last executing test programs:

16.728216141s ago: executing program 2 (id=401):
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000000180)='./file0\x00', 0x0, &(0x7f0000000440), 0x1, 0x559d, &(0x7f0000005680)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x22)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r1, &(0x7f00000000c0)="a6", 0x1, 0x8000c61)
r2 = syz_init_net_socket$ax25(0x3, 0x3, 0xc4)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f01ebbeeb, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00'}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001080)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bind$ax25(r2, &(0x7f0000000080)={{0x3, @default, 0x2}, [@bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @null, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast]}, 0x48)
socket$nl_netfilter(0x10, 0x3, 0xc)
rename(&(0x7f0000000180)='./file1\x00', &(0x7f00000001c0)='./file2\x00')
lseek(r0, 0x8183, 0x3)

14.412541983s ago: executing program 3 (id=405):
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, 0x0)
r0 = msgget(0x2, 0x301)
msgrcv(r0, 0x0, 0x0, 0x2, 0x1000)
msgctl$IPC_RMID(r0, 0x0)
gettid()
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB], 0x110}}, 0x4008004)
r3 = syz_open_procfs(0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r3}})
write$P9_RSTATu(r2, &(0x7f0000000080)={0x50e, 0x7d, 0x0, {{0x500, 0x1f8, 0x0, 0x440, {0x0, 0x0, 0x2}, 0x4840000, 0x0, 0xd, 0x0, 0x10f, '\x04nodZ=\xbfd`\xd2\xc2\x97D,\x027\xfcb%\xff\xff\xff\x80\x05\x00\x00\x00\x00\x00\x00\xff\x03\xff\x92\xe9\x16\x00\x05\x00\x00\x00,\x93\xcb=\xb6\xc21\xd1\x19\xaa\xa1ou\xc5\x8f\xa6\x88\x9f\xf3\xc8\xf7\xab\xc6\x1bY\xa1\xd2o\fJ\xf8\xe2\x93\xd3\xf8l\xcd\xc6o\xf5{\xe9\x00\x00\x00\x00\x00\x00\x00\x03\xd5\x89-\x8e\xfe\xbb\x9e\x05\xac\nk\xc5)`z\xc6\x8a8\x13\xaf\xe7\x9e\x85cj\xfdl]\x15\xb2\xae\xbb\xb7\xee;\x1e\xae\x8a\x7f\xbe.\x85\x88s\x14\xcb\xec\xf0\xa1\xa5\x124z\x8c\x15D#:\xf0v\xbe\x13\xd5Rw\xb3 \xd1\xe1\xc0\x10Uz\xaaw\x16^Q`208^|\'\x01\x00\xacB3\x00D\xa9\b=\xe5\xbe\xd8\xe0\xbd(h\"\x94\xf68\xc3\x8e%uj\xb0\xb0\x7fe\xdb\xd6$\xee\x95_}\xa7\x8e\xe1\x96I7?0\xe3\xf7\xb9d\xf0\xa2f\xc3\xac\x9ePwS\xa3\xc4\x03\xc8{\xf1Jv\x87%\x91h\xb4[\xbdz\x1f\xd8`\x0e\xa1.\x00\xdb\xfeL\x1a\xfe\xea\xaf\x9d{\xb4\xa7Z\x1c\x82', 0x2b, 'p\x02\x00}\xfag>\xff\xeb\t\xb55\x1f[\xde\x05@\x00\x00\x00Y_\xcb\x14\x03CT\xb9\xfd\x9e\xf1\x96\xa5\x1c\xd5\x15z\xdc\x81\x06\xb4\x94\xe1', 0x35, '\xcf`7-a\xcc\xea\xb8\xc8\x86A\xeb\x93\xb4\xcc\xf6\x00*\xb8{\xfc\x01\'\x96\t?h0\\M\" \x83~\x01\b\xe2\xe7HP\x1cQHK\xa0/\x10\x9c\xaa\xf9\x15\t\xa2', 0x56, '\xf8\xf6i\xfbqk\xcf1^\xca\xf3\x85@\x9a\xc6[\x94\bg\x8c,;\x9e\x1dR\xc3l\xde{\xa4\xa4\x00\xb4\xb0\xb4\xf1t\xa6f\xa8R\x9aE\x1b4\a\xdb\xda\xb2\x88K\xaf\x05\x00\x00\x00\x00\x00\x00\x00G\xec!\xca\xbf\xf2\x0f\x9c\x15\xbe6\xf4\xfd\x1aL\xdb\x80\xe8\xd4\a\x00\x00\x007\x00C'}, 0x301, 'odev/n\xb1{#\x00\xf9\xda\xa5\xee#&n\xcf\x85\xfe\xa6^B\xd9y\xa3\xfd\xe5\xf4u\xda\xf0;\x11r\xd9{\xad\xc7\tZ\xfdv\xfeO\fA\xf7\xf7t\x1e\xac\x03\x00\x00\xec\xff\x00\x00\xdb\xa0\xc2\xf7\xf0\x9f\xf5<~M\x1a\xd6n-\a\x01\x98\x01\x9f0\x11\x84G\xaau\xf8$k\xccB\xea\xa8\xc61\xc0\xc5\x00\x95\x9at\xf5\x16\x85\xf5\x06\xae\x89H\x06\x87\x82g\xd5\xa1)\x8dy,J7\xf2\xe1\xcb\xbd$\x82\x92\x9a\r\x89r\xb5\xcfs.\xa5\xb0\xd7#\x85\x93\xae\xd3\xb4.\xe7\xca\xc0}\xe0\x9d\x1dh\xa6\x033\xa8\x82F}+1\xaa\xfbV\xc5}}\xc6&\xe49\a\x96\xa1\xebH\'Fi\xab\x13\xf8\xb1\x1d\x14`Y\xf3\x10\xe2cMY?\xece\xd5)\xf3\x82\x06fd\xc0\xfbNL\x90W\np\x04\x9f9\x9f\x06\x1fu\xb7y|\xe1\xfe\x11\xea\x91\x96\t\xd5\x1aA\xdd=\xe3\x04\xbd|~\xd0\xa4V\xf0\xae\x12.a\x05\xc9\xce\x88}\xf5\xa6\xe0\xb6\xa7}Yl\xf8\x8b\xa6\xe5\xc69|}P!\xd7\x98\x95(\xfd\x179\xe1\xc2\xd8\x7f\xc2\x00\x00\x000\xe4\xee+\xfc\x7f\x80P\x85\x11C\xe5\x16\x1a\xcdG\x15\n\xcb\xaft8\"\xdf\xe2\x03\xb1\b\xd3~\x91M\xc1\xe5>#LP\x9e\xcaA\a\xa1q,\xaa\x9d\xa5=\x05\x1c6\x88Ly\x18&a\xf3\xca6\xbc\xdb\xfb\xbd&q\t\xf81\x9d\x8d\xd5\xc0p\x99\xeb\x1b\x11\x03\x06U\xf5biOat=\x19B\x1bJ\x19\xef\x8b\x8bL\xe9\xc9\x93\xc7\xd6\xcb0\fNezNP\xa3[\\\xc1k\x8c\x16\x1a\x8e=\xf9\x03k\xbc\xf2\x8a\xdc\xd1\x9alL)\x17\t\xae\xe5\xab>[\xc5\xae)\xf4u\xe4\xd2D\b\xb5\x16}\x0f\xaf_\xc1Vkp\\\x8b`\xaf\xa8\xac\xa4/~\x04i\x18\x8a\x0e\xf0b\xca\x18\xe3\x8f\x9e\xe1\n\xc7}+~\xb9\xd6\x0e\xa7\x9f\xdbUd\x11H[\x1b\x13\xdb\xb8\xa2\xa6b.\xbc\xf8Lio\xa4\xda!\xba\xd22\r\rh\xe9\xbfCF\xf0ha\x19\xa3\x9e@\x03\x95\xc8\xf2\x82^\xa0i\xae\x0e\x14;\xd1\xa4Ay\xedlTp,^\x9a\x19\xcc\x7f\xfaP\x0f\xa4\x1bl\x80I\xbd\xe4X\'\xd5N\xc9\x01\xd2z\xd1%\x05h\x89\xb33k?\x06\x83\x8c[fz\xe2.\xfe;\xc1[\x82_\x7f\xbc\xe4\x80\'(\x1c\xf9\xfe\x8f\xc2\x1f\xc7|$=\xe2g\x051\x0e\xb8\x1c\xf7M\xe0)1\x92\xa1?j\xd0W\xdea\xfd\x8a\xba\x8e\xf4C\x9b\xc0jE\xb2\xb01bQZ#C:\xfe\xb5*\xed\xb5\xabo3FS8\x05\x15\xf7y\xf3]\xc8\xa7\x8c7w$\x92\xa2(L!\xd2\x13V\xd4s\xf0\x0f\x85\x13|{\xf0cou}5(\x86\x9b?\x00w5\xcf\xf8\\\x9d\x97\x8b\xf5]\xcc&\xd6-%\xe3\b\xf0\x88\'\xa9\x1f\xf4{\xec\x92\xf8\xe9\x1ey\bfT\x00\xaaN9\xb3Y\x86#\x9d\\{\x94\x92\xc5\xbb&\xbcU\xb5[I\xedpHnn}\xa3\x8c \x84P\xf9\xf7\x9e\x1bA\x00'/769, 0xffffffffffffffff, 0xee01}}, 0x50e)

13.108314101s ago: executing program 0 (id=408):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000540)={[{@data_err_abort}, {@data_err_abort}, {@dax}, {@noload}, {@mblk_io_submit}, {@commit={'commit', 0x3d, 0x5}}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@debug}]}, 0xf6, 0x47a, &(0x7f0000000680)="$eJzs3M1vFOUfAPDvzLbl7cevFfEFBKmikfjS0vIiBy8aTThoYqIHjKfaFlJZqKE1EUK0esCjIfFu/C+MJ70Y9aKJV70bEmK4gHpZMzszpSy7ZVu2Xeh+Psl0n2fn6T7Pd2ae2Wfm2d0AetZw9ieJ+F9E/B4Rg3n21gLD+cONaxcn/752cTKJWu2tv5J6uevXLk6WRcv/25ZnarUiv6lJvZfejZioVqfPFfnR+TMfjM6dv/DCzJmJU9Onps+OHzt2+NDegaPjRzoSZxbX9d0fz+7Zdfydy29Mnrj83k9JX+RxR0McnTKcb92mnu50ZV22fUm6vmEX7fvlZrrZkUA3VSIi21399f4/GJXYsrhuMF77rKuNA9ZUrVarLXNWXqgBG1gS3W4B0B3lG312/Vsu6zT0uCdcfTm/AMrivlEs+Zq+SPPEvv6G69tOGo6IEwv/fJUtsUb3IQAAlvouG/8832z8l8bDeWIg+/P/Yg5lKCIeiIgdEfFgROyMiIci6mUfiYhHV1h/4wzJ7eOf9Mqqg2tDNv57qZjbunX8l5ZFhipFbns9/v5YOr1xIPo3nZxJpseWqeP7V3/7otW6peO/bMnqL8eCRTuu9DXcoJuamJ9YTazNXP00Yndfs/iTxTiTiNgVEbtXWcfMs30t1905/mW0ftm21b6OeCbf/wvREH8paTk/Ofbi0fEjo5ujOn1w9ORMdfpg0zp+/vXSm63qX3X8HZpKy/b/1qbH/2L8Q8nmiLnzF07X52vnVl7HpT8+b3lNs8Lj//j24vgfSN6un48GihUfTczPnxuLGEher+dveX785quV+bJ8Fv+B/c37/464uSUei4g9EbE3Ih7PLgqLtj8REU9GxP5l4v/xlafeX3n86zNXmsU/daf9H0v3/8oTldM/fNtQbeX2+DdHRKv9f7ieOlA80875r90G3u32AwAAgPtBWv8MfJKOLKbTdGQk/wz/ztiaVmfn5p87Ofvh2an8s/JD0Z+Wd7ry+8H9SZYfK+4Nl/nxhvyh4r7xl5Ut9fzI5Gx1qtvBQ4/b1qL/Z/6sdLt1wJrrwDwacJ/S/6F36f/QmxL9H3qa/g+9q1n//6Rl6ZFv1rQxwLry/g+9q43+v5A/tB4VAPcn7//Qu/R/6Ektvxuf3tVX/tc98W/xe4b3Sns2fiLSe6IZGz/R1/aPWZy/cLrs13cqXBvMy2XPbGpaposnJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgA76LwAA///J9uCF")
r0 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f076bbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mknod$loop(0x0, 0xfff, 0x0)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
socket$kcm(0x10, 0x400000002, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000003c0)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x7, 0x2, 0x1}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4040001}, 0x0)
r8 = socket(0x400000000010, 0x3, 0x0)
r9 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newtfilter={0x34, 0x2c, 0xd27, 0x30bd29, 0x21dfdbfc, {0x0, 0x0, 0x0, r10, {0x0, 0xf}, {}, {0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x24000014}, 0x200c4004)
shutdown(r3, 0x1)

12.476168619s ago: executing program 2 (id=409):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(0x0, r0)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, &(0x7f0000002ec0)={0x0, 0x0, &(0x7f0000002e80)={&(0x7f00000002c0)={0x2c, r1, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x2}, @IEEE802154_ATTR_LLSEC_SECLEVEL={0x5, 0x2a, 0xc}, @IEEE802154_ATTR_DEV_INDEX={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x44010}, 0x804)

11.504427542s ago: executing program 2 (id=411):
setrlimit(0xb, &(0x7f0000000180)={0xffffffffffffffff, 0x1})
syz_mount_image$udf(&(0x7f0000000400), &(0x7f0000000500)='./file0\x00', 0x1000100, &(0x7f0000000200)=ANY=[@ANYBLOB='shortad,partition=00000000000000000005,noadinicb,uid=', @ANYRESDEC=0x0, @ANYBLOB=',gid=', @ANYRESDEC=0x0, @ANYBLOB=',volume=0000000000000006,\x00\x00\x00\x00\x00'], 0x1, 0x489, &(0x7f0000000580)="$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")
r0 = open(&(0x7f00000000c0)='./file1\x00', 0x62042, 0x0)
pwrite64(r0, &(0x7f0000000300)='_', 0x10000000, 0x10000000005)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0)
r2 = dup(r1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$USBDEVFS_CLAIMINTERFACE(r0, 0x8004550f, &(0x7f0000000340)=0xf)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$rds(0x15, 0x5, 0x0)
ioctl$sock_ifreq(r4, 0x8995, &(0x7f0000000100)={'bond0\x00', @ifru_names='caif0\x00'})
getsockopt(0xffffffffffffffff, 0x200000000114, 0x2718, 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r5 = socket(0x1d, 0x2, 0x6)
socket$packet(0x11, 0x3, 0x300)
bind$can_j1939(r5, &(0x7f0000000000)={0x1d, 0x0, 0x2}, 0x18)
prctl$PR_PAC_RESET_KEYS(0x36, 0x5)
sendfile(0xffffffffffffffff, r2, 0x0, 0x89ffc)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, 0x0)

11.357367465s ago: executing program 0 (id=412):
socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(0xffffffffffffffff, 0x28, 0x8, 0x0, 0x0)
openat$vimc1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
listen(0xffffffffffffffff, 0x101)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000c18000)="ad56b6", 0x3)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000880)=[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x22040085}], 0x1, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100008000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0x3, 0x2}, {0x0, [0x2e]}}, 0x0, 0x26, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x38, 0x3, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x38}}, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$can_j1939(0x1d, 0x2, 0x7)

8.997942306s ago: executing program 1 (id=416):
syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000240)='./file1\x00', 0x808c10, &(0x7f0000000000)=ANY=[], 0x3, 0x1c8, &(0x7f0000000280)="$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")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r2=>0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x9, 0x504, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000180)="9c", &(0x7f00000001c0), 0xa7c, r3}, 0x38)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="9803", @ANYRES16=r1, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r2, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffffff080211000001"], 0x398}, 0x1, 0x0, 0x0, 0x4094}, 0x0)

6.831365076s ago: executing program 2 (id=418):
syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000240)='./file1\x00', 0x808c10, &(0x7f0000000000)=ANY=[], 0x3, 0x1c8, &(0x7f0000000280)="$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")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), r0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b06, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x4004, &(0x7f0000000000)={[{@jqfmt_vfsold}, {@usrjquota, 0x22}, {@oldalloc}, {@noload}, {@data_err_ignore}, {@grpjquota, 0x22}, {@errors_continue}, {@errors_remount}, {@jqfmt_vfsv1}]}, 0xff, 0x464, &(0x7f00000004c0)="$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")
write$eventfd(0xffffffffffffffff, &(0x7f0000000480)=0xfffffffffffffff7, 0x8)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x14, r4, 0x1}, 0x14}}, 0x0)
sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000a80)={&(0x7f00000009c0), 0xc, &(0x7f0000000a40)={&(0x7f0000000a00)={0x20, r4, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x23571956}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4004000}, 0x24000840)
sendmsg$NL80211_CMD_SET_MPATH(r0, &(0x7f0000000940)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r1, 0x200, 0x70bd28, 0x25dfdbfc, {{}, {@void, @void}}}, 0x14}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r5=>0x0})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x9, 0x504, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000180)="9c9e143e", &(0x7f00000001c0), 0xa7c, r6}, 0x38)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="98030000", @ANYRES16=r2, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r5, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffffff080211000001"], 0x398}, 0x1, 0x0, 0x0, 0x4094}, 0x0)

6.820179587s ago: executing program 3 (id=419):
syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000240)='./file1\x00', 0x808c10, &(0x7f0000000000)=ANY=[], 0x3, 0x1c8, &(0x7f0000000280)="$eJzKKC4sZmdgYPj7sSaZQYABDBgZeBguMDAysDAwMKgzQsQYmCDUeij/BZSeCZW2gfKbofRCmD4G7XVrmBnOnPTU1Vomy8zA2MDAUHFLe92aU35gMbnUHiM3ycXsDMwMoalHFhVXVmUn5uSknmBgZahgZGJgOH2CgeW6/TWVZglOhz/yHA5Jmg46TEd8PLKYocazsWUqnD3zQR7kCYZHK5g31nnmNdYVpk7NS8tLqsqqyprHwLRxZmNnY+PKiXVRaX6rGFtSXDY1dTIyOWxRE9jMbKg+yUZ7wrv2VQ+THFh7OKCmMl8yXlgkdWpF1cwJX5RmMxp+Z7jDw7xCQkPDSeKKhEWDCcOROtsGV4YKTqh6xiQ1NrG2LWfmhDDzs7ktUGhJPsEUepRj6UwJiwNCVSd/TmVnYEh0m7HtqQPbGZ7Dx3nWFPQJGh2XYHBaKPhfhqHiVnJCQ0OZxlqmpbYLvhRp/JXwWm3slMHgbs+0DBagLA0gciWUJwvWk5C8wkNHU9MoJTmhYZNCQpJbgaEyw9Y9nKsFGhiQok2FgYFhOyMsbiHgGjx+RsEoGAWjYBSMglEwCkbBKBgFo2AUjAQACAAA//9yQoXa")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), r0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b06, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x4004, &(0x7f0000000000)={[{@jqfmt_vfsold}, {@usrjquota, 0x22}, {@oldalloc}, {@noload}, {@data_err_ignore}, {@grpjquota, 0x22}, {@errors_continue}, {@errors_remount}, {@jqfmt_vfsv1}]}, 0xff, 0x464, &(0x7f00000004c0)="$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")
write$eventfd(0xffffffffffffffff, &(0x7f0000000480)=0xfffffffffffffff7, 0x8)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x14, r4, 0x1}, 0x14}}, 0x0)
sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000a80)={&(0x7f00000009c0), 0xc, &(0x7f0000000a40)={&(0x7f0000000a00)={0x1c, r4, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x8, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004000}, 0x24000840)
sendmsg$NL80211_CMD_SET_MPATH(r0, &(0x7f0000000940)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r1, 0x200, 0x70bd28, 0x25dfdbfc, {{}, {@void, @void}}}, 0x14}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r5=>0x0})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x9, 0x504, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000180)="9c9e143e", &(0x7f00000001c0), 0xa7c, r6}, 0x38)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="98030000", @ANYRES16=r2, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r5, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffffff080211000001"], 0x398}, 0x1, 0x0, 0x0, 0x4094}, 0x0)

6.779378997s ago: executing program 0 (id=420):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000540)={[{@data_err_abort}, {@data_err_abort}, {@dax}, {@noload}, {@mblk_io_submit}, {@commit={'commit', 0x3d, 0x5}}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@debug}]}, 0xf6, 0x47a, &(0x7f0000000680)="$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")
r0 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f076bbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mknod$loop(0x0, 0xfff, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c)
socket$kcm(0x10, 0x400000002, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000003c0)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x7, 0x2, 0x1}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4040001}, 0x0)
r7 = socket(0x400000000010, 0x3, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newtfilter={0x34, 0x2c, 0xd27, 0x30bd29, 0x21dfdbfc, {0x0, 0x0, 0x0, r9, {0x0, 0xf}, {}, {0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x24000014}, 0x200c4004)
shutdown(0xffffffffffffffff, 0x1)

6.661795798s ago: executing program 4 (id=421):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000002d40), r0)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, 0x0, 0x804)

6.51171148s ago: executing program 1 (id=422):
ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x800452d2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000200), 0x2, 0x101182)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
socket(0x1e, 0x1, 0x0)
r1 = epoll_create(0x10000e9)
r2 = openat$udambuf(0xffffffffffffff9c, &(0x7f00000000c0), 0x2)
r3 = memfd_create(&(0x7f0000000340)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00', 0x3)
ftruncate(r3, 0xffff)
fcntl$addseals(r3, 0x409, 0x7)
r4 = ioctl$UDMABUF_CREATE(r2, 0x40187542, &(0x7f0000000100)={r3, 0x0, 0x0, 0x1000})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r4, &(0x7f0000000080)={0x30000009})
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x3, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x4, 0x400000000, 0x4, 0x7fffffff}, 0x0, 0x0)

6.456033911s ago: executing program 4 (id=423):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[], 0x34}}, 0x4010)
r1 = socket$kcm(0x21, 0xf, 0x2)
sendmsg$kcm(r1, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000100)="a6", 0xfffffcf4}, {0x0}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0xffffffffffffff18, &(0x7f0000000100)=[{&(0x7f0000000000)="2f0000001c0005c5ffffff000d000000020000000b000000ec0091c913000180f0ffffeb", 0x1dd}], 0x1}, 0x0)
r2 = socket(0x10, 0x80002, 0x0)
sendmmsg$alg(r2, &(0x7f0000000140)=[{0x3, 0x0, &(0x7f0000000100), 0x6, &(0x7f0000000100), 0xc}], 0x492492492492856, 0x0)
lsetxattr$trusted_overlay_nlink(&(0x7f0000000180)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', &(0x7f00000011c0), 0x0, 0x0, 0x3)
syz_mount_image$squashfs(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='\x00'], 0x1, 0x226, &(0x7f0000000300)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000280)={'wlan1\x00'})
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
getsockopt$bt_hci(r3, 0x0, 0x3, 0x0, &(0x7f0000000040))
r4 = getpgid(0xffffffffffffffff)
prlimit64(r4, 0x6, &(0x7f0000000000)={0x0, 0x8000000000000000}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
openat$rfkill(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r5 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r5, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
open(&(0x7f0000000080)='./file0/file0\x00', 0x103000, 0x2)
mount(&(0x7f00000004c0)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000080)='./file1\x00', &(0x7f00000001c0)='ufs\x00', 0x10001, 0x0)

6.311708553s ago: executing program 3 (id=424):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f00000002c0)="68377863ac6ea61666eaa696435a75f1626fe3a3acedcaf71527ff51d446daac757559d2d6fc2b90952355ec6c61d718c91784312b1b4771888a0811895b02ffb658934b0bbd6466c9cc04cc7252f1f1deea5a8b9c6797c8f1263db526cf88899f7ecab544662eb34743cefb660a78cb9468d2900b3cda4cca9d89ab6d341d145acf249276dda272407bc98d9e5431316d468b9e4750f2316589dc4de3157592d27fd723a512c85b08035842b75ec422346f9696f4bb3226b0ca75d135ebd8cae46fb83b71c103e1fdcb1934fd1d28b4916abe2c44e26ea72be426c27052e816212096", 0xe3}, {&(0x7f0000001600)="f52ec22aafecc37a6d9995f1afb5c1727f223f9b84451a110b1dfbf19cc7ed183ba93f6d55645001887fc999262b9c938e22ef5ec46b4b1b535060dcca5cff1f0e5a1d9b32cef2b6e0a61af7968dc1759c4d901867d7d6e9f2521f6a1578e1cc2fbf58837a2633c0b8299192718c61227412dafd01e899723b33735bbec3e1429117362acc4139fc3565f183bd5568f47f4bc416adb360fdd9c497c2ad2ffe1ad738f4c073f1378d2b455e61844076a4a97ac1e13e2fb300ae69d55c501f96dcc39bf7ed835cc866f0fbd8e936e8374a484f111919dc610e0a36a0ee3df2ab1dc34cea42a4292e2fbaa86875a506bdd81fbb3dc5ea", 0xf5}, {&(0x7f0000000500)="c83e2bd7f125f4a6a218f22da67e5a1d01c265386e882d477c2869af6f9092221cd278c734b3cd254fe08f708730f47775dd330f02714b3c221d0ca14be1b8b12c699935caa14628b7", 0x49}], 0x3}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000e80)="5be3", 0x2}], 0x1}}, {{0x0, 0x0, &(0x7f0000001040)=[{&(0x7f0000000700)="3dbe33faf3597dcad38c7f07509139be4aa82b139060", 0x16}, {&(0x7f0000000d40)="13fe0d0ebaa8f8e6945eda37626722a991bb043a3f0055b3077bbb48090fc9ec5ce2b21e4a08fe7ade767d68a0429b24ae1af46fd6bc808750074e324dfb9a870aa3ff152df224c74bf6d1141d7a13b29b4a73fcd81b23", 0x57}, {&(0x7f0000000dc0)="e17bfe9237363ae57066d5a4de6375e1f265c2111c04735b06a042b9e2da67139b00f3796bc91dc512b02f85c9eaf50143c80de360b7164b4f5b0a80424213098a1afc1c7f03d6d9813244a7a1e2ca", 0x4f}, {&(0x7f0000000f00)="066e681f2ee7dcf707f860c23a27c2514c988ed127d3881aa3b5bad1e16068a95142f1b6cfb4f6b326aa7f5fc466358debdf24638d5d109ba2006e0881aa9517f96937b7e5fc5da0938563c576cd955bf390e6167d2abe8b0c2b0206ad3f4f06629e7b54d8a663", 0x67}], 0x4}}], 0x3, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

5.504274514s ago: executing program 3 (id=425):
syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000240)='./file1\x00', 0x808c10, &(0x7f0000000000)=ANY=[], 0x3, 0x1c8, &(0x7f0000000280)="$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")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), r0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b06, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x4004, &(0x7f0000000000)={[{@jqfmt_vfsold}, {@usrjquota, 0x22}, {@oldalloc}, {@noload}, {@data_err_ignore}, {@grpjquota, 0x22}, {@errors_continue}, {@errors_remount}, {@jqfmt_vfsv1}]}, 0xff, 0x464, &(0x7f00000004c0)="$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")
write$eventfd(0xffffffffffffffff, &(0x7f0000000480)=0xfffffffffffffff7, 0x8)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x14, r4, 0x1}, 0x14}}, 0x0)
sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000a80)={&(0x7f00000009c0), 0xc, &(0x7f0000000a40)={&(0x7f0000000a00)={0x1c, r4, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0x8, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_HAS_PUBL={0x4}]}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004000}, 0x24000840)
sendmsg$NL80211_CMD_SET_MPATH(r0, &(0x7f0000000940)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r1, 0x200, 0x70bd28, 0x25dfdbfc, {{}, {@void, @void}}}, 0x14}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r5=>0x0})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x9, 0x504, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000180)="9c9e143e", &(0x7f00000001c0), 0xa7c, r6}, 0x38)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="98030000", @ANYRES16=r2, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r5, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffffff080211000001"], 0x398}, 0x1, 0x0, 0x0, 0x4094}, 0x0)

4.645253146s ago: executing program 0 (id=426):
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
socket$unix(0x1, 0x2, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_proto_private(0xffffffffffffffff, 0x8b15, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x9}, 0x1c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0xfffffdca, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x9506, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0x5dc}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

4.434876919s ago: executing program 4 (id=427):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'sit0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r1, {0x0, 0x6}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_gred={{0x9}, {0x14, 0x2, [@TCA_GRED_DPS={0x10, 0x3, {0x10, 0x1}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x48801}, 0x0)

4.433992799s ago: executing program 1 (id=428):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x4}}, './file0\x00'})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000c80)={0x0, &(0x7f0000000c40)=""/3, 0x0, 0x3, 0x1, 0x1, 0x0, @void, @value}, 0x28)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
r5 = fanotify_init(0xf00, 0x1000)
fanotify_mark(r5, 0x105, 0x5000003a, r4, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x42, 0x0)
ioctl$SNDRV_PCM_IOCTL_HWSYNC(r6, 0x4122, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./bus\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2)
readv(r5, &(0x7f0000000c40)=[{0x0}], 0x1)
r7 = epoll_create(0x6)
r8 = dup3(0xffffffffffffffff, r7, 0x0)
read$FUSE(r8, &(0x7f0000000040)={0x2020}, 0x2020)
r9 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET(r9, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x18, 0x1401, 0x1, 0x70bd25, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}]}, 0x18}, 0x1, 0x0, 0x0, 0x44}, 0x4044080)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)}, 0x0)
sendmsg$RDMA_NLDEV_CMD_SYS_GET(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)=ANY=[@ANYBLOB="18000000061401000000000000"], 0x18}}, 0x0)

3.580226561s ago: executing program 2 (id=429):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x0, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000000000000000000000008500"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$vsock_stream(0x28, 0x1, 0x0)
r5 = syz_init_net_socket$ax25(0x3, 0x3, 0x8)
getpeername$ax25(r5, 0x0, 0x0)

3.575086521s ago: executing program 4 (id=430):
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, 0x0)
r0 = msgget(0x2, 0x301)
msgrcv(r0, 0x0, 0x0, 0x2, 0x1000)
msgctl$IPC_RMID(r0, 0x0)
gettid()
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB], 0x110}}, 0x4008004)
r3 = syz_open_procfs(0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r3}})
write$P9_RSTATu(r2, &(0x7f0000000080)={0x50e, 0x7d, 0x0, {{0x500, 0x1f8, 0x0, 0x440, {0x0, 0x0, 0x2}, 0x4840000, 0x0, 0xd, 0x0, 0x10f, '\x04nodZ=\xbfd`\xd2\xc2\x97D,\x027\xfcb%\xff\xff\xff\x80\x05\x00\x00\x00\x00\x00\x00\xff\x03\xff\x92\xe9\x16\x00\x05\x00\x00\x00,\x93\xcb=\xb6\xc21\xd1\x19\xaa\xa1ou\xc5\x8f\xa6\x88\x9f\xf3\xc8\xf7\xab\xc6\x1bY\xa1\xd2o\fJ\xf8\xe2\x93\xd3\xf8l\xcd\xc6o\xf5{\xe9\x00\x00\x00\x00\x00\x00\x00\x03\xd5\x89-\x8e\xfe\xbb\x9e\x05\xac\nk\xc5)`z\xc6\x8a8\x13\xaf\xe7\x9e\x85cj\xfdl]\x15\xb2\xae\xbb\xb7\xee;\x1e\xae\x8a\x7f\xbe.\x85\x88s\x14\xcb\xec\xf0\xa1\xa5\x124z\x8c\x15D#:\xf0v\xbe\x13\xd5Rw\xb3 \xd1\xe1\xc0\x10Uz\xaaw\x16^Q`208^|\'\x01\x00\xacB3\x00D\xa9\b=\xe5\xbe\xd8\xe0\xbd(h\"\x94\xf68\xc3\x8e%uj\xb0\xb0\x7fe\xdb\xd6$\xee\x95_}\xa7\x8e\xe1\x96I7?0\xe3\xf7\xb9d\xf0\xa2f\xc3\xac\x9ePwS\xa3\xc4\x03\xc8{\xf1Jv\x87%\x91h\xb4[\xbdz\x1f\xd8`\x0e\xa1.\x00\xdb\xfeL\x1a\xfe\xea\xaf\x9d{\xb4\xa7Z\x1c\x82', 0x2b, 'p\x02\x00}\xfag>\xff\xeb\t\xb55\x1f[\xde\x05@\x00\x00\x00Y_\xcb\x14\x03CT\xb9\xfd\x9e\xf1\x96\xa5\x1c\xd5\x15z\xdc\x81\x06\xb4\x94\xe1', 0x35, '\xcf`7-a\xcc\xea\xb8\xc8\x86A\xeb\x93\xb4\xcc\xf6\x00*\xb8{\xfc\x01\'\x96\t?h0\\M\" \x83~\x01\b\xe2\xe7HP\x1cQHK\xa0/\x10\x9c\xaa\xf9\x15\t\xa2', 0x56, '\xf8\xf6i\xfbqk\xcf1^\xca\xf3\x85@\x9a\xc6[\x94\bg\x8c,;\x9e\x1dR\xc3l\xde{\xa4\xa4\x00\xb4\xb0\xb4\xf1t\xa6f\xa8R\x9aE\x1b4\a\xdb\xda\xb2\x88K\xaf\x05\x00\x00\x00\x00\x00\x00\x00G\xec!\xca\xbf\xf2\x0f\x9c\x15\xbe6\xf4\xfd\x1aL\xdb\x80\xe8\xd4\a\x00\x00\x007\x00C'}, 0x301, 'odev/n\xb1{#\x00\xf9\xda\xa5\xee#&n\xcf\x85\xfe\xa6^B\xd9y\xa3\xfd\xe5\xf4u\xda\xf0;\x11r\xd9{\xad\xc7\tZ\xfdv\xfeO\fA\xf7\xf7t\x1e\xac\x03\x00\x00\xec\xff\x00\x00\xdb\xa0\xc2\xf7\xf0\x9f\xf5<~M\x1a\xd6n-\a\x01\x98\x01\x9f0\x11\x84G\xaau\xf8$k\xccB\xea\xa8\xc61\xc0\xc5\x00\x95\x9at\xf5\x16\x85\xf5\x06\xae\x89H\x06\x87\x82g\xd5\xa1)\x8dy,J7\xf2\xe1\xcb\xbd$\x82\x92\x9a\r\x89r\xb5\xcfs.\xa5\xb0\xd7#\x85\x93\xae\xd3\xb4.\xe7\xca\xc0}\xe0\x9d\x1dh\xa6\x033\xa8\x82F}+1\xaa\xfbV\xc5}}\xc6&\xe49\a\x96\xa1\xebH\'Fi\xab\x13\xf8\xb1\x1d\x14`Y\xf3\x10\xe2cMY?\xece\xd5)\xf3\x82\x06fd\xc0\xfbNL\x90W\np\x04\x9f9\x9f\x06\x1fu\xb7y|\xe1\xfe\x11\xea\x91\x96\t\xd5\x1aA\xdd=\xe3\x04\xbd|~\xd0\xa4V\xf0\xae\x12.a\x05\xc9\xce\x88}\xf5\xa6\xe0\xb6\xa7}Yl\xf8\x8b\xa6\xe5\xc69|}P!\xd7\x98\x95(\xfd\x179\xe1\xc2\xd8\x7f\xc2\x00\x00\x000\xe4\xee+\xfc\x7f\x80P\x85\x11C\xe5\x16\x1a\xcdG\x15\n\xcb\xaft8\"\xdf\xe2\x03\xb1\b\xd3~\x91M\xc1\xe5>#LP\x9e\xcaA\a\xa1q,\xaa\x9d\xa5=\x05\x1c6\x88Ly\x18&a\xf3\xca6\xbc\xdb\xfb\xbd&q\t\xf81\x9d\x8d\xd5\xc0p\x99\xeb\x1b\x11\x03\x06U\xf5biOat=\x19B\x1bJ\x19\xef\x8b\x8bL\xe9\xc9\x93\xc7\xd6\xcb0\fNezNP\xa3[\\\xc1k\x8c\x16\x1a\x8e=\xf9\x03k\xbc\xf2\x8a\xdc\xd1\x9alL)\x17\t\xae\xe5\xab>[\xc5\xae)\xf4u\xe4\xd2D\b\xb5\x16}\x0f\xaf_\xc1Vkp\\\x8b`\xaf\xa8\xac\xa4/~\x04i\x18\x8a\x0e\xf0b\xca\x18\xe3\x8f\x9e\xe1\n\xc7}+~\xb9\xd6\x0e\xa7\x9f\xdbUd\x11H[\x1b\x13\xdb\xb8\xa2\xa6b.\xbc\xf8Lio\xa4\xda!\xba\xd22\r\rh\xe9\xbfCF\xf0ha\x19\xa3\x9e@\x03\x95\xc8\xf2\x82^\xa0i\xae\x0e\x14;\xd1\xa4Ay\xedlTp,^\x9a\x19\xcc\x7f\xfaP\x0f\xa4\x1bl\x80I\xbd\xe4X\'\xd5N\xc9\x01\xd2z\xd1%\x05h\x89\xb33k?\x06\x83\x8c[fz\xe2.\xfe;\xc1[\x82_\x7f\xbc\xe4\x80\'(\x1c\xf9\xfe\x8f\xc2\x1f\xc7|$=\xe2g\x051\x0e\xb8\x1c\xf7M\xe0)1\x92\xa1?j\xd0W\xdea\xfd\x8a\xba\x8e\xf4C\x9b\xc0jE\xb2\xb01bQZ#C:\xfe\xb5*\xed\xb5\xabo3FS8\x05\x15\xf7y\xf3]\xc8\xa7\x8c7w$\x92\xa2(L!\xd2\x13V\xd4s\xf0\x0f\x85\x13|{\xf0cou}5(\x86\x9b?\x00w5\xcf\xf8\\\x9d\x97\x8b\xf5]\xcc&\xd6-%\xe3\b\xf0\x88\'\xa9\x1f\xf4{\xec\x92\xf8\xe9\x1ey\bfT\x00\xaaN9\xb3Y\x86#\x9d\\{\x94\x92\xc5\xbb&\xbcU\xb5[I\xedpHnn}\xa3\x8c \x84P\xf9\xf7\x9e\x1bA\x00'/769, 0xffffffffffffffff, 0xee01}}, 0x50e)

2.90455716s ago: executing program 1 (id=431):
socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(0xffffffffffffffff, 0x28, 0x8, 0x0, 0x0)
openat$vimc1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
listen(0xffffffffffffffff, 0x101)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(blowfish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000c18000)="ad56b6", 0x3)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000880)=[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x22040085}], 0x1, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100008000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0x3, 0x2}, {0x0, [0x2e]}}, 0x0, 0x26, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x38, 0x3, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x38}}, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$can_j1939(0x1d, 0x2, 0x7)

2.809132561s ago: executing program 0 (id=432):
syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000240)='./file1\x00', 0x808c10, &(0x7f0000000000)=ANY=[], 0x3, 0x1c8, &(0x7f0000000280)="$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")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r2=>0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x9, 0x504, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000180)="9c", &(0x7f00000001c0), 0xa7c, r3}, 0x38)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="9803", @ANYRES16=r1, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r2, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffffff080211000001"], 0x398}, 0x1, 0x0, 0x0, 0x4094}, 0x0)

1.848541804s ago: executing program 1 (id=433):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000002d40), r0)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r0, 0x0, 0x804)

1.755055006s ago: executing program 3 (id=434):
ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x800452d2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000200), 0x2, 0x101182)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = epoll_create(0x10000e9)
r2 = openat$udambuf(0xffffffffffffff9c, &(0x7f00000000c0), 0x2)
r3 = memfd_create(&(0x7f0000000340)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00', 0x3)
ftruncate(r3, 0xffff)
fcntl$addseals(r3, 0x409, 0x7)
r4 = ioctl$UDMABUF_CREATE(r2, 0x40187542, &(0x7f0000000100)={r3, 0x0, 0x0, 0x1000})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r4, &(0x7f0000000080)={0x30000009})
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x3, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x4, 0x400000000, 0x4, 0x7fffffff}, 0x0, 0x0)

1.661004167s ago: executing program 2 (id=435):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000540)={[{@data_err_abort}, {@data_err_abort}, {@dax}, {@noload}, {@mblk_io_submit}, {@commit={'commit', 0x3d, 0x5}}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@debug}]}, 0xf6, 0x47a, &(0x7f0000000680)="$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")
r0 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f076bbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mknod$loop(0x0, 0xfff, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c)
socket$kcm(0x10, 0x400000002, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000003c0)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x7, 0x2, 0x1}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4040001}, 0x0)
r7 = socket(0x400000000010, 0x3, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newtfilter={0x34, 0x2c, 0xd27, 0x30bd29, 0x21dfdbfc, {0x0, 0x0, 0x0, r9, {0x0, 0xf}, {}, {0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x24000014}, 0x200c4004)
shutdown(0xffffffffffffffff, 0x1)

593.233521ms ago: executing program 4 (id=436):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f00000002c0)="68377863ac6ea61666eaa696435a75f1626fe3a3acedcaf71527ff51d446daac757559d2d6fc2b90952355ec6c61d718c91784312b1b4771888a0811895b02ffb658934b0bbd6466c9cc04cc7252f1f1deea5a8b9c6797c8f1263db526cf88899f7ecab544662eb34743cefb660a78cb9468d2900b3cda4cca9d89ab6d341d145acf249276dda272407bc98d9e5431316d468b9e4750f2316589dc4de3157592d27fd723a512c85b08035842b75ec422346f9696f4bb3226b0ca75d135ebd8cae46fb83b71c103e1fdcb1934fd1d28b4916abe2c44e26ea72be426c27052e81621209600", 0xe4}, {&(0x7f0000001600)="f52ec22aafecc37a6d9995f1afb5c1727f223f9b84451a110b1dfbf19cc7ed183ba93f6d55645001887fc999262b9c938e22ef5ec46b4b1b535060dcca5cff1f0e5a1d9b32cef2b6e0a61af7968dc1759c4d901867d7d6e9f2521f6a1578e1cc2fbf58837a2633c0b8299192718c61227412dafd01e899723b33735bbec3e1429117362acc4139fc3565f183bd5568f47f4bc416adb360fdd9c497c2ad2ffe1ad738f4c073f1378d2b455e61844076a4a97ac1e13e2fb300ae69d55c501f96dcc39bf7ed835cc866f0fbd8e936e8374a484f111919dc610e0a36a0ee3df2ab1dc34cea42a4292e2fbaa86875a506bdd81fbb3dc5ea", 0xf5}, {&(0x7f0000000500)="c83e2bd7f125f4a6a218f22da67e5a1d01c265386e882d477c2869af6f9092221cd278c734b3cd254fe08f708730f47775dd330f02714b3c221d0ca14be1b8b12c699935caa14628b7", 0x49}], 0x3}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000e80)="5be3", 0x2}], 0x1}}, {{0x0, 0x0, &(0x7f0000001040)=[{&(0x7f0000000700)="3dbe33faf3597dcad38c7f07509139be4aa82b139060", 0x16}, {&(0x7f0000000d40)="13fe0d0ebaa8f8e6945eda37626722a991bb043a3f0055b3077bbb48090fc9ec5ce2b21e4a08fe7ade767d68a0429b24ae1af46fd6bc808750074e324dfb9a870aa3ff152df224c74bf6d1141d7a13b29b4a73fcd81b23", 0x57}, {&(0x7f0000000dc0)="e17bfe9237363ae57066d5a4de6375e1f265c2111c04735b06a042b9e2da67139b00f3796bc91dc512b02f85c9eaf50143c80de360b7164b4f5b0a80424213098a1afc1c7f03d6d9813244a7a1e2ca", 0x4f}, {&(0x7f0000000f00)="066e681f2ee7dcf707f860c23a27c2514c988ed127d3881aa3b5bad1e16068a95142f1b6cfb4f6b326aa7f5fc466358debdf24638d5d109ba2006e0881aa9517f96937b7e5fc5da0938563c576cd955bf390e6167d2abe8b0c2b0206ad3f4f06629e7b54d8a663", 0x67}], 0x4}}], 0x3, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

454.774673ms ago: executing program 0 (id=437):
ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x800452d2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000200), 0x2, 0x101182)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
socket(0x1e, 0x1, 0x0)
r1 = epoll_create(0x10000e9)
r2 = openat$udambuf(0xffffffffffffff9c, &(0x7f00000000c0), 0x2)
r3 = memfd_create(&(0x7f0000000340)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00', 0x3)
ftruncate(r3, 0xffff)
fcntl$addseals(r3, 0x409, 0x7)
r4 = ioctl$UDMABUF_CREATE(r2, 0x40187542, &(0x7f0000000100)={r3, 0x0, 0x0, 0x1000})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r4, &(0x7f0000000080)={0x30000009})
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x3, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x4, 0x400000000, 0x4, 0x7fffffff}, 0x0, 0x0)

454.438343ms ago: executing program 1 (id=438):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000540)={[{@data_err_abort}, {@data_err_abort}, {@dax}, {@noload}, {@mblk_io_submit}, {@commit={'commit', 0x3d, 0x5}}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@debug}]}, 0xf6, 0x47a, &(0x7f0000000680)="$eJzs3M1vFOUfAPDvzLbl7cevFfEFBKmikfjS0vIiBy8aTThoYqIHjKfaFlJZqKE1EUK0esCjIfFu/C+MJ70Y9aKJV70bEmK4gHpZMzszpSy7ZVu2Xeh+Psl0n2fn6T7Pd2ae2Wfm2d0AetZw9ieJ+F9E/B4Rg3n21gLD+cONaxcn/752cTKJWu2tv5J6uevXLk6WRcv/25ZnarUiv6lJvZfejZioVqfPFfnR+TMfjM6dv/DCzJmJU9Onps+OHzt2+NDegaPjRzoSZxbX9d0fz+7Zdfydy29Mnrj83k9JX+RxR0McnTKcb92mnu50ZV22fUm6vmEX7fvlZrrZkUA3VSIi21399f4/GJXYsrhuMF77rKuNA9ZUrVarLXNWXqgBG1gS3W4B0B3lG312/Vsu6zT0uCdcfTm/AMrivlEs+Zq+SPPEvv6G69tOGo6IEwv/fJUtsUb3IQAAlvouG/8832z8l8bDeWIg+/P/Yg5lKCIeiIgdEfFgROyMiIci6mUfiYhHV1h/4wzJ7eOf9Mqqg2tDNv57qZjbunX8l5ZFhipFbns9/v5YOr1xIPo3nZxJpseWqeP7V3/7otW6peO/bMnqL8eCRTuu9DXcoJuamJ9YTazNXP00Yndfs/iTxTiTiNgVEbtXWcfMs30t1905/mW0ftm21b6OeCbf/wvREH8paTk/Ofbi0fEjo5ujOn1w9ORMdfpg0zp+/vXSm63qX3X8HZpKy/b/1qbH/2L8Q8nmiLnzF07X52vnVl7HpT8+b3lNs8Lj//j24vgfSN6un48GihUfTczPnxuLGEher+dveX785quV+bJ8Fv+B/c37/464uSUei4g9EbE3Ih7PLgqLtj8REU9GxP5l4v/xlafeX3n86zNXmsU/daf9H0v3/8oTldM/fNtQbeX2+DdHRKv9f7ieOlA80875r90G3u32AwAAgPtBWv8MfJKOLKbTdGQk/wz/ztiaVmfn5p87Ofvh2an8s/JD0Z+Wd7ry+8H9SZYfK+4Nl/nxhvyh4r7xl5Ut9fzI5Gx1qtvBQ4/b1qL/Z/6sdLt1wJrrwDwacJ/S/6F36f/QmxL9H3qa/g+9q1n//6Rl6ZFv1rQxwLry/g+9q43+v5A/tB4VAPcn7//Qu/R/6Ektvxuf3tVX/tc98W/xe4b3Sns2fiLSe6IZGz/R1/aPWZy/cLrs13cqXBvMy2XPbGpaposnJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgA76LwAA///J9uCF")
r0 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f076bbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mknod$loop(0x0, 0xfff, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c)
socket$kcm(0x10, 0x400000002, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f00000003c0)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x7, 0x2, 0x1}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4040001}, 0x0)
r7 = socket(0x400000000010, 0x3, 0x0)
r8 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newtfilter={0x34, 0x2c, 0xd27, 0x30bd29, 0x21dfdbfc, {0x0, 0x0, 0x0, r9, {0x0, 0xf}, {}, {0x7}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x24000014}, 0x200c4004)
shutdown(0xffffffffffffffff, 0x1)

454.225183ms ago: executing program 4 (id=439):
syz_mount_image$squashfs(&(0x7f0000000040), &(0x7f0000000240)='./file1\x00', 0x808c10, &(0x7f0000000000)=ANY=[], 0x3, 0x1c8, &(0x7f0000000280)="$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")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), r0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b06, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x4004, &(0x7f0000000000)={[{@jqfmt_vfsold}, {@usrjquota, 0x22}, {@oldalloc}, {@noload}, {@data_err_ignore}, {@grpjquota, 0x22}, {@errors_continue}, {@errors_remount}, {@jqfmt_vfsv1}]}, 0xff, 0x464, &(0x7f00000004c0)="$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")
write$eventfd(0xffffffffffffffff, &(0x7f0000000480)=0xfffffffffffffff7, 0x8)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x14, r4, 0x1}, 0x14}}, 0x0)
sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000a80)={&(0x7f00000009c0), 0xc, &(0x7f0000000a40)={&(0x7f0000000a00)={0x20, r4, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@TIPC_NLA_SOCK={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_REF={0x8, 0x2, 0x23571956}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x4004000}, 0x24000840)
sendmsg$NL80211_CMD_SET_MPATH(r0, &(0x7f0000000940)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, r1, 0x200, 0x70bd28, 0x25dfdbfc, {{}, {@void, @void}}}, 0x14}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r5=>0x0})
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x9, 0x504, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000180)="9c9e143e", &(0x7f00000001c0), 0xa7c, r6}, 0x38)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="98030000", @ANYRES16=r2, @ANYBLOB="010028057000fcdbdf253b00000008000300", @ANYRES32=r5, @ANYBLOB="04008e00080057001b0a000004006c000500190107000000080026006c0900005603330080b0c000ffffffffffff080211000001"], 0x398}, 0x1, 0x0, 0x0, 0x4094}, 0x0)

0s ago: executing program 3 (id=440):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x4}}, './file0\x00'})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000c80)={0x0, &(0x7f0000000c40)=""/3, 0x0, 0x3, 0x1, 0x1, 0x0, @void, @value}, 0x28)
syz_open_dev$radio(&(0x7f0000000000), 0x2, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
r5 = fanotify_init(0xf00, 0x1000)
fanotify_mark(r5, 0x105, 0x5000003a, r4, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x42, 0x0)
ioctl$SNDRV_PCM_IOCTL_HWSYNC(r6, 0x4122, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./bus\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2)
readv(r5, &(0x7f0000000c40)=[{0x0}], 0x1)
sendmsg$RDMA_NLDEV_CMD_SYS_GET(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)=ANY=[@ANYBLOB="18000000061401000000000000"], 0x18}}, 0x0)

kernel console output (not intermixed with test programs):

q: adding VLAN 0 to HW filter on device team0
[   82.103687][ T4253] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   82.122871][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   82.131557][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   82.157319][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   82.173173][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   82.183216][   T56] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.190572][   T56] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.220297][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   82.267455][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   82.277567][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   82.296211][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.303577][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.317703][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   82.329696][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   82.341555][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.348745][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.357335][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   82.366476][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   82.375365][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   82.384567][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   82.395430][ T4252] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   82.423041][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   82.431818][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   82.440781][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   82.456163][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   82.464995][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.472193][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.480915][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   82.490814][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   82.503537][ T4252] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   82.518424][ T4252] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   82.530992][ T4252] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   82.563436][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   82.575682][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   82.585319][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   82.595656][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   82.605302][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   82.630537][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   82.640176][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   82.650747][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   82.660170][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   82.696261][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   82.705750][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   82.715242][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   82.724953][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   82.747217][ T4254] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   82.777026][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   82.786502][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   82.800877][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   82.823750][ T4266] Bluetooth: hci0: command 0x041b tx timeout
[   82.823788][ T4265] Bluetooth: hci1: command 0x041b tx timeout
[   82.841021][ T4264] 8021q: adding VLAN 0 to HW filter on device bond0
[   82.867536][ T4253] 8021q: adding VLAN 0 to HW filter on device bond0
[   82.903117][ T4265] Bluetooth: hci2: command 0x041b tx timeout
[   82.909202][ T4265] Bluetooth: hci4: command 0x041b tx timeout
[   82.916313][ T4268] Bluetooth: hci3: command 0x041b tx timeout
[   82.919492][ T4264] 8021q: adding VLAN 0 to HW filter on device team0
[   82.936830][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   82.945953][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   82.976174][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   82.993712][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   83.012947][   T56] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.020100][   T56] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.047043][ T4252] 8021q: adding VLAN 0 to HW filter on device bond0
[   83.072520][ T4253] 8021q: adding VLAN 0 to HW filter on device team0
[   83.082402][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   83.095138][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   83.105853][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   83.114600][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   83.128901][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   83.139497][   T56] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.146723][   T56] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.158254][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   83.167755][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   83.195497][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   83.206420][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   83.235122][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   83.244374][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   83.263539][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   83.283506][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   83.296446][ T4252] 8021q: adding VLAN 0 to HW filter on device team0
[   83.328005][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   83.354280][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   83.377406][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   83.394255][ T2929] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.401507][ T2929] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.417873][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   83.427886][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   83.456069][ T4264] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   83.476966][ T4264] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   83.493643][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   83.502493][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   83.512189][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   83.520861][ T2929] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.527993][ T2929] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.536473][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   83.545379][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   83.554615][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   83.563528][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   83.572225][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   83.580848][ T2929] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.587973][ T2929] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.596329][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   83.605357][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   83.614425][ T2929] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.621713][ T2929] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.653649][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   83.666706][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   83.677602][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   83.696719][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   83.713941][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   83.724551][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   83.734025][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   83.786009][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   83.803775][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   83.812579][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   83.823425][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   83.832236][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   83.842582][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   83.851318][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   83.859735][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   83.867763][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   83.878359][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   83.886989][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   83.909663][ T4254] 8021q: adding VLAN 0 to HW filter on device batadv0
[   83.954836][ T4260] 8021q: adding VLAN 0 to HW filter on device batadv0
[   83.962529][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   83.977739][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   83.989760][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   84.004402][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   84.013726][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   84.022389][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   84.035065][ T4253] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   84.059255][ T4252] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   84.077364][ T4252] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   84.112962][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   84.121902][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   84.176213][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   84.194611][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   84.236450][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   84.244478][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   84.298940][ T4254] device veth0_vlan entered promiscuous mode
[   84.315198][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   84.334128][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   84.348474][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   84.374092][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   84.394856][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   84.414737][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   84.438837][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   84.448545][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   84.461263][ T4264] 8021q: adding VLAN 0 to HW filter on device batadv0
[   84.478881][ T4260] device veth0_vlan entered promiscuous mode
[   84.489191][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   84.503895][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   84.529746][ T4254] device veth1_vlan entered promiscuous mode
[   84.565840][ T4260] device veth1_vlan entered promiscuous mode
[   84.647678][ T4260] device veth0_macvtap entered promiscuous mode
[   84.679719][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   84.704573][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   84.714373][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   84.734179][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   84.748587][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   84.758275][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   84.769432][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   84.779618][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   84.811938][ T4264] device veth0_vlan entered promiscuous mode
[   84.819054][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   84.829087][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   84.843898][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   84.853850][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   84.862440][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   84.871535][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   84.880011][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   84.891897][ T4254] device veth0_macvtap entered promiscuous mode
[   84.900966][ T4260] device veth1_macvtap entered promiscuous mode
[   84.904514][ T4265] Bluetooth: hci1: command 0x040f tx timeout
[   84.907844][ T4266] Bluetooth: hci0: command 0x040f tx timeout
[   84.923618][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   84.931794][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   84.942012][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   84.951569][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   84.961613][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   84.969510][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   84.982967][ T4266] Bluetooth: hci4: command 0x040f tx timeout
[   84.982984][ T4265] Bluetooth: hci3: command 0x040f tx timeout
[   84.989030][ T4266] Bluetooth: hci2: command 0x040f tx timeout
[   85.006919][ T4254] device veth1_macvtap entered promiscuous mode
[   85.025909][ T4253] 8021q: adding VLAN 0 to HW filter on device batadv0
[   85.040404][ T4252] 8021q: adding VLAN 0 to HW filter on device batadv0
[   85.070481][ T4260] batman_adv: batadv0: Interface activated: batadv_slave_0
[   85.083757][ T4264] device veth1_vlan entered promiscuous mode
[   85.111649][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   85.130062][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   85.150066][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   85.160614][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   85.179396][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   85.208422][ T4260] batman_adv: batadv0: Interface activated: batadv_slave_1
[   85.250084][ T4254] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   85.272824][ T4254] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.294667][ T4254] batman_adv: batadv0: Interface activated: batadv_slave_0
[   85.329369][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   85.339713][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   85.350384][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   85.366763][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   85.378175][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   85.391534][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   85.414412][ T4260] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.425831][ T4260] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.436376][ T4260] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.446216][ T4260] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.471765][ T4254] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.485910][ T4254] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.500791][ T4254] batman_adv: batadv0: Interface activated: batadv_slave_1
[   85.523235][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   85.540106][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   85.550697][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   85.565580][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   85.586049][ T4254] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.604792][ T4254] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.622090][ T4254] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.632425][ T4254] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.657317][ T4264] device veth0_macvtap entered promiscuous mode
[   85.672378][ T4264] device veth1_macvtap entered promiscuous mode
[   85.691114][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   85.701064][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   85.710924][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   85.719834][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   85.730598][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   85.739392][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   85.747756][ T4252] device veth0_vlan entered promiscuous mode
[   85.802272][ T4252] device veth1_vlan entered promiscuous mode
[   85.811678][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   85.821431][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   85.830670][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   85.843106][ T4264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   85.854234][ T4264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.865513][ T4264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   85.876108][ T4264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.888182][ T4264] batman_adv: batadv0: Interface activated: batadv_slave_0
[   85.922040][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   85.934444][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   85.947310][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   85.995028][ T4264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   86.013936][ T4264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.025563][ T4264] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   86.036541][ T4264] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.048161][ T4264] batman_adv: batadv0: Interface activated: batadv_slave_1
[   86.077903][ T4253] device veth0_vlan entered promiscuous mode
[   86.086171][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   86.096749][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   86.106388][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   86.115273][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   86.126637][ T4264] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   86.135562][ T4264] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   86.144770][ T4264] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   86.154264][ T4264] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   86.183607][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   86.192406][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   86.200918][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.219890][ T4253] device veth1_vlan entered promiscuous mode
[   86.227556][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.241812][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.280189][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.299328][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   86.308643][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   86.319065][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   86.328329][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   86.338678][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   86.350080][ T2929] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   86.372091][ T4252] device veth0_macvtap entered promiscuous mode
[   86.397033][ T2929] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.406393][ T4253] device veth0_macvtap entered promiscuous mode
[   86.413022][ T2929] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.436234][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   86.448353][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   86.458216][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   86.468358][ T4252] device veth1_macvtap entered promiscuous mode
[   86.480605][ T4253] device veth1_macvtap entered promiscuous mode
[   86.500376][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   86.512087][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   86.542950][ T2929] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.551003][ T2929] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.584337][ T4253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   86.600710][ T4253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.610672][ T4253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   86.621165][ T4253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.631402][ T4253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   86.641962][ T4253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.654947][ T4253] batman_adv: batadv0: Interface activated: batadv_slave_0
[   86.664450][ T4252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   86.677120][ T4252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.687217][ T4252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   86.698536][ T4252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.708795][ T4252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   86.719607][ T4252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.731692][ T4252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   86.754231][ T1169] cfg80211: failed to load regulatory.db
[   86.766966][ T4252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.779050][ T4252] batman_adv: batadv0: Interface activated: batadv_slave_0
[   86.786942][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   86.795902][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   86.806766][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   86.817534][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   86.831541][ T4343] loop3: detected capacity change from 0 to 764
[   86.837684][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   86.869405][ T4253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   86.886269][ T4253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.899287][ T4253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   86.920744][ T4253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.931372][ T4253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   86.942578][ T4253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   86.983615][ T4265] Bluetooth: hci0: command 0x0419 tx timeout
[   86.983618][ T4266] Bluetooth: hci1: command 0x0419 tx timeout
[   87.004163][    T0] NOHZ tick-stop error: local softirq work is pending, handler #300!!!
[   87.015081][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   87.025857][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   87.034235][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[   87.042638][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[   87.051727][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[   87.060057][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[   87.063464][ T4268] Bluetooth: hci3: command 0x0419 tx timeout
[   87.068354][ T4266] Bluetooth: hci4: command 0x0419 tx timeout
[   87.070291][ T4265] Bluetooth: hci2: command 0x0419 tx timeout
[   87.087054][    T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!!
[   87.095419][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[   87.103817][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[   87.176741][ T4253] batman_adv: batadv0: Interface activated: batadv_slave_1
[   87.259399][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   87.302826][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   87.407000][ T4345] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.476484][ T4345] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.480942][ T4252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   87.588929][ T4252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   87.652034][ T4252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   87.688291][ T4252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   87.718125][ T4252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   87.758657][ T4252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   87.794334][ T4252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   87.845513][ T4252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   87.857424][ T4252] batman_adv: batadv0: Interface activated: batadv_slave_1
[   87.916653][ T4252] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   87.925917][ T4252] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   87.934950][ T4252] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   87.944750][ T4252] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   87.957031][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   87.966239][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   87.987932][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   88.344159][ T4253] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.353157][ T4253] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.362391][ T4253] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.371334][ T4253] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.845319][   T56] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.892157][   T56] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.971393][ T4355] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1'.
[   89.653505][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   89.807542][ T4307] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.818426][ T4346] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.832744][ T4307] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.838955][ T4346] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.868976][ T4359] loop3: detected capacity change from 0 to 512
[   89.887160][ T4359] EXT4-fs: Ignoring removed mblk_io_submit option
[   89.888584][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   89.910764][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   89.930719][ T4359] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[   89.961076][   T56] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.978161][ T4359] EXT4-fs (loop3): DAX unsupported by block device.
[   90.010371][   T56] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.041443][ T4362] loop0: detected capacity change from 0 to 764
[   90.050423][   T56] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   90.105393][ T4307] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.144657][ T4307] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.163266][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   92.208729][ T4384] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5'.
[   92.624763][ T4394] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12'.
[   94.405238][ T4402] loop0: detected capacity change from 0 to 512
[   94.543949][ T4402] EXT4-fs: Ignoring removed mblk_io_submit option
[   94.638984][ T4402] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[   94.663243][ T4402] EXT4-fs (loop0): DAX unsupported by block device.
[   94.734267][ T4410] netlink: 8 bytes leftover after parsing attributes in process `syz.1.14'.
[   95.879982][ T4415] netlink: 8 bytes leftover after parsing attributes in process `syz.4.18'.
[   97.321902][ T4425] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17'.
[   97.367740][ T4426] netlink: 8 bytes leftover after parsing attributes in process `syz.0.19'.
[   97.381387][ T4424] loop4: detected capacity change from 0 to 512
[   97.430136][ T4424] EXT4-fs: Ignoring removed mblk_io_submit option
[   97.645207][ T4424] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[   97.673706][ T4424] EXT4-fs (loop4): DAX unsupported by block device.
[   98.177395][ T4436] netlink: 8 bytes leftover after parsing attributes in process `syz.1.21'.
[   98.744149][ T4437] netlink: 8 bytes leftover after parsing attributes in process `syz.0.22'.
[   99.264923][ T4448] loop4: detected capacity change from 0 to 8
[   99.338728][ T4448] SQUASHFS error: zlib decompression failed, data probably corrupt
[   99.400276][ T4448] SQUASHFS error: Failed to read block 0x9b: -5
[   99.407381][ T4448] SQUASHFS error: Unable to read metadata cache entry [99]
[   99.442735][ T4448] SQUASHFS error: Unable to read inode 0x127
[   99.879275][ T4456] 9pnet_fd: Insufficient options for proto=fd
[  101.033295][ T4469] netlink: 8 bytes leftover after parsing attributes in process `syz.0.31'.
[  101.400142][ T4468] netlink: 8 bytes leftover after parsing attributes in process `syz.4.30'.
[  101.774692][ T4473] loop2: detected capacity change from 0 to 512
[  101.818338][ T4473] EXT4-fs: Ignoring removed mblk_io_submit option
[  101.858074][ T4473] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  102.556847][ T4473] EXT4-fs (loop2): DAX unsupported by block device.
[  103.357637][ T4480] loop1: detected capacity change from 0 to 764
[  106.360718][ T4489] loop3: detected capacity change from 0 to 8
[  106.475693][ T4489] SQUASHFS error: zlib decompression failed, data probably corrupt
[  106.475754][ T4489] SQUASHFS error: Failed to read block 0x9b: -5
[  106.475772][ T4489] SQUASHFS error: Unable to read metadata cache entry [99]
[  106.475786][ T4489] SQUASHFS error: Unable to read inode 0x127
[  106.835630][ T4493] netlink: 8 bytes leftover after parsing attributes in process `syz.2.37'.
[  108.070633][ T4510] netlink: 8 bytes leftover after parsing attributes in process `syz.3.42'.
[  109.073752][ T4507] 9pnet_fd: Insufficient options for proto=fd
[  109.336189][ T4518] loop2: detected capacity change from 0 to 512
[  109.353838][ T4518] EXT4-fs: Ignoring removed mblk_io_submit option
[  109.514408][ T4518] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  109.529003][ T4518] EXT4-fs (loop2): DAX unsupported by block device.
[  109.629015][ T4520] netlink: 8 bytes leftover after parsing attributes in process `syz.3.46'.
[  111.078815][ T4524] loop3: detected capacity change from 0 to 512
[  111.086818][ T4524] EXT4-fs: Ignoring removed mblk_io_submit option
[  111.117494][ T4524] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  111.142725][ T4524] EXT4-fs (loop3): DAX unsupported by block device.
[  112.396516][ T4534] loop1: detected capacity change from 0 to 8
[  112.456712][ T4534] SQUASHFS error: zlib decompression failed, data probably corrupt
[  112.481048][ T4534] SQUASHFS error: Failed to read block 0x9b: -5
[  112.487781][ T4534] SQUASHFS error: Unable to read metadata cache entry [99]
[  112.503113][ T4534] SQUASHFS error: Unable to read inode 0x127
[  112.525178][ T4535] loop2: detected capacity change from 0 to 764
[  114.082394][ T4551] netlink: 8 bytes leftover after parsing attributes in process `syz.0.54'.
[  115.289593][ T4556] netlink: 8 bytes leftover after parsing attributes in process `syz.0.58'.
[  119.921670][ T4578] netlink: 8 bytes leftover after parsing attributes in process `syz.2.62'.
[  120.538002][ T4576] 9pnet_fd: Insufficient options for proto=fd
[  121.178008][ T4581] loop0: detected capacity change from 0 to 512
[  121.253104][ T4581] EXT4-fs: Ignoring removed mblk_io_submit option
[  121.369149][ T4581] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  121.402482][ T4581] EXT4-fs (loop0): DAX unsupported by block device.
[  121.450098][ T4586] loop2: detected capacity change from 0 to 512
[  121.517103][ T4588] loop3: detected capacity change from 0 to 512
[  121.524479][ T4588] EXT4-fs: Ignoring removed mblk_io_submit option
[  121.546083][ T4590] loop1: detected capacity change from 0 to 8
[  121.555502][ T4586] EXT4-fs: Ignoring removed mblk_io_submit option
[  121.564546][ T4588] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  121.579651][ T4586] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  121.584388][ T4590] SQUASHFS error: zlib decompression failed, data probably corrupt
[  121.588715][ T4586] EXT4-fs (loop2): DAX unsupported by block device.
[  121.604167][ T4588] EXT4-fs (loop3): DAX unsupported by block device.
[  121.668661][ T4591] netlink: 8 bytes leftover after parsing attributes in process `syz.4.65'.
[  122.242001][ T4590] SQUASHFS error: Failed to read block 0x9b: -5
[  123.094004][ T4590] SQUASHFS error: Unable to read metadata cache entry [99]
[  123.101280][ T4590] SQUASHFS error: Unable to read inode 0x127
[  125.214074][ T4617] 9pnet_fd: Insufficient options for proto=fd
[  125.631988][ T4629] netlink: 12 bytes leftover after parsing attributes in process `syz.0.73'.
[  126.791448][ T4638] netlink: 8 bytes leftover after parsing attributes in process `syz.4.76'.
[  129.105470][ T4651] netlink: 8 bytes leftover after parsing attributes in process `syz.3.79'.
[  130.045978][ T4656] loop3: detected capacity change from 0 to 512
[  130.126103][ T4657] netlink: 8 bytes leftover after parsing attributes in process `syz.2.90'.
[  130.735108][ T4656] EXT4-fs: Ignoring removed mblk_io_submit option
[  130.899816][ T4656] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  130.977940][ T4656] EXT4-fs (loop3): DAX unsupported by block device.
[  132.827068][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  132.827353][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  135.724725][ T4669] loop1: detected capacity change from 0 to 8
[  135.786516][ T4669] SQUASHFS error: zlib decompression failed, data probably corrupt
[  135.786557][ T4669] SQUASHFS error: Failed to read block 0x9b: -5
[  135.786572][ T4669] SQUASHFS error: Unable to read metadata cache entry [99]
[  135.786586][ T4669] SQUASHFS error: Unable to read inode 0x127
[  136.036717][ T4673] loop3: detected capacity change from 0 to 512
[  136.037428][ T4673] EXT4-fs: Ignoring removed mblk_io_submit option
[  136.083288][ T4673] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  136.083318][ T4673] EXT4-fs (loop3): DAX unsupported by block device.
[  137.353569][ T4680] loop3: detected capacity change from 0 to 764
[  139.240536][ T4691] netlink: 8 bytes leftover after parsing attributes in process `syz.2.88'.
[  140.050279][ T4695] loop0: detected capacity change from 0 to 512
[  140.077114][ T4694] loop4: detected capacity change from 0 to 512
[  140.103262][ T4694] EXT4-fs: Ignoring removed mblk_io_submit option
[  140.113986][ T4695] EXT4-fs: Ignoring removed mblk_io_submit option
[  140.133044][ T4695] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  140.141375][ T4695] EXT4-fs (loop0): DAX unsupported by block device.
[  140.145004][ T4694] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  140.372855][ T4694] EXT4-fs (loop4): DAX unsupported by block device.
[  142.024912][ T4713] loop2: detected capacity change from 0 to 8
[  142.189405][ T4713] SQUASHFS error: zlib decompression failed, data probably corrupt
[  142.230333][ T4715] loop4: detected capacity change from 0 to 764
[  142.556120][ T4713] SQUASHFS error: Failed to read block 0x9b: -5
[  142.562443][ T4713] SQUASHFS error: Unable to read metadata cache entry [99]
[  142.680299][ T4713] SQUASHFS error: Unable to read inode 0x127
[  143.399416][ T4727] netlink: 8 bytes leftover after parsing attributes in process `syz.1.100'.
[  149.137279][ T4742] netlink: 8 bytes leftover after parsing attributes in process `syz.2.104'.
[  149.180875][ T4744] loop4: detected capacity change from 0 to 512
[  149.227862][ T4744] EXT4-fs: Ignoring removed mblk_io_submit option
[  149.235098][ T4744] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  149.235123][ T4744] EXT4-fs (loop4): DAX unsupported by block device.
[  150.390455][ T4748] loop4: detected capacity change from 0 to 512
[  150.434395][ T4748] EXT4-fs: Ignoring removed mblk_io_submit option
[  150.530082][ T4748] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  150.618667][ T4748] EXT4-fs (loop4): DAX unsupported by block device.
[  151.317344][ T4760] netlink: 8 bytes leftover after parsing attributes in process `syz.1.108'.
[  151.858296][ T4762] loop3: detected capacity change from 0 to 512
[  151.894543][ T4762] EXT4-fs: Ignoring removed mblk_io_submit option
[  151.936706][ T4766] loop0: detected capacity change from 0 to 8
[  151.949864][ T4762] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  151.969785][ T4762] EXT4-fs (loop3): DAX unsupported by block device.
[  151.985853][ T4766] SQUASHFS error: zlib decompression failed, data probably corrupt
[  151.995684][ T4766] SQUASHFS error: Failed to read block 0x9b: -5
[  152.001989][ T4766] SQUASHFS error: Unable to read metadata cache entry [99]
[  152.009843][ T4766] SQUASHFS error: Unable to read inode 0x127
[  152.914900][ T4265] Bluetooth: hci4: link tx timeout
[  152.920428][ T4265] Bluetooth: hci4: killing stalled connection 10:aa:aa:aa:aa:aa
[  152.930427][ T4265] Bluetooth: hci4: link tx timeout
[  152.935769][ T4265] Bluetooth: hci4: killing stalled connection 11:aa:aa:aa:aa:aa
[  153.061968][ T4772] loop0: detected capacity change from 0 to 764
[  153.454774][ T4782] netlink: 8 bytes leftover after parsing attributes in process `syz.4.113'.
[  154.779378][ T4794] netlink: 8 bytes leftover after parsing attributes in process `syz.2.118'.
[  155.360916][ T4266] Bluetooth: hci4: command 0x0406 tx timeout
[  156.172104][ T4801] loop2: detected capacity change from 0 to 512
[  156.192137][ T4801] EXT4-fs: Ignoring removed mblk_io_submit option
[  156.377895][ T4801] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  156.453147][ T4801] EXT4-fs (loop2): DAX unsupported by block device.
[  157.382728][ T4266] Bluetooth: hci4: command 0x0406 tx timeout
[  159.909675][ T4809] loop2: detected capacity change from 0 to 512
[  159.917998][ T4809] EXT4-fs: Ignoring removed mblk_io_submit option
[  159.925334][ T4809] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  159.945030][ T4809] EXT4-fs (loop2): DAX unsupported by block device.
[  161.555388][ T4817] netlink: 8 bytes leftover after parsing attributes in process `syz.2.129'.
[  162.509452][ T4823] loop2: detected capacity change from 0 to 764
[  164.177471][ T4832] netlink: 8 bytes leftover after parsing attributes in process `syz.0.133'.
[  164.925526][ T4837] loop0: detected capacity change from 0 to 8
[  165.105686][ T4837] SQUASHFS error: zlib decompression failed, data probably corrupt
[  165.130819][ T4837] SQUASHFS error: Failed to read block 0x9b: -5
[  165.140220][ T4837] SQUASHFS error: Unable to read metadata cache entry [99]
[  165.172236][ T4837] SQUASHFS error: Unable to read inode 0x127
[  165.218404][ T4840] netlink: 8 bytes leftover after parsing attributes in process `syz.3.135'.
[  165.834854][ T4842] loop1: detected capacity change from 0 to 764
[  165.872137][ T4837] netlink: 828 bytes leftover after parsing attributes in process `syz.0.136'.
[  166.487110][ T4849] loop3: detected capacity change from 0 to 512
[  166.622968][ T4849] EXT4-fs: Ignoring removed mblk_io_submit option
[  166.655299][ T4849] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  166.685658][ T4849] EXT4-fs (loop3): DAX unsupported by block device.
[  166.897914][ T4854] loop0: detected capacity change from 0 to 512
[  166.919225][ T4854] EXT4-fs: Ignoring removed mblk_io_submit option
[  166.926429][ T4854] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  166.942817][ T4854] EXT4-fs (loop0): DAX unsupported by block device.
[  169.366429][ T4875] loop3: detected capacity change from 0 to 764
[  170.566985][ T4886] loop1: detected capacity change from 0 to 512
[  170.585153][ T4886] EXT4-fs: Ignoring removed mblk_io_submit option
[  172.593481][ T4886] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  172.595015][ T4886] EXT4-fs (loop1): DAX unsupported by block device.
[  175.255560][ T4898] loop3: detected capacity change from 0 to 512
[  175.284782][ T4896] loop0: detected capacity change from 0 to 764
[  175.353276][ T4898] EXT4-fs: Ignoring removed mblk_io_submit option
[  175.361760][ T4901] loop1: detected capacity change from 0 to 8
[  175.413728][ T4901] SQUASHFS error: zlib decompression failed, data probably corrupt
[  175.816649][ T4898] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  175.833296][ T4901] SQUASHFS error: Failed to read block 0x9b: -5
[  175.904928][ T4898] EXT4-fs (loop3): DAX unsupported by block device.
[  175.907789][ T4901] SQUASHFS error: Unable to read metadata cache entry [99]
[  176.008153][ T4901] SQUASHFS error: Unable to read inode 0x127
[  176.201004][ T4347] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  176.889199][ T4906] loop4: detected capacity change from 0 to 8
[  177.034894][ T4901] netlink: 828 bytes leftover after parsing attributes in process `syz.1.151'.
[  177.064563][ T4906] SQUASHFS error: zlib decompression failed, data probably corrupt
[  177.110027][ T4906] SQUASHFS error: Failed to read block 0x9b: -5
[  177.152204][ T4906] SQUASHFS error: Unable to read metadata cache entry [99]
[  177.206631][ T4911] 9pnet_fd: Insufficient options for proto=fd
[  177.339331][ T4906] SQUASHFS error: Unable to read inode 0x127
[  177.583917][ T4915] loop3: detected capacity change from 0 to 512
[  177.613403][ T4915] EXT4-fs: Ignoring removed mblk_io_submit option
[  177.636601][ T4915] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  177.659190][ T4915] EXT4-fs (loop3): DAX unsupported by block device.
[  177.780085][ T4906] netlink: 4 bytes leftover after parsing attributes in process `syz.4.152'.
[  180.314585][ T4937] netlink: 8 bytes leftover after parsing attributes in process `syz.0.162'.
[  180.588292][ T4940] netlink: 8 bytes leftover after parsing attributes in process `syz.3.163'.
[  184.948114][ T4960] loop4: detected capacity change from 0 to 764
[  184.964766][ T4962] loop2: detected capacity change from 0 to 8
[  185.112956][ T4962] SQUASHFS error: zlib decompression failed, data probably corrupt
[  185.804012][ T4962] SQUASHFS error: Failed to read block 0x9b: -5
[  185.939661][ T4962] SQUASHFS error: Unable to read metadata cache entry [99]
[  185.947186][ T4962] SQUASHFS error: Unable to read inode 0x127
[  186.020503][ T4962] netlink: 828 bytes leftover after parsing attributes in process `syz.2.168'.
[  186.697555][ T4968] loop4: detected capacity change from 0 to 764
[  188.836940][ T4979] loop0: detected capacity change from 0 to 512
[  188.850408][ T4979] EXT4-fs: Ignoring removed mblk_io_submit option
[  188.924776][ T4985] netlink: 8 bytes leftover after parsing attributes in process `syz.4.173'.
[  189.314408][ T4979] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  189.336070][ T4979] EXT4-fs (loop0): DAX unsupported by block device.
[  190.532986][ T4999] netlink: 8 bytes leftover after parsing attributes in process `syz.3.179'.
[  191.386455][ T5002] loop4: detected capacity change from 0 to 8
[  191.394236][ T4998] loop0: detected capacity change from 0 to 512
[  191.401747][ T4998] EXT4-fs: Ignoring removed mblk_io_submit option
[  191.423945][ T4998] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  191.432182][ T4998] EXT4-fs (loop0): DAX unsupported by block device.
[  191.450221][ T5002] SQUASHFS error: zlib decompression failed, data probably corrupt
[  191.468721][ T5002] SQUASHFS error: Failed to read block 0x9b: -5
[  191.476626][ T5002] SQUASHFS error: Unable to read metadata cache entry [99]
[  191.486415][ T5002] SQUASHFS error: Unable to read inode 0x127
[  191.513649][ T5004] loop3: detected capacity change from 0 to 764
[  192.984082][ T5002] netlink: 'syz.4.181': attribute type 72 has an invalid length.
[  193.086995][ T5002] netlink: 'syz.4.181': attribute type 8 has an invalid length.
[  194.266834][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  194.266911][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  198.204859][ T5020] loop4: detected capacity change from 0 to 8
[  198.239759][ T5024] loop2: detected capacity change from 0 to 512
[  198.257300][ T5026] loop0: detected capacity change from 0 to 512
[  198.269824][ T5020] SQUASHFS error: zlib decompression failed, data probably corrupt
[  198.272145][ T5024] EXT4-fs: Ignoring removed mblk_io_submit option
[  198.284615][ T5023] loop1: detected capacity change from 0 to 764
[  198.285312][ T5020] SQUASHFS error: Failed to read block 0x9b: -5
[  198.317325][ T5026] EXT4-fs: Ignoring removed mblk_io_submit option
[  198.324354][ T5024] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  198.349903][ T5024] EXT4-fs (loop2): DAX unsupported by block device.
[  198.392936][ T5020] SQUASHFS error: Unable to read metadata cache entry [99]
[  198.417279][ T5020] SQUASHFS error: Unable to read inode 0x127
[  198.459137][ T5026] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  198.588912][ T5026] EXT4-fs (loop0): DAX unsupported by block device.
[  199.409184][ T5020] loop4: detected capacity change from 0 to 512
[  200.349429][ T5020] EXT4-fs error (device loop4): ext4_get_journal_inode:5723: comm syz.4.186: inode #196608: comm syz.4.186: iget: illegal inode #
[  200.455453][ T5020] EXT4-fs (loop4): Remounting filesystem read-only
[  200.501324][ T5020] EXT4-fs (loop4): no journal found
[  200.507543][ T5020] EXT4-fs (loop4): can't get journal size
[  200.673417][ T5020] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  200.760119][ T5020] EXT4-fs (loop4): failed to initialize system zone (-22)
[  201.236750][ T5047] netlink: 8 bytes leftover after parsing attributes in process `syz.1.193'.
[  201.479146][ T4265] Bluetooth: hci0: command 0x0406 tx timeout
[  201.485299][ T4266] Bluetooth: hci1: command 0x0406 tx timeout
[  201.491846][ T4268] Bluetooth: hci2: command 0x0406 tx timeout
[  201.497986][ T4270] Bluetooth: hci3: command 0x0406 tx timeout
[  201.742790][ T5020] EXT4-fs (loop4): mount failed
[  201.987519][ T5052] loop3: detected capacity change from 0 to 512
[  202.026423][ T5052] EXT4-fs: Ignoring removed mblk_io_submit option
[  204.735079][ T5052] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  204.780930][ T5052] EXT4-fs (loop3): DAX unsupported by block device.
[  205.867761][ T5065] netlink: 8 bytes leftover after parsing attributes in process `syz.4.197'.
[  210.226032][ T5070] loop4: detected capacity change from 0 to 512
[  210.227611][ T5070] EXT4-fs: Ignoring removed mblk_io_submit option
[  210.325733][ T5070] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  210.326067][ T5070] EXT4-fs (loop4): DAX unsupported by block device.
[  212.044123][ T5081] loop4: detected capacity change from 0 to 8
[  212.132879][ T5081] SQUASHFS error: zlib decompression failed, data probably corrupt
[  212.259052][ T5081] SQUASHFS error: Failed to read block 0x9b: -5
[  212.266913][ T5081] SQUASHFS error: Unable to read metadata cache entry [99]
[  212.274648][ T5081] SQUASHFS error: Unable to read inode 0x127
[  212.418243][ T5090] netlink: 8 bytes leftover after parsing attributes in process `syz.1.203'.
[  213.045374][ T5092] loop0: detected capacity change from 0 to 512
[  213.058450][ T5092] EXT4-fs: Ignoring removed mblk_io_submit option
[  213.212052][ T5092] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  213.725976][ T5092] EXT4-fs (loop0): DAX unsupported by block device.
[  213.735776][ T5081] netlink: 4 bytes leftover after parsing attributes in process `syz.4.204'.
[  213.951612][ T5099] loop1: detected capacity change from 0 to 512
[  213.961534][ T5099] EXT4-fs: Ignoring removed mblk_io_submit option
[  213.976565][ T5099] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  213.991165][ T5099] EXT4-fs (loop1): DAX unsupported by block device.
[  214.004712][ T5101] loop2: detected capacity change from 0 to 8
[  214.525247][ T5101] SQUASHFS error: zlib decompression failed, data probably corrupt
[  214.637235][ T5101] SQUASHFS error: Failed to read block 0x9b: -5
[  214.644089][ T5101] SQUASHFS error: Unable to read metadata cache entry [99]
[  214.651344][ T5101] SQUASHFS error: Unable to read inode 0x127
[  215.907058][ T5114] netlink: 'syz.2.209': attribute type 72 has an invalid length.
[  216.071056][ T5114] netlink: 'syz.2.209': attribute type 8 has an invalid length.
[  217.597118][ T5128] netlink: 8 bytes leftover after parsing attributes in process `syz.0.213'.
[  218.119779][ T5132] netlink: 8 bytes leftover after parsing attributes in process `syz.2.216'.
[  220.613084][ T5143] Zero length message leads to an empty skb
[  224.746766][ T5156] loop1: detected capacity change from 0 to 512
[  224.772458][ T5156] EXT4-fs: Ignoring removed mblk_io_submit option
[  224.807913][ T5156] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  224.840464][ T5156] EXT4-fs (loop1): DAX unsupported by block device.
[  226.080500][ T5163] loop4: detected capacity change from 0 to 512
[  226.173419][ T5163] EXT4-fs: Ignoring removed mblk_io_submit option
[  226.218190][ T5163] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  226.702664][ T5163] EXT4-fs (loop4): DAX unsupported by block device.
[  226.927210][ T5168] loop3: detected capacity change from 0 to 8
[  227.622063][ T5168] SQUASHFS error: zlib decompression failed, data probably corrupt
[  227.681409][ T5168] SQUASHFS error: Failed to read block 0x9b: -5
[  227.724418][ T5168] SQUASHFS error: Unable to read metadata cache entry [99]
[  227.746718][ T5168] SQUASHFS error: Unable to read inode 0x127
[  227.933494][ T5176] loop2: detected capacity change from 0 to 512
[  227.954307][ T5176] EXT4-fs: Ignoring removed mblk_io_submit option
[  228.082439][ T5176] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  228.162357][ T5179] netlink: 8 bytes leftover after parsing attributes in process `syz.1.239'.
[  228.792793][ T5176] EXT4-fs (loop2): DAX unsupported by block device.
[  229.027435][ T5178] netlink: 892 bytes leftover after parsing attributes in process `syz.3.226'.
[  231.033723][ T5188] loop1: detected capacity change from 0 to 512
[  231.041246][ T5188] EXT4-fs: Ignoring removed mblk_io_submit option
[  231.053812][ T5188] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  231.359821][ T5192] netlink: 8 bytes leftover after parsing attributes in process `syz.4.230'.
[  232.008839][ T5188] EXT4-fs (loop1): DAX unsupported by block device.
[  233.682366][ T5203] netlink: 8 bytes leftover after parsing attributes in process `syz.4.232'.
[  234.051748][ T5205] netlink: 8 bytes leftover after parsing attributes in process `syz.2.233'.
[  234.896804][ T5221] netlink: 8 bytes leftover after parsing attributes in process `syz.0.235'.
[  235.129378][ T5223] loop3: detected capacity change from 0 to 764
[  237.409985][ T5234] loop0: detected capacity change from 0 to 8
[  237.569736][ T5237] loop3: detected capacity change from 0 to 512
[  237.721078][ T5237] EXT4-fs: Ignoring removed mblk_io_submit option
[  237.771221][ T5237] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  237.831662][ T5237] EXT4-fs (loop3): DAX unsupported by block device.
[  237.986862][ T5234] SQUASHFS error: zlib decompression failed, data probably corrupt
[  238.012820][ T5234] SQUASHFS error: Failed to read block 0x9b: -5
[  238.029574][ T5234] SQUASHFS error: Unable to read metadata cache entry [99]
[  238.051334][ T5234] SQUASHFS error: Unable to read inode 0x127
[  238.762222][ T5242] netlink: 8 bytes leftover after parsing attributes in process `syz.2.246'.
[  238.798339][ T5234] netlink: 892 bytes leftover after parsing attributes in process `syz.0.244'.
[  239.163601][ T5251] loop4: detected capacity change from 0 to 8
[  239.214505][ T5252] loop2: detected capacity change from 0 to 512
[  239.281983][ T5251] SQUASHFS error: zlib decompression failed, data probably corrupt
[  239.404070][ T5251] SQUASHFS error: Failed to read block 0x9b: -5
[  239.416164][ T5252] EXT4-fs: Ignoring removed mblk_io_submit option
[  239.498735][ T5251] SQUASHFS error: Unable to read metadata cache entry [99]
[  239.543399][ T5252] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  239.616882][ T5251] SQUASHFS error: Unable to read inode 0x127
[  239.666101][ T5252] EXT4-fs (loop2): DAX unsupported by block device.
[  242.261704][ T5271] netlink: 8 bytes leftover after parsing attributes in process `syz.0.253'.
[  242.698474][ T5286] loop4: detected capacity change from 0 to 512
[  242.727537][ T5287] loop0: detected capacity change from 0 to 512
[  242.730680][ T5286] EXT4-fs: Ignoring removed mblk_io_submit option
[  242.787465][ T5286] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  242.818086][ T5286] EXT4-fs (loop4): DAX unsupported by block device.
[  242.882378][ T5287] EXT4-fs: Ignoring removed mblk_io_submit option
[  243.081080][ T5287] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  243.163812][ T5287] EXT4-fs (loop0): DAX unsupported by block device.
[  246.231796][ T5310] loop0: detected capacity change from 0 to 512
[  246.319839][ T5310] EXT4-fs: Ignoring removed mblk_io_submit option
[  246.401366][ T5310] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  246.459966][ T5310] EXT4-fs (loop0): DAX unsupported by block device.
[  246.486792][ T5314] loop3: detected capacity change from 0 to 8
[  246.566163][ T5314] SQUASHFS error: zlib decompression failed, data probably corrupt
[  246.595305][ T5314] SQUASHFS error: Failed to read block 0x9b: -5
[  246.612698][ T5314] SQUASHFS error: Unable to read metadata cache entry [99]
[  246.619971][ T5314] SQUASHFS error: Unable to read inode 0x127
[  246.673761][ T5316] loop4: detected capacity change from 0 to 128
[  247.178200][ T5316] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  247.509222][ T5316] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  247.762966][ T5321] loop0: detected capacity change from 0 to 512
[  247.796080][ T5321] EXT4-fs: Ignoring removed mblk_io_submit option
[  247.884220][ T5322] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  248.341061][ T5321] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  248.394799][ T5321] EXT4-fs (loop0): DAX unsupported by block device.
[  249.807106][ T5333] netlink: 8 bytes leftover after parsing attributes in process `syz.4.269'.
[  250.275436][ T5338] loop3: detected capacity change from 0 to 512
[  250.329121][ T5338] EXT4-fs: Ignoring removed mblk_io_submit option
[  250.360650][ T5338] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  250.371758][ T5338] EXT4-fs (loop3): DAX unsupported by block device.
[  251.392374][ T5342] loop0: detected capacity change from 0 to 764
[  253.563740][ T5354] loop4: detected capacity change from 0 to 8
[  253.595734][ T5354] SQUASHFS error: zlib decompression failed, data probably corrupt
[  253.652938][ T5354] SQUASHFS error: Failed to read block 0x9b: -5
[  253.701577][ T5354] SQUASHFS error: Unable to read metadata cache entry [99]
[  253.750251][ T5354] SQUASHFS error: Unable to read inode 0x127
[  254.122185][ T5366] loop4: detected capacity change from 0 to 512
[  254.130539][ T5362] loop1: detected capacity change from 0 to 512
[  254.139773][ T5366] EXT4-fs: Ignoring removed mblk_io_submit option
[  254.165094][ T5366] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  254.191892][ T5362] EXT4-fs: Ignoring removed mblk_io_submit option
[  254.198886][ T5366] EXT4-fs (loop4): DAX unsupported by block device.
[  254.390713][ T5362] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  254.489587][ T5362] EXT4-fs (loop1): DAX unsupported by block device.
[  255.736853][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  255.804648][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  256.145640][ T5358] loop3: detected capacity change from 0 to 32768
[  256.194126][ T5358] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 scanned by syz.3.280 (5358)
[  256.473038][ T5358] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  256.500948][ T5358] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  256.559742][ T5384] netlink: 8 bytes leftover after parsing attributes in process `syz.1.285'.
[  256.583692][ T5358] BTRFS info (device loop3): using free space tree
[  257.134862][ T5358] BTRFS error (device loop3): open_ctree failed: -12
[  257.303256][ T5402] loop0: detected capacity change from 0 to 512
[  257.368168][ T5277] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 scanned by udevd (5277)
[  257.394929][ T5402] EXT4-fs: Ignoring removed mblk_io_submit option
[  257.495267][ T5402] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  257.720430][ T5402] EXT4-fs (loop0): DAX unsupported by block device.
[  258.677004][ T5407] loop1: detected capacity change from 0 to 764
[  259.939582][ T5415] 9pnet_fd: Insufficient options for proto=fd
[  260.736381][ T5426] loop4: detected capacity change from 0 to 512
[  260.743752][ T5426] EXT4-fs: Ignoring removed mblk_io_submit option
[  260.751452][ T5426] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  260.759785][ T5426] EXT4-fs (loop4): DAX unsupported by block device.
[  261.808895][ T5430] loop1: detected capacity change from 0 to 8
[  261.934631][ T5430] SQUASHFS error: zlib decompression failed, data probably corrupt
[  261.969815][ T5430] SQUASHFS error: Failed to read block 0x9b: -5
[  261.995720][ T5430] SQUASHFS error: Unable to read metadata cache entry [99]
[  262.025824][ T5436] loop2: detected capacity change from 0 to 512
[  262.033567][ T5436] EXT4-fs: Ignoring removed mblk_io_submit option
[  262.040859][ T5436] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  262.052663][ T5430] SQUASHFS error: Unable to read inode 0x127
[  262.094669][ T5436] EXT4-fs (loop2): DAX unsupported by block device.
[  263.136485][ T5445] loop3: detected capacity change from 0 to 512
[  263.177315][ T5445] EXT4-fs: Ignoring removed mblk_io_submit option
[  263.304014][ T5445] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  263.351778][ T5445] EXT4-fs (loop3): DAX unsupported by block device.
[  264.151696][ T5454] netlink: 8 bytes leftover after parsing attributes in process `syz.2.300'.
[  265.872544][    C0] sched: RT throttling activated
[  265.918550][ T5473] loop1: detected capacity change from 0 to 32768
[  265.932310][ T5473] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  265.940911][ T5473] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  266.030811][ T5473] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[  266.128974][ T5475] netlink: 8 bytes leftover after parsing attributes in process `syz.2.305'.
[  266.727762][   T14] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  266.735412][   T14] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  266.793236][   T14] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 57ms
[  266.802433][   T14] gfs2: fsid=syz:syz.0: jid=0: Done
[  266.828145][ T5473] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  266.935952][ T5480] loop3: detected capacity change from 0 to 764
[  267.168748][ T5473] gfs2: fsid=syz:syz.0: found 1 quota changes
[  267.331105][ T5484] loop2: detected capacity change from 0 to 512
[  267.384779][ T5484] EXT4-fs: Ignoring removed mblk_io_submit option
[  267.432249][ T5484] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  267.443237][ T5484] EXT4-fs (loop2): DAX unsupported by block device.
[  267.462950][ T4264] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[  267.462950][ T4264]   inode = 11 2339
[  267.462950][ T4264]   function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 464
[  267.483560][    C0] vkms_vblank_simulate: vblank timer overrun
[  267.640294][ T4264] gfs2: fsid=syz:syz.0: G:  s:EX n:2/923 f:qobnN t:EX d:EX/0 a:0 v:0 r:3 m:20 p:1
[  267.737126][ T4264] gfs2: fsid=syz:syz.0:  H: s:EX f:H e:0 p:4264 [syz-executor] gfs2_quota_sync+0x32c/0x6f0
[  268.169089][ T4264] gfs2: fsid=syz:syz.0:  I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[  268.201461][ T4264] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  268.246761][ T5158] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  268.268658][ T4264] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  268.834944][ T4264] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  269.158188][ T4264] gfs2: fsid=syz:syz.0: File system withdrawn
[  269.325013][ T4264] CPU: 0 PID: 4264 Comm: syz-executor Not tainted 6.1.138-syzkaller #0
[  269.333330][ T4264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  269.343428][ T4264] Call Trace:
[  269.346736][ T4264]  <TASK>
[  269.349690][ T4264]  dump_stack_lvl+0x168/0x22e
[  269.354422][ T4264]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  269.360099][ T4264]  ? show_regs_print_info+0x12/0x12
[  269.365339][ T4264]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  269.371035][ T4264]  gfs2_withdraw+0x143f/0x1780
[  269.375860][ T4264]  ? gfs2_lm+0x220/0x220
[  269.380139][ T4264]  ? gfs2_consist_inode_i+0xf1/0x110
[  269.385465][ T4264]  gfs2_inode_refresh+0xb5e/0xfc0
[  269.390541][ T4264]  ? gfs2_inode_metasync+0xf0/0xf0
[  269.395690][ T4264]  ? gfs2_glock_nq+0xcf0/0x14e0
[  269.400587][ T4264]  gfs2_instantiate+0x15e/0x210
[  269.405479][ T4264]  gfs2_glock_wait+0x1d0/0x2a0
[  269.410274][ T4264]  do_sync+0x49a/0xc00
[  269.414377][ T4264]  ? gfs2_quota_sync+0x32c/0x6f0
[  269.419364][ T4264]  ? slot_put+0x1e0/0x1e0
[  269.423736][ T4264]  ? gfs2_quota_sync+0x32c/0x6f0
[  269.428713][ T4264]  ? do_raw_spin_unlock+0x11d/0x230
[  269.433966][ T4264]  gfs2_quota_sync+0x32c/0x6f0
[  269.438777][ T4264]  gfs2_sync_fs+0x48/0xb0
[  269.443148][ T4264]  sync_filesystem+0xe6/0x220
[  269.447859][ T4264]  generic_shutdown_super+0x6b/0x340
[  269.453179][ T4264]  kill_block_super+0x7c/0xe0
[  269.457986][ T4264]  deactivate_locked_super+0x93/0xf0
[  269.463303][ T4264]  cleanup_mnt+0x463/0x4f0
[  269.467760][ T4264]  ? lockdep_hardirqs_on+0x94/0x140
[  269.473094][ T4264]  task_work_run+0x1ca/0x250
[  269.477734][ T4264]  ? task_work_cancel+0x230/0x230
[  269.482799][ T4264]  ? exit_to_user_mode_loop+0x3b/0x110
[  269.488304][ T4264]  exit_to_user_mode_loop+0xe6/0x110
[  269.493632][ T4264]  exit_to_user_mode_prepare+0xb1/0x140
[  269.499220][ T4264]  syscall_exit_to_user_mode+0x16/0x40
[  269.504796][ T4264]  do_syscall_64+0x58/0xa0
[  269.509247][ T4264]  ? clear_bhb_loop+0x45/0xa0
[  269.513950][ T4264]  ? clear_bhb_loop+0x45/0xa0
[  269.518659][ T4264]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  269.524596][ T4264] RIP: 0033:0x7fec9518fc97
[  269.529057][ T4264] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  269.548701][ T4264] RSP: 002b:00007ffe3c106388 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  269.557163][ T4264] RAX: 0000000000000000 RBX: 00007fec9521089d RCX: 00007fec9518fc97
[  269.565162][ T4264] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe3c106440
[  269.573165][ T4264] RBP: 00007ffe3c106440 R08: 0000000000000000 R09: 0000000000000000
[  269.581163][ T4264] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe3c1074d0
[  269.589176][ T4264] R13: 00007fec9521089d R14: 0000000000041456 R15: 00007ffe3c107510
[  269.597306][ T4264]  </TASK>
[  269.600394][    C0] vkms_vblank_simulate: vblank timer overrun
[  269.826506][ T5498] loop4: detected capacity change from 0 to 8
[  269.913028][ T4264] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed at function = gfs2_quota_cleanup, file = fs/gfs2/quota.c, line = 1485
[  269.927633][ T4264] CPU: 1 PID: 4264 Comm: syz-executor Not tainted 6.1.138-syzkaller #0
[  269.935933][ T4264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  269.946015][ T4264] Call Trace:
[  269.949312][ T4264]  <TASK>
[  269.952248][ T4264]  dump_stack_lvl+0x168/0x22e
[  269.956943][ T4264]  ? gfs2_assert_warn_i+0xc3/0x2c0
[  269.962063][ T4264]  ? show_regs_print_info+0x12/0x12
[  269.967288][ T4264]  ? load_image+0x3b0/0x3b0
[  269.971805][ T4264]  ? do_raw_spin_unlock+0x11d/0x230
[  269.977023][ T4264]  gfs2_assert_warn_i+0x18f/0x2c0
[  269.982064][ T4264]  gfs2_quota_cleanup+0x4b4/0x6a0
[  269.987124][ T4264]  gfs2_put_super+0x22f/0x8c0
[  269.991827][ T4264]  ? gfs2_evict_inode+0x1170/0x1170
[  269.997044][ T4264]  generic_shutdown_super+0x130/0x340
[  270.002433][ T4264]  kill_block_super+0x7c/0xe0
[  270.007125][ T4264]  deactivate_locked_super+0x93/0xf0
[  270.012430][ T4264]  cleanup_mnt+0x463/0x4f0
[  270.016864][ T4264]  ? lockdep_hardirqs_on+0x94/0x140
[  270.022093][ T4264]  task_work_run+0x1ca/0x250
[  270.026707][ T4264]  ? task_work_cancel+0x230/0x230
[  270.031746][ T4264]  ? exit_to_user_mode_loop+0x3b/0x110
[  270.037225][ T4264]  exit_to_user_mode_loop+0xe6/0x110
[  270.042549][ T4264]  exit_to_user_mode_prepare+0xb1/0x140
[  270.048115][ T4264]  syscall_exit_to_user_mode+0x16/0x40
[  270.053696][ T4264]  do_syscall_64+0x58/0xa0
[  270.058138][ T4264]  ? clear_bhb_loop+0x45/0xa0
[  270.063014][ T4264]  ? clear_bhb_loop+0x45/0xa0
[  270.067708][ T4264]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  270.073620][ T4264] RIP: 0033:0x7fec9518fc97
[  270.078043][ T4264] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  270.097688][ T4264] RSP: 002b:00007ffe3c106388 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  270.106118][ T4264] RAX: 0000000000000000 RBX: 00007fec9521089d RCX: 00007fec9518fc97
[  270.114096][ T4264] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe3c106440
[  270.122088][ T4264] RBP: 00007ffe3c106440 R08: 0000000000000000 R09: 0000000000000000
[  270.130160][ T4264] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe3c1074d0
[  270.138140][ T4264] R13: 00007fec9521089d R14: 0000000000041456 R15: 00007ffe3c107510
[  270.146139][ T4264]  </TASK>
[  270.158700][ T5498] SQUASHFS error: zlib decompression failed, data probably corrupt
[  270.198244][ T5498] SQUASHFS error: Failed to read block 0x9b: -5
[  270.222672][ T5498] SQUASHFS error: Unable to read metadata cache entry [99]
[  270.300456][ T5498] SQUASHFS error: Unable to read inode 0x127
[  273.749375][ T5522] loop0: detected capacity change from 0 to 128
[  273.838972][ T5522] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  273.930249][ T5522] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  276.346384][ T5532] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  278.055887][ T5537] loop4: detected capacity change from 0 to 128
[  279.035761][ T5537] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  279.102165][ T5537] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  279.279266][ T5545] 9pnet_fd: Insufficient options for proto=fd
[  280.061070][ T5550] loop2: detected capacity change from 0 to 8
[  280.299230][ T5550] SQUASHFS error: zlib decompression failed, data probably corrupt
[  280.947093][ T5550] SQUASHFS error: Failed to read block 0x9b: -5
[  280.969920][ T5550] SQUASHFS error: Unable to read metadata cache entry [99]
[  281.082670][ T5550] SQUASHFS error: Unable to read inode 0x127
[  281.108811][ T5554] loop1: detected capacity change from 0 to 64
[  283.109133][ T5560] loop3: detected capacity change from 0 to 512
[  284.335789][ T5560] EXT4-fs: Ignoring removed mblk_io_submit option
[  284.347425][ T5560] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  284.355947][ T5560] EXT4-fs (loop3): DAX unsupported by block device.
[  285.705244][ T5573] loop2: detected capacity change from 0 to 32768
[  285.737167][ T5573] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  285.745484][ T5573] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  285.756978][ T5573] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[  285.844216][ T4299] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  285.851016][ T4299] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  286.417788][ T4299] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 566ms
[  286.427446][ T4299] gfs2: fsid=syz:syz.0: jid=0: Done
[  286.438458][ T5573] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  286.628040][ T5573] gfs2: fsid=syz:syz.0: found 1 quota changes
[  287.704509][ T4252] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[  287.704509][ T4252]   inode = 11 2339
[  287.704509][ T4252]   function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 464
[  287.785900][ T4252] gfs2: fsid=syz:syz.0: G:  s:EX n:2/923 f:qobnN t:EX d:EX/0 a:0 v:0 r:3 m:20 p:1
[  287.795585][ T4252] gfs2: fsid=syz:syz.0:  H: s:EX f:H e:0 p:4252 [syz-executor] gfs2_quota_sync+0x32c/0x6f0
[  289.028484][ T4252] gfs2: fsid=syz:syz.0:  I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[  289.040103][ T4252] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  289.070123][ T4252] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  289.092601][ T4252] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  289.100119][ T4252] gfs2: fsid=syz:syz.0: File system withdrawn
[  289.122691][ T4252] CPU: 1 PID: 4252 Comm: syz-executor Not tainted 6.1.138-syzkaller #0
[  289.131007][ T4252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  289.141093][ T4252] Call Trace:
[  289.144393][ T4252]  <TASK>
[  289.147323][ T4252]  dump_stack_lvl+0x168/0x22e
[  289.152008][ T4252]  ? kobject_uevent_env+0x35f/0x8a0
[  289.157220][ T4252]  ? show_regs_print_info+0x12/0x12
[  289.162426][ T4252]  ? load_image+0x3b0/0x3b0
[  289.166937][ T4252]  ? kobject_uevent_env+0x35f/0x8a0
[  289.172150][ T4252]  gfs2_withdraw+0x143f/0x1780
[  289.176928][ T4252]  ? gfs2_lm+0x220/0x220
[  289.181177][ T4252]  ? gfs2_consist_inode_i+0xf1/0x110
[  289.186466][ T4252]  gfs2_inode_refresh+0xb5e/0xfc0
[  289.191505][ T4252]  ? gfs2_inode_metasync+0xf0/0xf0
[  289.196627][ T4252]  ? gfs2_glock_nq+0xcf0/0x14e0
[  289.201481][ T4252]  gfs2_instantiate+0x15e/0x210
[  289.206442][ T4252]  gfs2_glock_wait+0x1d0/0x2a0
[  289.211209][ T4252]  do_sync+0x49a/0xc00
[  289.215284][ T4252]  ? gfs2_quota_sync+0x32c/0x6f0
[  289.220229][ T4252]  ? slot_put+0x1e0/0x1e0
[  289.224568][ T4252]  ? gfs2_quota_sync+0x32c/0x6f0
[  289.229535][ T4252]  ? do_raw_spin_unlock+0x11d/0x230
[  289.234767][ T4252]  gfs2_quota_sync+0x32c/0x6f0
[  289.239545][ T4252]  gfs2_sync_fs+0x48/0xb0
[  289.243897][ T4252]  sync_filesystem+0xe6/0x220
[  289.248701][ T4252]  generic_shutdown_super+0x6b/0x340
[  289.254033][ T4252]  kill_block_super+0x7c/0xe0
[  289.258753][ T4252]  deactivate_locked_super+0x93/0xf0
[  289.264074][ T4252]  cleanup_mnt+0x463/0x4f0
[  289.268536][ T4252]  ? lockdep_hardirqs_on+0x94/0x140
[  289.273792][ T4252]  task_work_run+0x1ca/0x250
[  289.278426][ T4252]  ? task_work_cancel+0x230/0x230
[  289.283512][ T4252]  ? exit_to_user_mode_loop+0x3b/0x110
[  289.289028][ T4252]  exit_to_user_mode_loop+0xe6/0x110
[  289.294363][ T4252]  exit_to_user_mode_prepare+0xb1/0x140
[  289.299952][ T4252]  syscall_exit_to_user_mode+0x16/0x40
[  289.305453][ T4252]  do_syscall_64+0x58/0xa0
[  289.309911][ T4252]  ? clear_bhb_loop+0x45/0xa0
[  289.314624][ T4252]  ? clear_bhb_loop+0x45/0xa0
[  289.319436][ T4252]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  289.325383][ T4252] RIP: 0033:0x7f1747b8fc97
[  289.329835][ T4252] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  289.349566][ T4252] RSP: 002b:00007ffeabae1db8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  289.358024][ T4252] RAX: 0000000000000000 RBX: 00007f1747c1089d RCX: 00007f1747b8fc97
[  289.366033][ T4252] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffeabae1e70
[  289.374041][ T4252] RBP: 00007ffeabae1e70 R08: 0000000000000000 R09: 0000000000000000
[  289.382053][ T4252] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffeabae2f00
[  289.390063][ T4252] R13: 00007f1747c1089d R14: 0000000000045fd9 R15: 00007ffeabae2f40
[  289.398087][ T4252]  </TASK>
[  289.401150][    C1] vkms_vblank_simulate: vblank timer overrun
[  289.459097][ T4252] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed at function = gfs2_quota_cleanup, file = fs/gfs2/quota.c, line = 1485
[  289.473699][ T4252] CPU: 1 PID: 4252 Comm: syz-executor Not tainted 6.1.138-syzkaller #0
[  289.481977][ T4252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  289.492067][ T4252] Call Trace:
[  289.495376][ T4252]  <TASK>
[  289.498330][ T4252]  dump_stack_lvl+0x168/0x22e
[  289.503021][ T4252]  ? gfs2_assert_warn_i+0xc3/0x2c0
[  289.508133][ T4252]  ? show_regs_print_info+0x12/0x12
[  289.513427][ T4252]  ? load_image+0x3b0/0x3b0
[  289.517938][ T4252]  ? preempt_schedule+0xa7/0xb0
[  289.522894][ T4252]  ? schedule_preempt_disabled+0x20/0x20
[  289.528617][ T4252]  ? do_raw_spin_unlock+0x11d/0x230
[  289.533829][ T4252]  gfs2_assert_warn_i+0x18f/0x2c0
[  289.538864][ T4252]  gfs2_quota_cleanup+0x4b4/0x6a0
[  289.543904][ T4252]  gfs2_put_super+0x22f/0x8c0
[  289.548593][ T4252]  ? gfs2_evict_inode+0x1170/0x1170
[  289.553805][ T4252]  generic_shutdown_super+0x130/0x340
[  289.559184][ T4252]  kill_block_super+0x7c/0xe0
[  289.563866][ T4252]  deactivate_locked_super+0x93/0xf0
[  289.569155][ T4252]  cleanup_mnt+0x463/0x4f0
[  289.573599][ T4252]  ? lockdep_hardirqs_on+0x94/0x140
[  289.578812][ T4252]  task_work_run+0x1ca/0x250
[  289.583418][ T4252]  ? task_work_cancel+0x230/0x230
[  289.588475][ T4252]  ? exit_to_user_mode_loop+0x3b/0x110
[  289.593947][ T4252]  exit_to_user_mode_loop+0xe6/0x110
[  289.599243][ T4252]  exit_to_user_mode_prepare+0xb1/0x140
[  289.604813][ T4252]  syscall_exit_to_user_mode+0x16/0x40
[  289.610299][ T4252]  do_syscall_64+0x58/0xa0
[  289.614757][ T4252]  ? clear_bhb_loop+0x45/0xa0
[  289.619435][ T4252]  ? clear_bhb_loop+0x45/0xa0
[  289.624116][ T4252]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  289.630019][ T4252] RIP: 0033:0x7f1747b8fc97
[  289.634437][ T4252] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  289.654049][ T4252] RSP: 002b:00007ffeabae1db8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  289.662469][ T4252] RAX: 0000000000000000 RBX: 00007f1747c1089d RCX: 00007f1747b8fc97
[  289.670447][ T4252] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffeabae1e70
[  289.678432][ T4252] RBP: 00007ffeabae1e70 R08: 0000000000000000 R09: 0000000000000000
[  289.686408][ T4252] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffeabae2f00
[  289.694381][ T4252] R13: 00007f1747c1089d R14: 0000000000045fd9 R15: 00007ffeabae2f40
[  289.702370][ T4252]  </TASK>
[  289.705470][    C1] vkms_vblank_simulate: vblank timer overrun
[  291.159040][ T5609] loop3: detected capacity change from 0 to 8
[  291.170132][ T5611] loop0: detected capacity change from 0 to 128
[  291.224141][ T5609] SQUASHFS error: zlib decompression failed, data probably corrupt
[  291.245472][ T5611] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  291.279747][ T5609] SQUASHFS error: Failed to read block 0x9b: -5
[  291.320239][ T5613] loop4: detected capacity change from 0 to 8
[  291.326900][ T5611] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  291.333044][ T5609] SQUASHFS error: Unable to read metadata cache entry [99]
[  291.414512][ T5609] SQUASHFS error: Unable to read inode 0x127
[  291.643652][ T5613] SQUASHFS error: zlib decompression failed, data probably corrupt
[  291.744569][ T5613] SQUASHFS error: Failed to read block 0x9b: -5
[  292.043291][ T5613] SQUASHFS error: Unable to read metadata cache entry [99]
[  292.087484][ T5613] SQUASHFS error: Unable to read inode 0x127
[  292.193647][ T5616] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  292.710685][ T5613] loop4: detected capacity change from 0 to 512
[  292.783157][ T5620] loop1: detected capacity change from 0 to 512
[  292.810262][ T5613] EXT4-fs error (device loop4): ext4_get_journal_inode:5723: comm syz.4.345: inode #196608: comm syz.4.345: iget: illegal inode #
[  292.811217][ T5620] EXT4-fs: Ignoring removed mblk_io_submit option
[  293.843436][ T5613] EXT4-fs (loop4): Remounting filesystem read-only
[  293.850195][ T5613] EXT4-fs (loop4): no journal found
[  293.852705][ T5624] loop2: detected capacity change from 0 to 32768
[  293.864936][ T5624] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  293.895924][ T5620] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  293.911991][ T5620] EXT4-fs (loop1): DAX unsupported by block device.
[  293.918702][ T5624] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  293.929965][ T5624] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[  293.939504][    T7] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  293.947403][    T7] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  293.992874][ T5613] EXT4-fs (loop4): can't get journal size
[  294.025616][ T5613] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  294.125514][ T5613] EXT4-fs (loop4): failed to initialize system zone (-22)
[  294.183912][    T7] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 236ms
[  294.204174][ T5613] EXT4-fs (loop4): mount failed
[  294.246828][    T7] gfs2: fsid=syz:syz.0: jid=0: Done
[  294.283790][ T5624] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  294.587705][ T5158] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  294.600038][ T5624] gfs2: fsid=syz:syz.0: found 1 quota changes
[  295.016508][ T4252] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[  295.016508][ T4252]   inode = 11 2339
[  295.016508][ T4252]   function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 464
[  295.163308][ T4252] gfs2: fsid=syz:syz.0: G:  s:EX n:2/923 f:qobnN t:EX d:EX/0 a:0 v:0 r:3 m:20 p:1
[  295.713778][ T4252] gfs2: fsid=syz:syz.0:  H: s:EX f:H e:0 p:4252 [syz-executor] gfs2_quota_sync+0x32c/0x6f0
[  295.724896][ T4252] gfs2: fsid=syz:syz.0:  I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[  295.733444][ T4252] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  295.812295][ T4252] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  296.824123][ T4252] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  296.903142][ T4252] gfs2: fsid=syz:syz.0: File system withdrawn
[  296.991009][ T4252] CPU: 1 PID: 4252 Comm: syz-executor Not tainted 6.1.138-syzkaller #0
[  296.997248][ T5643] loop4: detected capacity change from 0 to 128
[  296.999570][ T4252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  297.015927][ T4252] Call Trace:
[  297.019761][ T4252]  <TASK>
[  297.022727][ T4252]  dump_stack_lvl+0x168/0x22e
[  297.027471][ T4252]  ? kobject_uevent_env+0x35f/0x8a0
[  297.032746][ T4252]  ? show_regs_print_info+0x12/0x12
[  297.037959][ T4252]  ? load_image+0x3b0/0x3b0
[  297.042464][ T4252]  ? kobject_uevent_env+0x35f/0x8a0
[  297.047669][ T4252]  gfs2_withdraw+0x143f/0x1780
[  297.052448][ T4252]  ? gfs2_lm+0x220/0x220
[  297.056698][ T4252]  ? gfs2_consist_inode_i+0xf1/0x110
[  297.061991][ T4252]  gfs2_inode_refresh+0xb5e/0xfc0
[  297.067042][ T4252]  ? gfs2_inode_metasync+0xf0/0xf0
[  297.072196][ T4252]  ? gfs2_glock_nq+0xcf0/0x14e0
[  297.077063][ T4252]  gfs2_instantiate+0x15e/0x210
[  297.081925][ T4252]  gfs2_glock_wait+0x1d0/0x2a0
[  297.086818][ T4252]  do_sync+0x49a/0xc00
[  297.090898][ T4252]  ? gfs2_quota_sync+0x32c/0x6f0
[  297.095858][ T4252]  ? slot_put+0x1e0/0x1e0
[  297.100207][ T4252]  ? gfs2_quota_sync+0x32c/0x6f0
[  297.105159][ T4252]  ? do_raw_spin_unlock+0x11d/0x230
[  297.110374][ T4252]  gfs2_quota_sync+0x32c/0x6f0
[  297.115171][ T4252]  gfs2_sync_fs+0x48/0xb0
[  297.119511][ T4252]  sync_filesystem+0xe6/0x220
[  297.124253][ T4252]  generic_shutdown_super+0x6b/0x340
[  297.129580][ T4252]  kill_block_super+0x7c/0xe0
[  297.134268][ T4252]  deactivate_locked_super+0x93/0xf0
[  297.139559][ T4252]  cleanup_mnt+0x463/0x4f0
[  297.143983][ T4252]  ? lockdep_hardirqs_on+0x94/0x140
[  297.149200][ T4252]  task_work_run+0x1ca/0x250
[  297.153812][ T4252]  ? task_work_cancel+0x230/0x230
[  297.158847][ T4252]  ? exit_to_user_mode_loop+0x3b/0x110
[  297.164322][ T4252]  exit_to_user_mode_loop+0xe6/0x110
[  297.169626][ T4252]  exit_to_user_mode_prepare+0xb1/0x140
[  297.175198][ T4252]  syscall_exit_to_user_mode+0x16/0x40
[  297.180663][ T4252]  do_syscall_64+0x58/0xa0
[  297.185127][ T4252]  ? clear_bhb_loop+0x45/0xa0
[  297.189830][ T4252]  ? clear_bhb_loop+0x45/0xa0
[  297.194523][ T4252]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  297.200453][ T4252] RIP: 0033:0x7f1747b8fc97
[  297.204886][ T4252] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  297.224498][ T4252] RSP: 002b:00007ffeabae1db8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  297.232923][ T4252] RAX: 0000000000000000 RBX: 00007f1747c1089d RCX: 00007f1747b8fc97
[  297.240900][ T4252] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffeabae1e70
[  297.248874][ T4252] RBP: 00007ffeabae1e70 R08: 0000000000000000 R09: 0000000000000000
[  297.256932][ T4252] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffeabae2f00
[  297.264924][ T4252] R13: 00007f1747c1089d R14: 0000000000047eec R15: 00007ffeabae2f40
[  297.272938][ T4252]  </TASK>
[  297.276049][    C1] vkms_vblank_simulate: vblank timer overrun
[  297.323315][ T5632] 9pnet_fd: Insufficient options for proto=fd
[  297.373186][ T4252] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed at function = gfs2_quota_cleanup, file = fs/gfs2/quota.c, line = 1485
[  297.512906][ T5643] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  297.598671][ T5647] loop3: detected capacity change from 0 to 8
[  297.623247][ T4252] CPU: 0 PID: 4252 Comm: syz-executor Not tainted 6.1.138-syzkaller #0
[  297.631565][ T4252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  297.638344][ T5647] SQUASHFS error: zlib decompression failed, data probably corrupt
[  297.641642][ T4252] Call Trace:
[  297.641681][ T4252]  <TASK>
[  297.641690][ T4252]  dump_stack_lvl+0x168/0x22e
[  297.641725][ T4252]  ? gfs2_assert_warn_i+0xc3/0x2c0
[  297.641748][ T4252]  ? show_regs_print_info+0x12/0x12
[  297.641776][ T4252]  ? load_image+0x3b0/0x3b0
[  297.641803][ T4252]  ? do_raw_spin_unlock+0x11d/0x230
[  297.641841][ T4252]  gfs2_assert_warn_i+0x18f/0x2c0
[  297.641870][ T4252]  gfs2_quota_cleanup+0x4b4/0x6a0
[  297.641915][ T4252]  gfs2_put_super+0x22f/0x8c0
[  297.641952][ T4252]  ? gfs2_evict_inode+0x1170/0x1170
[  297.641984][ T4252]  generic_shutdown_super+0x130/0x340
[  297.642013][ T4252]  kill_block_super+0x7c/0xe0
[  297.642041][ T4252]  deactivate_locked_super+0x93/0xf0
[  297.642067][ T4252]  cleanup_mnt+0x463/0x4f0
[  297.642095][ T4252]  ? lockdep_hardirqs_on+0x94/0x140
[  297.642131][ T4252]  task_work_run+0x1ca/0x250
[  297.642160][ T4252]  ? task_work_cancel+0x230/0x230
[  297.642192][ T4252]  ? exit_to_user_mode_loop+0x3b/0x110
[  297.642225][ T4252]  exit_to_user_mode_loop+0xe6/0x110
[  297.642254][ T4252]  exit_to_user_mode_prepare+0xb1/0x140
[  297.642283][ T4252]  syscall_exit_to_user_mode+0x16/0x40
[  297.642304][ T4252]  do_syscall_64+0x58/0xa0
[  297.642329][ T4252]  ? clear_bhb_loop+0x45/0xa0
[  297.642349][ T4252]  ? clear_bhb_loop+0x45/0xa0
[  297.642372][ T4252]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  297.642403][ T4252] RIP: 0033:0x7f1747b8fc97
[  297.675534][ T5647] SQUASHFS error: Failed to read block 0x9b: -5
[  297.676647][ T4252] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  297.681855][ T5647] SQUASHFS error: Unable to read metadata cache entry [99]
[  297.686871][ T4252] RSP: 002b:00007ffeabae1db8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  297.686902][ T4252] RAX: 0000000000000000 RBX: 00007f1747c1089d RCX: 00007f1747b8fc97
[  297.686916][ T4252] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffeabae1e70
[  297.686930][ T4252] RBP: 00007ffeabae1e70 R08: 0000000000000000 R09: 0000000000000000
[  297.686943][ T4252] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffeabae2f00
[  297.686955][ T4252] R13: 00007f1747c1089d R14: 0000000000047eec R15: 00007ffeabae2f40
[  297.686985][ T4252]  </TASK>
[  298.551664][ T5647] SQUASHFS error: Unable to read inode 0x127
[  298.642302][ T5643] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  298.800099][ T5647] loop3: detected capacity change from 0 to 512
[  298.956764][ T5647] EXT4-fs error (device loop3): ext4_get_journal_inode:5723: comm syz.3.355: inode #196608: comm syz.3.355: iget: illegal inode #
[  299.675580][ T5647] EXT4-fs (loop3): Remounting filesystem read-only
[  299.736547][ T5647] EXT4-fs (loop3): no journal found
[  299.741827][ T5647] EXT4-fs (loop3): can't get journal size
[  300.107984][ T5647] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  300.137545][ T5647] EXT4-fs (loop3): failed to initialize system zone (-22)
[  300.192835][ T5647] EXT4-fs (loop3): mount failed
[  300.355019][ T5662] loop2: detected capacity change from 0 to 8
[  300.677230][ T5662] SQUASHFS error: zlib decompression failed, data probably corrupt
[  301.315464][ T5662] SQUASHFS error: Failed to read block 0x9b: -5
[  301.412631][ T5662] SQUASHFS error: Unable to read metadata cache entry [99]
[  302.413298][ T5672] loop0: detected capacity change from 0 to 32768
[  302.426874][ T5662] SQUASHFS error: Unable to read inode 0x127
[  302.445527][ T5672] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  302.454764][ T5672] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  302.469220][ T5672] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[  302.479308][   T14] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  302.490186][   T14] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  302.568575][   T14] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 78ms
[  302.814576][   T14] gfs2: fsid=syz:syz.0: jid=0: Done
[  302.819898][ T5672] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  302.953939][ T5681] netlink: 8 bytes leftover after parsing attributes in process `syz.1.361'.
[  303.274978][ T5683] netlink: 8 bytes leftover after parsing attributes in process `syz.4.362'.
[  303.856197][ T5672] gfs2: fsid=syz:syz.0: found 1 quota changes
[  304.843607][ T4254] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[  304.843607][ T4254]   inode = 11 2339
[  304.843607][ T4254]   function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 464
[  304.983603][ T4254] gfs2: fsid=syz:syz.0: G:  s:EX n:2/923 f:qobnN t:EX d:EX/0 a:0 v:0 r:3 m:20 p:1
[  305.123232][ T4254] gfs2: fsid=syz:syz.0:  H: s:EX f:H e:0 p:4254 [syz-executor] gfs2_quota_sync+0x32c/0x6f0
[  305.275625][ T4254] gfs2: fsid=syz:syz.0:  I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[  305.396382][ T4254] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  305.714294][ T4254] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  305.814540][ T4254] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  305.902867][ T4254] gfs2: fsid=syz:syz.0: File system withdrawn
[  305.993439][ T4254] CPU: 1 PID: 4254 Comm: syz-executor Not tainted 6.1.138-syzkaller #0
[  306.001759][ T4254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  306.011942][ T4254] Call Trace:
[  306.015248][ T4254]  <TASK>
[  306.018204][ T4254]  dump_stack_lvl+0x168/0x22e
[  306.022927][ T4254]  ? kobject_uevent_env+0x35f/0x8a0
[  306.028162][ T4254]  ? show_regs_print_info+0x12/0x12
[  306.033621][ T4254]  ? load_image+0x3b0/0x3b0
[  306.038167][ T4254]  ? kobject_uevent_env+0x35f/0x8a0
[  306.043410][ T4254]  gfs2_withdraw+0x143f/0x1780
[  306.048225][ T4254]  ? gfs2_lm+0x220/0x220
[  306.052507][ T4254]  ? gfs2_consist_inode_i+0xf1/0x110
[  306.057826][ T4254]  gfs2_inode_refresh+0xb5e/0xfc0
[  306.062897][ T4254]  ? gfs2_inode_metasync+0xf0/0xf0
[  306.068052][ T4254]  ? gfs2_glock_nq+0xcf0/0x14e0
[  306.073027][ T4254]  gfs2_instantiate+0x15e/0x210
[  306.077913][ T4254]  gfs2_glock_wait+0x1d0/0x2a0
[  306.082754][ T4254]  do_sync+0x49a/0xc00
[  306.086873][ T4254]  ? gfs2_quota_sync+0x32c/0x6f0
[  306.091965][ T4254]  ? slot_put+0x1e0/0x1e0
[  306.096341][ T4254]  ? gfs2_quota_sync+0x32c/0x6f0
[  306.101323][ T4254]  ? do_raw_spin_unlock+0x11d/0x230
[  306.106571][ T4254]  gfs2_quota_sync+0x32c/0x6f0
[  306.111391][ T4254]  gfs2_sync_fs+0x48/0xb0
[  306.115820][ T4254]  sync_filesystem+0xe6/0x220
[  306.120543][ T4254]  generic_shutdown_super+0x6b/0x340
[  306.125877][ T4254]  kill_block_super+0x7c/0xe0
[  306.130598][ T4254]  deactivate_locked_super+0x93/0xf0
[  306.135918][ T4254]  cleanup_mnt+0x463/0x4f0
[  306.140378][ T4254]  ? lockdep_hardirqs_on+0x94/0x140
[  306.146079][ T4254]  task_work_run+0x1ca/0x250
[  306.150716][ T4254]  ? task_work_cancel+0x230/0x230
[  306.155886][ T4254]  ? exit_to_user_mode_loop+0x3b/0x110
[  306.161392][ T4254]  exit_to_user_mode_loop+0xe6/0x110
[  306.166728][ T4254]  exit_to_user_mode_prepare+0xb1/0x140
[  306.172408][ T4254]  syscall_exit_to_user_mode+0x16/0x40
[  306.177908][ T4254]  do_syscall_64+0x58/0xa0
[  306.182363][ T4254]  ? clear_bhb_loop+0x45/0xa0
[  306.187107][ T4254]  ? clear_bhb_loop+0x45/0xa0
[  306.191825][ T4254]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  306.197760][ T4254] RIP: 0033:0x7f0a7958fc97
[  306.202208][ T4254] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  306.221935][ T4254] RSP: 002b:00007ffef9607fb8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  306.230475][ T4254] RAX: 0000000000000000 RBX: 00007f0a7961089d RCX: 00007f0a7958fc97
[  306.238476][ T4254] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffef9608070
[  306.246484][ T4254] RBP: 00007ffef9608070 R08: 0000000000000000 R09: 0000000000000000
[  306.254486][ T4254] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffef9609100
[  306.262488][ T4254] R13: 00007f0a7961089d R14: 000000000004a58c R15: 00007ffef9609140
[  306.270511][ T4254]  </TASK>
[  306.729037][ T4254] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed at function = gfs2_quota_cleanup, file = fs/gfs2/quota.c, line = 1485
[  306.743378][ T4254] CPU: 1 PID: 4254 Comm: syz-executor Not tainted 6.1.138-syzkaller #0
[  306.751654][ T4254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  306.761744][ T4254] Call Trace:
[  306.765059][ T4254]  <TASK>
[  306.768015][ T4254]  dump_stack_lvl+0x168/0x22e
[  306.772735][ T4254]  ? gfs2_assert_warn_i+0xc3/0x2c0
[  306.777885][ T4254]  ? show_regs_print_info+0x12/0x12
[  306.783120][ T4254]  ? load_image+0x3b0/0x3b0
[  306.787663][ T4254]  ? preempt_schedule+0xa7/0xb0
[  306.792556][ T4254]  ? schedule_preempt_disabled+0x20/0x20
[  306.798228][ T4254]  ? do_raw_spin_unlock+0x11d/0x230
[  306.803476][ T4254]  gfs2_assert_warn_i+0x18f/0x2c0
[  306.808539][ T4254]  gfs2_quota_cleanup+0x4b4/0x6a0
[  306.813605][ T4254]  gfs2_put_super+0x22f/0x8c0
[  306.818327][ T4254]  ? gfs2_evict_inode+0x1170/0x1170
[  306.823566][ T4254]  generic_shutdown_super+0x130/0x340
[  306.828986][ T4254]  kill_block_super+0x7c/0xe0
[  306.833717][ T4254]  deactivate_locked_super+0x93/0xf0
[  306.839046][ T4254]  cleanup_mnt+0x463/0x4f0
[  306.843504][ T4254]  ? lockdep_hardirqs_on+0x94/0x140
[  306.848742][ T4254]  task_work_run+0x1ca/0x250
[  306.853369][ T4254]  ? task_work_cancel+0x230/0x230
[  306.858434][ T4254]  ? exit_to_user_mode_loop+0x3b/0x110
[  306.863938][ T4254]  exit_to_user_mode_loop+0xe6/0x110
[  306.869280][ T4254]  exit_to_user_mode_prepare+0xb1/0x140
[  306.874891][ T4254]  syscall_exit_to_user_mode+0x16/0x40
[  306.880387][ T4254]  do_syscall_64+0x58/0xa0
[  306.884840][ T4254]  ? clear_bhb_loop+0x45/0xa0
[  306.889547][ T4254]  ? clear_bhb_loop+0x45/0xa0
[  306.894259][ T4254]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  306.900188][ T4254] RIP: 0033:0x7f0a7958fc97
[  306.904634][ T4254] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  306.924274][ T4254] RSP: 002b:00007ffef9607fb8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  306.932718][ T4254] RAX: 0000000000000000 RBX: 00007f0a7961089d RCX: 00007f0a7958fc97
[  306.940712][ T4254] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffef9608070
[  306.948705][ T4254] RBP: 00007ffef9608070 R08: 0000000000000000 R09: 0000000000000000
[  306.956699][ T4254] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffef9609100
[  306.964712][ T4254] R13: 00007f0a7961089d R14: 000000000004a58c R15: 00007ffef9609140
[  306.972725][ T4254]  </TASK>
[  307.098010][ T5701] netlink: 8 bytes leftover after parsing attributes in process `syz.2.368'.
[  309.156147][ T5719] loop1: detected capacity change from 0 to 32768
[  309.287808][ T5719] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  309.296073][ T5719] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  309.345692][ T5719] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[  309.355114][    T7] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  309.361995][    T7] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  309.442944][ T5724] netlink: 8 bytes leftover after parsing attributes in process `syz.3.374'.
[  310.077189][    T7] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 715ms
[  310.095451][    T7] gfs2: fsid=syz:syz.0: jid=0: Done
[  310.100765][ T5719] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  310.231685][ T5719] gfs2: fsid=syz:syz.0: found 1 quota changes
[  310.249300][ T5726] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[  310.249300][ T5726]   inode = 11 2339
[  310.249300][ T5726]   function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 464
[  310.365195][ T5731] loop4: detected capacity change from 0 to 128
[  310.377784][ T5726] gfs2: fsid=syz:syz.0: G:  s:EX n:2/923 f:qobnN t:EX d:EX/0 a:0 v:0 r:3 m:20 p:1
[  310.388000][ T5726] gfs2: fsid=syz:syz.0:  H: s:EX f:H e:0 p:5726 [gfs2_quotad] gfs2_quota_sync+0x32c/0x6f0
[  310.399559][ T5726] gfs2: fsid=syz:syz.0:  I: n:11/2339 t:0 f:0x00 d:0x00000000 s:0 p:0
[  310.411065][ T5726] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  310.455400][ T5726] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  310.464738][ T5731] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  310.477782][ T4264] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed at function = gfs2_quota_cleanup, file = fs/gfs2/quota.c, line = 1485
[  310.497827][ T5726] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  310.520004][ T5731] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  310.532872][ T5726] gfs2: fsid=syz:syz.0: File system withdrawn
[  310.539114][ T5726] CPU: 1 PID: 5726 Comm: gfs2_quotad Not tainted 6.1.138-syzkaller #0
[  310.547300][ T5726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  310.557380][ T5726] Call Trace:
[  310.560683][ T5726]  <TASK>
[  310.563643][ T5726]  dump_stack_lvl+0x168/0x22e
[  310.568356][ T5726]  ? kobject_uevent_env+0x35f/0x8a0
[  310.573581][ T5726]  ? show_regs_print_info+0x12/0x12
[  310.578819][ T5726]  ? load_image+0x3b0/0x3b0
[  310.583360][ T5726]  ? kobject_uevent_env+0x35f/0x8a0
[  310.588604][ T5726]  gfs2_withdraw+0x143f/0x1780
[  310.593414][ T5726]  ? gfs2_lm+0x220/0x220
[  310.597666][ T5726]  ? gfs2_consist_inode_i+0xf1/0x110
[  310.603054][ T5726]  gfs2_inode_refresh+0xb5e/0xfc0
[  310.608097][ T5726]  ? gfs2_inode_metasync+0xf0/0xf0
[  310.613222][ T5726]  ? gfs2_glock_nq+0xcf0/0x14e0
[  310.618076][ T5726]  gfs2_instantiate+0x15e/0x210
[  310.622953][ T5726]  gfs2_glock_wait+0x1d0/0x2a0
[  310.627720][ T5726]  do_sync+0x49a/0xc00
[  310.631789][ T5726]  ? gfs2_quota_sync+0x32c/0x6f0
[  310.636740][ T5726]  ? slot_put+0x1e0/0x1e0
[  310.641079][ T5726]  ? gfs2_quota_sync+0x32c/0x6f0
[  310.646030][ T5726]  ? do_raw_spin_unlock+0x11d/0x230
[  310.651241][ T5726]  gfs2_quota_sync+0x32c/0x6f0
[  310.656025][ T5726]  gfs2_quotad+0x413/0x670
[  310.660490][ T5726]  ? gfs2_wake_up_statfs+0xc0/0xc0
[  310.665606][ T5726]  ? _raw_spin_unlock_irqrestore+0x82/0x100
[  310.671505][ T5726]  ? wake_bit_function+0x200/0x200
[  310.676630][ T5726]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  310.682538][ T5726]  ? __kthread_parkme+0x162/0x1c0
[  310.687590][ T5726]  kthread+0x29d/0x330
[  310.691669][ T5726]  ? gfs2_wake_up_statfs+0xc0/0xc0
[  310.696797][ T5726]  ? kthread_blkcg+0xd0/0xd0
[  310.701413][ T5726]  ret_from_fork+0x1f/0x30
[  310.705854][ T5726]  </TASK>
[  310.709012][    C1] vkms_vblank_simulate: vblank timer overrun
[  310.729726][ T5734] loop3: detected capacity change from 0 to 8
[  310.831319][ T5734] SQUASHFS error: zlib decompression failed, data probably corrupt
[  310.863760][ T4264] CPU: 1 PID: 4264 Comm: syz-executor Not tainted 6.1.138-syzkaller #0
[  310.872083][ T4264] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  310.882165][ T4264] Call Trace:
[  310.885469][ T4264]  <TASK>
[  310.888416][ T4264]  dump_stack_lvl+0x168/0x22e
[  310.893138][ T4264]  ? gfs2_assert_warn_i+0xc3/0x2c0
[  310.898274][ T4264]  ? show_regs_print_info+0x12/0x12
[  310.903502][ T4264]  ? load_image+0x3b0/0x3b0
[  310.908036][ T4264]  ? do_raw_spin_unlock+0x11d/0x230
[  310.913273][ T4264]  gfs2_assert_warn_i+0x18f/0x2c0
[  310.918333][ T4264]  gfs2_quota_cleanup+0x4b4/0x6a0
[  310.923402][ T4264]  gfs2_put_super+0x22f/0x8c0
[  310.928132][ T4264]  ? gfs2_evict_inode+0x1170/0x1170
[  310.933362][ T4264]  generic_shutdown_super+0x130/0x340
[  310.938764][ T4264]  kill_block_super+0x7c/0xe0
[  310.943477][ T4264]  deactivate_locked_super+0x93/0xf0
[  310.948800][ T4264]  cleanup_mnt+0x463/0x4f0
[  310.953250][ T4264]  ? lockdep_hardirqs_on+0x94/0x140
[  310.958670][ T4264]  task_work_run+0x1ca/0x250
[  310.963294][ T4264]  ? task_work_cancel+0x230/0x230
[  310.968357][ T4264]  ? exit_to_user_mode_loop+0x3b/0x110
[  310.973856][ T4264]  exit_to_user_mode_loop+0xe6/0x110
[  310.979177][ T4264]  exit_to_user_mode_prepare+0xb1/0x140
[  310.984843][ T4264]  syscall_exit_to_user_mode+0x16/0x40
[  310.990327][ T4264]  do_syscall_64+0x58/0xa0
[  310.994780][ T4264]  ? clear_bhb_loop+0x45/0xa0
[  310.999480][ T4264]  ? clear_bhb_loop+0x45/0xa0
[  311.004184][ T4264]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  311.010115][ T4264] RIP: 0033:0x7fec9518fc97
[  311.014552][ T4264] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  311.034189][ T4264] RSP: 002b:00007ffe3c106388 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  311.042724][ T4264] RAX: 0000000000000000 RBX: 00007fec9521089d RCX: 00007fec9518fc97
[  311.050716][ T4264] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe3c106440
[  311.058714][ T4264] RBP: 00007ffe3c106440 R08: 0000000000000000 R09: 0000000000000000
[  311.066708][ T4264] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe3c1074d0
[  311.074707][ T4264] R13: 00007fec9521089d R14: 000000000004bbfe R15: 00007ffe3c107510
[  311.082816][ T4264]  </TASK>
[  311.085906][    C1] vkms_vblank_simulate: vblank timer overrun
[  311.093044][ T5734] SQUASHFS error: Failed to read block 0x9b: -5
[  311.099339][ T5734] SQUASHFS error: Unable to read metadata cache entry [99]
[  311.106636][ T5734] SQUASHFS error: Unable to read inode 0x127
[  311.430419][ T5735] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  312.148333][ T5743] netlink: 8 bytes leftover after parsing attributes in process `syz.2.378'.
[  316.469912][ T5763] loop0: detected capacity change from 0 to 128
[  316.504119][ T5763] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  316.514285][ T5765] loop4: detected capacity change from 0 to 8
[  316.532856][ T5763] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  316.543074][ T5765] SQUASHFS error: zlib decompression failed, data probably corrupt
[  316.551108][ T5765] SQUASHFS error: Failed to read block 0x9b: -5
[  316.580679][ T5765] SQUASHFS error: Unable to read metadata cache entry [99]
[  316.623621][ T5765] SQUASHFS error: Unable to read inode 0x127
[  316.795073][ T5767] loop2: detected capacity change from 0 to 8
[  316.857901][ T5768] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  317.008355][ T5767] SQUASHFS error: zlib decompression failed, data probably corrupt
[  317.150832][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  317.156456][ T5765] loop4: detected capacity change from 0 to 512
[  317.159805][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  317.163631][ T5767] SQUASHFS error: Failed to read block 0x9b: -5
[  317.235141][ T5767] SQUASHFS error: Unable to read metadata cache entry [99]
[  317.243154][ T5765] EXT4-fs error (device loop4): ext4_get_journal_inode:5723: comm syz.4.386: inode #196608: comm syz.4.386: iget: illegal inode #
[  317.256874][ T5767] SQUASHFS error: Unable to read inode 0x127
[  317.299525][ T5765] EXT4-fs (loop4): Remounting filesystem read-only
[  317.311599][ T5765] EXT4-fs (loop4): no journal found
[  317.328699][ T5196] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  317.442850][ T5765] EXT4-fs (loop4): can't get journal size
[  317.475908][ T5767] loop2: detected capacity change from 0 to 512
[  317.484231][ T5765] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  317.494930][ T5770] 9pnet_fd: Insufficient options for proto=fd
[  317.533920][ T5767] EXT4-fs error (device loop2): ext4_get_journal_inode:5723: comm syz.2.388: inode #196608: comm syz.2.388: iget: illegal inode #
[  317.577945][ T5767] EXT4-fs (loop2): Remounting filesystem read-only
[  317.592702][ T5767] EXT4-fs (loop2): no journal found
[  317.597969][ T5767] EXT4-fs (loop2): can't get journal size
[  317.677601][ T5767] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  317.725224][ T5767] EXT4-fs (loop2): failed to initialize system zone (-22)
[  317.766164][ T5767] EXT4-fs (loop2): mount failed
[  317.882851][ T5778] loop1: detected capacity change from 0 to 8
[  317.952552][ T5775] loop3: detected capacity change from 0 to 32768
[  317.965799][ T5779] loop0: detected capacity change from 0 to 8
[  317.976481][ T5780] netlink: 4 bytes leftover after parsing attributes in process `syz.2.388'.
[  317.985506][ T5775] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.390 (5775)
[  318.007043][ T5779] SQUASHFS error: zlib decompression failed, data probably corrupt
[  318.016285][ T5775] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  318.027703][ T5775] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  318.036570][ T5775] BTRFS info (device loop3): setting nodatacow, compression disabled
[  318.044766][ T5775] BTRFS info (device loop3): disabling tree log
[  318.051118][ T5775] BTRFS info (device loop3): turning on sync discard
[  318.057953][ T5775] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  318.067810][ T5775] BTRFS info (device loop3): force zstd compression, level 3
[  318.075340][ T5775] BTRFS info (device loop3): using free space tree
[  318.085574][ T5765] EXT4-fs (loop4): failed to initialize system zone (-22)
[  318.089106][ T5779] SQUASHFS error: Failed to read block 0x9b: -5
[  318.092956][ T5765] EXT4-fs (loop4): mount failed
[  318.112594][ T5779] SQUASHFS error: Unable to read metadata cache entry [99]
[  318.121102][ T5779] SQUASHFS error: Unable to read inode 0x127
[  318.274016][ T5786] SQUASHFS error: xz decompression failed, data probably corrupt
[  318.282584][ T5786] SQUASHFS error: Failed to read block 0xa8: -5
[  318.321814][ T5786] SQUASHFS error: xz decompression failed, data probably corrupt
[  318.331587][ T5786] SQUASHFS error: Failed to read block 0xa8: -5
[  318.348687][   T27] audit: type=1800 audit(2000000017.700:2): pid=5786 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.391" name="file0" dev="loop1" ino=3 res=0 errno=0
[  318.367966][    C1] vkms_vblank_simulate: vblank timer overrun
[  318.544605][ T5790] netlink: 4 bytes leftover after parsing attributes in process `syz.4.386'.
[  318.844215][ T5775] BTRFS info (device loop3): enabling ssd optimizations
[  319.282633][   T27] audit: type=1800 audit(2000000018.610:3): pid=5806 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.390" name="bus" dev="loop3" ino=263 res=0 errno=0
[  321.815891][   T27] audit: type=1800 audit(2000000018.620:4): pid=5806 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.390" name="bus" dev="loop3" ino=263 res=0 errno=0
[  322.665636][ T4260] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  322.696463][ T5813] loop4: detected capacity change from 0 to 128
[  322.789617][ T5813] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  322.915088][ T5813] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  325.418304][ T5840] loop3: detected capacity change from 0 to 32768
[  325.508888][ T5840] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  325.517589][ T5840] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  325.527895][ T5840] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[  325.536960][ T5820] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  325.553627][ T5820] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  325.819786][ T5820] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 266ms
[  325.878438][ T5820] gfs2: fsid=syz:syz.0: jid=0: Done
[  325.936189][ T5840] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  326.116683][ T5846] loop0: detected capacity change from 0 to 8
[  326.220450][ T5846] SQUASHFS error: zlib decompression failed, data probably corrupt
[  326.241280][ T5840] gfs2: fsid=syz:syz.0: found 1 quota changes
[  326.314499][ T5848] loop1: detected capacity change from 0 to 8
[  326.322177][ T5846] SQUASHFS error: Failed to read block 0x9b: -5
[  326.328949][ T5846] SQUASHFS error: Unable to read metadata cache entry [99]
[  326.336799][ T5846] SQUASHFS error: Unable to read inode 0x127
[  326.356051][ T5848] SQUASHFS error: zlib decompression failed, data probably corrupt
[  326.364482][ T5848] SQUASHFS error: Failed to read block 0x9b: -5
[  326.371677][ T5848] SQUASHFS error: Unable to read metadata cache entry [99]
[  326.380346][ T5848] SQUASHFS error: Unable to read inode 0x127
[  326.532080][ T4260] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[  326.532080][ T4260]   inode = 11 2339
[  326.532080][ T4260]   function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 464
[  326.560804][ T5846] loop0: detected capacity change from 0 to 512
[  326.619949][ T4260] gfs2: fsid=syz:syz.0: G:  s:EX n:2/923 f:qobnN t:EX d:EX/0 a:0 v:0 r:3 m:20 p:1
[  326.621295][ T5846] EXT4-fs error (device loop0): ext4_get_journal_inode:5723: comm syz.0.404: inode #196608: comm syz.0.404: iget: illegal inode #
[  326.663007][ T4260] gfs2: fsid=syz:syz.0:  H: s:EX f:H e:0 p:4260 [syz-executor] gfs2_quota_sync+0x32c/0x6f0
[  326.715592][ T5850] loop1: detected capacity change from 0 to 8
[  326.730860][ T4260] gfs2: fsid=syz:syz.0:  I: n:11/2339 t:0 f:0x00 d:0x00000001 s:0 p:0
[  326.742949][ T5846] EXT4-fs (loop0): Remounting filesystem read-only
[  326.749559][ T5846] EXT4-fs (loop0): no journal found
[  326.780135][ T4260] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  326.788050][ T5846] EXT4-fs (loop0): can't get journal size
[  326.824971][ T5846] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  326.825673][ T5850] SQUASHFS error: zlib decompression failed, data probably corrupt
[  326.844402][ T4260] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  326.853549][ T5846] EXT4-fs (loop0): failed to initialize system zone (-22)
[  326.860810][ T5846] EXT4-fs (loop0): mount failed
[  326.874806][ T5837] loop2: detected capacity change from 0 to 32768
[  326.888883][ T5850] SQUASHFS error: Failed to read block 0x9b: -5
[  326.896430][ T5850] SQUASHFS error: Unable to read metadata cache entry [99]
[  326.904105][ T5837] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 scanned by syz.2.401 (5837)
[  326.905741][ T5850] SQUASHFS error: Unable to read inode 0x127
[  326.924385][ T4260] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  326.952183][ T4260] gfs2: fsid=syz:syz.0: File system withdrawn
[  326.973671][ T4260] CPU: 1 PID: 4260 Comm: syz-executor Not tainted 6.1.138-syzkaller #0
[  326.981983][ T4260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  326.992074][ T4260] Call Trace:
[  326.993177][ T5837] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  326.995363][ T4260]  <TASK>
[  326.995375][ T4260]  dump_stack_lvl+0x168/0x22e
[  327.013082][ T4260]  ? kobject_uevent_env+0x35f/0x8a0
[  327.018337][ T4260]  ? show_regs_print_info+0x12/0x12
[  327.023580][ T4260]  ? load_image+0x3b0/0x3b0
[  327.028118][ T4260]  ? kobject_uevent_env+0x35f/0x8a0
[  327.033373][ T4260]  gfs2_withdraw+0x143f/0x1780
[  327.035584][ T5837] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  327.038165][ T4260]  ? gfs2_lm+0x220/0x220
[  327.038203][ T4260]  ? gfs2_consist_inode_i+0xf1/0x110
[  327.057125][ T4260]  gfs2_inode_refresh+0xb5e/0xfc0
[  327.062203][ T4260]  ? gfs2_inode_metasync+0xf0/0xf0
[  327.067369][ T4260]  ? gfs2_glock_nq+0xcf0/0x14e0
[  327.072278][ T4260]  gfs2_instantiate+0x15e/0x210
[  327.077182][ T4260]  gfs2_glock_wait+0x1d0/0x2a0
[  327.081990][ T4260]  do_sync+0x49a/0xc00
[  327.086110][ T4260]  ? gfs2_quota_sync+0x32c/0x6f0
[  327.091096][ T4260]  ? slot_put+0x1e0/0x1e0
[  327.095473][ T4260]  ? gfs2_quota_sync+0x32c/0x6f0
[  327.100458][ T4260]  ? do_raw_spin_unlock+0x11d/0x230
[  327.105704][ T4260]  gfs2_quota_sync+0x32c/0x6f0
[  327.110518][ T4260]  gfs2_sync_fs+0x48/0xb0
[  327.114893][ T4260]  sync_filesystem+0xe6/0x220
[  327.119602][ T4260]  generic_shutdown_super+0x6b/0x340
[  327.124928][ T4260]  kill_block_super+0x7c/0xe0
[  327.129651][ T4260]  deactivate_locked_super+0x93/0xf0
[  327.134979][ T4260]  cleanup_mnt+0x463/0x4f0
[  327.139448][ T4260]  ? lockdep_hardirqs_on+0x94/0x140
[  327.144705][ T4260]  task_work_run+0x1ca/0x250
[  327.149347][ T4260]  ? task_work_cancel+0x230/0x230
[  327.154419][ T4260]  ? exit_to_user_mode_loop+0x3b/0x110
[  327.159914][ T4260]  exit_to_user_mode_loop+0xe6/0x110
[  327.165247][ T4260]  exit_to_user_mode_prepare+0xb1/0x140
[  327.170845][ T4260]  syscall_exit_to_user_mode+0x16/0x40
[  327.176348][ T4260]  do_syscall_64+0x58/0xa0
[  327.180807][ T4260]  ? clear_bhb_loop+0x45/0xa0
[  327.185019][ T5837] BTRFS info (device loop2): using free space tree
[  327.185497][ T4260]  ? clear_bhb_loop+0x45/0xa0
[  327.196707][ T4260]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  327.197458][ T5850] loop1: detected capacity change from 0 to 512
[  327.202625][ T4260] RIP: 0033:0x7fb5d038fc97
[  327.202649][ T4260] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  327.202668][ T4260] RSP: 002b:00007fff470158d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  327.202691][ T4260] RAX: 0000000000000000 RBX: 00007fb5d041089d RCX: 00007fb5d038fc97
[  327.202706][ T4260] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff47015990
[  327.202719][ T4260] RBP: 00007fff47015990 R08: 0000000000000000 R09: 0000000000000000
[  327.202733][ T4260] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff47016a20
[  327.202746][ T4260] R13: 00007fb5d041089d R14: 000000000004fb0a R15: 00007fff47016a60
[  327.202777][ T4260]  </TASK>
[  327.311525][ T4260] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed at function = gfs2_quota_cleanup, file = fs/gfs2/quota.c, line = 1485
[  327.325769][ T4260] CPU: 1 PID: 4260 Comm: syz-executor Not tainted 6.1.138-syzkaller #0
[  327.334039][ T4260] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  327.344116][ T4260] Call Trace:
[  327.347403][ T4260]  <TASK>
[  327.350341][ T4260]  dump_stack_lvl+0x168/0x22e
[  327.355042][ T4260]  ? gfs2_assert_warn_i+0xc3/0x2c0
[  327.360172][ T4260]  ? show_regs_print_info+0x12/0x12
[  327.365393][ T4260]  ? load_image+0x3b0/0x3b0
[  327.369931][ T4260]  ? do_raw_spin_unlock+0x11d/0x230
[  327.375285][ T4260]  gfs2_assert_warn_i+0x18f/0x2c0
[  327.380347][ T4260]  gfs2_quota_cleanup+0x4b4/0x6a0
[  327.385420][ T4260]  gfs2_put_super+0x22f/0x8c0
[  327.390141][ T4260]  ? gfs2_evict_inode+0x1170/0x1170
[  327.395360][ T4260]  generic_shutdown_super+0x130/0x340
[  327.400750][ T4260]  kill_block_super+0x7c/0xe0
[  327.405444][ T4260]  deactivate_locked_super+0x93/0xf0
[  327.410743][ T4260]  cleanup_mnt+0x463/0x4f0
[  327.415175][ T4260]  ? lockdep_hardirqs_on+0x94/0x140
[  327.420403][ T4260]  task_work_run+0x1ca/0x250
[  327.425013][ T4260]  ? task_work_cancel+0x230/0x230
[  327.430099][ T4260]  ? exit_to_user_mode_loop+0x3b/0x110
[  327.435579][ T4260]  exit_to_user_mode_loop+0xe6/0x110
[  327.440888][ T4260]  exit_to_user_mode_prepare+0xb1/0x140
[  327.446459][ T4260]  syscall_exit_to_user_mode+0x16/0x40
[  327.451929][ T4260]  do_syscall_64+0x58/0xa0
[  327.456378][ T4260]  ? clear_bhb_loop+0x45/0xa0
[  327.461082][ T4260]  ? clear_bhb_loop+0x45/0xa0
[  327.465869][ T4260]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  327.471782][ T4260] RIP: 0033:0x7fb5d038fc97
[  327.476209][ T4260] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  327.495828][ T4260] RSP: 002b:00007fff470158d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  327.504253][ T4260] RAX: 0000000000000000 RBX: 00007fb5d041089d RCX: 00007fb5d038fc97
[  327.512235][ T4260] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff47015990
[  327.520223][ T4260] RBP: 00007fff47015990 R08: 0000000000000000 R09: 0000000000000000
[  327.528234][ T4260] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff47016a20
[  327.536274][ T4260] R13: 00007fb5d041089d R14: 000000000004fb0a R15: 00007fff47016a60
[  327.544307][ T4260]  </TASK>
[  327.564055][ T5846] netlink: 4 bytes leftover after parsing attributes in process `syz.0.404'.
[  327.586549][ T5837] BTRFS error (device loop2): open_ctree failed: -12
[  327.596570][ T5850] EXT4-fs error (device loop1): ext4_get_journal_inode:5723: comm syz.1.406: inode #196608: comm syz.1.406: iget: illegal inode #
[  327.783332][ T5850] EXT4-fs (loop1): Remounting filesystem read-only
[  327.802724][ T5850] EXT4-fs (loop1): no journal found
[  327.815267][ T5850] EXT4-fs (loop1): can't get journal size
[  327.890471][ T5277] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 scanned by udevd (5277)
[  327.952190][ T5850] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  327.977159][ T5874] loop0: detected capacity change from 0 to 512
[  327.984633][ T5874] EXT4-fs: Ignoring removed mblk_io_submit option
[  327.992368][ T5874] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  328.029649][ T5850] EXT4-fs (loop1): failed to initialize system zone (-22)
[  328.042669][ T5874] EXT4-fs (loop0): DAX unsupported by block device.
[  328.080703][ T5158] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  328.141678][ T5850] EXT4-fs (loop1): mount failed
[  329.161169][ T5880] 9pnet_fd: Insufficient options for proto=fd
[  329.288061][ T5884] netlink: 4 bytes leftover after parsing attributes in process `syz.1.406'.
[  329.838414][ T5896] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  330.198154][ T5900] netlink: 8 bytes leftover after parsing attributes in process `syz.1.413'.
[  332.015382][ T5907] loop1: detected capacity change from 0 to 8
[  332.106903][ T5907] SQUASHFS error: zlib decompression failed, data probably corrupt
[  333.711617][ T5907] SQUASHFS error: Failed to read block 0x9b: -5
[  333.818131][ T5907] SQUASHFS error: Unable to read metadata cache entry [99]
[  333.927004][ T5907] SQUASHFS error: Unable to read inode 0x127
[  334.189854][ T5915] loop3: detected capacity change from 0 to 8
[  334.214397][ T5915] SQUASHFS error: zlib decompression failed, data probably corrupt
[  334.218732][ T5916] loop2: detected capacity change from 0 to 8
[  334.232703][ T5915] SQUASHFS error: Failed to read block 0x9b: -5
[  334.239049][ T5915] SQUASHFS error: Unable to read metadata cache entry [99]
[  334.260810][ T5915] SQUASHFS error: Unable to read inode 0x127
[  334.290673][ T5916] SQUASHFS error: zlib decompression failed, data probably corrupt
[  334.323058][ T5914] loop0: detected capacity change from 0 to 512
[  334.330305][ T5914] EXT4-fs: Ignoring removed mblk_io_submit option
[  334.338321][ T5916] SQUASHFS error: Failed to read block 0x9b: -5
[  334.380493][ T5916] SQUASHFS error: Unable to read metadata cache entry [99]
[  334.393335][ T5914] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  334.402187][ T5914] EXT4-fs (loop0): DAX unsupported by block device.
[  334.417981][ T5916] SQUASHFS error: Unable to read inode 0x127
[  334.430282][ T5915] netlink: 4 bytes leftover after parsing attributes in process `syz.3.419'.
[  334.497255][ T5158] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  334.535329][ T5921] loop4: detected capacity change from 0 to 8
[  334.767332][ T5916] loop2: detected capacity change from 0 to 512
[  335.541924][ T5916] EXT4-fs error (device loop2): ext4_get_journal_inode:5723: comm syz.2.418: inode #196608: comm syz.2.418: iget: illegal inode #
[  335.596324][ T5916] EXT4-fs (loop2): Remounting filesystem read-only
[  335.636476][ T5916] EXT4-fs (loop2): no journal found
[  335.673798][ T5928] SQUASHFS error: xz decompression failed, data probably corrupt
[  335.689755][ T5928] SQUASHFS error: Failed to read block 0xa8: -5
[  335.710691][ T5929] ufs: You didn't specify the type of your ufs filesystem
[  335.710691][ T5929] 
[  335.710691][ T5929] mount -t ufs -o ufstype=sun|sunx86|44bsd|ufs2|5xbsd|old|hp|nextstep|nextstep-cd|openstep ...
[  335.710691][ T5929] 
[  335.710691][ T5929] >>>WARNING<<< Wrong ufstype may corrupt your filesystem, default is ufstype=old
[  335.749825][   T52] block nbd4: Attempted send on invalid socket
[  335.756698][   T52] I/O error, dev nbd4, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  335.798792][ T5928] SQUASHFS error: xz decompression failed, data probably corrupt
[  335.807097][ T5928] SQUASHFS error: Failed to read block 0xa8: -5
[  335.814588][   T27] audit: type=1800 audit(2000000035.170:5): pid=5928 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.423" name="file0" dev="loop4" ino=3 res=0 errno=0
[  336.071848][ T5916] EXT4-fs (loop2): can't get journal size
[  336.127010][ T5916] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[  336.155923][ T5933] loop3: detected capacity change from 0 to 8
[  336.163708][ T5916] EXT4-fs (loop2): failed to initialize system zone (-22)
[  336.252729][ T5916] EXT4-fs (loop2): mount failed
[  336.263842][ T5933] SQUASHFS error: zlib decompression failed, data probably corrupt
[  336.301323][ T5933] SQUASHFS error: Failed to read block 0x9b: -5
[  336.333850][ T5933] SQUASHFS error: Unable to read metadata cache entry [99]
[  336.341152][ T5933] SQUASHFS error: Unable to read inode 0x127
[  336.466772][ T5936] netlink: 4 bytes leftover after parsing attributes in process `syz.2.418'.
[  336.929393][ T5933] loop3: detected capacity change from 0 to 512
[  336.967902][ T5933] EXT4-fs error (device loop3): ext4_get_journal_inode:5723: comm syz.3.425: inode #196608: comm syz.3.425: iget: illegal inode #
[  337.041514][ T5933] EXT4-fs (loop3): Remounting filesystem read-only
[  337.049367][ T5933] EXT4-fs (loop3): no journal found
[  337.084800][ T5933] EXT4-fs (loop3): can't get journal size
[  337.105774][ T5933] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  337.232203][ T5933] EXT4-fs (loop3): failed to initialize system zone (-22)
[  337.271983][ T5933] EXT4-fs (loop3): mount failed
[  337.337000][ T5944] netlink: 8 bytes leftover after parsing attributes in process `syz.1.428'.
[  338.071981][ T5933] netlink: 4 bytes leftover after parsing attributes in process `syz.3.425'.
[  338.181850][ T5951] loop0: detected capacity change from 0 to 8
[  338.200051][ T5951] SQUASHFS error: zlib decompression failed, data probably corrupt
[  338.229068][ T5951] SQUASHFS error: Failed to read block 0x9b: -5
[  339.126492][ T5951] SQUASHFS error: Unable to read metadata cache entry [99]
[  339.182654][ T5951] SQUASHFS error: Unable to read inode 0x127
[  339.231451][ T5946] 9pnet_fd: Insufficient options for proto=fd
[  340.331324][ T5965] loop2: detected capacity change from 0 to 512
[  340.411890][ T5965] EXT4-fs: Ignoring removed mblk_io_submit option
[  340.446828][ T5965] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  340.493601][ T5965] EXT4-fs (loop2): DAX unsupported by block device.
[  340.561379][ T5158] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  340.587957][ T5971] loop4: detected capacity change from 0 to 8
[  340.600155][ T5972] loop1: detected capacity change from 0 to 512
[  340.926071][ T5971] SQUASHFS error: zlib decompression failed, data probably corrupt
[  341.034178][ T5972] EXT4-fs: Ignoring removed mblk_io_submit option
[  341.118002][ T5971] SQUASHFS error: Failed to read block 0x9b: -5
[  341.297610][ T5972] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  341.326502][ T5971] SQUASHFS error: Unable to read metadata cache entry [99]
[  341.356905][ T5972] EXT4-fs (loop1): DAX unsupported by block device.
[  341.372783][ T5971] SQUASHFS error: Unable to read inode 0x127
[  341.462670][ T5726] ==================================================================
[  341.470792][ T5726] BUG: KASAN: use-after-free in __lock_acquire+0xf7/0x7c50
[  341.478029][ T5726] Read of size 8 at addr ffff8880766e0bb0 by task gfs2_quotad/5726
[  341.485946][ T5726] 
[  341.488288][ T5726] CPU: 0 PID: 5726 Comm: gfs2_quotad Not tainted 6.1.138-syzkaller #0
[  341.496464][ T5726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  341.506542][ T5726] Call Trace:
[  341.509841][ T5726]  <TASK>
[  341.512792][ T5726]  dump_stack_lvl+0x168/0x22e
[  341.517507][ T5726]  ? __lock_acquire+0x7c50/0x7c50
[  341.522569][ T5726]  ? show_regs_print_info+0x12/0x12
[  341.527804][ T5726]  ? load_image+0x3b0/0x3b0
[  341.532332][ T5726]  ? _raw_spin_lock_irqsave+0xb0/0xf0
[  341.537737][ T5726]  ? __virt_addr_valid+0x188/0x540
[  341.542886][ T5726]  ? __virt_addr_valid+0x465/0x540
[  341.548034][ T5726]  ? __lock_acquire+0xf7/0x7c50
[  341.552916][ T5726]  print_report+0xa8/0x220
[  341.557360][ T5726]  kasan_report+0x10b/0x140
[  341.561909][ T5726]  ? __lock_acquire+0xf7/0x7c50
[  341.566793][ T5726]  __lock_acquire+0xf7/0x7c50
[  341.571507][ T5726]  ? verify_lock_unused+0x140/0x140
[  341.576742][ T5726]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  341.582869][ T5726]  ? lock_chain_count+0x20/0x20
[  341.587774][ T5726]  ? __free_object+0x203/0x9d0
[  341.592573][ T5726]  ? lockdep_hardirqs_on+0x94/0x140
[  341.597812][ T5726]  ? verify_lock_unused+0x140/0x140
[  341.603047][ T5726]  ? alloc_object+0x650/0x650
[  341.607757][ T5726]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  341.613796][ T5726]  ? lock_chain_count+0x20/0x20
[  341.618688][ T5726]  lock_acquire+0x1b4/0x490
[  341.623224][ T5726]  ? finish_wait+0xb8/0x1d0
[  341.627773][ T5726]  ? timer_delete_sync+0x1f8/0x2a0
[  341.632927][ T5726]  ? try_to_del_timer_sync+0x1b0/0x1b0
[  341.638427][ T5726]  ? read_lock_is_recursive+0x10/0x10
[  341.643845][ T5726]  _raw_spin_lock_irqsave+0xa4/0xf0
[  341.649080][ T5726]  ? finish_wait+0xb8/0x1d0
[  341.653619][ T5726]  ? _raw_spin_lock+0x40/0x40
[  341.658340][ T5726]  ? update_process_times+0x1b0/0x1b0
[  341.663773][ T5726]  finish_wait+0xb8/0x1d0
[  341.668150][ T5726]  gfs2_quotad+0x4e6/0x670
[  341.672611][ T5726]  ? gfs2_wake_up_statfs+0xc0/0xc0
[  341.677763][ T5726]  ? _raw_spin_unlock_irqrestore+0x82/0x100
[  341.683706][ T5726]  ? wake_bit_function+0x200/0x200
[  341.688859][ T5726]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  341.694791][ T5726]  ? __kthread_parkme+0x162/0x1c0
[  341.699874][ T5726]  kthread+0x29d/0x330
[  341.703980][ T5726]  ? gfs2_wake_up_statfs+0xc0/0xc0
[  341.709212][ T5726]  ? kthread_blkcg+0xd0/0xd0
[  341.713844][ T5726]  ret_from_fork+0x1f/0x30
[  341.718306][ T5726]  </TASK>
[  341.721343][ T5726] 
[  341.723678][ T5726] Allocated by task 5952:
[  341.728022][ T5726]  kasan_set_track+0x4b/0x70
[  341.732649][ T5726]  __kasan_kmalloc+0x8e/0xa0
[  341.737268][ T5726]  __kmalloc_node+0xb0/0x240
[  341.741881][ T5726]  kvmalloc_node+0x6c/0x180
[  341.746407][ T5726]  bpf_check+0x199/0x10ca0
[  341.750857][ T5726]  bpf_prog_load+0x1072/0x15a0
[  341.755678][ T5726]  __sys_bpf+0x520/0x6d0
[  341.759950][ T5726]  __x64_sys_bpf+0x78/0x90
[  341.764396][ T5726]  do_syscall_64+0x4c/0xa0
[  341.768871][ T5726]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  341.774831][ T5726] 
[  341.777173][ T5726] Freed by task 5952:
[  341.781347][ T5726]  kasan_set_track+0x4b/0x70
[  341.785976][ T5726]  kasan_save_free_info+0x2d/0x50
[  341.791032][ T5726]  ____kasan_slab_free+0x126/0x1e0
[  341.796189][ T5726]  slab_free_freelist_hook+0x131/0x1a0
[  341.801683][ T5726]  __kmem_cache_free+0xb6/0x1f0
[  341.806568][ T5726]  bpf_check+0x6253/0x10ca0
[  341.811108][ T5726]  bpf_prog_load+0x1072/0x15a0
[  341.815904][ T5726]  __sys_bpf+0x520/0x6d0
[  341.820180][ T5726]  __x64_sys_bpf+0x78/0x90
[  341.824624][ T5726]  do_syscall_64+0x4c/0xa0
[  341.829075][ T5726]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  341.835004][ T5726] 
[  341.837346][ T5726] Last potentially related work creation:
[  341.843079][ T5726]  kasan_save_stack+0x3a/0x60
[  341.847818][ T5726]  __kasan_record_aux_stack+0xb2/0xc0
[  341.853221][ T5726]  kvfree_call_rcu+0x108/0x870
[  341.858019][ T5726]  process_one_work+0x898/0x1160
[  341.862983][ T5726]  worker_thread+0xaa2/0x1250
[  341.867694][ T5726]  kthread+0x29d/0x330
[  341.871797][ T5726]  ret_from_fork+0x1f/0x30
[  341.876246][ T5726] 
[  341.878587][ T5726] Second to last potentially related work creation:
[  341.885188][ T5726]  kasan_save_stack+0x3a/0x60
[  341.889902][ T5726]  __kasan_record_aux_stack+0xb2/0xc0
[  341.895302][ T5726]  insert_work+0x54/0x3c0
[  341.899741][ T5726]  __queue_work+0xba3/0xfb0
[  341.904278][ T5726]  rcu_work_rcufn+0xcf/0x110
[  341.908973][ T5726]  rcu_core+0x9c0/0x16a0
[  341.913254][ T5726]  handle_softirqs+0x2a1/0x920
[  341.918082][ T5726]  __irq_exit_rcu+0x12f/0x220
[  341.922830][ T5726]  irq_exit_rcu+0x5/0x20
[  341.927109][ T5726]  sysvec_apic_timer_interrupt+0xa0/0xc0
[  341.932786][ T5726]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  341.938799][ T5726] 
[  341.941138][ T5726] The buggy address belongs to the object at ffff8880766e0000
[  341.941138][ T5726]  which belongs to the cache kmalloc-8k of size 8192
[  341.955233][ T5726] The buggy address is located 2992 bytes inside of
[  341.955233][ T5726]  8192-byte region [ffff8880766e0000, ffff8880766e2000)
[  341.968720][ T5726] 
[  341.971061][ T5726] The buggy address belongs to the physical page:
[  341.977496][ T5726] page:ffffea0001d9b800 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x766e0
[  341.987676][ T5726] head:ffffea0001d9b800 order:3 compound_mapcount:0 compound_pincount:0
[  341.996023][ T5726] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  342.004044][ T5726] raw: 00fff00000010200 ffffea0001dea600 dead000000000003 ffff888017442280
[  342.012651][ T5726] raw: 0000000000000000 0000000000020002 00000001ffffffff 0000000000000000
[  342.021253][ T5726] page dumped because: kasan: bad access detected
[  342.027690][ T5726] page_owner tracks the page as allocated
[  342.033423][ T5726] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 3934, tgid 3934 (dhcpcd-run-hook), ts 48939051240, free_ts 48885504514
[  342.054295][ T5726]  post_alloc_hook+0x173/0x1a0
[  342.059116][ T5726]  get_page_from_freelist+0x1a26/0x1ac0
[  342.064699][ T5726]  __alloc_pages+0x1df/0x4e0
[  342.069321][ T5726]  alloc_slab_page+0x5d/0x160
[  342.074030][ T5726]  new_slab+0x87/0x2c0
[  342.078140][ T5726]  ___slab_alloc+0xbc6/0x1220
[  342.082850][ T5726]  __kmem_cache_alloc_node+0x1a0/0x260
[  342.088351][ T5726]  kmalloc_trace+0x26/0xe0
[  342.092797][ T5726]  tomoyo_init_log+0x1081/0x1f50
[  342.097776][ T5726]  tomoyo_supervisor+0x326/0x10b0
[  342.102838][ T5726]  tomoyo_env_perm+0x146/0x1e0
[  342.107633][ T5726]  tomoyo_find_next_domain+0x157a/0x1a40
[  342.113301][ T5726]  tomoyo_bprm_check_security+0x100/0x150
[  342.119051][ T5726]  security_bprm_check+0x5e/0x90
[  342.123995][ T5726]  bprm_execve+0xa77/0x18a0
[  342.128506][ T5726]  do_execveat_common+0x51b/0x6c0
[  342.133540][ T5726] page last free stack trace:
[  342.138210][ T5726]  free_unref_page_prepare+0x8b4/0x9a0
[  342.143680][ T5726]  free_unref_page+0x2e/0x3f0
[  342.148366][ T5726]  __unfreeze_partials+0x1a5/0x200
[  342.153480][ T5726]  put_cpu_partial+0x17c/0x250
[  342.158247][ T5726]  qlist_free_all+0x76/0xe0
[  342.162749][ T5726]  kasan_quarantine_reduce+0x144/0x160
[  342.168212][ T5726]  __kasan_slab_alloc+0x1e/0x80
[  342.173074][ T5726]  slab_post_alloc_hook+0x4b/0x480
[  342.178196][ T5726]  kmem_cache_alloc+0x123/0x2f0
[  342.183064][ T5726]  mas_alloc_nodes+0x2ec/0x890
[  342.187839][ T5726]  mas_preallocate+0x11e/0x340
[  342.192606][ T5726]  do_mas_align_munmap+0x1f3/0x1220
[  342.197865][ T5726]  do_mas_munmap+0x240/0x2b0
[  342.202479][ T5726]  mmap_region+0x713/0x1d30
[  342.207028][ T5726]  do_mmap+0x894/0xf30
[  342.211106][ T5726]  vm_mmap_pgoff+0x1b2/0x2b0
[  342.215710][ T5726] 
[  342.218031][ T5726] Memory state around the buggy address:
[  342.223661][ T5726]  ffff8880766e0a80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  342.231723][ T5726]  ffff8880766e0b00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  342.239785][ T5726] >ffff8880766e0b80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  342.247857][ T5726]                                      ^
[  342.253504][ T5726]  ffff8880766e0c00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  342.261570][ T5726]  ffff8880766e0c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  342.269639][ T5726] ==================================================================
[  342.277712][ T5726] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  342.284907][ T5726] CPU: 0 PID: 5726 Comm: gfs2_quotad Not tainted 6.1.138-syzkaller #0
[  342.293194][ T5726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  342.303263][ T5726] Call Trace:
[  342.306543][ T5726]  <TASK>
[  342.309521][ T5726]  dump_stack_lvl+0x168/0x22e
[  342.314217][ T5726]  ? memcpy+0x3c/0x60
[  342.318217][ T5726]  ? show_regs_print_info+0x12/0x12
[  342.323433][ T5726]  ? load_image+0x3b0/0x3b0
[  342.327953][ T5726]  panic+0x2c9/0x710
[  342.331877][ T5726]  ? __lock_acquire+0x7c50/0x7c50
[  342.336932][ T5726]  ? bpf_jit_dump+0xd0/0xd0
[  342.341507][ T5726]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  342.347421][ T5726]  ? _raw_spin_unlock+0x40/0x40
[  342.352292][ T5726]  check_panic_on_warn+0x80/0xa0
[  342.357252][ T5726]  ? __lock_acquire+0xf7/0x7c50
[  342.362140][ T5726]  end_report+0x66/0x110
[  342.366432][ T5726]  kasan_report+0x118/0x140
[  342.371076][ T5726]  ? __lock_acquire+0xf7/0x7c50
[  342.375986][ T5726]  __lock_acquire+0xf7/0x7c50
[  342.380712][ T5726]  ? verify_lock_unused+0x140/0x140
[  342.385976][ T5726]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  342.392004][ T5726]  ? lock_chain_count+0x20/0x20
[  342.396900][ T5726]  ? __free_object+0x203/0x9d0
[  342.401679][ T5726]  ? lockdep_hardirqs_on+0x94/0x140
[  342.406901][ T5726]  ? verify_lock_unused+0x140/0x140
[  342.412132][ T5726]  ? alloc_object+0x650/0x650
[  342.416838][ T5726]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  342.422831][ T5726]  ? lock_chain_count+0x20/0x20
[  342.427699][ T5726]  lock_acquire+0x1b4/0x490
[  342.432238][ T5726]  ? finish_wait+0xb8/0x1d0
[  342.436754][ T5726]  ? timer_delete_sync+0x1f8/0x2a0
[  342.441892][ T5726]  ? try_to_del_timer_sync+0x1b0/0x1b0
[  342.447376][ T5726]  ? read_lock_is_recursive+0x10/0x10
[  342.452780][ T5726]  _raw_spin_lock_irqsave+0xa4/0xf0
[  342.457994][ T5726]  ? finish_wait+0xb8/0x1d0
[  342.462514][ T5726]  ? _raw_spin_lock+0x40/0x40
[  342.467218][ T5726]  ? update_process_times+0x1b0/0x1b0
[  342.472616][ T5726]  finish_wait+0xb8/0x1d0
[  342.476955][ T5726]  gfs2_quotad+0x4e6/0x670
[  342.481388][ T5726]  ? gfs2_wake_up_statfs+0xc0/0xc0
[  342.486517][ T5726]  ? _raw_spin_unlock_irqrestore+0x82/0x100
[  342.492451][ T5726]  ? wake_bit_function+0x200/0x200
[  342.497597][ T5726]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  342.503511][ T5726]  ? __kthread_parkme+0x162/0x1c0
[  342.508546][ T5726]  kthread+0x29d/0x330
[  342.512625][ T5726]  ? gfs2_wake_up_statfs+0xc0/0xc0
[  342.517743][ T5726]  ? kthread_blkcg+0xd0/0xd0
[  342.522346][ T5726]  ret_from_fork+0x1f/0x30
[  342.526776][ T5726]  </TASK>
[  342.530133][ T5726] Kernel Offset: disabled
[  342.534559][ T5726] Rebooting in 86400 seconds..