last executing test programs:

1m33.924914157s ago: executing program 1 (id=22):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file1\x00', 0x8000, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2b2, &(0x7f0000000880)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0xbf)
write$binfmt_elf64(r0, &(0x7f00000006c0)=ANY=[@ANYBLOB="7f024c46"], 0x5b0)
close(r0)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0)

1m33.241033024s ago: executing program 1 (id=26):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
capset(0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)
openat(0xffffffffffffff9c, 0x0, 0x40, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
r3 = socket$inet(0x2, 0x4000000805, 0x0)
sendmmsg(r3, &(0x7f0000000180)=[{{&(0x7f0000000000)=@l2tp={0x2, 0x0, @local, 0x2}, 0x80, &(0x7f0000000200)=[{&(0x7f00000000c0)="ae", 0x1}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000084"], 0x18}}], 0x2, 0x844)

1m31.537127263s ago: executing program 1 (id=27):
r0 = io_uring_setup(0x194e, &(0x7f0000000a80)={0x0, 0xd3d5, 0x80, 0x5, 0x2b0})
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000000080)=0x200000000)
dup2(r1, r0)
readv(r1, &(0x7f00000027c0)=[{&(0x7f0000001600)=""/4096, 0x1000}], 0x1)

1m30.120070689s ago: executing program 1 (id=31):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
truncate(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800001000088}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102400, 0x19000)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
recvmsg(r4, &(0x7f0000001b40)={0x0, 0x0, 0x0}, 0x2021)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x1b, &(0x7f00000000c0)={@private0}, 0x20)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x14, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(0xffffffffffffffff, &(0x7f0000000300)={0x2, 0x0, @remote}, 0x10)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1m26.541029436s ago: executing program 1 (id=37):
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000)
listen(0xffffffffffffffff, 0x3)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$packet(0x11, 0x3, 0x300)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000001000)={'batadv_slave_1\x00', <r4=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="540000001400090525bd70000003000002180d00", @ANYRES32=r4, @ANYBLOB="08000b000000000008000200ac14143f0800"], 0x54}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x41000, 0x0, '\x00', r4, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r5, 0x0, 0x0}, 0x20)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0xe, &(0x7f00000002c0)={[{@nogrpid, 0x3d}, {@discard}, {@noauto_da_alloc}, {@minixdf}, {@nouser_xattr}, {@nogrpid}], [{@euid_eq}]}, 0x3, 0x45c, &(0x7f0000000fc0)="$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")

1m24.23698324s ago: executing program 1 (id=42):
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000080)='cdg\x00', 0x4)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000018c0)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000380)="12", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f00000016c0)=[{&(0x7f0000000240)=' ', 0x1}], 0x1}}], 0x2, 0x48800)
syz_usb_disconnect(0xffffffffffffffff)
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000100)='hybla\x00', 0x6)
sendto$inet6(0xffffffffffffffff, &(0x7f00000007c0)="82edb1ea8094aa2ee630ec405caa3c3371e35fe3df4395f9492d434e25963f4ad81f8f8dfb21be419f680dabbea4694dec187083b0ccef215e4bae9f3647fdf2cc87134f07", 0x45, 0x8004, &(0x7f0000000340)={0xa, 0x4e23, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x6}, 0x1c)

1m8.280114017s ago: executing program 32 (id=42):
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000080)='cdg\x00', 0x4)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x3, 0x0, @loopback}, 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000018c0)=[{{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000380)="12", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f00000016c0)=[{&(0x7f0000000240)=' ', 0x1}], 0x1}}], 0x2, 0x48800)
syz_usb_disconnect(0xffffffffffffffff)
setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000100)='hybla\x00', 0x6)
sendto$inet6(0xffffffffffffffff, &(0x7f00000007c0)="82edb1ea8094aa2ee630ec405caa3c3371e35fe3df4395f9492d434e25963f4ad81f8f8dfb21be419f680dabbea4694dec187083b0ccef215e4bae9f3647fdf2cc87134f07", 0x45, 0x8004, &(0x7f0000000340)={0xa, 0x4e23, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x6}, 0x1c)

13.341120705s ago: executing program 5 (id=202):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x89}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$vsock_stream(0x28, 0x1, 0x0)
r2 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0xc8c7, 0x0, 0xfffffffd, 0x2}, &(0x7f0000000340)=<r3=>0x0, &(0x7f00000002c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000380)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000003c0)='./file0\x00', 0x400, 0x2000, 0x1})
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r5)
sendmsg$NLBL_MGMT_C_ADDDEF(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x2c}}, 0x0)
io_uring_enter(r2, 0x47f9, 0x0, 0x0, 0x0, 0x0)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
r6 = openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
r7 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
setsockopt$netrom_NETROM_T1(r7, 0x103, 0x1, &(0x7f0000000040), 0x4)
setsockopt$inet6_int(r2, 0x29, 0x57, &(0x7f0000000400)=0x6, 0x4)
openat$cgroup_devices(r6, &(0x7f00000000c0)='devices.deny\x00', 0x2, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x8002)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
getpid()

11.378507448s ago: executing program 0 (id=203):
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x100004, 0x10003, 0x3, 0x1, 0x1, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)}, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e1c}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f00000009c0)={&(0x7f00000000c0)={0x2, 0x4001, @empty}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x300}, 0x20044818)
r3 = syz_open_dev$I2C(&(0x7f0000000d80), 0x0, 0x0)
ioctl$I2C_SMBUS(r3, 0x720, &(0x7f0000000580)={0x1, 0x0, 0x0, 0x0})
r4 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000380), 0x109000, 0x0)
ioctl$FBIO_WAITFORVSYNC(r4, 0x40044620, 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(0xffffffffffffffff, 0x84, 0x6b, &(0x7f0000000240), 0x0)
setsockopt(0xffffffffffffffff, 0x84, 0x7f, &(0x7f0000000040)="020000000980ffff", 0x8)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
listen(r5, 0x0)
r6 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r6, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10)
r7 = accept(r5, 0x0, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="120000000400000004000000a4"], 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r8, &(0x7f0000000300), &(0x7f00000002c0)=@tcp6=r7}, 0x47)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0xb, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000080000850000001800000085000000a000000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, @void, @value}, 0x94)
read$eventfd(0xffffffffffffffff, &(0x7f0000000080), 0x51)

11.377046273s ago: executing program 4 (id=204):
r0 = getpid()
sched_setscheduler(r0, 0x1, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x70d31000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket$igmp6(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r5, 0x29, 0x22, &(0x7f0000000000)={{0xa, 0x0, 0x101, @loopback, 0x18000}, {0xa, 0x4e24, 0xfffffffd, @dev={0xfe, 0x80, '\x00', 0x10}, 0x4}, 0x0, {[0xe, 0xfffffffd, 0x0, 0xfffffef9, 0x0, 0x1, 0x8]}}, 0x5c)
bind$inet(r1, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={0xffffffffffffffff, &(0x7f00000001c0), &(0x7f00000004c0)=@udp=r1}, 0x20)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r6, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x21}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @hsr={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_HSR_SLAVE2={0x8}]}}}, @IFLA_MASTER={0x8}]}, 0x40}}, 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902115c01000000000904000001b504b100090581219f"], 0x0)

9.300937841s ago: executing program 5 (id=207):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000380)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@noquota}, {@noload}]}, 0x3, 0x430, &(0x7f0000000d80)="$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")
syz_mount_image$vfat(&(0x7f0000000800), &(0x7f0000000280)='./bus\x00', 0x810408, 0x0, 0xff, 0x0, &(0x7f00000007c0))
r0 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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")
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0xc0406618, 0x0)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x0, &(0x7f0000000000), 0x0, 0x248, &(0x7f0000000940)="$eJzs3T9oFFkcB/DfzO5eLsly5O6ag4O7g+M47gIh1x3YxEYhICGICCpERGyURIgJdomVjYXWKqlsgtgZrdMEG0Ww8k+K2AgaLAwWWqzsTiLRbDBxN7uS+Xxg2JnZee/3hp3v221mNoDc6omIgYgoRERvRJQiIll/wB/Z0rO6OdO5MBJRqRx8ndSOy7Yza+26I2I6Iv6PiPk0idPFiMm5o0tvH+//+9JE6a8bc0c6W3qSq5aXFg+sXB+6eHvwv8kHj14OJTEQ5U/Oq/mSOvuKScRPO1HsG5EU2z0CtmL4/K0n1dz/HBF/1vJfijSyD+/y+Hfzpfj32mZtr7x6+Gsrxwo0X6VSqn4HTleA3EkjohxJ2hcR2Xqa9vVlv+GfFrrSM2Pj53pPjU2Mnmz3TAU0Szlicd/djjvdn+X/RSHLP7B7VfN/aHj2WXV9pdDu0QCtVM1/7/Gpf0L+IXfkH/JL/iG/5B/yS/4hv+Qf8kv+Ydf4frsN5B/yS/4hv+Qf8mt9/gGAfKl0tPsOZKBd2j3/AAAAAAAAAAAAAAAAAAAAG810LoysLa2qee9qxPLeiCjWq1+o/R/x2qNNu94k1cM+SrJmDTn2e4MdNOjmDt59vZVHuv3wfOfqb8X935rZW3nbLaZGI6YvRER/sbjx+ktWr7+v9+MX3i+daLBAg/Ycbm/997Otq1Wqs2+wkmQr/fXmnzR+qb3Wn3/Km/S5HWffNdgBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALfMhAAD//+M2bGo=")
mount(0x0, &(0x7f0000000140)='./bus\x00', 0x0, 0x73d014, 0x0)
mkdir(0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r5, &(0x7f0000000040)={0x1f, 0x21, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000006c0)={&(0x7f00000004c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x1c, 0x1c, 0x6, [@var={0x2, 0x0, 0x0, 0xe, 0x3}, @typedef={0x5}]}, {0x0, [0x2e, 0x0, 0x0, 0x61]}}, &(0x7f00000005c0)=""/193, 0x3a, 0xc1, 0x1, 0x0, 0x0, @void, @value}, 0x28)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r6, 0x0)
write$binfmt_script(r5, &(0x7f0000000cc0), 0xfd45)
syz_open_procfs(0x0, 0x0)
mknod$loop(0x0, 0x1000, 0x1)
rename(&(0x7f0000000180)='./file0\x00', &(0x7f0000000a00)='./bus/file0\x00')

9.158323415s ago: executing program 0 (id=208):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)

9.018298107s ago: executing program 3 (id=209):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_ADDRFORM(r3, 0x29, 0x1, &(0x7f0000000040), 0x4)

8.46676016s ago: executing program 0 (id=211):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18, 0x0, 0x0, {0x3b9}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB], 0xb0)
write$FUSE_GETXATTR(r2, &(0x7f00000000c0)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000680)=ANY=[@ANYBLOB="b9000000000000", @ANYRES64], 0xb8)
mount$9p_fd(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_loose}]}})
r3 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
write$FUSE_DIRENTPLUS(r3, &(0x7f00000029c0)={0x288, 0xffffffffffffffda, 0x0, [{{0x6, 0x1, 0xe, 0x1, 0x7, 0x20000, {0x4, 0xd355, 0x8, 0x6, 0x5, 0x2, 0x9, 0x20000, 0x6, 0xc000, 0x6}}, {0x4, 0x100000001, 0x0, 0x8}}, {{0x6, 0x2, 0x0, 0x9, 0x8, 0x8000, {0x3, 0x80000001, 0x5, 0x80000000, 0x2, 0x4, 0x5, 0x8, 0xa05, 0x6000, 0x9, 0x0, 0x0, 0x6, 0x1}}, {0x3, 0x4, 0x5, 0xfffffffe, 'wfdno'}}, {{0x6, 0x2, 0xcb28, 0x4, 0x5, 0x5, {0x1, 0x4, 0xe33, 0xaf6, 0x5, 0x0, 0x7, 0x4, 0x1, 0xa000, 0x7, 0x0, 0x0, 0xdbb9, 0x1}}, {0x5, 0x8, 0x2, 0x5f14, '\x98}'}}, {{0x2, 0x1, 0xfffffffffffffff8, 0x1, 0x2, 0x3, {0x2, 0x73a, 0x0, 0xffff, 0x0, 0xf, 0x2, 0x7, 0xfffff801, 0xa000, 0xfff, 0x0, 0x0, 0x8, 0x7b4}}, {0x5, 0x7fff, 0x1, 0x0, '\x00'}}]}, 0x288)

7.964695675s ago: executing program 3 (id=213):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f00000006c0)={'vcan0\x00', <r1=>0x0})
bind$can_raw(r0, &(0x7f00000005c0), 0x10)
recvmmsg(r0, &(0x7f0000000000)=[{{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000040)=""/5, 0xf}, {0x0}], 0x2}}], 0x400025a, 0x600100a2, 0x0)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r0, 0x65, 0x4, &(0x7f0000000580)=0x1, 0x4)
sendmsg$can_raw(r0, &(0x7f0000000240)={&(0x7f0000000780)={0x1d, r1}, 0x10, &(0x7f0000000480)={&(0x7f0000000680)=@can={{0x0, 0x0, 0x0, 0x1}, 0x0, 0x2, 0x0, 0x0, "5b7ba3698f28aaf0"}, 0x10}}, 0x4845)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000640)={'vxcan0\x00', <r2=>0x0})
sendmsg$can_raw(r0, &(0x7f0000000800)={&(0x7f0000000700)={0x1d, r2}, 0x10, &(0x7f00000007c0)={&(0x7f0000000740)=@can={{0x3, 0x1, 0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, "732551b1e589c8b3"}, 0x10}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)

7.703955612s ago: executing program 4 (id=214):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000080)={[{@delalloc}, {@data_err_abort}, {@lazytime}, {@dioread_lock}, {@dioread_lock}, {@resgid}, {@nodelalloc}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x5}}]}, 0xfe, 0x562, &(0x7f0000000440)="$eJzs3d9rW+UbAPDnpO1+f7/rYAwVkcIuHMyla+uPCV7MS9HhQG+8miE9K6PpMpp0rHXgduFuvJEheOFAvNd7L4f/gH/FQIdDRvHGm8hJT7quSdasy9rMfD5w2vfNe5L3PDnnefOenIQEMLQmsj+FiJcj4psk4nBEJHnbaOSNE2vrrT68Xs6WJBqNT/5KsvX2R0S59Vit+x3MKy9FxK9fRZwstPdbW16ZL1Uq6WJe3xsLVyZryyunLi2U5tK59PL0zMyZt2am333n7b7E2fhy7f/Hdz848/Xx1e9+vn/kdhJn41DensXVh25ubKxMxET+nIzF2U0rTvWhs0GS7PYGsC0jeZ6PRTYGHI6RPOuB/77sZbEBDKlE/sOQas0DWuf2fToPfmE8eH/tBKg9/tG190ZiX/Pc6MBq8tiZUXa+O96H/rM+fvnjzu1sif69DwGwpRs3I+L06Gj7+Jfk49/2ne5hnc19GP9g59zN5j9vdJr/FNbnP9Fh/nOwQ+5ux9b5X7jfh266yuZ/73Wc/65ftBofyWv/a875xpKLlyppNrb9PyJOxNjerP6k6zlnVu81urVtnP9lS9Z/ay6Yb8f90b2P32e2VC89S8wbPbgZ8UrH+W+yvv+TDvs/ez7O99jHsfTOa93ato7/+Wr8GPF6x/3/6IpWVpqsd70+Odk8HiZbR0W7v28d+61b/7sdf7b/Dzw5/vFk4/Xa2tP38cO+f9K8uG9z22PxR+/H/57k02Z5T37btVK9vjgVsSf5qP326Uf3bdVb62fxnzj+5PGv0/G/PyI+7zH+W0d/erVb2yDs/9mn2v9PX7j34Rffd+u/t/HvzWbpRH5LL+Nfrxv4LM8dAAAAAAAADJpCRByKpFBcLxcKxeLa5zuOxoFCpVqrn7xYXbo8G83vyo7HWKF1pfvwhs9DTOWfh23VpzfVZyLiSER8O7K/WS+Wq5XZ3Q4eAAAAAAAAAAAAAAAAAAAABsTBLt//z/w+0rb6Z3/u/CYCz5Of/IbhtWX+9+OXnoCB5PUfhpf8h+El/2F4yX8YXvIfhpf8h+El/2F4yX8AAAAAAAAAAAAAAAAAAAAAAAAAAADoq/PnzmVLY/Xh9XJWn726vDRfvXpqNq3NFxeWysVydfFKca5anaukxXJ1YavHq1SrV6amY+naZD2t1SdryysXFqpLl+sXLi2U5tIL6diORAUAAAAAAAAAAAAAAAAAAAAvltryynypUkkXFRS2VRgdjM1Q6HNht0cmAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHjk3wAAAP//cHo1gQ==")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.swap.current\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000001000)=ANY=[@ANYRESDEC], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000000), 0x2, 0x0)

7.466504586s ago: executing program 5 (id=215):
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x4}, @HCI_OP_LE_CLEAR_RESOLV_LIST={{0x4}}}}, 0x7)

7.252608589s ago: executing program 0 (id=216):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000040)='./file0/file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, 0x0, 0xffffffffffffff9c, 0x0, 0x142)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x22004002, &(0x7f0000000140)={[{@jqfmt_vfsold}, {@nojournal_checksum}, {@noload}, {@noinit_itable}, {@usrjquota}, {@grpjquota, 0x2e}], [{@seclabel}]}, 0x81, 0x46c, &(0x7f00000004c0)="$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")

6.969022053s ago: executing program 4 (id=218):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x7, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x3, 0x3, 0x0, 0x1, 0xfffffffffffffffe}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
r1 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r1, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r1, 0x0, 0xca, &(0x7f0000003d80)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000400)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
fchdir(0xffffffffffffffff)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
setsockopt$inet_mreq(r0, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @multicast1=0xe0000300}, @address_request}}}}, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(r1, 0x0, 0xd2, &(0x7f0000000200)={@empty, @multicast2=0xe0000300, 0x0, "ff00000058b274e6d845167fefe428970548fc3c7b00000000000000fcff00", 0xb2, 0xb, 0x6, 0x6}, 0x3c)

6.968654882s ago: executing program 5 (id=219):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x89}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$vsock_stream(0x28, 0x1, 0x0)
r2 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0xc8c7, 0x0, 0xfffffffd, 0x2}, &(0x7f0000000340)=<r3=>0x0, &(0x7f00000002c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000380)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000003c0)='./file0\x00', 0x400, 0x2000, 0x1})
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r5)
sendmsg$NLBL_MGMT_C_ADDDEF(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01002cbd7000000000000400000005000700e0000002080002000500000008000800ac1e0001e482a439061f51942d079359fb59de4c8b199708b297ce60d20d6f3360842d930adc94f09dc39b404f196bfe7afee0b0ddcb38aae0eb4a7f80e84ff49290f6abf0040041e13291d5f048b9fe0932a57bf473e8b2169df4dc016f9c1f681157b958417c91ddf38088e26de5cd6e6d16e61639ed0f4a73c9572f8837f18923066d1c8d920efb4dfd3ba587692d8c8ad0e2be6239d1f3a7d4cd0806d9da9965e07e"], 0x2c}}, 0x0)
io_uring_enter(r2, 0x47f9, 0x0, 0x0, 0x0, 0x0)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
r7 = openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
r8 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
setsockopt$netrom_NETROM_T1(r8, 0x103, 0x1, &(0x7f0000000040), 0x4)
setsockopt$inet6_int(r2, 0x29, 0x57, &(0x7f0000000400)=0x6, 0x4)
openat$cgroup_devices(r7, &(0x7f00000000c0)='devices.deny\x00', 0x2, 0x0)
recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x8002)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
getpid()

4.895974063s ago: executing program 3 (id=221):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)

4.389033518s ago: executing program 5 (id=222):
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_xfrm(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x4f8}, 0x1, 0x0, 0x0, 0x40004}, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_ACTIVATE(r4, 0x4bfa, 0x10000000000004)

4.260283219s ago: executing program 4 (id=223):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000380), 0xfe, 0x571, &(0x7f0000001180)="$eJzs3c1rHOUfAPDvbF76kvbXFEr56UECPVip3TSJLxU81KNosaD3uiTTULLplOymNLFge7AXL1IEEQviH+DdY/Ef8K8oaKFoCXrwEpnNbLpNdvO6Nan7+cBunmdmdp95dub75Pvs7LIB9KyR/K4U8VJEfJVEHGtZ1x/FypGV7Zae3JrMb0ksL3/8exJJsay5fVL8HSoq/4+In7+IOFNa325tYXGmUq2mc0V9tD57fbS2sHj26mxlOp1Or41PTJx/c2L8nbff6lpfX7v017cfPXj//Jenlr758dHxe0lciCPFutZ+7MLt1spIjBSvyUBcWLPhWBca20+Svd4BdqSviPOByMeAY9FXRD3w3/d5RCwDPSoR/9CjmnlAc27fpXnwC+PxeysToPX97195byQONuZGh5eSZ2ZG+Xx3uAvt52389Nv9e/ktuvc+BMCmbt+JiHP9/evHv6QY/3bu3Ba2WdvGNse/5W3uEtDiQZ7/vN4u/8mKLQ427tfmP0NtYncnNo//0qMuNNNRnv+92zb/Xb1oNdxX1I42cr6B5MrVapqPbf+LiNMxcCCvb3Q95/zSw47j1NP8b7CRA+btN3PBYj8e9R949jFTlXplN31u9fhOxMtt899kNf9N2hz//PW4tMU2Tqb3X+m0rjX/bd//52v5h4hXi+N/+5k50dMrWsnG1ydHG+fDaPOsWO/Puyd/6dR+5/4ffQ69XS8//ofbnv+r/R9OWq/X1rbfxvcH/047rdv8+Lc//weTTxrlwWLZzUq9PjcWMZh8uH75+NPHNuvN7fP+nz7VPv43Ov8PRcSnW+z/3RN3O2661+d/3v+pbR3/7RcefvDZd53a39rxf6NROl0s2cr4t9Ud3M1rBwAAAAAAAPtNKSKORFIqr5ZLpXJ55fMdJ+JwqZrV6meuZPPXpqLxXdnhGCg1r3QPtXweYqz4PGyzPr6mPhERxyPi675DjXp5MqtO7XXnAQAAAAAAAAAAAAAAAAAAYJ8Y6vD9/9yvfXu9d8Bz5ye/oXdtGv/d+KUnYF/y/x96l/iH3iX+oXeJf+hd4h96l/iH3iX+oXeJfwAAAAAAAAAAAAAAAAAAAAAAAAAAAOiqSxcv5rflpSe3JvP61I2F+ZnsxtmptDZTnp2fLE9mc9fL01k2XU3Lk9nshk+W/BHVLLs+Nh7zN0fraa0+WltYvDybzV+rX746W5lOL6cD/1bHAAAAAAAAAAAAAAAAAAAA4AVSW1icqVSr6ZyCwo4K/ftjNxRWCs3A3vUT7u24BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACt/gkAAP//ys442g==")
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000000)={[{@errors_continue}]}, 0x1, 0x4c5, &(0x7f0000000ec0)="$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")
renameat2(0xffffffffffffff9c, &(0x7f0000000600)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000640)='./file1\x00', 0x4)

4.259992491s ago: executing program 0 (id=224):
r0 = getpid()
sched_setscheduler(r0, 0x1, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet(0x2, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x70d31000)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$igmp6(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r3, 0x29, 0x22, &(0x7f0000000000)={{0xa, 0x0, 0x101, @loopback, 0x18000}, {0xa, 0x4e24, 0xfffffffd, @dev={0xfe, 0x80, '\x00', 0x10}, 0x4}, 0x0, {[0xe, 0xfffffffd, 0x0, 0xfffffef9, 0x0, 0x1, 0x8]}}, 0x5c)
bind$inet(r1, 0x0, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={0xffffffffffffffff, &(0x7f00000001c0), &(0x7f00000004c0)=@udp=r1}, 0x20)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r4, 0xffffffffffffffff, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x21}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @hsr={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_HSR_SLAVE2={0x8}]}}}, @IFLA_MASTER={0x8}]}, 0x40}}, 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000d5e9bd40eb030200c0ba050000010902115c01000000000904000001b504b100090581219f"], 0x0)

3.855709179s ago: executing program 3 (id=225):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000b80)='./file0\x00', 0x0, &(0x7f0000000d00)={[{@grpjquota}]}, 0x3, 0x5ee, &(0x7f00000012c0)="$eJzs3c1vVFUbAPDnTj9oKXk7kDcqLqSJMZAoLS1gGuMCtoY0+BE3urDSgkiBhtZo0YSS4MbEuDHGxJUL8b9QIltWunLhxpUhIWpYmjjmztxbOu1Mv2jnEu7vlwxz7zlze86lfeace+acOwGU1lD6TyVif0TMJhGDyeJSXndkmUON193/+5Mz6SOJWu31P5NIsrT89Un2PJAd3BcRP/+UxL6u1eXOLVy9MDkzM30l2x+Zvzg7Mrdw9fD5i5Pnps9NXxp7cWz8+LHj46NHtnRe11qknbrx/oeDn0289d03/ySj3/82kcSJeCV74fLz2C5DMVT/P0lWZw2Mb3dhBenK/k5qtVotT0u6i60TG5f//noi4skYjK548MsbjE9fLbRywI6qJY33bqCMEvEPJZX3A/Jr+5XXwZVCeiVAJ9w72RgAWB3/3Y2xweirjw3svp/E8mGdJCK2NjLXbE9E3Lk9cePs7YkbsUPjcEBri9cj4qlW8Z/U478afVGtx3+lKf7TfsHp7DlNf22L5a8cKhb/0DmN+O9bM/6jTfy/kz5fa8Twu1ssv/pg873+pvjv3+opAQAAAAAAQGndOhkRL7T6/L+yNP8nWsz/GYiIE9tQ/tCK/dWf/1fubkMxQAv3Tka83HL+byWf/VvtWraEtRo9ydnzM9NHIuJ/EXEoenal+6NrlHH4831ft8sbyub/5Y+0/DvZXMCsHne7dzUfMzU5P/kQpwxk7l2PeLrl/N9kqf1PWrT/6TvD7AbL2PfczdPt8taPf2Cn1L6NONiy/X9w14pk7ftzjNT7AyN5r2C1Zz7+4od25W81/t1iAh5e2v7vXjv+q8ny+/XMbb6MowvdtXZ5W+3/9yZv1O8q1JulfTQ5P39lNKI3OdWVpjalj22+zvA4yuMhj5c0/g89u/b4X6v+f39ELK742clfzWuKc0/8O/B7u/ro/0Nx0vif2lT7v/mNsZvVH9uVv7H2/1i9rT+UpRj/g4av8jDtbU5vEY7drbI6XV8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeBxUImJPJJXhpe1KZXg4YiAi/h+7KzOX5+afP3v5g0tTaV79+/8r+Tf9Djb2k/z7/6vL9sdW7B+NiL0R8WVXf31/+MzlmamiTx4AAAAAAAAAAAAAAAAAAAAeEQNt1v+n/ugqunbAjusuugJAYVrE/y9F1APoPO0/lJf4h/IS/1Be4h/KS/xDea0d/2+Pd6wiQMdp/6G8xD8AAAAAADxW9h649WsSEYsv9dcfqd4sr6fQmgE7rVJ0BYDCuMUPlJepP1BervGBZJ38vrYHrXfkWmbPPMTBAAAAAAAAAAAAAFA6B/db/w9lZf0/lJf1/1Be+fr/AwXXA+g81/hArLOSv+X6/3WPAgAAAAAAAAAAAAC209zC1QuTMzPTV2y8+WhUo5MbtVrtWvpX8KjUZ/s3kmyGekcKzafCd/5Mezdygvlav4395OLekwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgGb/BQAA//8wviV5")
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x84c00, 0x0, 0x0, 0x0, &(0x7f0000000000))
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r4, &(0x7f0000001180)='pids.max\x00', 0x2, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
rename(&(0x7f00000003c0)='./bus\x00', &(0x7f0000000100)='./file0\x00')

3.781811368s ago: executing program 2 (id=226):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18, 0x0, 0x0, {0x3b9}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r2, 0x0, 0x0)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000680)=ANY=[@ANYBLOB="b9000000000000", @ANYRES64], 0xb8)
mount$9p_fd(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_loose}]}})
r3 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
write$FUSE_DIRENTPLUS(r3, &(0x7f00000029c0)={0x288, 0xffffffffffffffda, 0x0, [{{0x6, 0x1, 0xe, 0x1, 0x7, 0x20000, {0x4, 0xd355, 0x8, 0x6, 0x5, 0x2, 0x9, 0x20000, 0x6, 0xc000, 0x6}}, {0x4, 0x100000001, 0x0, 0x8}}, {{0x6, 0x2, 0x0, 0x9, 0x8, 0x8000, {0x3, 0x80000001, 0x5, 0x80000000, 0x2, 0x4, 0x5, 0x8, 0xa05, 0x6000, 0x9, 0x0, 0x0, 0x6, 0x1}}, {0x3, 0x4, 0x5, 0xfffffffe, 'wfdno'}}, {{0x6, 0x2, 0xcb28, 0x4, 0x5, 0x5, {0x1, 0x4, 0xe33, 0xaf6, 0x5, 0x0, 0x7, 0x4, 0x1, 0xa000, 0x7, 0x0, 0x0, 0xdbb9, 0x1}}, {0x5, 0x8, 0x2, 0x5f14, '\x98}'}}, {{0x2, 0x1, 0xfffffffffffffff8, 0x1, 0x2, 0x3, {0x2, 0x73a, 0x0, 0xffff, 0x0, 0xf, 0x2, 0x7, 0xfffff801, 0xa000, 0xfff, 0x0, 0x0, 0x8, 0x7b4}}, {0x5, 0x7fff, 0x1, 0x0, '\x00'}}]}, 0x288)

3.481063205s ago: executing program 2 (id=227):
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x4b8528, 0x2, 0x0, 0x9, 0x1, 0x0, 0x0, 0x100}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20, 0x0, 0x0, {0x0, 0x1}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
io_setup(0x2, &(0x7f0000000200)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000700)=[0x0])
dup3(r0, r1, 0x6700000000000000)

3.275766865s ago: executing program 4 (id=228):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000780)={[{@errors_remount}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@resgid}, {@block_validity}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000600)={0x23e3, 0x0, 0xd, 0x2})
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xa00010, &(0x7f0000000080)=ANY=[@ANYRES16=r0, @ANYRES32=0x0, @ANYRES64=0x0, @ANYRESDEC], 0x1, 0xc43, &(0x7f00000001c0)="$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")
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_INPUT(r2, &(0x7f0000000940)={0x8, {"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", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r2, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0x208e24b)

3.052244859s ago: executing program 0 (id=229):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800001000088}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
timer_create(0x2, 0x0, &(0x7f0000000240)=<r1=>0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b4050000004000006110640000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x8, 0x10, &(0x7f0000000000)={0x0, 0xb}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
timer_getoverrun(r1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
syz_open_procfs(0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000440)="325030d9a89bf3401345e0b1136beda544c4eac659acd2e64c5eaeb230e5c857165278cdbbc2b3cbacee39b293b07dbbf9bf239801ba657eee4a6599c475d505ffbbc38eb7b46072458ac1ffe67eed3303f4", 0x52}, {&(0x7f0000000600)="0b877748127fc49cb1510cd496609809571b8b01ca7b0d9f88b7bddcfe0cd76dedacbf9c7d5413ae9ba99f23f462bf656e8751607312f2f141c362911c9d5f098456f5e004ec2282a8f1885ad2f0e2880b9d576dbb781f98efc74a3858b2cae3b295a9a761931eba9b3b907cfc4f7042abbea03b7607ec8457cbd6725079ffb152ab66135a4c474fb73fd723470959272cbe2f366f29e06ca565449b5b3416a4f981c4a9ab8cd477bb670704b693fd144c80602f15a5983a7e7a0780e7233a4de85e", 0xc2}], 0x2, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010008020000001800006600000008000300", @ANYRES32=r5, @ANYBLOB="08002600940900000800b70099"], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

2.337018682s ago: executing program 33 (id=229):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800001000088}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
timer_create(0x2, 0x0, &(0x7f0000000240)=<r1=>0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b4050000004000006110640000000000"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x8, 0x10, &(0x7f0000000000)={0x0, 0xb}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
timer_getoverrun(r1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
syz_open_procfs(0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000)
vmsplice(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000440)="325030d9a89bf3401345e0b1136beda544c4eac659acd2e64c5eaeb230e5c857165278cdbbc2b3cbacee39b293b07dbbf9bf239801ba657eee4a6599c475d505ffbbc38eb7b46072458ac1ffe67eed3303f4", 0x52}, {&(0x7f0000000600)="0b877748127fc49cb1510cd496609809571b8b01ca7b0d9f88b7bddcfe0cd76dedacbf9c7d5413ae9ba99f23f462bf656e8751607312f2f141c362911c9d5f098456f5e004ec2282a8f1885ad2f0e2880b9d576dbb781f98efc74a3858b2cae3b295a9a761931eba9b3b907cfc4f7042abbea03b7607ec8457cbd6725079ffb152ab66135a4c474fb73fd723470959272cbe2f366f29e06ca565449b5b3416a4f981c4a9ab8cd477bb670704b693fd144c80602f15a5983a7e7a0780e7233a4de85e", 0xc2}], 0x2, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010008020000001800006600000008000300", @ANYRES32=r5, @ANYBLOB="08002600940900000800b70099"], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

2.32605897s ago: executing program 2 (id=231):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, 0x0)
bind$can_raw(r2, &(0x7f00000005c0), 0x10)
recvmmsg(r2, &(0x7f0000000000)=[{{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000040)=""/5, 0xf}, {0x0}], 0x2}}], 0x400025a, 0x600100a2, 0x0)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r2, 0x65, 0x4, &(0x7f0000000580)=0x1, 0x4)
sendmsg$can_raw(r2, &(0x7f0000000240)={&(0x7f0000000780), 0x10, &(0x7f0000000480)={&(0x7f0000000680)=@can={{0x0, 0x0, 0x0, 0x1}, 0x0, 0x2, 0x0, 0x0, "5b7ba3698f28aaf0"}, 0x10}}, 0x4845)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000640)={'vxcan0\x00', <r3=>0x0})
sendmsg$can_raw(r2, &(0x7f0000000800)={&(0x7f0000000700)={0x1d, r3}, 0x10, &(0x7f00000007c0)={&(0x7f0000000740)=@can={{0x3, 0x1, 0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, "732551b1e589c8b3"}, 0x10}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)

2.32081334s ago: executing program 3 (id=232):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x89}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket$vsock_stream(0x28, 0x1, 0x0)
r2 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0xc8c7, 0x0, 0xfffffffd, 0x2}, &(0x7f0000000340)=<r3=>0x0, &(0x7f00000002c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000380)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000003c0)='./file0\x00', 0x400, 0x2000, 0x1})
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r5)
sendmsg$NLBL_MGMT_C_ADDDEF(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="01002cbd7000000000000400000005000700e0000002080002000500000008000800ac1e0001e482a439061f51942d079359fb59de4c8b199708b297ce60d20d6f3360842d930adc94f09dc39b404f196bfe7afee0b0ddcb38aae0eb4a7f80e84ff49290f6abf0040041e13291d5f048b9fe0932a57bf473e8b2169df4dc016f9c1f681157b958417c91ddf38088e26de5cd6e6d16e61639ed0f4a73c9572f8837f1892306"], 0x2c}}, 0x0)
io_uring_enter(r2, 0x47f9, 0x0, 0x0, 0x0, 0x0)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
r7 = openat$cgroup(0xffffffffffffffff, 0x0, 0x200002, 0x0)
r8 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
setsockopt$netrom_NETROM_T1(r8, 0x103, 0x1, &(0x7f0000000040), 0x4)
setsockopt$inet6_int(r2, 0x29, 0x57, &(0x7f0000000400)=0x6, 0x4)
openat$cgroup_devices(r7, &(0x7f00000000c0)='devices.deny\x00', 0x2, 0x0)
recvmsg$can_bcm(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x0)
syz_open_dev$sg(0x0, 0x0, 0x8002)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
getpid()

1.015633613s ago: executing program 3 (id=233):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000000000207d1e5a2d00000000000109022400010000000009040000010300000009210000000122080009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000280)={0x24, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="002208000000a20100c3"], 0x0}, 0x0)
syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0xe000)

696.613256ms ago: executing program 2 (id=234):
syz_emit_vhci(&(0x7f00000001c0)=ANY=[@ANYBLOB="040f04"], 0x2)

510.01504ms ago: executing program 4 (id=235):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd)

453.099854ms ago: executing program 2 (id=236):
r0 = syz_open_dev$usbfs(&(0x7f0000000200), 0x76, 0x103901)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "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"})
ioctl$USBDEVFS_ALLOW_SUSPEND(r0, 0x5522)
ioctl$USBDEVFS_SETINTERFACE(r0, 0x80045510, &(0x7f0000000000))

226.758079ms ago: executing program 2 (id=237):
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x100004, 0x10003, 0x3, 0x1, 0x1, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
socket$key(0xf, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)}, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e1c}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$I2C(&(0x7f0000000d80), 0x0, 0x0)
ioctl$I2C_SMBUS(r3, 0x720, &(0x7f0000000580)={0x1, 0x0, 0x0, 0x0})
r4 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000380), 0x109000, 0x0)
ioctl$FBIO_WAITFORVSYNC(r4, 0x40044620, 0x0)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r5, &(0x7f0000000040)={0x28, 0x0, 0x2710, @local}, 0x10)
listen(r5, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="120000000400000004000000a4"], 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000140)={r6, &(0x7f0000000300), &(0x7f00000002c0)=@tcp6}, 0x47)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0xb, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000080000850000001800000085000000a000000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000000, @void, @value}, 0x94)

0s ago: executing program 5 (id=238):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x800000000003)
rseq(&(0x7f0000000400)={0x0, 0x0, 0x0, 0x3}, 0x20, 0x0, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
open_by_handle_at(0xffffffffffffff9c, 0x0, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.33' (ED25519) to the list of known hosts.
[   84.582796][ T5817] cgroup: Unknown subsys name 'net'
[   84.676140][ T5817] cgroup: Unknown subsys name 'cpuset'
[   84.685418][ T5817] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   86.277130][ T5817] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   89.027887][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   89.036225][   T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   89.044341][   T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   89.052690][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   89.060512][   T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   89.116683][   T51] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   89.129180][   T51] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   89.137102][   T51] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   89.145227][   T51] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   89.153451][   T51] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   89.185115][ T5150] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   89.199243][ T5832] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   89.219217][ T5832] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   89.232326][ T5150] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   89.240270][ T5150] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   89.248804][ T5150] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   89.257541][ T5150] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   89.265182][ T5150] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   89.273723][ T5843] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   89.281795][ T5843] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   89.289985][ T5843] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   89.297810][ T5843] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   89.305621][ T5843] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   89.349374][ T5845] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   89.357190][ T5845] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   89.846275][ T5829] chnl_net:caif_netlink_parms(): no params data found
[   89.998097][ T5833] chnl_net:caif_netlink_parms(): no params data found
[   90.157504][ T5835] chnl_net:caif_netlink_parms(): no params data found
[   90.176771][ T5837] chnl_net:caif_netlink_parms(): no params data found
[   90.255967][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.264161][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.272231][ T5829] bridge_slave_0: entered allmulticast mode
[   90.281179][ T5829] bridge_slave_0: entered promiscuous mode
[   90.332384][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.339673][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.346841][ T5829] bridge_slave_1: entered allmulticast mode
[   90.354369][ T5829] bridge_slave_1: entered promiscuous mode
[   90.454835][ T5842] chnl_net:caif_netlink_parms(): no params data found
[   90.466081][ T5833] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.474025][ T5833] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.481348][ T5833] bridge_slave_0: entered allmulticast mode
[   90.488596][ T5833] bridge_slave_0: entered promiscuous mode
[   90.500680][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   90.543660][ T5833] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.551766][ T5833] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.562617][ T5833] bridge_slave_1: entered allmulticast mode
[   90.570116][ T5833] bridge_slave_1: entered promiscuous mode
[   90.581043][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   90.590431][ T5835] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.597552][ T5835] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.605068][ T5835] bridge_slave_0: entered allmulticast mode
[   90.612523][ T5835] bridge_slave_0: entered promiscuous mode
[   90.620847][ T5835] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.627993][ T5835] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.635280][ T5835] bridge_slave_1: entered allmulticast mode
[   90.642846][ T5835] bridge_slave_1: entered promiscuous mode
[   90.784050][ T5837] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.791503][ T5837] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.798654][ T5837] bridge_slave_0: entered allmulticast mode
[   90.806900][ T5837] bridge_slave_0: entered promiscuous mode
[   90.815171][ T5837] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.826524][ T5837] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.833940][ T5837] bridge_slave_1: entered allmulticast mode
[   90.841989][ T5837] bridge_slave_1: entered promiscuous mode
[   90.864256][ T5833] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   90.876838][ T5829] team0: Port device team_slave_0 added
[   90.886562][ T5829] team0: Port device team_slave_1 added
[   90.894984][ T5835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   90.926826][ T5833] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   90.952357][ T5835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   91.060220][ T5837] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.077021][ T5837] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   91.087490][ T5842] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.095235][ T5842] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.102593][ T5842] bridge_slave_0: entered allmulticast mode
[   91.110249][ T5842] bridge_slave_0: entered promiscuous mode
[   91.132383][ T5833] team0: Port device team_slave_0 added
[   91.140162][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0
[   91.147122][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   91.173349][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   91.184687][ T5845] Bluetooth: hci0: command tx timeout
[   91.187107][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1
[   91.197466][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   91.223529][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   91.237855][ T5835] team0: Port device team_slave_0 added
[   91.239036][ T5845] Bluetooth: hci1: command tx timeout
[   91.261614][ T5842] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.268732][ T5842] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.276686][ T5842] bridge_slave_1: entered allmulticast mode
[   91.284016][ T5842] bridge_slave_1: entered promiscuous mode
[   91.307621][ T5833] team0: Port device team_slave_1 added
[   91.337804][ T5835] team0: Port device team_slave_1 added
[   91.389423][ T5845] Bluetooth: hci4: command tx timeout
[   91.389487][   T51] Bluetooth: hci2: command tx timeout
[   91.394965][ T5843] Bluetooth: hci3: command tx timeout
[   91.445208][ T5837] team0: Port device team_slave_0 added
[   91.455396][ T5842] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.467994][ T5842] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   91.495519][ T5829] hsr_slave_0: entered promiscuous mode
[   91.502697][ T5829] hsr_slave_1: entered promiscuous mode
[   91.511341][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_0
[   91.518300][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   91.544957][ T5835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   91.558280][ T5837] team0: Port device team_slave_1 added
[   91.577011][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_0
[   91.584397][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   91.610416][ T5833] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   91.622732][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_1
[   91.630156][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   91.656536][ T5835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   91.707007][ T5833] batman_adv: batadv0: Adding interface: batadv_slave_1
[   91.714160][ T5833] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   91.740592][ T5833] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   91.772736][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_0
[   91.780900][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   91.808008][ T5837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   91.823692][ T5842] team0: Port device team_slave_0 added
[   91.832576][ T5842] team0: Port device team_slave_1 added
[   91.868118][ T5837] batman_adv: batadv0: Adding interface: batadv_slave_1
[   91.875403][ T5837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   91.902816][ T5837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   91.908845][  T978] cfg80211: failed to load regulatory.db
[   92.013645][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_0
[   92.020727][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.047032][ T5842] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   92.097653][ T5837] hsr_slave_0: entered promiscuous mode
[   92.104293][ T5837] hsr_slave_1: entered promiscuous mode
[   92.114070][ T5837] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   92.122200][ T5837] Cannot create hsr debugfs directory
[   92.141764][ T5842] batman_adv: batadv0: Adding interface: batadv_slave_1
[   92.148742][ T5842] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   92.175488][ T5842] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   92.193030][ T5835] hsr_slave_0: entered promiscuous mode
[   92.199983][ T5835] hsr_slave_1: entered promiscuous mode
[   92.206088][ T5835] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   92.213702][ T5835] Cannot create hsr debugfs directory
[   92.263014][ T5833] hsr_slave_0: entered promiscuous mode
[   92.270061][ T5833] hsr_slave_1: entered promiscuous mode
[   92.276231][ T5833] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   92.284411][ T5833] Cannot create hsr debugfs directory
[   92.426965][ T5842] hsr_slave_0: entered promiscuous mode
[   92.433856][ T5842] hsr_slave_1: entered promiscuous mode
[   92.440836][ T5842] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   92.448406][ T5842] Cannot create hsr debugfs directory
[   92.850653][ T5829] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   92.864138][ T5829] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   92.877551][ T5829] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   92.896996][ T5829] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   92.958720][ T5837] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   92.974207][ T5837] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   92.984708][ T5837] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   93.015346][ T5837] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   93.072322][ T5833] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   93.109106][ T5833] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   93.120437][ T5833] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   93.132147][ T5833] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   93.229932][ T5843] Bluetooth: hci0: command tx timeout
[   93.260043][ T5835] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   93.272522][ T5835] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   93.309511][ T5843] Bluetooth: hci1: command tx timeout
[   93.320449][ T5835] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   93.332546][ T5835] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   93.374718][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.447156][ T5842] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   93.460944][ T5842] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   93.473294][ T5843] Bluetooth: hci3: command tx timeout
[   93.478538][ T5842] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   93.478744][ T5845] Bluetooth: hci4: command tx timeout
[   93.485532][   T51] Bluetooth: hci2: command tx timeout
[   93.503813][ T5842] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   93.525596][ T5837] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.553058][ T5829] 8021q: adding VLAN 0 to HW filter on device team0
[   93.596430][ T1148] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.605117][ T1148] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.646175][ T5837] 8021q: adding VLAN 0 to HW filter on device team0
[   93.658256][ T1148] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.665460][ T1148] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.722174][ T1166] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.729373][ T1166] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.755268][ T5833] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.772585][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.779811][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.871477][ T5833] 8021q: adding VLAN 0 to HW filter on device team0
[   93.913646][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.942472][  T967] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.949698][  T967] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.965716][  T967] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.972926][  T967] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.031630][ T5835] 8021q: adding VLAN 0 to HW filter on device team0
[   94.067462][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.074790][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.123508][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.130748][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.281595][ T5842] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.298434][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.344127][ T5842] 8021q: adding VLAN 0 to HW filter on device team0
[   94.443415][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.451077][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.508893][ T1166] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.516071][ T1166] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.655927][ T5829] veth0_vlan: entered promiscuous mode
[   94.701205][ T5829] veth1_vlan: entered promiscuous mode
[   94.712858][ T5837] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.836162][ T5829] veth0_macvtap: entered promiscuous mode
[   94.905097][ T5829] veth1_macvtap: entered promiscuous mode
[   94.924055][ T5837] veth0_vlan: entered promiscuous mode
[   94.942946][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.995843][ T5837] veth1_vlan: entered promiscuous mode
[   95.013012][ T5833] 8021q: adding VLAN 0 to HW filter on device batadv0
[   95.032348][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0
[   95.074706][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1
[   95.123263][ T1166] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.136862][ T1166] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.154434][ T1166] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.168611][ T1166] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.271562][ T5833] veth0_vlan: entered promiscuous mode
[   95.309527][   T51] Bluetooth: hci0: command tx timeout
[   95.325394][ T5842] 8021q: adding VLAN 0 to HW filter on device batadv0
[   95.374905][ T5837] veth0_macvtap: entered promiscuous mode
[   95.388798][ T5837] veth1_macvtap: entered promiscuous mode
[   95.398601][   T51] Bluetooth: hci1: command tx timeout
[   95.444511][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.456956][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.483718][ T5833] veth1_vlan: entered promiscuous mode
[   95.551953][ T5845] Bluetooth: hci3: command tx timeout
[   95.555928][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_0
[   95.557533][   T51] Bluetooth: hci4: command tx timeout
[   95.566013][ T5843] Bluetooth: hci2: command tx timeout
[   95.581155][ T5837] batman_adv: batadv0: Interface activated: batadv_slave_1
[   95.636819][  T967] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.650374][   T36] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.659679][  T967] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.663189][   T36] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.676974][ T5842] veth0_vlan: entered promiscuous mode
[   95.701228][   T36] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.715087][   T36] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.743277][ T5833] veth0_macvtap: entered promiscuous mode
[   95.756307][ T5829] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   95.774841][ T5842] veth1_vlan: entered promiscuous mode
[   95.825046][ T5833] veth1_macvtap: entered promiscuous mode
[   95.882165][ T5835] veth0_vlan: entered promiscuous mode
[   95.928466][ T5944] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   95.951294][ T5835] veth1_vlan: entered promiscuous mode
[   96.008535][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_0
[   96.021146][ T5842] veth0_macvtap: entered promiscuous mode
[   96.041932][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.051607][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.091106][ T5833] batman_adv: batadv0: Interface activated: batadv_slave_1
[   96.102939][ T5842] veth1_macvtap: entered promiscuous mode
[   96.142460][ T1110] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.155696][ T1110] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.188573][  T967] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   96.220995][ T5835] veth0_macvtap: entered promiscuous mode
[   96.252777][ T5835] veth1_macvtap: entered promiscuous mode
[   96.281599][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_0
[   96.300495][  T967] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   96.363212][ T5842] batman_adv: batadv0: Interface activated: batadv_slave_1
[   96.463766][  T967] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   96.473419][  T967] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.493890][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0
[   96.653924][  T967] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   96.683695][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1
[   96.768158][  T967] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   96.807124][  T967] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   96.827986][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   96.857178][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.887548][  T967] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   96.972937][  T967] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   96.997304][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.033256][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.053888][  T967] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.134376][  T967] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.166409][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.184743][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.202271][  T967] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.277987][  T967] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.349497][  T967] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.394419][ T5843] Bluetooth: hci0: command tx timeout
[   97.470477][ T5843] Bluetooth: hci1: command tx timeout
[   97.632111][ T5843] Bluetooth: hci4: command tx timeout
[   97.637616][ T5843] Bluetooth: hci2: command tx timeout
[   97.643111][ T5843] Bluetooth: hci3: command tx timeout
[   97.783295][ T1166] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.822315][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   98.539332][    T0] NOHZ tick-stop error: local softirq work is pending, handler #1c0!!!
[   98.539675][    T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!!
[   98.549218][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   98.641416][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   98.641465][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   98.845691][    T0] NOHZ tick-stop error: local softirq work is pending, handler #180!!!
[   98.846301][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   98.948583][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   98.948773][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   99.391913][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   99.399998][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.636919][ T1166] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.896490][ T5967] usb usb8: usbfs: process 5967 (syz.0.9) did not claim interface 0 before use
[  102.622978][ T5975] loop3: detected capacity change from 0 to 1024
[  102.776804][ T5975] hfsplus: xattr searching failed
[  102.784517][ T5981] loop1: detected capacity change from 0 to 1764
[  102.812095][ T5981] =======================================================
[  102.812095][ T5981] WARNING: The mand mount option has been deprecated and
[  102.812095][ T5981]          and is ignored by this kernel. Remove the mand
[  102.812095][ T5981]          option from the mount to silence this warning.
[  102.812095][ T5981] =======================================================
[  102.873717][ T5982] process 'syz.3.4' launched './file0' with NULL argv: empty string added
[  102.887319][ T5982] hfsplus: xattr searching failed
[  102.895150][ T5982] hfsplus: xattr searching failed
[  103.030733][ T5984] loop4: detected capacity change from 0 to 512
[  103.053407][ T5984] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  103.181712][ T5984] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  103.269143][ T5984] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  103.368986][   T30] audit: type=1800 audit(1750698859.213:2): pid=5984 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.13" name="file1" dev="loop4" ino=15 res=0 errno=0
[  103.407702][ T5991] loop1: detected capacity change from 0 to 1024
[  103.450117][ T5992] loop3: detected capacity change from 0 to 128
[  103.495171][ T5984] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  103.756818][ T5984] EXT4-fs (loop4): Remounting filesystem read-only
[  104.587507][ T5991] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  104.609824][ T5992] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  104.737135][ T5835] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.748094][ T5991] ext4 filesystem being mounted at /3/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  104.819897][ T5992] ext4 filesystem being mounted at /1/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  104.898804][ T6000] loop2: detected capacity change from 0 to 512
[  105.037279][ T6000] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.140781][ T6000] ext4 filesystem being mounted at /4/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.241541][ T6006] syz.1.14 uses obsolete (PF_INET,SOCK_PACKET)
[  105.902654][ T5988] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  105.971324][ T6003] syz.3.15 (pid 6003) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  106.050431][   T30] audit: type=1800 audit(1750698861.903:3): pid=6000 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.11" name="file1" dev="loop2" ino=15 res=0 errno=0
[  106.073947][ T5988] EXT4-fs (loop1): Remounting filesystem read-only
[  106.155516][   T30] audit: type=1800 audit(1750698861.943:4): pid=6000 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.11" name="file2" dev="loop2" ino=16 res=0 errno=0
[  106.381792][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.481021][ T6012] netlink: 'syz.4.16': attribute type 5 has an invalid length.
[  107.221714][ T5833] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  107.248739][   T30] audit: type=1800 audit(1750698863.093:5): pid=6000 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.11" name="file1" dev="loop2" ino=15 res=0 errno=0
[  107.387901][ T5829] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.434443][ T6026] loop1: detected capacity change from 0 to 128
[  108.536145][ T6026] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  108.639789][ T6026] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  108.907383][ T6030] loop3: detected capacity change from 0 to 512
[  108.950439][ T6030] EXT4-fs: Ignoring removed mblk_io_submit option
[  108.988247][   T59] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  109.061797][ T6030] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  109.575814][ T6030] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.685382][ T5822] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  109.691600][ T6030] ext4 filesystem being mounted at /4/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.052480][ T6048] futex_wake_op: syz.1.26 tries to shift op by -1; fix this program
[  110.612766][ T5822] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  110.690240][ T5822] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  110.753257][ T5822] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  110.828010][ T5822] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  110.865339][ T5822] usb 5-1: Manufacturer: syz
[  110.945024][ T5822] usb 5-1: config 0 descriptor??
[  111.003301][ T5822] igorplugusb 5-1:0.0: endpoint incorrect
[  111.927148][ T5822] usb 5-1: USB disconnect, device number 2
[  112.007814][ T5833] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.640955][ T6071] netlink: 'syz.4.30': attribute type 5 has an invalid length.
[  116.281305][ T6094] loop2: detected capacity change from 0 to 2048
[  116.829251][ T6098] netlink: 'syz.1.37': attribute type 11 has an invalid length.
[  116.837404][ T6098] netlink: 36 bytes leftover after parsing attributes in process `syz.1.37'.
[  117.801280][ T6098] loop1: detected capacity change from 0 to 512
[  117.808365][ T6098] ext4: Unexpected value for 'nogrpid'
[  117.955143][ T6100] loop3: detected capacity change from 0 to 16
[  117.969026][ T6094] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  118.120622][ T6100] erofs (device loop3): mounted with root inode @ nid 36.
[  119.716720][ T6112] loop2: detected capacity change from 0 to 2048
[  120.856641][ T6112] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  121.002349][ T6121] loop3: detected capacity change from 0 to 512
[  121.030571][ T6121] ext3: Bad value for 'resgid'
[  121.045661][ T6121] ext3: Bad value for 'resgid'
[  121.509299][ T6125] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  122.404287][ T6132] loop4: detected capacity change from 0 to 128
[  122.426986][ T6132] syz.4.49: attempt to access beyond end of device
[  122.426986][ T6132] loop4: rw=2051, sector=104, nr_sectors = 937 limit=128
[  125.125214][ T6158] futex_wake_op: syz.2.56 tries to shift op by -1; fix this program
[  125.975307][ T6151] loop4: detected capacity change from 0 to 4096
[  130.648425][ T6191] loop0: detected capacity change from 0 to 256
[  132.048329][ T6191] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x19066d23, utbl_chksum : 0xe619d30d)
[  132.418789][ T6198] futex_wake_op: syz.2.70 tries to shift op by -1; fix this program
[  132.480239][ T6191] exFAT-fs (loop0): start_clu is invalid cluster(0x0)
[  132.533748][   T30] audit: type=1800 audit(1750698888.383:6): pid=6191 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.67" name="file0" dev="loop0" ino=1048605 res=0 errno=0
[  132.834231][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  132.852629][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  133.085743][ T6208] loop3: detected capacity change from 0 to 1764
[  136.911911][ T6241] loop4: detected capacity change from 0 to 1024
[  136.978987][  T978] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  137.044862][ T5843] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  137.054044][ T5843] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  137.062263][ T5843] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  137.071613][ T5843] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  137.079440][ T5843] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  137.090908][ T6241] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.104437][ T6241] ext4 filesystem being mounted at /15/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.117963][ T5950] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  137.205137][  T978] usb 3-1: config 220 has an invalid interface number: 76 but max is 2
[  137.407430][ T5950] usb 4-1: Using ep0 maxpacket: 32
[  137.583805][ T5950] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  138.048986][  T978] usb 3-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  138.057911][  T978] usb 3-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  138.076784][  T978] usb 3-1: config 220 has no interface number 2
[  138.083356][  T978] usb 3-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  138.098964][ T5950] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  138.148949][ T5950] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  138.194510][ T5950] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.228975][  T978] usb 3-1: config 220 interface 0 has no altsetting 0
[  138.235824][  T978] usb 3-1: config 220 interface 76 has no altsetting 0
[  138.248957][  T978] usb 3-1: config 220 interface 1 has no altsetting 0
[  138.249014][ T5950] usb 4-1: config 0 descriptor??
[  138.299645][ T5835] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.301964][  T978] usb 3-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  138.363717][ T5950] hub 4-1:0.0: USB hub found
[  138.525595][ T5950] hub 4-1:0.0: 1 port detected
[  138.556827][  T978] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  138.564984][  T978] usb 3-1: Product: syz
[  138.570107][  T978] usb 3-1: Manufacturer: syz
[  138.575385][  T978] usb 3-1: SerialNumber: syz
[  138.621088][ T6252] futex_wake_op: syz.0.84 tries to shift op by -1; fix this program
[  138.759410][ T6254] loop4: detected capacity change from 0 to 256
[  138.825784][ T6254] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x18b10316, utbl_chksum : 0xe619d30d)
[  138.864004][ T6254] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  138.881587][  T978] usb 3-1: selecting invalid altsetting 0
[  138.911118][  T978] usb 3-1: Found UVC 7.01 device syz (8086:0b07)
[  138.917639][  T978] usb 3-1: No valid video chain found.
[  138.939835][  T978] usb 3-1: selecting invalid altsetting 0
[  138.954640][  T978] usbtest 3-1:220.1: probe with driver usbtest failed with error -22
[  138.976465][ T6254] exFAT-fs (loop4): valid_size(150994954) is greater than size(10)
[  138.983470][  T978] usb 3-1: USB disconnect, device number 2
[  138.996312][   T30] audit: type=1800 audit(1750698894.843:7): pid=6254 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.85" name="file1" dev="loop4" ino=1048606 res=0 errno=0
[  139.141221][ T5950] hub 4-1:0.0: activate --> -90
[  139.149559][   T51] Bluetooth: hci5: command tx timeout
[  139.314441][ T1110] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.355224][ T6258] loop0: detected capacity change from 0 to 1024
[  139.660114][ T1110] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  139.802654][ T6245] chnl_net:caif_netlink_parms(): no params data found
[  139.876549][ T6258] hfsplus: inconsistency in B*Tree (1,0,1,0,1)
[  140.080949][ T6258] hfsplus: inconsistency in B*Tree (1,0,1,0,1)
[  140.095513][   T44] usb 4-1: USB disconnect, device number 2
[  140.102665][ T5894] hub 4-1:0.0: hub_ext_port_status failed (err = -71)
[  140.156232][ T5894] usb 4-1-port1: connect-debounce failed
[  140.249611][ T1110] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.265802][ T6265] capability: warning: `syz.2.87' uses 32-bit capabilities (legacy support in use)
[  140.353224][ T1148] hfsplus: b-tree write err: -5, ino 4
[  140.525758][ T1110] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  141.259231][   T51] Bluetooth: hci5: command tx timeout
[  142.218157][ T6278] loop3: detected capacity change from 0 to 512
[  142.269238][ T6278] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  142.303088][ T6278] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  142.391781][ T6245] bridge0: port 1(bridge_slave_0) entered blocking state
[  142.424042][ T6245] bridge0: port 1(bridge_slave_0) entered disabled state
[  142.434149][ T6245] bridge_slave_0: entered allmulticast mode
[  142.476275][ T6278] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal
[  142.519109][ T6245] bridge_slave_0: entered promiscuous mode
[  142.686177][ T6245] bridge0: port 2(bridge_slave_1) entered blocking state
[  142.734019][ T6245] bridge0: port 2(bridge_slave_1) entered disabled state
[  143.414878][ T6245] bridge_slave_1: entered allmulticast mode
[  143.432649][ T6245] bridge_slave_1: entered promiscuous mode
[  143.439606][   T51] Bluetooth: hci5: command tx timeout
[  143.984388][ T6245] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  144.087281][ T6245] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  144.340321][ T6245] team0: Port device team_slave_0 added
[  144.927885][ T6298] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  145.533013][   T51] Bluetooth: hci5: command tx timeout
[  145.585763][ T6245] team0: Port device team_slave_1 added
[  146.429285][ T1110] bridge_slave_1: left allmulticast mode
[  146.435151][ T1110] bridge_slave_1: left promiscuous mode
[  146.520478][ T1110] bridge0: port 2(bridge_slave_1) entered disabled state
[  146.631656][ T1110] bridge_slave_0: left allmulticast mode
[  146.637375][ T1110] bridge_slave_0: left promiscuous mode
[  146.679555][ T1110] bridge0: port 1(bridge_slave_0) entered disabled state
[  148.942461][ T6323] loop4: detected capacity change from 0 to 512
[  148.955977][ T6323] ext3: Bad value for 'resgid'
[  148.989791][ T6325] loop2: detected capacity change from 0 to 1024
[  149.069090][ T6323] ext3: Bad value for 'resgid'
[  149.326413][ T6325] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  152.579916][ T5829] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.865058][ T6350] futex_wake_op: syz.4.105 tries to shift op by -1; fix this program
[  153.390124][ T6354] loop2: detected capacity change from 0 to 2048
[  153.470785][ T6354] EXT4-fs: Ignoring removed mblk_io_submit option
[  153.504513][ T6354] EXT4-fs: Ignoring removed nobh option
[  153.557901][ T6358] loop0: detected capacity change from 0 to 512
[  153.614861][ T6358] ext4: Unexpected value for 'nogrpid'
[  153.658055][ T6354] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  154.334724][ T1110] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  155.488706][ T1110] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  155.794031][ T1110] bond0 (unregistering): Released all slaves
[  155.869941][ T5829] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.367427][ T6245] batman_adv: batadv0: Adding interface: batadv_slave_0
[  157.407546][ T6245] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  157.454764][ T6384] loop2: detected capacity change from 0 to 1024
[  157.544946][ T6245] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  157.595186][ T6245] batman_adv: batadv0: Adding interface: batadv_slave_1
[  157.856611][ T6245] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  157.883256][ T6392] futex_wake_op: syz.4.120 tries to shift op by -1; fix this program
[  157.893004][ T6245] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  159.264065][ T6408] loop4: detected capacity change from 0 to 128
[  159.284029][ T6408] /dev/loop4: Can't open blockdev
[  159.385555][ T6245] hsr_slave_0: entered promiscuous mode
[  159.406734][ T6245] hsr_slave_1: entered promiscuous mode
[  159.424724][ T6245] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  159.446434][ T6400] loop3: detected capacity change from 0 to 32768
[  159.456763][ T6245] Cannot create hsr debugfs directory
[  159.653572][ T6400] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  160.062202][ T1110] hsr_slave_0: left promiscuous mode
[  160.208063][ T1110] hsr_slave_1: left promiscuous mode
[  160.353692][ T1110] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  160.473367][ T1110] batman_adv: batadv0: Removing interface: batadv_slave_0
[  161.143832][ T1110] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  161.151408][ T1110] batman_adv: batadv0: Removing interface: batadv_slave_1
[  161.600408][ T5833] ocfs2: Unmounting device (7,3) on (node local)
[  161.624564][ T1110] veth1_macvtap: left promiscuous mode
[  161.821400][ T1110] veth0_macvtap: left promiscuous mode
[  161.828568][ T1110] veth1_vlan: left promiscuous mode
[  161.843551][ T1110] veth0_vlan: left promiscuous mode
[  161.854720][ T6437] loop2: detected capacity change from 0 to 1764
[  161.933819][ T6444] futex_wake_op: syz.0.135 tries to shift op by -1; fix this program
[  162.340096][ T6447] loop4: detected capacity change from 0 to 256
[  162.350121][ T6447] exfat: Invalid uid '0x00000000ffffffff'
[  162.420759][ T6450] loop3: detected capacity change from 0 to 8
[  162.671512][ T6457] loop2: detected capacity change from 0 to 256
[  162.742847][ T6457] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  162.858595][ T6457] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  165.571933][ T6467] loop0: detected capacity change from 0 to 32768
[  166.069496][ T6467] JBD2: journal reset failed
[  166.117639][ T6467] (syz.0.141,6467,0):ocfs2_journal_load:1167 ERROR: Failed to load journal!
[  166.300724][ T6467] (syz.0.141,6467,1):ocfs2_check_volume:2374 ERROR: ocfs2 journal load failed! -4
[  166.817887][ T6499] futex_wake_op: syz.3.147 tries to shift op by -1; fix this program
[  167.488545][ T1110] team0 (unregistering): Port device team_slave_1 removed
[  167.551046][ T1110] team0 (unregistering): Port device team_slave_0 removed
[  167.599095][ T6505] loop0: detected capacity change from 0 to 8192
[  167.625170][ T6505] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  169.957802][ T6466] warning: `syz.4.140' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  170.317631][ T6530] loop0: detected capacity change from 0 to 2048
[  170.354452][   T30] audit: type=1326 audit(1750698926.203:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6527 comm="syz.4.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f163a78e929 code=0x7ffc0000
[  170.460587][   T30] audit: type=1326 audit(1750698926.233:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6527 comm="syz.4.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f163a72ab19 code=0x7ffc0000
[  170.496050][ T6530] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  170.596866][ T6526] loop3: detected capacity change from 0 to 32768
[  170.728962][   T30] audit: type=1326 audit(1750698926.233:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6527 comm="syz.4.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f163a78e929 code=0x7ffc0000
[  170.765354][   T30] audit: type=1326 audit(1750698926.233:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6527 comm="syz.4.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f163a72ab19 code=0x7ffc0000
[  170.839059][ T6539] futex_wake_op: syz.2.161 tries to shift op by -1; fix this program
[  171.047280][ T6526] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  171.099177][   T30] audit: type=1326 audit(1750698926.233:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6527 comm="syz.4.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f163a78e929 code=0x7ffc0000
[  171.188929][   T30] audit: type=1326 audit(1750698926.233:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6527 comm="syz.4.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f163a72ab19 code=0x7ffc0000
[  171.231818][   T30] audit: type=1326 audit(1750698926.233:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6527 comm="syz.4.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f163a72ab19 code=0x7ffc0000
[  171.234158][   T12] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  171.296111][   T30] audit: type=1326 audit(1750698926.233:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6527 comm="syz.4.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f163a78e929 code=0x7ffc0000
[  171.326460][   T30] audit: type=1326 audit(1750698926.233:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6527 comm="syz.4.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f163a72ab19 code=0x7ffc0000
[  171.367648][   T12] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 84 with error 28
[  171.382584][ T5833] ocfs2: Unmounting device (7,3) on (node local)
[  171.441578][   T12] EXT4-fs (loop0): This should not happen!! Data will be lost
[  171.441578][   T12] 
[  171.480722][   T12] EXT4-fs (loop0): Total free blocks count 0
[  171.486784][   T12] EXT4-fs (loop0): Free/Dirty block details
[  171.603804][   T12] EXT4-fs (loop0): free_blocks=2415919104
[  171.623391][   T30] audit: type=1326 audit(1750698926.243:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6527 comm="syz.4.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f163a72ab19 code=0x7ffc0000
[  171.645866][   T12] EXT4-fs (loop0): dirty_blocks=96
[  171.667589][   T12] EXT4-fs (loop0): Block reservation details
[  171.693533][   T12] EXT4-fs (loop0): i_reserved_data_blocks=6
[  171.731354][ T5837] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.187769][ T6245] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  172.244561][ T6565] loop4: detected capacity change from 0 to 128
[  172.360610][ T6565] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100)
[  172.426816][ T6565] FAT-fs (loop4): Filesystem has been set read-only
[  172.447515][ T6245] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  172.488053][ T6565] syz.4.167: attempt to access beyond end of device
[  172.488053][ T6565] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128
[  172.531643][ T6245] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  172.856065][ T6245] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  173.240151][ T6586] loop2: detected capacity change from 0 to 8
[  173.312107][ T6586] SQUASHFS error: Failed to read block 0x4de: -5
[  173.346939][ T6586] SQUASHFS error: Failed to read block 0x4de: -5
[  173.512774][ T6245] 8021q: adding VLAN 0 to HW filter on device bond0
[  173.573670][ T6245] 8021q: adding VLAN 0 to HW filter on device team0
[  173.589631][ T6590] loop4: detected capacity change from 0 to 1024
[  173.660402][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.667588][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  173.723799][ T6590] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.776225][ T1110] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.776383][ T1110] bridge0: port 2(bridge_slave_1) entered forwarding state
[  174.621048][ T5835] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.863397][ T6608] futex_wake_op: syz.3.175 tries to shift op by -1; fix this program
[  175.026047][ T6614] loop2: detected capacity change from 0 to 1024
[  175.033956][ T6598] loop0: detected capacity change from 0 to 32768
[  175.117349][ T6245] 8021q: adding VLAN 0 to HW filter on device batadv0
[  175.125248][ T6619] loop3: detected capacity change from 0 to 512
[  175.142122][ T6619] ext3: Bad value for 'resgid'
[  175.146968][ T6619] ext3: Bad value for 'resgid'
[  175.161704][ T6614] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.233236][ T6614] ext4 filesystem being mounted at /40/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  176.264778][ T6598] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  176.679191][ T5837] ocfs2: Unmounting device (7,0) on (node local)
[  176.721301][ T5829] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.713304][ T6245] veth0_vlan: entered promiscuous mode
[  178.752987][ T6245] veth1_vlan: entered promiscuous mode
[  179.114685][ T6245] veth0_macvtap: entered promiscuous mode
[  179.289736][ T6245] veth1_macvtap: entered promiscuous mode
[  179.999747][ T6245] batman_adv: batadv0: Interface activated: batadv_slave_0
[  180.022574][ T6245] batman_adv: batadv0: Interface activated: batadv_slave_1
[  180.083344][  T967] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  180.300550][ T6675] netlink: 4 bytes leftover after parsing attributes in process `syz.2.181'.
[  180.960860][ T6675] bridge0: port 1(bridge_slave_0) entered disabled state
[  181.072305][ T6675] bridge_slave_0 (unregistering): left allmulticast mode
[  181.080237][ T6675] bridge_slave_0 (unregistering): left promiscuous mode
[  181.087260][ T6675] bridge0: port 1(bridge_slave_0) entered disabled state
[  181.306156][ T6677] futex_wake_op: syz.3.186 tries to shift op by -1; fix this program
[  181.389922][ T6680] loop4: detected capacity change from 0 to 512
[  181.407763][ T6680] ext3: Bad value for 'resgid'
[  181.459780][ T6680] ext3: Bad value for 'resgid'
[  181.472534][   T13] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  181.537229][   T13] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  181.764969][   T13] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  182.412051][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  182.491340][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  182.629134][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  182.637030][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  184.090600][ T6706] loop3: detected capacity change from 0 to 1024
[  184.150375][ T6706] EXT4-fs: inline encryption not supported
[  184.182131][ T6706] EXT4-fs: Ignoring removed i_version option
[  184.939799][ T6706] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  185.078200][ T6706] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 2: comm syz.3.191: lblock 2 mapped to illegal pblock 2 (length 1)
[  185.198749][ T6706] __quota_error: 28 callbacks suppressed
[  185.198769][ T6706] Quota error (device loop3): qtree_write_dquot: dquota write failed
[  185.344692][ T6706] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 48: comm syz.3.191: lblock 0 mapped to illegal pblock 48 (length 1)
[  185.425567][ T6706] Quota error (device loop3): v2_write_file_info: Can't write info structure
[  185.680105][ T6694] loop4: detected capacity change from 0 to 32768
[  185.688679][ T6706] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.191: Failed to acquire dquot type 0
[  185.849858][ T6706] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  186.155922][ T6706] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.191: mark_inode_dirty error
[  186.294508][ T6706] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  186.347151][ T6706] EXT4-fs (loop3): 1 orphan inode deleted
[  186.412489][ T6706] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  187.059039][ T1166] EXT4-fs error (device loop3): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:8: lblock 1 mapped to illegal pblock 1 (length 1)
[  187.153917][ T1166] Quota error (device loop3): remove_tree: Can't read quota data block 1
[  187.324157][ T6737] futex_wake_op: syz.4.197 tries to shift op by -1; fix this program
[  187.408999][ T1166] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:8: Failed to release dquot type 0
[  187.521470][ T5833] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.565769][ T5833] EXT4-fs error (device loop3): __ext4_get_inode_loc:4792: comm syz-executor: Invalid inode table block 1 in block_group 0
[  187.617664][ T5833] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6255: Corrupt filesystem
[  187.657664][ T5833] EXT4-fs error (device loop3): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error
[  187.680158][ T6747] loop4: detected capacity change from 0 to 1024
[  187.723942][ T6747] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  187.753446][ T6747] ext4 filesystem being mounted at /44/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  189.877589][ T6711] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  190.769427][ T6711] EXT4-fs (loop4): Remounting filesystem read-only
[  190.917933][ T5835] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.092906][ T6768] loop2: detected capacity change from 0 to 256
[  192.922588][ T6788] loop5: detected capacity change from 0 to 512
[  192.929040][ T5930] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  192.943372][ T6788] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  193.082950][ T5930] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  193.142378][ T5930] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  193.160062][ T6788] EXT4-fs (loop5): 1 truncate cleaned up
[  193.167196][ T5930] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  193.176678][ T5930] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  193.184908][ T5930] usb 5-1: Manufacturer: syz
[  193.202167][ T5930] usb 5-1: config 0 descriptor??
[  193.230553][ T5930] igorplugusb 5-1:0.0: endpoint incorrect
[  193.304343][ T6799] futex_wake_op: syz.0.208 tries to shift op by -1; fix this program
[  193.732156][ T6788] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.513725][ T1303] ieee802154 phy0 wpan0: encryption failed: -22
[  194.520758][ T1303] ieee802154 phy1 wpan1: encryption failed: -22
[  194.745453][   T44] usb 5-1: USB disconnect, device number 3
[  194.838487][ T6816] loop4: detected capacity change from 0 to 1024
[  194.849886][ T6816] EXT4-fs: Ignoring removed nobh option
[  194.855783][ T6816] EXT4-fs: Ignoring removed bh option
[  194.861080][ T6245] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.890710][ T6816] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[  195.260894][ T6831] loop0: detected capacity change from 0 to 512
[  195.320787][ T6831] fscrypt (loop0, inode 2): Error -61 getting encryption context
[  195.351005][ T6831] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -61
[  195.385247][ T6831] EXT4-fs error (device loop0): ext4_orphan_get:1393: inode #13: comm syz.0.216: iget: bad i_size value: 12154757448730
[  195.390175][ T6840] syz_tun: entered allmulticast mode
[  196.931709][ T6831] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.216: couldn't read orphan inode 13 (err -117)
[  197.230197][ T6831] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  197.637681][ T6837] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  198.027220][ T6859] futex_wake_op: syz.3.221 tries to shift op by -1; fix this program
[  198.363082][ T5837] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.579341][ T6861] loop3: detected capacity change from 0 to 1024
[  198.606386][ T6866] loop4: detected capacity change from 0 to 1024
[  198.649673][ T6861] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  198.742059][ T6866] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  198.810057][ T6861] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.066279][ T6877] EXT4-fs warning (device loop3): empty_inline_dir:1775: bad inline directory (dir #12) - no `..'
[  199.070100][ T5835] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.330996][ T5833] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.558148][ T6884] loop4: detected capacity change from 0 to 512
[  199.633360][ T1166] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  199.648924][ T6884] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  199.755050][ T6884] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  199.889066][ T6884] EXT4-fs (loop4): 1 truncate cleaned up
[  199.918255][ T6884] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  199.931924][ T1166] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.169892][ T5843] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  201.181177][ T5843] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  201.194711][ T5843] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  201.203333][ T5843] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  201.211936][ T5843] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  201.261811][ T1166] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.541780][ T1166] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.559007][ T5894] usb 4-1: new full-speed USB device number 3 using dummy_hcd
[  201.647337][ T5843] Bluetooth: hci0: Malformed HCI Event
[  201.720918][ T5894] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  201.752684][ T5894] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  201.776982][ T5835] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.803765][ T5894] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  201.862847][ T5894] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  201.919723][ T5894] usb 4-1: config 0 descriptor??
[  202.456761][ T5894] savu 0003:1E7D:2D5A.0001: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.3-1/input0
[  202.532027][ T6925] futex_wake_op: syz.4.235 tries to shift op by -1; fix this program
[  203.239336][    C0] ------------[ cut here ]------------
[  203.245177][    C0] WARNING: net/ipv4/ipmr.c:2302 at ip_mr_output+0xbb1/0xe70, CPU#0: syz.4.235/6921
[  203.255318][    C0] Modules linked in:
[  203.260586][    C0] CPU: 0 UID: 0 PID: 6921 Comm: syz.4.235 Not tainted 6.16.0-rc3-next-20250623-syzkaller #0 PREEMPT(full) 
[  203.272136][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  203.282344][    C0] RIP: 0010:ip_mr_output+0xbb1/0xe70
[  203.288716][    C0] Code: df e9 63 f6 ff ff e8 7e a7 be f7 48 8b 74 24 18 45 31 f6 31 ff ba 02 00 00 00 e8 fa 09 4c ff e9 45 f6 ff ff e8 60 a7 be f7 90 <0f> 0b 90 e9 94 f5 ff ff e8 52 a7 be f7 90 0f 0b 90 42 80 3c 2b 00
[  203.309321][    C0] RSP: 0018:ffffc90000007900 EFLAGS: 00010246
[  203.316219][    C0] RAX: ffffffff8a012580 RBX: ffff88802e8d2c80 RCX: ffff8880245a5a00
[  203.327310][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  203.338317][    C0] RBP: ffffc90000007a10 R08: ffff8880245a5a00 R09: 0000000000000004
[  203.347312][    C0] R10: 0000000000000003 R11: ffffffff8a0119d0 R12: 0000000000000010
[  203.356121][    C0] R13: dffffc0000000000 R14: ffff88803086c700 R15: 0000000000000000
[  203.364563][    C0] FS:  00007f163b6b16c0(0000) GS:ffff888125c25000(0000) knlGS:0000000000000000
[  203.375076][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  203.382462][    C0] CR2: 00002000003bb030 CR3: 000000001beba000 CR4: 00000000003526f0
[  203.390571][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  203.398903][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  203.408070][    C0] Call Trace:
[  203.412054][    C0]  <IRQ>
[  203.414989][    C0]  ? __pfx_dst_output+0x10/0x10
[  203.420054][    C0]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  203.425582][    C0]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  203.425818][ T5843] Bluetooth: hci3: command tx timeout
[  203.431707][    C0]  ? __pfx_ip_mr_output+0x10/0x10
[  203.442292][    C0]  ? skb_dst+0x4f/0xd0
[  203.446394][    C0]  ? dst_output+0x177/0x1c0
[  203.450953][    C0]  igmp_send_report+0x89e/0xdb0
[  203.455840][    C0]  ? __pfx_igmp_send_report+0x10/0x10
[  203.461287][    C0]  ? do_raw_spin_lock+0x121/0x290
[  203.466359][    C0]  ? do_raw_spin_unlock+0x122/0x240
[  203.471614][    C0]  igmp_timer_expire+0x204/0x510
[  203.476580][    C0]  call_timer_fn+0x17b/0x5f0
[  203.481338][    C0]  ? __pfx_igmp_timer_expire+0x10/0x10
[  203.487076][    C0]  ? call_timer_fn+0xbe/0x5f0
[  203.492403][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  203.498400][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  203.503691][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  203.510406][    C0]  ? __pfx_igmp_timer_expire+0x10/0x10
[  203.516416][    C0]  __run_timer_base+0x61a/0x860
[  203.525416][    C0]  ? ktime_get+0x3e/0x1f0
[  203.530872][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  203.536352][    C0]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  203.543753][    C0]  run_timer_softirq+0xb7/0x180
[  203.548701][    C0]  handle_softirqs+0x283/0x870
[  203.558404][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  203.563411][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  203.568886][    C0]  __irq_exit_rcu+0xca/0x1f0
[  203.573532][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  203.580409][    C0]  irq_exit_rcu+0x9/0x30
[  203.585390][    C0]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  203.592116][    C0]  </IRQ>
[  203.595138][    C0]  <TASK>
[  203.598162][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  203.604493][    C0] RIP: 0010:__sanitizer_cov_trace_pc+0x3c/0x70
[  203.612391][    C0] Code: 8b 15 38 e3 df 10 81 e2 00 01 ff 00 74 11 81 fa 00 01 00 00 75 35 83 b9 3c 16 00 00 00 74 2c 8b 91 18 16 00 00 83 fa 02 75 21 <48> 8b 91 20 16 00 00 48 8b 32 48 8d 7e 01 8b 89 1c 16 00 00 48 39
[  203.632860][    C0] RSP: 0018:ffffc9000b217a38 EFLAGS: 00000246
[  203.640448][    C0] RAX: ffffffff894a6833 RBX: 0000000000000000 RCX: ffff8880245a5a00
[  203.648505][    C0] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  203.658382][    C0] RBP: ffffc9000b217c30 R08: 0000000000000005 R09: 0000000000000003
[  203.667402][    C0] R10: ffffc9000b217cf3 R11: fffff52001642fa0 R12: ffffc9000b217ce0
[  203.677397][    C0] R13: dffffc0000000000 R14: 0000000000000002 R15: 1ffff92001642f50
[  203.687400][    C0]  ? ___sys_recvmsg+0x193/0x510
[  203.692405][    C0]  ___sys_recvmsg+0x193/0x510
[  203.698151][    C0]  ? __pfx____sys_recvmsg+0x10/0x10
[  203.703708][    C0]  ? __might_fault+0xb0/0x130
[  203.708455][    C0]  do_recvmmsg+0x307/0x770
[  203.713404][    C0]  ? __pfx_do_recvmmsg+0x10/0x10
[  203.718672][    C0]  ? trace_sched_exit_tp+0x38/0x120
[  203.724149][    C0]  ? __schedule+0x1713/0x4d00
[  203.729501][    C0]  ? schedule+0x165/0x360
[  203.735389][    C0]  __x64_sys_recvmmsg+0x190/0x240
[  203.744389][    C0]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  203.752463][    C0]  ? do_syscall_64+0xbe/0x3b0
[  203.757385][    C0]  do_syscall_64+0xfa/0x3b0
[  203.763446][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.771435][    C0]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  203.778038][    C0]  ? clear_bhb_loop+0x60/0xb0
[  203.783592][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  203.791387][    C0] RIP: 0033:0x7f163a78e929
[  203.796840][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  203.818380][    C0] RSP: 002b:00007f163b6b1038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  203.828371][    C0] RAX: ffffffffffffffda RBX: 00007f163a9b5fa0 RCX: 00007f163a78e929
[  203.837380][    C0] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 0000000000000003
[  203.846377][    C0] RBP: 00007f163a810b39 R08: 0000000000000000 R09: 0000000000000000
[  203.857424][    C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  203.866384][    C0] R13: 0000000000000000 R14: 00007f163a9b5fa0 R15: 00007fffd05530a8
[  203.874539][    C0]  </TASK>
[  203.877638][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  203.884929][    C0] CPU: 0 UID: 0 PID: 6921 Comm: syz.4.235 Not tainted 6.16.0-rc3-next-20250623-syzkaller #0 PREEMPT(full) 
[  203.896311][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  203.906388][    C0] Call Trace:
[  203.909693][    C0]  <IRQ>
[  203.912555][    C0]  dump_stack_lvl+0x99/0x250
[  203.917175][    C0]  ? __asan_memcpy+0x40/0x70
[  203.921786][    C0]  ? __pfx_dump_stack_lvl+0x10/0x10
[  203.927027][    C0]  ? __pfx__printk+0x10/0x10
[  203.931650][    C0]  panic+0x2db/0x790
[  203.935572][    C0]  ? __pfx_panic+0x10/0x10
[  203.940040][    C0]  __warn+0x334/0x4c0
[  203.944056][    C0]  ? ip_mr_output+0xbb1/0xe70
[  203.948757][    C0]  ? ip_mr_output+0xbb1/0xe70
[  203.953448][    C0]  report_bug+0x2be/0x4f0
[  203.957790][    C0]  ? ip_mr_output+0xbb1/0xe70
[  203.962481][    C0]  ? ip_mr_output+0xbb1/0xe70
[  203.967173][    C0]  ? ip_mr_output+0xbb3/0xe70
[  203.971879][    C0]  handle_bug+0x84/0x160
[  203.976148][    C0]  exc_invalid_op+0x1a/0x50
[  203.980678][    C0]  asm_exc_invalid_op+0x1a/0x20
[  203.985542][    C0] RIP: 0010:ip_mr_output+0xbb1/0xe70
[  203.990851][    C0] Code: df e9 63 f6 ff ff e8 7e a7 be f7 48 8b 74 24 18 45 31 f6 31 ff ba 02 00 00 00 e8 fa 09 4c ff e9 45 f6 ff ff e8 60 a7 be f7 90 <0f> 0b 90 e9 94 f5 ff ff e8 52 a7 be f7 90 0f 0b 90 42 80 3c 2b 00
[  204.010489][    C0] RSP: 0018:ffffc90000007900 EFLAGS: 00010246
[  204.016580][    C0] RAX: ffffffff8a012580 RBX: ffff88802e8d2c80 RCX: ffff8880245a5a00
[  204.024569][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  204.032551][    C0] RBP: ffffc90000007a10 R08: ffff8880245a5a00 R09: 0000000000000004
[  204.040533][    C0] R10: 0000000000000003 R11: ffffffff8a0119d0 R12: 0000000000000010
[  204.048516][    C0] R13: dffffc0000000000 R14: ffff88803086c700 R15: 0000000000000000
[  204.056509][    C0]  ? __pfx_ip_mr_output+0x10/0x10
[  204.061559][    C0]  ? ip_mr_output+0xbb0/0xe70
[  204.066261][    C0]  ? __pfx_dst_output+0x10/0x10
[  204.071134][    C0]  ? trace_kmem_cache_alloc+0x1f/0xc0
[  204.076530][    C0]  ? kmem_cache_alloc_node_noprof+0x217/0x3c0
[  204.082628][    C0]  ? __pfx_ip_mr_output+0x10/0x10
[  204.087670][    C0]  ? skb_dst+0x4f/0xd0
[  204.091753][    C0]  ? dst_output+0x177/0x1c0
[  204.096278][    C0]  igmp_send_report+0x89e/0xdb0
[  204.101157][    C0]  ? __pfx_igmp_send_report+0x10/0x10
[  204.106555][    C0]  ? do_raw_spin_lock+0x121/0x290
[  204.111608][    C0]  ? do_raw_spin_unlock+0x122/0x240
[  204.116827][    C0]  igmp_timer_expire+0x204/0x510
[  204.121798][    C0]  call_timer_fn+0x17b/0x5f0
[  204.126410][    C0]  ? __pfx_igmp_timer_expire+0x10/0x10
[  204.131888][    C0]  ? call_timer_fn+0xbe/0x5f0
[  204.136595][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  204.141744][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  204.146978][    C0]  ? lockdep_hardirqs_on+0x9c/0x150
[  204.152217][    C0]  ? __pfx_igmp_timer_expire+0x10/0x10
[  204.157702][    C0]  __run_timer_base+0x61a/0x860
[  204.162572][    C0]  ? ktime_get+0x3e/0x1f0
[  204.166932][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  204.172335][    C0]  ? seqcount_lockdep_reader_access+0x15f/0x1c0
[  204.178612][    C0]  run_timer_softirq+0xb7/0x180
[  204.183479][    C0]  handle_softirqs+0x283/0x870
[  204.188265][    C0]  ? __irq_exit_rcu+0xca/0x1f0
[  204.193064][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  204.198383][    C0]  __irq_exit_rcu+0xca/0x1f0
[  204.202996][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  204.208235][    C0]  irq_exit_rcu+0x9/0x30
[  204.212502][    C0]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  204.218159][    C0]  </IRQ>
[  204.221119][    C0]  <TASK>
[  204.224071][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  204.230074][    C0] RIP: 0010:__sanitizer_cov_trace_pc+0x3c/0x70
[  204.236251][    C0] Code: 8b 15 38 e3 df 10 81 e2 00 01 ff 00 74 11 81 fa 00 01 00 00 75 35 83 b9 3c 16 00 00 00 74 2c 8b 91 18 16 00 00 83 fa 02 75 21 <48> 8b 91 20 16 00 00 48 8b 32 48 8d 7e 01 8b 89 1c 16 00 00 48 39
[  204.255880][    C0] RSP: 0018:ffffc9000b217a38 EFLAGS: 00000246
[  204.261980][    C0] RAX: ffffffff894a6833 RBX: 0000000000000000 RCX: ffff8880245a5a00
[  204.269992][    C0] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[  204.277993][    C0] RBP: ffffc9000b217c30 R08: 0000000000000005 R09: 0000000000000003
[  204.285985][    C0] R10: ffffc9000b217cf3 R11: fffff52001642fa0 R12: ffffc9000b217ce0
[  204.293976][    C0] R13: dffffc0000000000 R14: 0000000000000002 R15: 1ffff92001642f50
[  204.301998][    C0]  ? ___sys_recvmsg+0x193/0x510
[  204.306888][    C0]  ___sys_recvmsg+0x193/0x510
[  204.311611][    C0]  ? __pfx____sys_recvmsg+0x10/0x10
[  204.316871][    C0]  ? __might_fault+0xb0/0x130
[  204.321600][    C0]  do_recvmmsg+0x307/0x770
[  204.326064][    C0]  ? __pfx_do_recvmmsg+0x10/0x10
[  204.331072][    C0]  ? trace_sched_exit_tp+0x38/0x120
[  204.336307][    C0]  ? __schedule+0x1713/0x4d00
[  204.341035][    C0]  ? schedule+0x165/0x360
[  204.345393][    C0]  __x64_sys_recvmmsg+0x190/0x240
[  204.350450][    C0]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  204.356030][    C0]  ? do_syscall_64+0xbe/0x3b0
[  204.360744][    C0]  do_syscall_64+0xfa/0x3b0
[  204.365273][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.371355][    C0]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  204.377005][    C0]  ? clear_bhb_loop+0x60/0xb0
[  204.381713][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  204.387627][    C0] RIP: 0033:0x7f163a78e929
[  204.392060][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  204.411680][    C0] RSP: 002b:00007f163b6b1038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  204.420131][    C0] RAX: ffffffffffffffda RBX: 00007f163a9b5fa0 RCX: 00007f163a78e929
[  204.428141][    C0] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 0000000000000003
[  204.436145][    C0] RBP: 00007f163a810b39 R08: 0000000000000000 R09: 0000000000000000
[  204.444141][    C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  204.452222][    C0] R13: 0000000000000000 R14: 00007f163a9b5fa0 R15: 00007fffd05530a8
[  204.460226][    C0]  </TASK>
[  204.463609][    C0] Kernel Offset: disabled
[  204.467941][    C0] Rebooting in 86400 seconds..