[  544.359803][T14063] netlink: 'syz.1.2732': attribute type 1 has an invalid length.
[  544.406310][T13530] hfsplus: b-tree write err: -5, ino 3
[  544.407318][T14063] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2732'.
[  544.593720][T14064] loop0: detected capacity change from 0 to 1024
[  544.716020][T14074] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2736'.
[  544.925528][T14077] loop2: detected capacity change from 0 to 1024
[  544.937441][T14077] EXT4-fs: Ignoring removed bh option
[  545.153654][T14077] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  545.552604][T14086] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2738'.
[  545.608494][T14064] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  545.644928][T14091] loop5: detected capacity change from 0 to 1024
[  545.705323][ T5842] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  545.742213][T14091] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  546.346309][T14097] loop4: detected capacity change from 0 to 64
[  546.854913][T14107] loop2: detected capacity change from 0 to 1024
[  546.865998][T14107] EXT4-fs: Ignoring removed bh option
[  547.577066][T14107] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  547.847379][ T5842] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  547.865464][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  547.920943][T14111] input: syz0 as /devices/virtual/input/input13
[  548.126468][T14116] input: syz1 as /devices/virtual/input/input14
[  548.616901][T14130] netlink: 1284 bytes leftover after parsing attributes in process `syz.5.2740'.
[  548.626144][T14130] openvswitch: netlink: Missing key (keys=40, expected=80)
[  549.011715][T14129] syzkaller1: entered promiscuous mode
[  549.017402][T14129] syzkaller1: entered allmulticast mode
[  549.037177][T14129] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2746'.
[  549.330259][T14127] loop4: detected capacity change from 0 to 1024
[  549.453543][   T29] audit: type=1800 audit(1735968023.999:166): pid=14128 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2740" name="file1" dev="loop5" ino=15 res=0 errno=0
[  549.813124][T14127] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  550.697323][ T5833] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  550.770949][ T5832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  550.822079][T14142] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2752'.
[  550.856106][T14139] loop0: detected capacity change from 0 to 1024
[  551.060189][T14139] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  552.600910][T14162] lo speed is unknown, defaulting to 1000
[  552.686344][T14162] lo speed is unknown, defaulting to 1000
[  552.897386][T14165] loop3: detected capacity change from 0 to 32768
[  552.916759][T14165] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.2757 (14165)
[  553.183394][T14165] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  553.193911][T14165] BTRFS info (device loop3): using sha256 (sha256-ni) checksum algorithm
[  553.202468][T14165] BTRFS info (device loop3): using free-space-tree
[  553.388282][T14175] loop5: detected capacity change from 0 to 1024
[  553.399834][T14175] EXT4-fs: Ignoring removed bh option
[  554.306992][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  554.379888][T14167] loop1: detected capacity change from 0 to 32768
[  554.398647][T14167] BTRFS: device /dev/loop1 (7:1) using temp-fsid fe6ee107-34da-404a-b537-ec2f89b79de3
[  554.414068][T14167] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2756 (14167)
[  554.482887][T14175] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  554.623245][T14167] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  554.628357][T14196] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2760'.
[  554.690966][T14167] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm
[  554.716080][T14167] BTRFS info (device loop1): using free-space-tree
[  554.736262][T14202] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2757'.
[  554.784467][ T5832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  554.805204][T14200] sd 0:0:1:0: PR command failed: 1026
[  554.818767][T14200] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  554.842656][T14200] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  554.961475][T14222] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2765'.
[  555.041014][T14224] loop5: detected capacity change from 0 to 1024
[  555.089849][ T5843] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  555.207984][T14224] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  555.213570][T14232] loop2: detected capacity change from 0 to 512
[  555.290343][T14232] EXT4-fs: Ignoring removed i_version option
[  555.296885][T14232] EXT4-fs: Ignoring removed mblk_io_submit option
[  555.308568][ T5829] BTRFS info (device loop1): last unmount of filesystem fe6ee107-34da-404a-b537-ec2f89b79de3
[  555.330876][T14232] ext4: Unknown parameter 'seclabel'
[  555.631313][T14235] lo speed is unknown, defaulting to 1000
[  555.638019][   T29] audit: type=1800 audit(1735968030.259:167): pid=14236 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2763" name="file1" dev="loop5" ino=15 res=0 errno=0
[  555.674994][T14235] lo speed is unknown, defaulting to 1000
[  555.912992][T14240] netlink: 1284 bytes leftover after parsing attributes in process `syz.5.2763'.
[  555.961174][T14240] openvswitch: netlink: Missing key (keys=40, expected=80)
[  556.731201][T14258] loop3: detected capacity change from 0 to 256
[  556.807197][T14258] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  557.422803][T14257] loop0: detected capacity change from 0 to 1024
[  557.577315][T14261] loop2: detected capacity change from 0 to 1024
[  557.631716][T14262] hfsplus: xattr searching failed
[  557.859477][T14265] hfsplus: xattr searching failed
[  557.963725][T13530] hfsplus: b-tree write err: -5, ino 3
[  558.139838][T14268] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2775'.
[  558.446405][ T6027] hfsplus: b-tree write err: -5, ino 3
[  560.328805][T14270] loop0: detected capacity change from 0 to 32768
[  560.337029][T14276] loop1: detected capacity change from 0 to 32768
[  560.377463][ T5832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  560.429892][T14286] loop3: detected capacity change from 0 to 256
[  561.199532][T14276] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2778 (14276)
[  561.349039][T14270] JBD2: Ignoring recovery information on journal
[  561.378461][T14286] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  561.892345][T14290] loop4: detected capacity change from 0 to 256
[  561.912900][T14270] jbd2_journal_bmap: journal block not found at offset 64 on loop0-27
[  561.934116][T14270] JBD2: bad block at offset 64
[  561.939616][T14290] udf: Unknown parameter 'd	nt_Rppraie'
[  561.954597][T14270] JBD2: journal reset failed
[  561.959578][T14270] (syz.0.2776,14270,1):ocfs2_journal_load:1145 ERROR: Failed to load journal!
[  561.971038][T14270] (syz.0.2776,14270,1):ocfs2_check_volume:2428 ERROR: ocfs2 journal load failed! -4
[  561.994634][T14292] 8021q: adding VLAN 0 to HW filter on device bond0
[  562.040047][T14290] loop4: detected capacity change from 0 to 512
[  562.090704][T14292] 8021q: adding VLAN 0 to HW filter on device team0
[  562.147651][T14290] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  562.161509][T14276] BTRFS error (device loop1): open_ctree failed
[  562.218307][T14292] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  562.243793][T14290] ext4 filesystem being mounted at /418/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  562.273832][ T9530] lo speed is unknown, defaulting to 1000
[  562.578262][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  562.917806][T14306] loop2: detected capacity change from 0 to 256
[  564.170892][T14306] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  564.899172][T14311] loop0: detected capacity change from 0 to 512
[  564.908260][T14310] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2788'.
[  564.961785][T14311] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  565.060515][T14313] ipvlan2: entered promiscuous mode
[  565.077907][T14311] EXT4-fs (loop0): 1 truncate cleaned up
[  565.088190][ T5833] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  565.105075][T14311] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  565.129431][T14313] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  565.361431][T14320] loop1: detected capacity change from 0 to 128
[  565.421644][T14320] EXT4-fs (loop1): Test dummy encryption mode enabled
[  565.488488][T14320] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  565.540558][T14320] ext4 filesystem being mounted at /481/w��5�T��)�`)Y�F�nA��@T<�3�ڂ$���r�cnH�<�p�r��>�wC�" ��-������8 supports timestamps until 2038-01-19 (0x7fffffff)
[  565.603939][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  565.630634][T14320] EXT4-fs error (device loop1): ext4_validate_block_bitmap:423: comm syz.1.2792: bg 0: bad block bitmap checksum
[  565.807650][ T5829] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  565.878232][T14330] loop0: detected capacity change from 0 to 1024
[  565.974341][T14330] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  566.511163][T14344] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  566.524953][   T29] audit: type=1800 audit(1735968041.129:168): pid=14345 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2794" name="file1" dev="loop0" ino=15 res=0 errno=0
[  566.602096][T14347] loop1: detected capacity change from 0 to 256
[  566.875383][T14347] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  567.605596][T14345] netlink: 1284 bytes leftover after parsing attributes in process `syz.0.2794'.
[  567.803348][T14345] openvswitch: netlink: Missing key (keys=40, expected=80)
[  569.074566][T14364] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2804'.
[  569.682806][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  569.867827][T14364] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2804'.
[  570.467737][T14352] loop5: detected capacity change from 0 to 32768
[  570.479112][T14373] loop1: detected capacity change from 0 to 512
[  570.517542][T14352] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.2800 (14352)
[  570.541794][T14373] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  570.626189][T14373] EXT4-fs (loop1): 1 truncate cleaned up
[  570.638107][T14373] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  570.674031][T14352] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  570.715795][T14352] BTRFS info (device loop5): using sha256 (sha256-ni) checksum algorithm
[  570.732849][T14369] loop3: detected capacity change from 0 to 8192
[  570.762087][T14352] BTRFS info (device loop5): using free-space-tree
[  570.775781][T14369] vfat: Unknown parameter '�18446744073709551615���(R�@��q��x}>:Lǖh�"��4ݡ+Ʀ`)�K}>�2"5�|�jك��y�i�H��?o:1M��W�Zܸf�2@�o��/V�w��{7����"v���Qh���e�2��P߅�G*�'
[  570.814447][T14352] workqueue: Failed to create a rescuer kthread for wq "btrfs-worker": -EINTR
[  570.814753][T14352] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR
[  570.856497][T14352] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  570.918396][T14352] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  571.174007][T14352] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  571.268776][T14352] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  572.106294][T14352] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  572.278170][T14352] BTRFS error (device loop5): open_ctree failed
[  572.525852][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  572.600499][T14402] 8021q: adding VLAN 0 to HW filter on device bond0
[  572.740916][T14402] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  572.782722][T14405] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2814'.
[  572.799043][T14405] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2814'.
[  572.829299][ T5896] lo speed is unknown, defaulting to 1000
[  572.876480][T14405] netlink: 26 bytes leftover after parsing attributes in process `syz.5.2814'.
[  574.040098][T14417] loop1: detected capacity change from 0 to 512
[  574.077626][T14424] loop0: detected capacity change from 0 to 1024
[  574.150926][T14426] loop2: detected capacity change from 0 to 512
[  574.168308][T14417] EXT4-fs: Ignoring removed mblk_io_submit option
[  574.193277][T14424] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  574.219482][T14426] EXT4-fs: Ignoring removed i_version option
[  574.695717][T14426] EXT4-fs: Ignoring removed mblk_io_submit option
[  574.702300][T14426] ext4: Unknown parameter 'seclabel'
[  574.715278][T14417] EXT4-fs: Mount option(s) incompatible with ext3
[  574.741544][T14432] loop3: detected capacity change from 0 to 8192
[  574.764541][T14432] vfat: Unknown parameter '�18446744073709551615���(R�@��q��x}>:Lǖh�"��4ݡ+Ʀ`)�K}>�2"5�|�jك��y�i�H��?o:1M��W�Zܸf�2@�o��/V�w��{7����"v���Qh���e�2��P߅�G*�'
[  574.802228][T14417] loop1: detected capacity change from 0 to 64
[  574.958811][T14417] hfs: Unknown parameter 'd�2'�mask'
[  574.999180][T14426] lo speed is unknown, defaulting to 1000
[  575.006265][T14426] lo speed is unknown, defaulting to 1000
[  575.154522][T14441] loop4: detected capacity change from 0 to 512
[  575.158584][   T29] audit: type=1800 audit(1735968049.769:169): pid=14442 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2820" name="file1" dev="loop0" ino=15 res=0 errno=0
[  575.181887][T14441] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  575.261705][T14441] EXT4-fs (loop4): 1 truncate cleaned up
[  575.282282][T14441] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  575.388948][T14448] netlink: 1284 bytes leftover after parsing attributes in process `syz.0.2820'.
[  575.513852][T14448] openvswitch: netlink: Missing key (keys=40, expected=80)
[  575.697450][ T5844] Bluetooth: hci4: unexpected event for opcode 0x0c1a
[  575.781906][ T5833] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  576.163644][T14461] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  576.238287][T14466] siw: device registration error -23
[  577.756673][T14488] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2839'.
[  577.776921][T14486] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2839'.
[  578.079809][T14492] loop5: detected capacity change from 0 to 512
[  578.098776][T14496] loop3: detected capacity change from 0 to 512
[  578.125210][T14492] EXT4-fs: Ignoring removed mblk_io_submit option
[  578.153386][T14492] EXT4-fs: Mount option(s) incompatible with ext3
[  578.159765][T14496] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  578.253972][T14496] EXT4-fs (loop3): 1 truncate cleaned up
[  578.260721][T14496] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  578.276621][T14492] loop5: detected capacity change from 0 to 64
[  578.314492][T14457] loop1: detected capacity change from 0 to 32768
[  578.336040][T14457] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2827 (14457)
[  578.364500][T14492] hfs: Unknown parameter 'd�2'�mask'
[  578.409570][T14457] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  578.458354][T14506] input: syz0 as /devices/virtual/input/input16
[  578.496283][T14457] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm
[  578.554174][T14457] BTRFS info (device loop1): using free-space-tree
[  578.849424][T14457] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  578.873204][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  578.892811][T14512] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2844'.
[  578.958488][T14457] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  578.958791][T14457] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  578.962983][T14491] loop4: detected capacity change from 0 to 32768
[  579.014699][T14457] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  579.014938][T14457] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  579.086753][T14491] BTRFS: device /dev/loop4 (7:4) using temp-fsid 052b290d-01b2-4478-921d-a739a35525d1
[  579.106886][T14457] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  579.107189][T14457] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  579.154323][T14457] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  579.177732][ T5843] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  579.203982][T14457] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  579.204267][T14457] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  579.294380][T14457] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  579.347076][T14491] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.2840 (14491)
[  579.453846][T14491] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  579.483724][T14457] BTRFS error (device loop1): open_ctree failed
[  579.506436][T14491] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm
[  579.540766][T14491] BTRFS info (device loop4): using free-space-tree
[  579.748944][T14529] loop3: detected capacity change from 0 to 512
[  579.772731][T14529] EXT4-fs: Ignoring removed mblk_io_submit option
[  579.788019][T14543] loop2: detected capacity change from 0 to 256
[  579.806205][T14529] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  579.854565][T14543] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  579.929994][T14529] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b042c118, mo2=0002]
[  579.948699][T14529] System zones: 1-12
[  580.004821][T14553] siw: device registration error -23
[  580.051684][T14529] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.2847: corrupted in-inode xattr: e_value size too large
[  580.093800][T14529] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2847: couldn't read orphan inode 15 (err -117)
[  580.117575][T14529] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  580.436551][T14566] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2854'.
[  582.072000][ T5833] BTRFS info (device loop4): last unmount of filesystem 052b290d-01b2-4478-921d-a739a35525d1
[  582.076213][ T5843] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  582.226950][T14577] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2857'.
[  582.282394][T14575] loop2: detected capacity change from 0 to 512
[  582.331470][T14575] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  582.539667][T14580] loop0: detected capacity change from 0 to 64
[  583.491730][T14589] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2855'.
[  583.786780][T14575] EXT4-fs (loop2): 1 truncate cleaned up
[  583.797242][T14575] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  583.814970][T14596] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2864'.
[  583.905647][T14598] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2864'.
[  584.184104][ T5842] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  584.307009][T14606] siw: device registration error -23
[  584.343282][T14612] loop2: detected capacity change from 0 to 512
[  584.351378][T14612] EXT4-fs: Ignoring removed i_version option
[  584.357637][T14612] EXT4-fs: Ignoring removed mblk_io_submit option
[  584.364448][T14612] ext4: Unknown parameter 'seclabel'
[  584.523205][T14601] loop0: detected capacity change from 0 to 32768
[  584.551887][T14601] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.2863 (14601)
[  584.578693][T14601] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  584.618313][T14615] lo speed is unknown, defaulting to 1000
[  584.623940][T14601] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm
[  584.633973][T14601] BTRFS info (device loop0): using free-space-tree
[  584.645080][T14615] lo speed is unknown, defaulting to 1000
[  584.941792][T14634] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2863'.
[  587.891104][T14656] ip6t_REJECT: ECHOREPLY is not supported
[  588.821841][T14649] loop3: detected capacity change from 0 to 64
[  588.905130][ T5827] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  589.141956][T14664] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2881'.
[  589.255545][T14669] loop3: detected capacity change from 0 to 512
[  589.263417][T14669] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  589.267963][T14670] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2883'.
[  589.458344][T14672] loop2: detected capacity change from 0 to 1024
[  589.470088][T14672] EXT4-fs: Ignoring removed bh option
[  589.586986][T14669] EXT4-fs (loop3): 1 truncate cleaned up
[  589.666499][T14672] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  589.741817][T14669] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  589.907064][T14664] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2881'.
[  590.168783][ T5842] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  590.243000][T14678] netlink: 'syz.4.2883': attribute type 1 has an invalid length.
[  590.282207][T14678] netlink: 224 bytes leftover after parsing attributes in process `syz.4.2883'.
[  590.379897][T14688] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2878'.
[  590.401718][T14688] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2878'.
[  590.498074][ T5843] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  590.657460][T14697] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2889'.
[  591.017425][T14702] loop1: detected capacity change from 0 to 1024
[  591.028296][T14702] EXT4-fs: Ignoring removed bh option
[  591.278487][T14702] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  591.760617][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  592.841040][T14718] loop1: detected capacity change from 0 to 64
[  592.922891][T14727] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2890'.
[  592.981542][T14728] loop4: detected capacity change from 0 to 512
[  593.021185][T14732] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2902'.
[  593.107184][T14728] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  593.151007][T14728] ext4 filesystem being mounted at /437/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  593.189352][T14724] loop0: detected capacity change from 0 to 512
[  593.251247][T14724] EXT4-fs: Ignoring removed mblk_io_submit option
[  593.303772][T14728] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000d40000 ro. Quota mode: writeback.
[  593.361930][T14724] EXT4-fs: Mount option(s) incompatible with ext3
[  593.431904][T14724] loop0: detected capacity change from 0 to 64
[  593.462572][T14724] hfs: Unknown parameter 'd�2'�mask'
[  593.629556][T14728] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  594.613668][T14762] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2910'.
[  596.554776][T14780] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2915'.
[  596.820838][T14788] netlink: 'syz.0.2915': attribute type 1 has an invalid length.
[  596.832481][T14789] bridge0: port 1(bridge_slave_0) entered disabled state
[  596.868377][T14789] bridge0: entered allmulticast mode
[  596.871867][T14788] netlink: 224 bytes leftover after parsing attributes in process `syz.0.2915'.
[  597.420012][T14807] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2923'.
[  598.600919][T14805] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2921'.
[  599.664254][T14824] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2931'.
[  599.748238][T14827] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2929'.
[  599.759898][T14826] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2932'.
[  599.831263][T14826] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2932'.
[  600.280344][T14841] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2936'.
[  600.386447][T14843] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2937'.
[  600.550203][T14845] lo speed is unknown, defaulting to 1000
[  600.557336][T14845] lo speed is unknown, defaulting to 1000
[  600.666346][T14847] lo speed is unknown, defaulting to 1000
[  600.694440][T14847] lo speed is unknown, defaulting to 1000
[  601.257196][T14860] loop1: detected capacity change from 0 to 1024
[  601.264612][T14860] EXT4-fs: Ignoring removed bh option
[  602.828270][T14860] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  603.054501][T14871] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2944'.
[  603.193006][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  603.338712][T14875] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  603.416723][T14883] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2950'.
[  603.501627][T14881] loop1: detected capacity change from 0 to 512
[  603.575725][T14881] EXT4-fs: Ignoring removed mblk_io_submit option
[  603.589930][T14881] EXT4-fs: Mount option(s) incompatible with ext3
[  603.620725][T14893] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2954'.
[  603.663962][T14881] loop1: detected capacity change from 0 to 64
[  603.741276][T14881] hfs: Unknown parameter 'd�2'�mask'
[  605.376507][T14914] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2960'.
[  607.448045][T14935] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2967'.
[  607.544041][T14929] netlink: 1284 bytes leftover after parsing attributes in process `syz.4.2955'.
[  607.614115][T14929] openvswitch: netlink: Missing key (keys=40, expected=80)
[  607.824564][T14937] bridge0: left allmulticast mode
[  607.830549][T14937] 8021q: adding VLAN 0 to HW filter on device bond0
[  607.842023][T14937] 8021q: adding VLAN 0 to HW filter on device team0
[  607.902733][T14937] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  608.174944][T14953] bridge0: entered allmulticast mode
[  608.960475][T14971] lo speed is unknown, defaulting to 1000
[  608.979566][T14971] lo speed is unknown, defaulting to 1000
[  610.284726][T14989] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2987'.
[  610.484774][T14989] netlink: 'syz.1.2987': attribute type 1 has an invalid length.
[  610.492617][T14989] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2987'.
[  610.863071][T15011] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2994'.
[  610.988076][T15011] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2994'.
[  611.248399][T15018] tmpfs: Bad value for 'mpol'
[  614.332922][T15043] netlink: 76 bytes leftover after parsing attributes in process `syz.4.3001'.
[  615.817350][T15042] netlink: 76 bytes leftover after parsing attributes in process `syz.2.3002'.
[  617.115392][T15053] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3008'.
[  617.821710][T15065] loop1: detected capacity change from 0 to 512
[  617.990966][T15065] EXT4-fs: Ignoring removed mblk_io_submit option
[  618.729175][T15062] tmpfs: Bad value for 'mpol'
[  618.822837][T15065] /dev/loop1: Can't open blockdev
[  619.434145][T15074] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3013'.
[  620.380355][T15087] loop0: detected capacity change from 0 to 1024
[  620.400617][T15087] EXT4-fs (loop0): stripe (6) is not aligned with cluster size (16), stripe is disabled
[  620.613349][T15087] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  620.659666][   T29] audit: type=1804 audit(1735968095.279:170): pid=15087 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3017" name="/newroot/501/file1/bus" dev="loop0" ino=18 res=1 errno=0
[  620.736432][   T29] audit: type=1804 audit(1735968095.349:171): pid=15087 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.3017" name="/newroot/501/file1/bus" dev="loop0" ino=18 res=1 errno=0
[  622.008918][T15110] netlink: 'syz.2.3025': attribute type 1 has an invalid length.
[  622.169908][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  622.232168][T15110] bond3: entered promiscuous mode
[  622.254052][T15110] 8021q: adding VLAN 0 to HW filter on device bond3
[  622.656855][T15114] xt_CT: You must specify a L4 protocol and not use inversions on it
[  622.990978][T15122] ip6t_REJECT: ECHOREPLY is not supported
[  623.875181][T15119] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3026'.
[  623.926145][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  625.620549][T15140] ip6t_REJECT: ECHOREPLY is not supported
[  627.034754][T15135] loop0: detected capacity change from 0 to 512
[  627.041968][T15135] EXT4-fs: Ignoring removed mblk_io_submit option
[  627.075005][T15148] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode
[  627.082023][T15148] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode
[  627.489977][T15135] EXT4-fs: Mount option(s) incompatible with ext3
[  627.655672][T15135] loop0: detected capacity change from 0 to 64
[  627.711137][T15135] hfs: Unknown parameter 'd�2'�mask'
[  627.768852][T15153] netlink: 76 bytes leftover after parsing attributes in process `syz.5.3036'.
[  628.862093][T15160] netlink: 'syz.3.3039': attribute type 1 has an invalid length.
[  628.885980][T15161] overlayfs: failed to resolve './file1': -2
[  628.965842][T15160] bond2: entered promiscuous mode
[  629.260879][T15170] netlink: 36 bytes leftover after parsing attributes in process `syz.1.3037'.
[  629.612308][T15160] 8021q: adding VLAN 0 to HW filter on device bond2
[  630.430632][T15179] mac80211_hwsim hwsim12 wlan0: entered promiscuous mode
[  630.704973][T15179] mac80211_hwsim hwsim12 wlan0: entered allmulticast mode
[  633.948935][T15221] tmpfs: Bad value for 'mpol'
[  640.639771][T15258] netlink: 'syz.2.3068': attribute type 1 has an invalid length.
[  640.800400][T15258] bond4: entered promiscuous mode
[  640.879105][T15258] 8021q: adding VLAN 0 to HW filter on device bond4
[  641.260127][T15276] overlayfs: failed to clone upperpath
[  641.308016][T15279] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3075'.
[  642.894907][T15308] netlink: 'syz.5.3086': attribute type 1 has an invalid length.
[  642.969801][T15308] bond3: entered promiscuous mode
[  643.130581][T15308] 8021q: adding VLAN 0 to HW filter on device bond3
[  643.200340][T15311] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3089'.
[  643.270243][T15313] loop0: detected capacity change from 0 to 32768
[  643.306575][T15320] overlayfs: failed to clone upperpath
[  645.082028][T15313] JBD2: Ignoring recovery information on journal
[  645.092158][T15313] jbd2_journal_bmap: journal block not found at offset 64 on loop0-27
[  645.100536][T15313] JBD2: bad block at offset 64
[  646.035978][T15313] JBD2: journal reset failed
[  646.040649][T15313] (syz.0.3087,15313,0):ocfs2_journal_load:1145 ERROR: Failed to load journal!
[  646.049767][T15313] (syz.0.3087,15313,0):ocfs2_check_volume:2428 ERROR: ocfs2 journal load failed! -4
[  649.595776][T15358] loop1: detected capacity change from 0 to 128
[  649.848081][T15358] EXT4-fs (loop1): Test dummy encryption mode enabled
[  650.133747][T15358] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  650.201891][T15358] ext4 filesystem being mounted at /522/w��5�T��)�`)Y�F�nA��@T<�3�ڂ$���r�cnH�<�p�r��>�wC�" ��-������8 supports timestamps until 2038-01-19 (0x7fffffff)
[  650.317196][T15358] EXT4-fs error (device loop1): ext4_validate_block_bitmap:423: comm syz.1.3099: bg 0: bad block bitmap checksum
[  650.474220][T15376] 8021q: adding VLAN 0 to HW filter on device bond0
[  650.505233][T15376] 8021q: adding VLAN 0 to HW filter on device team0
[  650.549381][T15376] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  650.575521][ T5829] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  650.584758][T15378] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3106'.
[  651.007361][T15396] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3113'.
[  651.122684][T15406] netlink: 76 bytes leftover after parsing attributes in process `syz.4.3114'.
[  652.049004][    T8] IPVS: starting estimator thread 0...
[  652.055433][T15404] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  652.092033][T15401] netlink: 'syz.5.3112': attribute type 10 has an invalid length.
[  652.143569][T15412] IPVS: using max 19 ests per chain, 45600 per kthread
[  653.291918][T15431] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3124'.
[  654.680301][T15438] bridge0: port 1(bridge_slave_0) entered blocking state
[  654.687591][T15438] bridge0: port 1(bridge_slave_0) entered forwarding state
[  654.761447][T15438] bridge0: left allmulticast mode
[  654.800858][T15438] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  659.857277][T15478] xt_CT: You must specify a L4 protocol and not use inversions on it
[  660.540903][T15499] loop1: detected capacity change from 0 to 1024
[  660.614753][T15499] EXT4-fs (loop1): stripe (6) is not aligned with cluster size (16), stripe is disabled
[  660.721210][T15499] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  663.031770][   T29] audit: type=1804 audit(1735968137.639:172): pid=15491 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3137" name="/newroot/526/file1/bus" dev="loop1" ino=18 res=1 errno=0
[  663.110391][   T29] audit: type=1804 audit(1735968137.639:173): pid=15491 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.3137" name="/newroot/526/file1/bus" dev="loop1" ino=18 res=1 errno=0
[  663.270458][T15528] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  663.488819][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  665.783581][T15547] netlink: 76 bytes leftover after parsing attributes in process `syz.5.3160'.
[  666.590456][T15541] netlink: 1284 bytes leftover after parsing attributes in process `syz.4.3157'.
[  666.623814][T15557] loop1: detected capacity change from 0 to 1024
[  666.652731][T15541] openvswitch: netlink: Missing key (keys=40, expected=80)
[  666.926644][T15557] EXT4-fs (loop1): stripe (6) is not aligned with cluster size (16), stripe is disabled
[  667.056314][T15567] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3167'.
[  667.087538][T15557] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  667.192645][T15563] loop0: detected capacity change from 0 to 32768
[  667.199648][   T29] audit: type=1804 audit(1735968141.809:174): pid=15557 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.3163" name="/newroot/530/file1/bus" dev="loop1" ino=18 res=1 errno=0
[  667.263630][   T29] audit: type=1804 audit(1735968141.809:175): pid=15557 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.3163" name="/newroot/530/file1/bus" dev="loop1" ino=18 res=1 errno=0
[  667.357194][T15563] JBD2: Ignoring recovery information on journal
[  667.366916][T15563] jbd2_journal_bmap: journal block not found at offset 64 on loop0-27
[  667.375290][T15563] JBD2: bad block at offset 64
[  667.476169][T15563] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  667.648032][ T5829] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  669.435960][ T5827] ocfs2: Unmounting device (7,0) on (node local)
[  670.432226][T15609] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3178'.
[  670.677239][T15606] loop1: detected capacity change from 0 to 8192
[  670.684763][T15606] vfat: Unknown parameter '�18446744073709551615���(R�@��q��x}>:Lǖh�"��4ݡ+Ʀ`)�K}>�2"5�|�jك��y�i�H��?o:1M��W�Zܸf�2@�o��/V�w��{7����"v���Qh���e�2��P߅�G*�'
[  674.002688][T15649] siw: device registration error -23
[  674.188908][T15657] netlink: 32 bytes leftover after parsing attributes in process `syz.3.3190'.
[  674.481106][   T29] audit: type=1326 audit(1735968149.069:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15655 comm="syz.4.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bd5f85d29 code=0x7ffc0000
[  675.259779][   T29] audit: type=1326 audit(1735968149.419:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15655 comm="syz.4.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f6bd5f85d29 code=0x7ffc0000
[  675.283666][   T29] audit: type=1326 audit(1735968149.419:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15655 comm="syz.4.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bd5f85d29 code=0x7ffc0000
[  675.510323][   T29] audit: type=1326 audit(1735968149.419:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15655 comm="syz.4.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f6bd5f85d29 code=0x7ffc0000
[  675.532770][   T29] audit: type=1326 audit(1735968149.929:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15655 comm="syz.4.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bd5f85d29 code=0x7ffc0000
[  675.555497][   T29] audit: type=1326 audit(1735968149.929:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15655 comm="syz.4.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bd5f85d29 code=0x7ffc0000
[  676.382224][   T29] audit: type=1326 audit(1735968150.999:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15655 comm="syz.4.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6bd5f85d29 code=0x7ffc0000
[  676.506027][   T29] audit: type=1326 audit(1735968150.999:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15655 comm="syz.4.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bd5f85d29 code=0x7ffc0000
[  676.652892][   T29] audit: type=1326 audit(1735968151.029:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15655 comm="syz.4.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6bd5f85d29 code=0x7ffc0000
[  676.780627][T15682] 9pnet_fd: Insufficient options for proto=fd
[  676.976075][   T29] audit: type=1326 audit(1735968151.029:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15655 comm="syz.4.3194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bd5f85d29 code=0x7ffc0000
[  678.068379][T15713] siw: device registration error -23
[  678.082400][T15716] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3212'.
[  682.633238][T15731] loop0: detected capacity change from 0 to 1024
[  684.177037][T15731] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  684.907308][   T29] kauditd_printk_skb: 15 callbacks suppressed
[  684.907334][   T29] audit: type=1800 audit(1735968159.529:201): pid=15731 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3216" name="file1" dev="loop0" ino=15 res=0 errno=0
[  684.990015][T15731] netlink: 1284 bytes leftover after parsing attributes in process `syz.0.3216'.
[  684.999504][T15731] openvswitch: netlink: Missing key (keys=40, expected=80)
[  685.158957][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  685.323029][T15752] netlink: 1284 bytes leftover after parsing attributes in process `syz.4.3218'.
[  685.332375][T15752] openvswitch: netlink: Missing key (keys=40, expected=80)
[  685.394196][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  685.845385][T15756] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3223'.
[  685.854942][T15756] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3223'.
[  686.254157][T15771] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3227'.
[  686.453242][T15777] siw: device registration error -23
[  688.115034][T15798] netlink: 76 bytes leftover after parsing attributes in process `syz.2.3235'.
[  688.442894][   T29] audit: type=1326 audit(1735968163.059:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15799 comm="syz.4.3237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bd5f85d29 code=0x7ffc0000
[  688.465938][   T29] audit: type=1326 audit(1735968163.059:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15799 comm="syz.4.3237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bd5f85d29 code=0x7ffc0000
[  688.513559][   T29] audit: type=1326 audit(1735968163.079:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15799 comm="syz.4.3237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f6bd5f85d29 code=0x7ffc0000
[  688.566996][   T29] audit: type=1326 audit(1735968163.089:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15799 comm="syz.4.3237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bd5f85d29 code=0x7ffc0000
[  688.590535][   T29] audit: type=1326 audit(1735968163.109:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15799 comm="syz.4.3237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bd5f85d29 code=0x7ffc0000
[  688.639007][   T29] audit: type=1326 audit(1735968163.109:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15799 comm="syz.4.3237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f6bd5f85d29 code=0x7ffc0000
[  688.778295][   T29] audit: type=1326 audit(1735968163.109:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15799 comm="syz.4.3237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bd5f85d29 code=0x7ffc0000
[  688.842031][   T29] audit: type=1326 audit(1735968163.109:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15799 comm="syz.4.3237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6bd5f85d29 code=0x7ffc0000
[  691.164620][T15820] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3244'.
[  691.173755][T15820] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3244'.
[  691.513192][T15842] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3249'.
[  698.247005][T15894] netlink: 1284 bytes leftover after parsing attributes in process `syz.2.3258'.
[  698.256296][T15894] openvswitch: netlink: Missing key (keys=40, expected=80)
[  702.250986][T15928] netlink: 36 bytes leftover after parsing attributes in process `syz.5.3269'.
[  706.232231][T15963] netlink: 1284 bytes leftover after parsing attributes in process `syz.2.3279'.
[  706.241622][T15963] openvswitch: netlink: Missing key (keys=40, expected=80)
[  707.992717][T15965] lo speed is unknown, defaulting to 1000
[  708.064742][T15965] lo speed is unknown, defaulting to 1000
[  708.316835][   T29] audit: type=1326 audit(1735968182.929:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15978 comm="syz.1.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a9ab85d29 code=0x7ffc0000
[  708.374286][T15989] siw: device registration error -23
[  708.400709][T15989] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3288'.
[  708.411550][   T29] audit: type=1326 audit(1735968182.939:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15978 comm="syz.1.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a9ab85d29 code=0x7ffc0000
[  708.538561][   T29] audit: type=1326 audit(1735968182.939:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15978 comm="syz.1.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f7a9ab85d29 code=0x7ffc0000
[  708.604867][   T29] audit: type=1326 audit(1735968182.949:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15978 comm="syz.1.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a9ab85d29 code=0x7ffc0000
[  708.627500][   T29] audit: type=1326 audit(1735968182.949:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15978 comm="syz.1.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a9ab85d29 code=0x7ffc0000
[  708.650263][   T29] audit: type=1326 audit(1735968182.949:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15978 comm="syz.1.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f7a9ab85d29 code=0x7ffc0000
[  708.672870][   T29] audit: type=1326 audit(1735968182.949:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15978 comm="syz.1.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a9ab85d29 code=0x7ffc0000
[  708.696119][   T29] audit: type=1326 audit(1735968182.949:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15978 comm="syz.1.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f7a9ab84690 code=0x7ffc0000
[  708.768355][   T29] audit: type=1326 audit(1735968182.949:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15978 comm="syz.1.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a9ab85d29 code=0x7ffc0000
[  709.164481][   T29] audit: type=1326 audit(1735968182.979:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15978 comm="syz.1.3256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7a9ab85d29 code=0x7ffc0000
[  715.306517][T16043] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  715.437930][T16044] loop0: detected capacity change from 0 to 512
[  715.449910][T16044] ext4: Unknown parameter 'subj_type'
[  715.620150][T16043] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  715.801524][T16043] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  715.909685][T16043] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  715.920084][T16043] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  715.935510][T16043] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  716.093104][T16037] lo speed is unknown, defaulting to 1000
[  716.114762][T16037] lo speed is unknown, defaulting to 1000
[  716.454880][T16061] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3307'.
[  719.307347][ T5844] Bluetooth: hci1: command tx timeout
[  719.950419][T16088] loop0: detected capacity change from 0 to 1024
[  719.961585][T16088] EXT4-fs: Ignoring removed bh option
[  720.231687][T16088] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  720.805206][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  721.567511][T16037] chnl_net:caif_netlink_parms(): no params data found
[  721.583905][T16043] Bluetooth: hci1: command tx timeout
[  723.774752][T16043] Bluetooth: hci1: command tx timeout
[  726.003991][T16043] Bluetooth: hci1: command tx timeout
[  726.098164][T16134] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3322'.
[  727.874655][T16037] bridge0: port 1(bridge_slave_0) entered blocking state
[  727.920929][T16037] bridge0: port 1(bridge_slave_0) entered disabled state
[  727.990111][T16037] bridge_slave_0: entered allmulticast mode
[  728.024768][T16037] bridge_slave_0: entered promiscuous mode
[  728.049690][T16037] bridge0: port 2(bridge_slave_1) entered blocking state
[  728.084863][T16037] bridge0: port 2(bridge_slave_1) entered disabled state
[  728.092234][T16037] bridge_slave_1: entered allmulticast mode
[  729.407119][T16037] bridge_slave_1: entered promiscuous mode
[  732.428601][T16037] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  732.447283][T16037] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  733.412178][T16037] team0: Port device team_slave_0 added
[  733.421573][T16037] team0: Port device team_slave_1 added
[  734.704322][   T33] bridge_slave_1: left allmulticast mode
[  734.712290][   T33] bridge_slave_1: left promiscuous mode
[  734.732089][   T33] bridge0: port 2(bridge_slave_1) entered disabled state
[  737.230954][   T33] bridge_slave_0: left allmulticast mode
[  737.260170][   T33] bridge_slave_0: left promiscuous mode
[  737.300857][   T33] bridge0: port 1(bridge_slave_0) entered disabled state
[  739.893596][T16218] netlink: 1284 bytes leftover after parsing attributes in process `syz.2.3347'.
[  739.903106][T16218] openvswitch: netlink: Missing key (keys=40, expected=80)
[  742.231954][   T33] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  742.255128][   T33] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  742.270137][   T33] bond0 (unregistering): Released all slaves
[  742.289171][   T33] bond1 (unregistering): Released all slaves
[  742.391359][   T33] bond2 (unregistering): Released all slaves
[  742.508505][   T33] bond3 (unregistering): Released all slaves
[  742.536593][T16037] batman_adv: batadv0: Adding interface: batadv_slave_0
[  742.544180][T16037] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  742.609748][T16037] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  742.639730][T16208] lo speed is unknown, defaulting to 1000
[  742.646790][T16208] lo speed is unknown, defaulting to 1000
[  742.687834][T16239] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3353'.
[  742.698120][T16245] netlink: 'syz.0.3353': attribute type 1 has an invalid length.
[  742.766825][T16037] batman_adv: batadv0: Adding interface: batadv_slave_1
[  742.779567][T16037] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  742.806293][T16245] netlink: 224 bytes leftover after parsing attributes in process `syz.0.3353'.
[  742.828970][T16037] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  746.188071][T16277] netlink: 1284 bytes leftover after parsing attributes in process `syz.3.3361'.
[  746.197500][T16277] openvswitch: netlink: Missing key (keys=40, expected=80)
[  747.281659][ T1288] ieee802154 phy1 wpan1: encryption failed: -22
[  747.312447][T16283] loop0: detected capacity change from 0 to 1024
[  747.779783][T16283] EXT4-fs (loop0): stripe (6) is not aligned with cluster size (16), stripe is disabled
[  748.373073][T16283] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  748.547229][   T29] kauditd_printk_skb: 36 callbacks suppressed
[  748.547253][   T29] audit: type=1804 audit(1735968223.169:256): pid=16283 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.3363" name="/newroot/558/file1/bus" dev="loop0" ino=18 res=1 errno=0
[  748.640600][T16037] hsr_slave_0: entered promiscuous mode
[  748.677666][   T29] audit: type=1804 audit(1735968223.199:257): pid=16283 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.3363" name="/newroot/558/file1/bus" dev="loop0" ino=18 res=1 errno=0
[  748.716265][T16037] hsr_slave_1: entered promiscuous mode
[  748.751148][T16037] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  748.780361][T16037] Cannot create hsr debugfs directory
[  749.050623][ T5827] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  750.031454][   T33] hsr_slave_0: left promiscuous mode
[  750.093205][   T33] hsr_slave_1: left promiscuous mode
[  750.273753][   T33] batman_adv: batadv0: Removing interface: batadv_slave_0
[  750.374310][   T33] batman_adv: batadv0: Removing interface: batadv_slave_1
[  751.685777][   T33] team0 (unregistering): Port device team_slave_1 removed
[  751.736411][   T33] team0 (unregistering): Port device team_slave_0 removed
[  753.447976][T16342] netlink: 'syz.3.3380': attribute type 10 has an invalid length.
[  753.857393][T16305] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3369'.
[  753.920815][T16328] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  753.928366][T16328] IPv6: NLM_F_CREATE should be set when creating new route
[  755.500244][T16037] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  755.963798][T16037] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  756.030558][T16363] netlink: 'syz.0.3386': attribute type 4 has an invalid length.
[  756.057140][T16363] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.3386'.
[  756.093189][T16037] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  756.211012][T16037] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  756.341025][T16374] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3390'.
[  756.563006][T16037] 8021q: adding VLAN 0 to HW filter on device bond0
[  756.897966][T16037] 8021q: adding VLAN 0 to HW filter on device team0
[  759.523569][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  759.530716][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  759.733333][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  759.740569][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  759.823211][T16403] vlan1: entered promiscuous mode
[  760.297118][T16037] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  760.369505][T16037] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  761.477295][T16037] 8021q: adding VLAN 0 to HW filter on device batadv0
[  761.517360][T16432] BUG: unable to handle page fault for address: fffffbfff3f8171b
[  761.525174][T16432] #PF: supervisor read access in kernel mode
[  761.531169][T16432] #PF: error_code(0x0000) - not-present page
[  761.537160][T16432] PGD 23ffe4067 P4D 23ffe4067 PUD 23ffe3067 PMD 0 
[  761.543718][T16432] Oops: Oops: 0000 [#1] PREEMPT SMP KASAN NOPTI
[  761.550006][T16432] CPU: 0 UID: 0 PID: 16432 Comm: syz.0.3404 Not tainted 6.13.0-rc5-syzkaller-00161-g63676eefb7a0 #0
[  761.560788][T16432] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  761.570865][T16432] RIP: 0010:kasan_check_range+0x82/0x290
[  761.576540][T16432] Code: 01 00 00 00 00 fc ff df 4f 8d 3c 31 4c 89 fd 4c 29 dd 48 83 fd 10 7f 29 48 85 ed 0f 84 3e 01 00 00 4c 89 cd 48 f7 d5 48 01 dd <41> 80 3b 00 0f 85 c9 01 00 00 49 ff c3 48 ff c5 75 ee e9 1e 01 00
[  761.596423][T16432] RSP: 0018:ffffc9000548f640 EFLAGS: 00010086
[  761.602497][T16432] RAX: 000000000172ce01 RBX: 1ffffffff3f8171b RCX: ffffffff817ad1b4
[  761.610472][T16432] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff9fc0b8d8
[  761.618446][T16432] RBP: ffffffffffffffff R08: ffffffff9fc0b8df R09: 1ffffffff3f8171b
[  761.626423][T16432] R10: dffffc0000000000 R11: fffffbfff3f8171b R12: ffff88807c4428c4
[  761.634403][T16432] R13: ffff88807c441e00 R14: dffffc0000000001 R15: fffffbfff3f8171c
[  761.642386][T16432] FS:  00007f9fc67b06c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  761.651318][T16432] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  761.657901][T16432] CR2: fffffbfff3f8171b CR3: 0000000031f06000 CR4: 0000000000350ef0
[  761.665892][T16432] Call Trace:
[  761.669169][T16432]  <TASK>
[  761.672101][T16432]  ? __die_body+0x5f/0xb0
[  761.676449][T16432]  ? page_fault_oops+0x8e4/0xcc0
[  761.681407][T16432]  ? srso_alias_return_thunk+0x5/0xfbef5
[  761.687135][T16432]  ? __pfx_page_fault_oops+0x10/0x10
[  761.692439][T16432]  ? srso_alias_return_thunk+0x5/0xfbef5
[  761.698083][T16432]  ? is_prefetch+0x4f6/0x780
[  761.702692][T16432]  ? __pfx_is_prefetch+0x10/0x10
[  761.707674][T16432]  ? __bad_area_nosemaphore+0x118/0x770
[  761.713267][T16432]  ? _raw_spin_unlock_irqrestore+0x8f/0x140
[  761.719174][T16432]  ? srso_alias_return_thunk+0x5/0xfbef5
[  761.724819][T16432]  ? srso_alias_return_thunk+0x5/0xfbef5
[  761.730720][T16432]  ? validate_chain+0x11e/0x5920
[  761.735691][T16432]  ? __pfx___bad_area_nosemaphore+0x10/0x10
[  761.741881][T16432]  ? srso_alias_return_thunk+0x5/0xfbef5
[  761.747518][T16432]  ? spurious_kernel_fault+0x119/0x5a0
[  761.752995][T16432]  ? do_kern_addr_fault+0x30/0x80
[  761.758046][T16432]  ? exc_page_fault+0x5c8/0x8b0
[  761.762917][T16432]  ? asm_exc_page_fault+0x26/0x30
[  761.767963][T16432]  ? __lock_acquire+0xc94/0x2100
[  761.772908][T16432]  ? kasan_check_range+0x82/0x290
[  761.777949][T16432]  __lock_acquire+0xc94/0x2100
[  761.782747][T16432]  lock_acquire+0x1ed/0x550
[  761.787260][T16432]  ? raw_spin_rq_lock_nested+0xb0/0x140
[  761.792823][T16432]  ? mark_lock+0x9a/0x360
[  761.797257][T16432]  ? __pfx_lock_acquire+0x10/0x10
[  761.802338][T16432]  _raw_spin_lock_nested+0x31/0x40
[  761.807464][T16432]  ? raw_spin_rq_lock_nested+0xb0/0x140
[  761.813031][T16432]  raw_spin_rq_lock_nested+0xb0/0x140
[  761.818425][T16432]  sched_mm_cid_exit_signals+0x17b/0x4b0
[  761.824073][T16432]  ? __pfx_sched_mm_cid_exit_signals+0x10/0x10
[  761.830240][T16432]  ? rcu_read_lock_any_held+0xb7/0x160
[  761.835715][T16432]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  761.841638][T16432]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  761.847019][T16432]  exit_signals+0x357/0x5c0
[  761.851540][T16432]  ? _raw_spin_lock_irq+0xdf/0x120
[  761.856666][T16432]  ? __pfx_exit_signals+0x10/0x10
[  761.861720][T16432]  ? _raw_spin_unlock_irq+0x23/0x50
[  761.866943][T16432]  ? srso_alias_return_thunk+0x5/0xfbef5
[  761.872585][T16432]  ? lockdep_hardirqs_on+0x99/0x150
[  761.877799][T16432]  do_exit+0x6af/0x28e0
[  761.881976][T16432]  ? srso_alias_return_thunk+0x5/0xfbef5
[  761.887612][T16432]  ? __pfx_do_exit+0x10/0x10
[  761.892209][T16432]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  761.897585][T16432]  ? srso_alias_return_thunk+0x5/0xfbef5
[  761.903221][T16432]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  761.909211][T16432]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  761.915546][T16432]  ? _raw_spin_lock_irq+0xdf/0x120
[  761.920672][T16432]  do_group_exit+0x207/0x2c0
[  761.925384][T16432]  ? _raw_spin_unlock_irq+0x23/0x50
[  761.930594][T16432]  ? srso_alias_return_thunk+0x5/0xfbef5
[  761.936241][T16432]  ? lockdep_hardirqs_on+0x99/0x150
[  761.941477][T16432]  get_signal+0x16b2/0x1750
[  761.946008][T16432]  ? srso_alias_return_thunk+0x5/0xfbef5
[  761.951650][T16432]  ? __pfx_get_signal+0x10/0x10
[  761.956525][T16432]  arch_do_signal_or_restart+0x96/0x860
[  761.962093][T16432]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  761.968265][T16432]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  761.974265][T16432]  ? syscall_exit_to_user_mode+0xa3/0x340
[  761.980003][T16432]  syscall_exit_to_user_mode+0xce/0x340
[  761.985567][T16432]  do_syscall_64+0x100/0x230
[  761.990177][T16432]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  761.996087][T16432] RIP: 0033:0x7f9fc5985d29
[  762.000505][T16432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  762.020124][T16432] RSP: 002b:00007f9fc67b00e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  762.028553][T16432] RAX: fffffffffffffe00 RBX: 00007f9fc5b76168 RCX: 00007f9fc5985d29
[  762.036530][T16432] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f9fc5b76168
[  762.044507][T16432] RBP: 00007f9fc5b76160 R08: 0000000000000000 R09: 0000000000000000
[  762.052478][T16432] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f9fc5b7616c
[  762.060462][T16432] R13: 0000000000000000 R14: 00007ffcf575b270 R15: 00007ffcf575b358
[  762.068454][T16432]  </TASK>
[  762.071506][T16432] Modules linked in:
[  762.075406][T16432] CR2: fffffbfff3f8171b
[  762.079561][T16432] ---[ end trace 0000000000000000 ]---
[  762.085098][T16432] RIP: 0010:kasan_check_range+0x82/0x290
[  762.090760][T16432] Code: 01 00 00 00 00 fc ff df 4f 8d 3c 31 4c 89 fd 4c 29 dd 48 83 fd 10 7f 29 48 85 ed 0f 84 3e 01 00 00 4c 89 cd 48 f7 d5 48 01 dd <41> 80 3b 00 0f 85 c9 01 00 00 49 ff c3 48 ff c5 75 ee e9 1e 01 00
[  762.110376][T16432] RSP: 0018:ffffc9000548f640 EFLAGS: 00010086
[  762.116451][T16432] RAX: 000000000172ce01 RBX: 1ffffffff3f8171b RCX: ffffffff817ad1b4
[  762.124429][T16432] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff9fc0b8d8
[  762.132408][T16432] RBP: ffffffffffffffff R08: ffffffff9fc0b8df R09: 1ffffffff3f8171b
[  762.140382][T16432] R10: dffffc0000000000 R11: fffffbfff3f8171b R12: ffff88807c4428c4
[  762.148357][T16432] R13: ffff88807c441e00 R14: dffffc0000000001 R15: fffffbfff3f8171c
[  762.156334][T16432] FS:  00007f9fc67b06c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  762.165266][T16432] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  762.171855][T16432] CR2: fffffbfff3f8171b CR3: 0000000031f06000 CR4: 0000000000350ef0
[  762.179923][T16432] Kernel panic - not syncing: Fatal exception
[  762.186333][T16432] Kernel Offset: disabled
[  762.190659][T16432] Rebooting in 86400 seconds..