last executing test programs:

4m45.098638729s ago: executing program 3 (id=264):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000340)='kmem_cache_free\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x4204, &(0x7f0000003240)=ANY=[], 0x6, 0x36c, &(0x7f0000001340)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x105042, 0x40)
mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x100000b, 0x13, r1, 0x0)
r2 = socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0)

4m44.328098762s ago: executing program 3 (id=268):
io_setup(0x8, &(0x7f0000004200)=<r0=>0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
io_pgetevents(r0, 0x3, 0x3, &(0x7f0000000440)=[{}, {}, {}], &(0x7f00000004c0)={0x0, 0x3938700}, 0x0)

4m43.1409793s ago: executing program 3 (id=272):
connect$netlink(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000004580)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000008000000850000009500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sys_enter\x00', r1}, 0x10)
mount_setattr(0xffffffffffffff9c, 0x0, 0x8900, 0x0, 0x0)

4m41.469041476s ago: executing program 3 (id=279):
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000100)='./bus\x00', 0xe, &(0x7f0000000140)={[{@i_version}, {@errors_remount}]}, 0x3, 0x445, &(0x7f0000000b00)="$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")
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x5, 0x0, "ef359f413bb901527f00d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a01000000000000004faa2ad9c084a003ea0000000000000000000800002000", "036c47c67808f4c1000000000000007ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x2]})
io_submit(0x0, 0x0, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x0)

4m39.851757182s ago: executing program 3 (id=288):
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
close(r0)
eventfd(0x7)
r1 = socket$tipc(0x1e, 0x2, 0x0)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000940)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno', @ANYRESHEX=r1])

4m37.980061882s ago: executing program 3 (id=299):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x1c, 0x0, 0x7d243a6ea807936d, 0x12, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x48891}, 0x880)

4m37.237723144s ago: executing program 32 (id=299):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_WPAN_PHY(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x1c, 0x0, 0x7d243a6ea807936d, 0x12, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_PHY={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x48891}, 0x880)

1m38.892643782s ago: executing program 2 (id=947):
r0 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e24, 0x8, @remote, 0x3}, 0x1c)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$SO_TIMESTAMP(r1, 0x1, 0x40, 0x0, &(0x7f0000000040))
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYRES8=r0], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2, 0x0, 0x2}, 0x18)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r3, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e0", 0xb8)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_buf(r4, 0x0, 0x8008000000010, &(0x7f00000003c0)="17000000020001000003d68c5ee17688a2003208030300ecff3f0000000300000a0000000098fc5ad9485bbb6a880000d6c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c", 0xad)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x13, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001240)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)

1m37.698969651s ago: executing program 2 (id=954):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f00000010c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000a00)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e461725b5e437323385b88c368f8bb5b933aa", 0x7d}], 0x1}}], 0x1, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

1m35.22604698s ago: executing program 2 (id=957):
bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
unshare(0x8000000)
semget$private(0x0, 0x4000, 0x555)
semtimedop(0x0, &(0x7f0000000440)=[{0x0, 0x0, 0x1000}], 0xf, 0x0)
unshare(0x2c040000)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000100)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf090000000000005509010000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', 0xffffffffffffffff, 0x0, 0x4}, 0x18)
bind$inet(0xffffffffffffffff, &(0x7f00008a5ff0)={0x2, 0x0, @loopback}, 0x10)

1m34.744930538s ago: executing program 2 (id=961):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x5, 0x4, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000000000007111ae00000000008510000002000000850000000500000095000000000000009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)

1m34.215714366s ago: executing program 2 (id=964):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005c40)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xf0}, 0x0)

1m33.745270024s ago: executing program 2 (id=967):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00'}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
getgroups(0x6, &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0])
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="38000000031401002abd700096dbdf250900020073797a3000000000080041007278650014003300626f6e643000"/56], 0x85}, 0x1, 0x0, 0x0, 0x4000840}, 0x24004000)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
recvmmsg(r4, &(0x7f0000000f00), 0x274, 0x10000, &(0x7f0000001000)={0x77359400})

1m18.613438814s ago: executing program 33 (id=967):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00'}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
getgroups(0x6, &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0])
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="38000000031401002abd700096dbdf250900020073797a3000000000080041007278650014003300626f6e643000"/56], 0x85}, 0x1, 0x0, 0x0, 0x4000840}, 0x24004000)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
recvmmsg(r4, &(0x7f0000000f00), 0x274, 0x10000, &(0x7f0000001000)={0x77359400})

20.028567623s ago: executing program 4 (id=1183):
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/igmp6\x00')
preadv(r0, &(0x7f0000000180)=[{&(0x7f0000001480)=""/4108, 0x100c}, {0x0}], 0x2, 0x3ab3, 0x0)

19.292549124s ago: executing program 1 (id=1187):
socket$inet_sctp(0x2, 0x5, 0x84)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000680)='ext2\x00', &(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x18400, &(0x7f0000000640)={[{@usrjquota}]}, 0x5, 0x261, &(0x7f00000006c0)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r0}, 0x18)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
clock_nanosleep(0x9, 0x0, &(0x7f0000000080)={0x0, 0x3938700}, 0x0)
utime(0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = io_uring_setup(0x6282, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x1, 0x0, 0x0, 0x2)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x1c}}, 0x0)

19.102915638s ago: executing program 4 (id=1188):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f00000008c0)=ANY=[@ANYRESHEX=r0, @ANYRES32=r0, @ANYBLOB="0000000002000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095", @ANYRES8=r0, @ANYBLOB="6c137f815ceb0ec4a9bdc54e5d2a26df9f2b9f8e4df27b394277773a627a2a934815c647e8209ddce49e44463e839bf7a099ef19b7d4dbe009fdd20b73c744e3989dbe70a15afb9cbed075ea9ab9c05671d53bc4ac8abb14ac214c3b89e1f9874771d128a2894cd77c560ba8b508ff5203ceb289233a5834c06079ab7fd484298d20998bb3dfbf30cf298ea68c0de4bea203560a0d5327190d39444c44278e14bf3f2ef572732b54c0ccd440d9", @ANYRES64=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000500)={'syzkaller0\x00', 0x7101})
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000001ec0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x18)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWSET={0x14, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}}, @NFT_MSG_NEWSETELEM={0x14, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x50}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0x16, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000010000711231000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r6 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/rt_acct\x00')
r7 = socket(0x18, 0x3, 0x0)
connect$pppoe(r7, &(0x7f0000000100)={0x18, 0x0, {0x2, @broadcast, 'vxcan1\x00'}}, 0x1e)
sendfile(r7, r6, 0x0, 0x8)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
close(r8)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r9 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
r11 = socket$netlink(0x10, 0x3, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(r11, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {0xb, 0xd}, {}, {0x8, 0xfff1}}}, 0x24}}, 0x40004)

15.045358591s ago: executing program 1 (id=1195):
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000300)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000"], 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
timer_create(0x0, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000180))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='sched_switch\x00'}, 0x18)
add_key$user(0x0, 0x0, 0x0, 0x0, 0x0)
ioctl(0xffffffffffffffff, 0x8b27, 0x0)
sendto$inet6(r0, 0x0, 0x1e, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x28, 0x0, 0x2, 0x401, 0x0, 0x0, {0xa}, [@CTA_EXPECT_MASTER={0x4}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x2}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x44080}, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
syz_clone(0xc901400, &(0x7f0000000200)="85baf525fdf40e5148318bf97110b0be50cf4e849dc428860114f2762cdc5e1d5af59ae934badfe09d7097fa8f0345bf25823a80eb5c24041049217b46e9ef793d8925650625f998776bf7869294cd1ad87b0c6ce400553db804fb0e7d73df3ba862c6689dba8c9c6951624dbfa97766fac3a7bd70c0a78b5857", 0x7a, 0x0, &(0x7f00000002c0), &(0x7f0000000340)="55f172239046b7241fc2d9c1057c240815f73e330ed5e9732e0004214424394da61e29c878edb54d0e18cb82987308ac1ddcad39fee2f6f5c5b370fa408e9e24ec1a624fe5bb644958e79d966b1060f229e1")
shutdown(r0, 0x1)
pipe2$9p(&(0x7f0000000040), 0x80080)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

14.901749904s ago: executing program 6 (id=1196):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200010, &(0x7f0000000300)={[{@user_xattr}, {@nombcache}, {@dioread_lock}, {@norecovery}, {@barrier_val={'barrier', 0x3d, 0x4c}}, {@lazytime}, {@init_itable_val={'init_itable', 0x3d, 0x5}}, {@usrquota}, {@errors_continue}]}, 0xfe, 0x55d, &(0x7f0000000980)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000015000000181100", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r2}, &(0x7f0000001c00), &(0x7f0000001c40)=r3}, 0x20)
timer_settime(0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
unlinkat(0xffffffffffffffff, 0x0, 0x200)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSARP(r4, 0x8955, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'lo\x00'})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x11, 0x7c}, [@ldst={0x6, 0x3}], {0x95, 0x0, 0xc00}}, &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x3c)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r5, 0x5, &(0x7f0000000080)={0x0, 0x2, 0x87fd, 0xfffffffffffffff6})
r6 = socket(0x10, 0x3, 0x0)
write(r6, &(0x7f0000000000)="fc0000001a000700ab092500090007000aab0700a90100001d60369321000100ff0500000005d0000000000000039815fa2c1ec28656aaa79bb94b46fe000000bc0003000500000014000027000089fee1434f1e596534d07302ade0bbc91a3e3280772c05defd5a32e280fc83ab82f605f70c9ddef2fe082038f4f8b29d3ef3d92c83170e5bba4a46d284a710af333ae4f5566f91cf190201800015b2ccd243f295ed94e0ad91bd0734babc7c3f2eeb00d43dd16b17e583df150c3b880f411f46a6b567b4d5715587e658a1ad0a4f01731d05b0350b0041f0d48a99c03f080548deac270e33429fd3000175e63fb8d38a8700"/252, 0xfc)

13.659757934s ago: executing program 6 (id=1198):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000800000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
creat(&(0x7f0000000200)='./file0\x00', 0x20)
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x20c006, &(0x7f0000000480)={[{@grpjquota}, {@mblk_io_submit}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@discard}, {@grpquota}], [{@seclabel}]}, 0x1, 0x446, &(0x7f0000000500)="$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")

13.129551602s ago: executing program 6 (id=1199):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005c40)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000000)=@newtaction={0x68, 0x30, 0x9, 0x1000000, 0x0, {}, [{0x54, 0x1, [@m_bpf={0x50, 0x1, 0x0, 0x0, {{0x8}, {0x28, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x4}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x0, 0x0, 0x0, 0x7c}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0xf0}, 0x0)

13.129280202s ago: executing program 5 (id=1200):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001300a7cc4a372eaf541d002007000000", @ANYRES32=r1, @ANYBLOB="00000000100000001c001a80180002"], 0x44}}, 0x0)

11.754287174s ago: executing program 1 (id=1201):
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f00000002c0)='./file0\x00', 0x500082c)
setxattr$incfs_metadata(&(0x7f0000000340)='./file0\x00', &(0x7f0000000180), 0x0, 0x0, 0x0)
removexattr(&(0x7f0000000040)='./file0\x00', 0x0)

11.568529377s ago: executing program 1 (id=1202):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
r1 = syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f0000000280)='./file0\x00', 0x14806, &(0x7f0000000b00)=ANY=[], 0x0, 0x6fe, &(0x7f0000001340)="$eJzs3V2P21gZB/D/STJJJoWqAlStqm7ndMpKUzGkTmabKipIGOckY0jiyPbAjIS0KnRmNWqmQFskmpt2bniRli/A3d5wwYdYiQuu9lvAFUgrEBJiBUJGPrbzMnEyk07abtn/bwRx7MfnPD72+tQz9jGIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIiIgIwmoYRkWgbXd3duVsVsN1OsmXLKaWR6Wt4GY0cXNenSthvYAI/4diEW9Fs9/6yijkcvh/67gafbuKYvhRxODC5Ut3v5zLJOvPSfhFYNECHz8dPLjX7+8/OkNsFgsX/zohc4agluranmN3zJaStufIeq1m3NpuerJpt5W35/mqIy1XZXzHlRvWTVmp17ekKu85O91Ww2yrZOadr1cNoya/U4h2NICyZ23b7bbdbemYcHEYc0d+8IMoQJkdKQ8O+/tbY/k8S2vjMKiSknxmPDgMqp62uVWjWq1UqtVK7Xb99h3DyE3NMELCGMJUxNIPWnrDLPcETnQOGavxH+NPAmijiC52sAuZ+mOhARcOOjOWx5L+/51bam694/1/0suvjBZfge7/r0Xfrs3q/2fkIiH1CmlLxIz5i/2s6IwkHuMpBniAe+ijj308WkLZEnLt3CXkjbgll5LPzJ8WFLqw4cGBjQ5MtPBFyHiORB011GDgPWyjCQ8STdhoQ8HDHjz4UOERlQ8zVTDhw4ELiQ1YuAmJCuqoYwsSCmXswcEOumihARP/CoLgAIe63bfifJ6nbDWSoMqMjSgglxx3+6jO2dpZ/f8Pn0Vrx/2/wf7/8yo6DgrRx8fzYog+A4L4+n9Bay8nGyIiIiIiIiJ6GYT+7bvQf5V/G0CApt1WxkRM4bVlR0RERERERETLIBAUcBUiuisfb0NMX/8TERERERER0ZtN6GfsBICSvqlfjB6XOssvAbKvIEUiIiIiIiIiOif95P+1PBDou/zXIBa6/iciIiIiIiKiN8CvxsbYz2XjMXaD5M/6GQBrfy6Ij/5WgLsijnu7XxVHZrjEPIpjpu4A8JtXxMV4oF79kQegv1nqqohrk8A/k98+hD45SB/r/3kQEUK4JxLIZ8cLmJGACGuu5eJv+ADXo1Wux+PM3x9koJdEIwqXmnZblS2nfbcC07yY8dWu/7OHhz8H3OF2Hhz298s/+nH/vs7lOJx1fBQW+mwinUx6Y4xyeaLHW9DPXKSNbryKZlLlr7udktD1Gsn2Z2EeZcYrmrcDaqtAtJW/wHq0z9aDKLY0GI64L4A1PfhDpax32cTWuytilEXl5Jan7YgZW17UWdyIYm5s3Ig+kjYJy8mI4teyQLU8vQ8msqiOZ3F6W4i/n2j/+VlAFMO22Aqz+ENY0Iksvv9RtPJWbzcZHuMsWUwdBUREr8vBqBfSg5hPjbGfdA/JSe3s/Q5yQHyWm9G7j2oJ4v4j6d2f/DaIeqgskIv/NpFeS9KvIDyjbwhdTj4a0D13JeWMbpQ/DYLAvFjE+Bn9v/G/M4Z97Nl6t+MgCE6e0X8/egdSnPZUFv8OguBuRfckvznRq34YrvDhzHq9djUbNuGtJ0c/0QPgh97ff3//YbW6VTPeNYzbVazofyrEH1mw7yEioimnv2NHR2TmRIh3cT0q4/r9v74TTU30eF+KbynQbgF93Mdm8gqBtfRSSzjAN/8R3YawGV21Auul6LM0kJcv3Q2vaoexhyKn3/CyOfOqTvelUay+vaE6jE3eO3TyCnAUu/WS9wIREdGrtT6jHwYm+n9M9v/Fif5/ExtRxMaV1Ovu0tgthZvJ1fHwkn5w4Tg1tnJ68t9acmMQERF9Tij3E1Hyfylc1+69V6nXK6a/raTrWN+Vrt1oKWl3feVa22a3pWTPdXzHctqy56JgrypPeju9nuP6sum4sud49q5+87uMX/3uqY7Z9W3L67WV6SlpOV3ftHzZsD1L9na+3ba9beXqlb2esuymbZm+7XSl5+y4lipL6Sk1Fmg3VNe3m3Y42ZU91+6Y7p78ntPe6SjZUJ7l2j3fiQpM6rK7Tcft6GLLCBZ+0SEREdH/o8dPBw/u9fv7j05OrIaX5tGcY8yImZ7IpxTIMYKIiIg+Y0bd9QIrFV9iQkRERERERERERERERERERERERERERERENOX0R/oWnFhJe1gQGM756cV4Dp5j9IjhVDkC583nU/ePemC/F1k9s2ilySMRgwcfzwleHc5Jmn885niRSnEJeOH2+csXgAt6DqI5uSUeANPPjy79GEub+MZB1KKzYvTC1EWF4b7ILf8/h3Di4e+mF4mw5YMgCOavXphsw/zZj+ccgEf5c+yCV30mIqJX7X8BAAD//6KXQek=")
futimesat(r1, &(0x7f0000000000)='./file1\x00', 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r2, 0x0, 0x0, 0x1001f0)
r3 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r5}, 0x10)
sendmsg$nl_route_sched(r3, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000cc0)=@newqdisc={0x4c, 0x24, 0xd0f, 0x3, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0x2}, {0xffff, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x10, 0x3, 0x1, 0x3, 0x400, 0x8}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40001d4}, 0x8840)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r7}, 0x10)
r8 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r8}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x200000005c832, 0xffffffffffffffff, 0x0)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b0000000500000001"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB, @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000feffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000200)='kmem_cache_free\x00', r10}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
kcmp(0x0, 0x0, 0x5, 0xffffffffffffffff, 0xffffffffffffffff)
sendmsg$nl_route(r6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="54000000ffff0000000000000000000003000000b8f3c0eaf54bd90c6b1604b224c391b4fd4a8390b0e33664c0de40c02fd399566a1c8cf3c4d1", @ANYRES32=0x0, @ANYBLOB="08d10000000000002000128009000100766c616e00000000100002800c000200020000000c0000001400030076"], 0x54}}, 0x0)

11.419921739s ago: executing program 4 (id=1203):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x5, 0x4, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="05000000000000007111ae00000000008510000002000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

11.36880815s ago: executing program 6 (id=1205):
socket$inet_sctp(0x2, 0x5, 0x84)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000680)='ext2\x00', &(0x7f0000000100)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x18400, &(0x7f0000000640)={[{@usrjquota}]}, 0x5, 0x261, &(0x7f00000006c0)="$eJzs3T+IHFUcB/DvzO4mudwiURtB/AMiogdH7ASb2CgEJAQRQYWIiI2SCDHBLmtlY6G1SiqbIHZGS0kTbBTBKmqKsxH0sPCwUGFld25l3dvDu9vNznHz+cDcvZl5b34z3HzfLQuzG6CxjiU5kaSVZCVJJ0kx3uH+ajm2uXp56fqZpN9/5rdi2K9ar4zGLSfpJXksybWyyGvt5OLVF9b+uPHUQ+9e6Dz48dXnlxZ6kZvW124+vfHRqXc+O/noxW++++VUkRPp/ue65q+Ysq1dJHfcimL7RNGu+wzYidNvffr9IPd3JnlgmP9OylR/vPfOH7rWySMfbjf2/V+/vXuR5wrMX7/fGfwP7PWBximTdFOUq0mqdlmurlav4X9oHS1fP3f+zZVXz104+0rdMxUwL93k5pNfHP58eSL/P7eq/AMHQGv65kH+nz195cdBe2ObPsD+tus30u+pfg3yv/LSpYcj/9A48g/NJf/QXPIPDTKRcfmH5pJ/aC75hwOsM2r0pu6Wf2gu+Yfm2ln+lw8t9KSAhRjPPwDQLP3DdT+BDNSl7vkHAAAAAAAAAAAAAAAAAADY6vLS9TOjZVE1v/ogWX8iSXta/dbw+4iTI8OfR38vBt3+VVTDZvLifTMeYEaf1Pz09W0/1Vv/63vrrX/pbNJ7O8nxdnvr/Vds3n97d/v/7O+8PGOBXSom1h9/bi6H/XuvA/+6Mpf6u3Vk1Dh5I/lyMP8cnzb/lLlrrPvk/NMd/4jlPXrjzxkPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwML8EwAA//+Gom7w")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r0}, 0x18)
fcntl$setlease(0xffffffffffffffff, 0x400, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
clock_nanosleep(0x9, 0x0, &(0x7f0000000080)={0x0, 0x3938700}, 0x0)
utime(0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = io_uring_setup(0x6282, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x1, 0x0, 0x0, 0x2)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x1c}}, 0x0)

11.269299742s ago: executing program 5 (id=1206):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000004580)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000009500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sys_enter\x00', r2}, 0x10)
mount_setattr(0xffffffffffffff9c, 0x0, 0x8900, 0x0, 0x0)

10.662256071s ago: executing program 4 (id=1207):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x40, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0x0, 0xe}, {}, {0x7}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_FLAGS={0x8, 0x3, 0x2}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x0)

10.661853521s ago: executing program 0 (id=1208):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200010, &(0x7f0000000300)={[{@user_xattr}, {@nombcache}, {@dioread_lock}, {@norecovery}, {@barrier_val={'barrier', 0x3d, 0x4c}}, {@lazytime}, {@init_itable_val={'init_itable', 0x3d, 0x5}}, {@usrquota}, {@errors_continue}]}, 0xfe, 0x55d, &(0x7f0000000980)="$eJzs3d9rW1UcAPDvTX/sp66DMdQHKezByVy6tv6Y4MN8FB0O9H2G9q6Mpsto0rHWgduDe9mLDEHEgfgH+O7j8B/wrxjoYMgo+uBL5aY3XbYmbZZlSzSfD9ztnPuj55yce07OyUm4AQytyeyfQsSrEfFNEnGo6dho5AcnN89bf3htLtuS2Nj47M8kknxf4/wk//9AHnklIn79OuJEYXu61dW1xVK5nC7n8ana0uWp6urayYtLpYV0Ib00Mzt7+p3Zmfffe7dnZX3z3N/ff3r3o9O3jq1/9/P9w7eTOBMH82PN5XgG15sjkzGZvyZjceaJE6d7kNggSfqdAboykrfzscj6gEMxkrd64P/vq4jYAIZUov3DkGqMAxpz+x7Ng/8zHny4OQHaXv7Rzc9GYm99brR/PXlsZpTNdyd6kH6Wxi9/3LmdbdG7zyEAdnX9RkScGh3d3v8lef/XvVMdnPNkGvo/eHHuZuOft1qNfwpb459oMf450KLtdmP39l+43+KypFefUmfjvw9ajn+3Fq0mRvLYS/Ux31hy4WI5zfq2lyPieIztyeI7reecXr+30e5Y8/gv27L0G2PBPB/3R/c8fs18qVZ6ljI3e3Aj4rWW499kq/6TFvWfvR7nOkzjaHrn9XbHdi//87XxU8QbLev/0YpWsvP65FT9fphq3BXb/XXz6G/t0u93+bP6379z+SeS5vXa6tOn8ePef9J2x7q9/8eTz+vh8Xzf1VKttjwdMZ58sn3/zKNrG/HG+Vn5jx/buf9rdf/vi4gvOiz/zSM32546CPU//1T1//SBex9/+UO79Dur/7froeP5nk76v04z+CyvHQAAAAAAAAyaQkQcjKRQ3AoXCsXi5vc7jsT+QrlSrZ24UFm5NB/138pOxFihsdJ9qOn7ENP592Eb8Zkn4rMRcTgivh3ZV48X5yrl+X4XHgAAAAAAAAAAAAAAAAAAAAbEgTa//8/8PtLykvEXm0PgufLIbxheu7b/XjzpCRhI3v9heHXV/vf1Ph/Ai+f9H4bUWL8zAPST938YXto/DC/tH4aX9g8AAAAAAAAAAAAAAAAAAAAAAAAAAAA9de7s2WzbWH94bS6Lz19ZXVmsXDk5n1YXi0src8W5yvLl4kKlslBOi3OVpd3+XrlSuTw9EytXp2pptTZVXV07v1RZuVQ7f3GptJCeTz1tCAAAAAAAAAAAAAAAAAAAALarrq4tlsrldFlAoKvA6GBkQ6ApcKsHrbvPHRMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANPk3AAD//0unNek=")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r2}, &(0x7f0000001c00), &(0x7f0000001c40)=r3}, 0x20)
timer_settime(0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
unlinkat(0xffffffffffffffff, 0x0, 0x200)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSARP(r4, 0x8955, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'lo\x00'})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x11, 0x7c}, [@ldst={0x6, 0x3}], {0x95, 0x0, 0xc00}}, &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x3c)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r5, 0x5, &(0x7f0000000080)={0x0, 0x2, 0x87fd, 0xfffffffffffffff6})
r6 = socket(0x10, 0x3, 0x0)
write(r6, &(0x7f0000000000)="fc0000001a000700ab092500090007000aab0700a90100001d60369321000100ff0500000005d0000000000000039815fa2c1ec28656aaa79bb94b46fe000000bc0003000500000014000027000089fee1434f1e596534d07302ade0bbc91a3e3280772c05defd5a32e280fc83ab82f605f70c9ddef2fe082038f4f8b29d3ef3d92c83170e5bba4a46d284a710af333ae4f5566f91cf190201800015b2ccd243f295ed94e0ad91bd0734babc7c3f2eeb00d43dd16b17e583df150c3b880f411f46a6b567b4d5715587e658a1ad0a4f01731d05b0350b0041f0d48a99c03f080548deac270e33429fd3000175e63fb8d38a8700"/252, 0xfc)

10.497338124s ago: executing program 5 (id=1209):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x4000000000000, 0x40, &(0x7f0000000080)=@raw={'raw\x00', 0x2, 0x3, 0x260, 0xc8, 0x0, 0x0, 0xc8, 0x108, 0x1c8, 0x1c8, 0x1c8, 0x1c8, 0x1c8, 0x3, 0x0, {[{{@ip={@rand_addr, @dev, 0x0, 0x0, '\x00', 'veth0\x00', {0xff}, {}, 0x21}, 0x0, 0xa0, 0xc8, 0x0, {}, [@common=@inet=@dccp={{0x30}, {[], [], 0x0, 0x1}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff, 0x5, 0x6}, {0x0, 0x5, 0x1}}}}, {{@uncond, 0x0, 0x98, 0x100, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x19, 0x3, 0x2, 0x3c98, '\x00', 'syz1\x00', {0x2}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x2c0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000001c0)='sched_kthread_work_queue_work\x00', r1}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r4 = socket$kcm(0x29, 0x2, 0x0)
sendmmsg$inet(r4, &(0x7f0000000580)=[{{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000440)='{', 0xfd4c}], 0x1}}, {{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000480)="d9", 0x1}], 0x1}}], 0x2, 0x0)
socketpair(0x1d, 0x2, 0x2, &(0x7f0000000300)={0x0, 0x0})

9.423906951s ago: executing program 5 (id=1210):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
fchmodat(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x4)

9.210967674s ago: executing program 4 (id=1211):
syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000300)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000"], 0x0)
bpf$MAP_UPDATE_CONST_STR(0x2, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
timer_create(0x0, &(0x7f0000000100)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000180))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='sched_switch\x00'}, 0x18)
add_key$user(0x0, 0x0, 0x0, 0x0, 0x0)
ioctl(0xffffffffffffffff, 0x8b27, 0x0)
sendto$inet6(r0, 0x0, 0x1e, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x28, 0x0, 0x2, 0x401, 0x0, 0x0, {0xa}, [@CTA_EXPECT_MASTER={0x4}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x2}, @CTA_EXPECT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x2}]}, 0x28}, 0x1, 0x0, 0x0, 0x44080}, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x1, 0x0, 0x0)
syz_clone(0xc901400, &(0x7f0000000200)="85baf525fdf40e5148318bf97110b0be50cf4e849dc428860114f2762cdc5e1d5af59ae934badfe09d7097fa8f0345bf25823a80eb5c24041049217b46e9ef793d8925650625f998776bf7869294cd1ad87b0c6ce400553db804fb0e7d73df3ba862c6689dba8c9c6951624dbfa97766fac3a7bd70c0a78b5857", 0x7a, 0x0, &(0x7f00000002c0), &(0x7f0000000340)="55f172239046b7241fc2d9c1057c240815f73e330ed5e9732e0004214424394da61e29c878edb54d0e18cb82987308ac1ddcad39fee2f6f5c5b370fa408e9e24ec1a624fe5bb644958e79d966b1060f229e1")
shutdown(r0, 0x1)
pipe2$9p(&(0x7f0000000040), 0x80080)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x7, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

8.913485839s ago: executing program 5 (id=1212):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000020000000000000000085000000ae00000095"], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x41, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x1000}, 0x18)
r1 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000040)={0x0, <r2=>0x0}, &(0x7f00000000c0)=0xc)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x28, 0x18, 0x1, 0x0, 0x0, {0x2}, [@typed={0x8, 0x800, 0x0, 0x0, @u32=0x4}, @nested={0xc, 0x8, 0x0, 0x1, [@typed={0x8, 0xc, 0x0, 0x0, @uid=r2}]}]}, 0x28}}, 0x0)

8.570088284s ago: executing program 0 (id=1213):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$qrtr(0x2a, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
socket$rxrpc(0x21, 0x2, 0xa)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4000, @fd=r0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x1}})
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r5}, &(0x7f0000000240), &(0x7f00000003c0)=r7}, 0x20)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r6, r3, 0x25, 0x2, @void}, 0x10)
syz_emit_ethernet(0x15, &(0x7f0000000300)=ANY=[], 0x0)

8.406442107s ago: executing program 5 (id=1214):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f00000008c0)=ANY=[@ANYRESHEX=r0, @ANYRES32=r0, @ANYBLOB="0000000002000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095", @ANYRES8=r0, @ANYBLOB="6c137f815ceb0ec4a9bdc54e5d2a26df9f2b9f8e4df27b394277773a627a2a934815c647e8209ddce49e44463e839bf7a099ef19b7d4dbe009fdd20b73c744e3989dbe70a15afb9cbed075ea9ab9c05671d53bc4ac8abb14ac214c3b89e1f9874771d128a2894cd77c560ba8b508ff5203ceb289233a5834c06079ab7fd484298d20998bb3dfbf30cf298ea68c0de4bea203560a0d5327190d39444c44278e14bf3f2ef572732b54c0ccd440d9", @ANYRES64=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000500)={'syzkaller0\x00', 0x7101})
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000001ec0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x2, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x18)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWSET={0x14, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}}, @NFT_MSG_NEWSETELEM={0x14, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x50}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000180)={0x16, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000010000711231000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
r6 = syz_open_procfs(0x0, &(0x7f00000004c0)='net/rt_acct\x00')
r7 = socket(0x18, 0x3, 0x0)
connect$pppoe(r7, &(0x7f0000000100)={0x18, 0x0, {0x2, @broadcast, 'vxcan1\x00'}}, 0x1e)
sendfile(r7, r6, 0x0, 0x8)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa802, 0x0)
close(r8)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
r9 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r10=>0x0})
r11 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r11, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@gettclass={0x24, 0x2a, 0x129, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {0xb, 0xd}, {}, {0x8, 0xfff1}}}, 0x24}}, 0x40004)

5.815961168s ago: executing program 4 (id=1215):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005c40)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000000)=@newtaction={0x68, 0x30, 0x9, 0x1000000, 0x0, {}, [{0x54, 0x1, [@m_bpf={0x50, 0x1, 0x0, 0x0, {{0x8}, {0x28, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x4}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x0, 0x0, 0x0, 0x7c}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0xf0}, 0x0)

5.68930305s ago: executing program 0 (id=1216):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value=0x2000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000380)='./file0\x00', 0x2800800, &(0x7f0000000240)={[{@inode_readahead_blks}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@max_batch_time={'max_batch_time', 0x3d, 0x3fb}}, {}, {@data_err_ignore}, {@dioread_nolock}, {@noinit_itable}]}, 0x1e, 0x4bc, &(0x7f0000000540)="$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")
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

5.180586228s ago: executing program 1 (id=1217):
io_setup(0x8, &(0x7f0000004200)=<r0=>0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
io_pgetevents(r0, 0x3, 0x0, &(0x7f0000000440), &(0x7f00000004c0)={0x0, 0x3938700}, 0x0)

4.750498765s ago: executing program 1 (id=1218):
socket(0x40000000015, 0x5, 0x0)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x2000002, 0x2010, 0xffffffffffffffff, 0x9e0e6000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000980)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb8af, @void, @value}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20004015}, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001540)={0x0, 0x20000000000000bb, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000756c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb714000008"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1f00, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000340)={0x4, 0x8, 0x8, 0x20000}, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xf9, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010800000000000000850a600000000000000500000014000500200100000000000000000300000000001c00090008000000", @ANYRES32=r0], 0x4c}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r1, &(0x7f00000002c0), 0x40000000000009f, 0x0)

4.597413088s ago: executing program 0 (id=1219):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000004580)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000009500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sys_enter\x00', r2}, 0x10)
mount_setattr(0xffffffffffffff9c, 0x0, 0x8900, 0x0, 0x0)

4.162841205s ago: executing program 6 (id=1220):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0, 0x0, 0x8}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000600"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000840)={r0, 0xe0, &(0x7f0000000a00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000400), ""/16, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, &(0x7f0000000700)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x0, 0xd4, 0x0, 0x0, 0x0, 0x0, &(0x7f00000007c0), 0x8, 0x43, 0x8, 0x0, 0x0}}, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="4c000000020601080000000000000000000000400500010006000000050005000200000005000400000000000900020073797a310000000011000300686173683a69702c6d61726b"], 0x4c}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)
close(0xffffffffffffffff)

4.026175267s ago: executing program 0 (id=1221):
r0 = open(0x0, 0x0, 0x0)
syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x0, 0x2, 0x4, 0x0, 0x0, r0}, 0x0, 0x0)

3.681661472s ago: executing program 0 (id=1222):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000600)={'team0\x00', <r3=>0x0})
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000640)=@newqdisc={0xc8, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r3, {0x0, 0x2}, {0xffff, 0xffff}, {0x0, 0xb}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x6c, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x1], 0x0, [0x8, 0x4, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80], [0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x400]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x8, 0x2, 0x0, 0x1, [{0x4}]}]}}, @TCA_STAB={0x2c, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x16, 0x5, 0x1, 0x5, 0x0, 0xffffffff, 0x7fffffff, 0x3}}, {0xa, 0x2, [0x8000, 0x0, 0x0]}}]}]}, 0xc8}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

0s ago: executing program 6 (id=1223):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200010, &(0x7f0000000300)={[{@user_xattr}, {@nombcache}, {@dioread_lock}, {@norecovery}, {@barrier_val={'barrier', 0x3d, 0x4c}}, {@lazytime}, {@init_itable_val={'init_itable', 0x3d, 0x5}}, {@usrquota}, {@errors_continue}]}, 0xfe, 0x55d, &(0x7f0000000980)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001c80)={{r2}, &(0x7f0000001c00), &(0x7f0000001c40)=r3}, 0x20)
timer_settime(0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
unlinkat(0xffffffffffffffff, 0x0, 0x200)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_inet_SIOCSARP(r4, 0x8955, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'lo\x00'})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x11, 0x7c}, [@ldst={0x6, 0x3}], {0x95, 0x0, 0xc00}}, &(0x7f0000003ff6)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x3c)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r5, 0x5, &(0x7f0000000080)={0x0, 0x2, 0x87fd, 0xfffffffffffffff6})
r6 = socket(0x10, 0x3, 0x0)
write(r6, &(0x7f0000000000)="fc0000001a000700ab092500090007000aab0700a90100001d60369321000100ff0500000005d0000000000000039815fa2c1ec28656aaa79bb94b46fe000000bc0003000500000014000027000089fee1434f1e596534d07302ade0bbc91a3e3280772c05defd5a32e280fc83ab82f605f70c9ddef2fe082038f4f8b29d3ef3d92c83170e5bba4a46d284a710af333ae4f5566f91cf190201800015b2ccd243f295ed94e0ad91bd0734babc7c3f2eeb00d43dd16b17e583df150c3b880f411f46a6b567b4d5715587e658a1ad0a4f01731d05b0350b0041f0d48a99c03f080548deac270e33429fd3000175e63fb8d38a8700"/252, 0xfc)

kernel console output (not intermixed with test programs):

, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  158.281420][    C0] I/O error, dev loop3, sector 2 op 0x1:(WRITE) flags 0x3800 phys_seg 1 prio class 2
[  158.290941][    C0] Buffer I/O error on dev loop3, logical block 1, lost sync page write
[  158.299322][ T4252] EXT4-fs (loop3): I/O error while writing superblock
[  158.307127][ T4252] EXT4-fs (loop3): Remounting filesystem read-only
[  158.359210][   T27] audit: type=1326 audit(1744794781.333:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5159 comm="syz.2.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d6af8e169 code=0x7ffc0000
[  158.379398][ T4252] EXT4-fs error (device loop3): ext4_dirty_inode:6089: inode #2: comm syz-executor: mark_inode_dirty error
[  158.467955][   T27] audit: type=1326 audit(1744794781.333:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5159 comm="syz.2.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7d6af8e169 code=0x7ffc0000
[  158.579342][ T4856] loop: Write error at byte offset 9223372036854776831, length 1024.
[  158.588989][    C1] Buffer I/O error on dev loop3, logical block 1, lost sync page write
[  158.598852][ T4252] EXT4-fs (loop3): I/O error while writing superblock
[  158.639441][ T4252] EXT4-fs (loop3): Remounting filesystem read-only
[  158.877285][   T27] audit: type=1326 audit(1744794781.333:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5159 comm="syz.2.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d6af8e169 code=0x7ffc0000
[  158.932727][   T27] audit: type=1326 audit(1744794781.333:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5159 comm="syz.2.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d6af8e169 code=0x7ffc0000
[  159.002005][    T9] EXT4-fs error (device loop3): __ext4_get_inode_loc_noinmem:4629: inode #2: block 5: comm kworker/u4:0: unable to read itable block
[  159.048385][   T27] audit: type=1326 audit(1744794781.333:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5159 comm="syz.2.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7d6af8e169 code=0x7ffc0000
[  159.121151][ T4856] loop: Write error at byte offset 9223372036854776831, length 1024.
[  159.151938][    C1] Buffer I/O error on dev loop3, logical block 1, lost sync page write
[  159.162312][    T9] EXT4-fs (loop3): I/O error while writing superblock
[  159.191653][   T27] audit: type=1326 audit(1744794781.333:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5159 comm="syz.2.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d6af8e169 code=0x7ffc0000
[  159.229798][ T4856] loop: Write error at byte offset 9223372036854776831, length 1024.
[  159.280653][ T5173] loop4: detected capacity change from 0 to 128
[  159.281145][    C1] Buffer I/O error on dev loop3, logical block 1, lost sync page write
[  159.288991][ T5173] EXT4-fs: Ignoring removed bh option
[  159.302873][ T5173] EXT4-fs: Ignoring removed nobh option
[  159.353916][   T27] audit: type=1326 audit(1744794781.333:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5159 comm="syz.2.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d6af8e169 code=0x7ffc0000
[  159.447267][ T5173] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  159.457969][ T5173] ext4 filesystem being mounted at /54/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  159.513630][   T27] audit: type=1326 audit(1744794781.333:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5159 comm="syz.2.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7d6af8e169 code=0x7ffc0000
[  159.541209][   T27] audit: type=1326 audit(1744794781.333:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5159 comm="syz.2.286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d6af8e169 code=0x7ffc0000
[  159.750610][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  159.916340][ T4856] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.094025][ T4856] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.128117][ T5185] Cannot find del_set index 4 as target
[  160.267503][ T4856] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.404792][ T4856] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  161.022007][ T5195] loop0: detected capacity change from 0 to 512
[  161.258273][ T5195] EXT4-fs error (device loop0): ext4_acquire_dquot:6802: comm syz.0.301: Failed to acquire dquot type 1
[  161.435344][ T5195] EXT4-fs (loop0): 1 truncate cleaned up
[  161.461434][ T5195] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  161.473284][ T5195] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.500754][ T5195] EXT4-fs (loop0): unmounting filesystem.
[  161.738793][ T5209] syz.1.306[5209] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  161.739026][ T5209] syz.1.306[5209] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  162.044762][ T5213] loop4: detected capacity change from 0 to 128
[  162.066871][ T5213] EXT4-fs: Ignoring removed bh option
[  162.073287][ T5213] EXT4-fs: Ignoring removed nobh option
[  162.143023][ T5213] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  162.153611][ T5213] ext4 filesystem being mounted at /57/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  162.442300][ T5218] 9pnet_fd: Insufficient options for proto=fd
[  162.677461][ T4268] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  162.723278][ T4268] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  162.735437][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  162.743047][ T4268] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  162.753616][ T4268] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  162.762986][ T4268] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  162.779497][ T4268] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  162.830145][ T5226] Cannot find del_set index 4 as target
[  164.558867][ T5253] loop1: detected capacity change from 0 to 128
[  164.608140][ T5254] 9pnet_fd: Insufficient options for proto=fd
[  164.617184][ T5253] EXT4-fs: Ignoring removed bh option
[  164.675498][ T5253] EXT4-fs: Ignoring removed nobh option
[  164.715172][ T5256] Cannot find del_set index 4 as target
[  164.745165][ T5253] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  164.801082][ T5253] ext4 filesystem being mounted at /70/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  164.959601][ T4268] Bluetooth: hci3: command 0x0409 tx timeout
[  165.067618][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  165.587044][ T5223] chnl_net:caif_netlink_parms(): no params data found
[  165.655293][ T5267] loop4: detected capacity change from 0 to 512
[  165.710435][ T5267] EXT4-fs: Ignoring removed orlov option
[  165.811904][ T5267] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities
[  166.132563][ T4856] device hsr_slave_0 left promiscuous mode
[  166.168215][ T4856] device hsr_slave_1 left promiscuous mode
[  166.187820][ T4856] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  166.217562][ T4856] batman_adv: batadv0: Removing interface: batadv_slave_0
[  166.301467][ T4856] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  166.353367][ T4856] batman_adv: batadv0: Removing interface: batadv_slave_1
[  166.600499][ T5275] loop1: detected capacity change from 0 to 512
[  167.132141][ T4856] device bridge_slave_1 left promiscuous mode
[  167.154290][ T4856] bridge0: port 2(bridge_slave_1) entered disabled state
[  167.260568][ T4856] device bridge_slave_0 left promiscuous mode
[  167.307893][ T4856] bridge0: port 1(bridge_slave_0) entered disabled state
[  167.379250][ T4268] Bluetooth: hci3: command 0x041b tx timeout
[  167.467558][ T5275] EXT4-fs (loop1): 1 orphan inode deleted
[  167.480607][    T9] __quota_error: 9 callbacks suppressed
[  167.480645][    T9] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  167.523107][    T9] EXT4-fs error (device loop1): ext4_release_dquot:6825: comm kworker/u4:0: Failed to release dquot type 1
[  167.538087][ T5275] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  167.570347][ T5275] ext4 filesystem being mounted at /71/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  167.589621][ T4856] device veth1_macvtap left promiscuous mode
[  167.597435][ T4856] device veth0_macvtap left promiscuous mode
[  167.605045][ T4856] device veth1_vlan left promiscuous mode
[  167.613366][ T4856] device veth0_vlan left promiscuous mode
[  168.293624][ T4856] team0 (unregistering): Port device geneve0 removed
[  168.422647][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  168.606868][ T5303] 9pnet_fd: Insufficient options for proto=fd
[  168.889398][ T5307] Cannot find del_set index 4 as target
[  168.899445][ T5309] loop1: detected capacity change from 0 to 128
[  168.908995][ T5309] EXT4-fs: Ignoring removed bh option
[  168.936066][ T5309] EXT4-fs: Ignoring removed nobh option
[  169.012274][ T5309] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  169.039738][ T5309] ext4 filesystem being mounted at /73/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  169.175943][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  169.626634][ T4268] Bluetooth: hci3: command 0x040f tx timeout
[  169.796359][ T4856] team0 (unregistering): Port device team_slave_1 removed
[  169.871789][ T4856] team0 (unregistering): Port device team_slave_0 removed
[  169.962899][ T4856] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  170.008377][ T5317] loop1: detected capacity change from 0 to 512
[  170.016701][ T5317] EXT4-fs: Ignoring removed orlov option
[  170.024118][ T5317] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities
[  170.087150][ T4330] blk_print_req_error: 8 callbacks suppressed
[  170.087191][ T4330] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  170.108701][ T4856] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  171.679220][ T4262] Bluetooth: hci3: command 0x0419 tx timeout
[  172.154676][ T4856] bond0 (unregistering): Released all slaves
[  172.268038][ T5280] netlink: 8 bytes leftover after parsing attributes in process `syz.0.327'.
[  172.362222][ T5312] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  172.370540][ T5312] IPv6: NLM_F_CREATE should be set when creating new route
[  172.782515][ T5336] Cannot find del_set index 4 as target
[  173.851060][ T5223] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.893656][ T5223] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.936919][ T5223] device bridge_slave_0 entered promiscuous mode
[  173.968068][ T5223] bridge0: port 2(bridge_slave_1) entered blocking state
[  174.058380][ T5223] bridge0: port 2(bridge_slave_1) entered disabled state
[  174.105107][ T5223] device bridge_slave_1 entered promiscuous mode
[  174.232481][ T5223] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  174.280984][ T5223] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  174.697879][ T5223] team0: Port device team_slave_0 added
[  174.723537][ T5223] team0: Port device team_slave_1 added
[  174.973196][ T5223] batman_adv: batadv0: Adding interface: batadv_slave_0
[  175.029153][ T5223] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  175.226419][ T5223] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  175.319980][ T5223] batman_adv: batadv0: Adding interface: batadv_slave_1
[  175.360620][ T5223] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  175.524989][ T5223] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  175.861981][ T5223] device hsr_slave_0 entered promiscuous mode
[  175.901020][ T5223] device hsr_slave_1 entered promiscuous mode
[  176.242469][ T5370] Cannot find del_set index 4 as target
[  176.384080][ T5373] loop2: detected capacity change from 0 to 128
[  176.498970][   T27] audit: type=1800 audit(1744794799.683:135): pid=5373 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.356" name="file1" dev="loop2" ino=1048599 res=0 errno=0
[  177.102450][ T5223] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  177.126747][ T4295] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  177.204815][ T5388] loop2: detected capacity change from 0 to 1024
[  177.232585][ T4295] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  177.346569][ T5223] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  177.387119][ T5223] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  177.473181][ T5223] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  178.102211][   T27] audit: type=1326 audit(1744794801.293:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5393 comm="syz.2.364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d6af8e169 code=0x7ffc0000
[  178.178098][ T5223] 8021q: adding VLAN 0 to HW filter on device bond0
[  178.232892][   T27] audit: type=1326 audit(1744794801.293:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5393 comm="syz.2.364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d6af8e169 code=0x7ffc0000
[  178.302021][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  178.314022][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  178.349004][ T5223] 8021q: adding VLAN 0 to HW filter on device team0
[  178.377592][   T27] audit: type=1326 audit(1744794801.313:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5393 comm="syz.2.364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=100 compat=0 ip=0x7f7d6af8e169 code=0x7ffc0000
[  178.447186][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  178.497247][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  178.516714][   T27] audit: type=1326 audit(1744794801.313:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5393 comm="syz.2.364" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d6af8e169 code=0x7ffc0000
[  178.566071][ T4413] bridge0: port 1(bridge_slave_0) entered blocking state
[  178.574587][ T4413] bridge0: port 1(bridge_slave_0) entered forwarding state
[  178.666517][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  178.682045][ T5408] loop2: detected capacity change from 0 to 512
[  178.743011][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  178.832017][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  178.842380][ T5408] EXT4-fs (loop2): too many log groups per flexible block group
[  178.864779][ T5408] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  178.879592][ T5408] EXT4-fs (loop2): mount failed
[  178.901008][ T4413] bridge0: port 2(bridge_slave_1) entered blocking state
[  178.909064][ T4413] bridge0: port 2(bridge_slave_1) entered forwarding state
[  179.049404][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  179.086097][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  179.245416][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  179.283934][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  179.361617][ T5418] Cannot find del_set index 4 as target
[  179.459788][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  179.480631][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  179.521112][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  179.627144][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  179.667596][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  179.713603][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  179.756709][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  179.812887][ T5223] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  180.368604][ T5439] loop0: detected capacity change from 0 to 16
[  180.378859][ T5435] netlink: 4 bytes leftover after parsing attributes in process `syz.2.373'.
[  180.438304][ T5439] erofs: (device loop0): mounted with root inode @ nid 36.
[  180.982494][ T5448] 9pnet_fd: p9_fd_create_unix (5448): problem connecting socket: ./file0: -111
[  181.464081][ T5453] Cannot find del_set index 4 as target
[  181.581577][ T5435] team0 (unregistering): Port device team_slave_0 removed
[  181.635362][ T5435] team0 (unregistering): Port device team_slave_1 removed
[  181.909820][ T5459] syz.0.375: attempt to access beyond end of device
[  181.909820][ T5459] loop0: rw=0, sector=8, nr_sectors = 16 limit=16
[  181.932059][ T5459] syz.0.375: attempt to access beyond end of device
[  181.932059][ T5459] loop0: rw=0, sector=296, nr_sectors = 16 limit=16
[  181.948998][ T5459] erofs: (device loop0): erofs_readdir: fail to readdir of logical block 0 of nid 36
[  182.109661][ T5461] loop1: detected capacity change from 0 to 128
[  182.118696][ T5461] EXT4-fs: Ignoring removed bh option
[  182.152322][ T5461] EXT4-fs: Ignoring removed nobh option
[  182.251214][ T5461] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  182.280051][ T5461] ext4 filesystem being mounted at /87/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  182.445144][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  182.469724][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  182.506356][ T5223] 8021q: adding VLAN 0 to HW filter on device batadv0
[  182.824900][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  183.069282][ T4294] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  183.269297][ T4294] usb 3-1: Using ep0 maxpacket: 32
[  183.287482][ T4294] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  183.340538][ T4294] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  183.429402][ T4294] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  183.472411][ T4294] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  183.559825][ T4294] usb 3-1: config 0 descriptor??
[  185.590942][ T5495] 9pnet_fd: p9_fd_create_unix (5495): problem connecting socket: ./file0: -111
[  186.111416][ T5505] Cannot find del_set index 4 as target
[  186.203226][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  186.224845][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  186.398402][ T4856] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  186.447620][ T4856] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  186.483781][ T4294] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  186.508745][ T4856] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  186.531644][ T4856] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  186.565111][ T5223] device veth0_vlan entered promiscuous mode
[  186.591005][ T4294] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  186.603654][ T5508] loop1: detected capacity change from 0 to 1024
[  186.740231][ T4295] usb 3-1: USB disconnect, device number 2
[  186.842634][ T5223] device veth1_vlan entered promiscuous mode
[  187.039940][ T4856] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  187.110366][ T4856] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  187.238882][ T4856] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  187.304910][ T4856] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  187.392256][ T5223] device veth0_macvtap entered promiscuous mode
[  187.474045][ T5223] device veth1_macvtap entered promiscuous mode
[  187.612108][ T5223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  187.699297][ T5223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.787808][ T5223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  187.849160][ T5223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  187.929239][ T5223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  187.994209][ T5223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  188.066275][ T5223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  188.262702][ T5537] Cannot find del_set index 4 as target
[  188.419537][ T5223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  189.276853][ T5223] batman_adv: batadv0: Interface activated: batadv_slave_0
[  189.372490][ T5223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  189.440974][ T5223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  189.505262][ T5223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  189.564253][ T5223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  189.589147][ T5223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  189.619210][ T5223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  189.649175][ T5223] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  189.699166][ T5223] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  189.752058][ T5223] batman_adv: batadv0: Interface activated: batadv_slave_1
[  189.781493][ T5552] loop4: detected capacity change from 0 to 16
[  189.815495][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  189.836274][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  189.855013][ T5552] erofs: (device loop4): mounted with root inode @ nid 36.
[  189.908432][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  190.225944][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  190.366004][ T5556] syz.4.404: attempt to access beyond end of device
[  190.366004][ T5556] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[  190.403150][ T5556] syz.4.404: attempt to access beyond end of device
[  190.403150][ T5556] loop4: rw=0, sector=296, nr_sectors = 16 limit=16
[  190.417790][ T5556] erofs: (device loop4): erofs_readdir: fail to readdir of logical block 0 of nid 36
[  190.568371][ T5223] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  190.735450][ T5223] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  190.808432][ T5223] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  190.953289][ T5223] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  191.637985][ T4322] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  191.725150][ T4322] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  191.808133][ T4856] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  191.861715][ T4933] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  191.862346][ T4856] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  191.995938][ T4322] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  192.538508][ T5581] Cannot find del_set index 4 as target
[  192.593497][ T5579] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  193.196434][ T5593] loop5: detected capacity change from 0 to 16
[  193.299796][ T5593] erofs: (device loop5): mounted with root inode @ nid 36.
[  193.317045][ T5577] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  193.392401][ T5596] netlink: 'syz.1.417': attribute type 10 has an invalid length.
[  193.393573][ T5577] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  193.409024][ T5577] Bluetooth: hci0: Suspend notifier action (1) failed: -4
[  193.695897][ T5577] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  194.149212][ T5577] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  194.448375][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  194.456241][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  194.789433][ T4268] Bluetooth: hci0: command 0x0c1a tx timeout
[  194.796706][ T5577] Bluetooth: hci1: Suspend notifier action (1) failed: -4
[  194.924556][ T5599] syz.5.416: attempt to access beyond end of device
[  194.924556][ T5599] loop5: rw=0, sector=8, nr_sectors = 16 limit=16
[  194.969917][ T5599] syz.5.416: attempt to access beyond end of device
[  194.969917][ T5599] loop5: rw=0, sector=296, nr_sectors = 16 limit=16
[  194.985746][ T5599] erofs: (device loop5): erofs_readdir: fail to readdir of logical block 0 of nid 36
[  195.016942][ T5577] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  195.081994][ T5577] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  195.232896][ T5596] 8021q: adding VLAN 0 to HW filter on device batadv0
[  195.241090][ T5577] Bluetooth: hci4: Suspend notifier action (1) failed: -4
[  195.293642][ T5577] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  195.302377][ T5596] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  195.339611][ T5577] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  195.479576][ T5577] Bluetooth: hci2: Suspend notifier action (1) failed: -4
[  195.552126][ T5577] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  195.596652][ T5577] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  195.639544][ T5577] Bluetooth: hci3: Suspend notifier action (1) failed: -4
[  196.480053][ T4331] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  196.502529][ T4268] Bluetooth: hci1: command 0x0c1a tx timeout
[  196.709414][ T4331] usb 3-1: Using ep0 maxpacket: 32
[  196.721029][ T4331] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  196.799558][ T4268] Bluetooth: hci0: command 0x0406 tx timeout
[  196.835922][ T4331] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  196.939266][ T4331] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  196.978337][ T5620] loop1: detected capacity change from 0 to 512
[  197.027016][ T4331] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  197.039347][ T4268] Bluetooth: hci4: command 0x0c1a tx timeout
[  197.195773][ T4331] usb 3-1: config 0 descriptor??
[  197.250475][ T5622] 9pnet: Could not find request transport: fd0x0000000000000003
[  197.279341][ T4268] Bluetooth: hci2: command 0x0c1a tx timeout
[  197.356748][ T5620] EXT4-fs (loop1): 1 orphan inode deleted
[  197.375723][ T4856] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  197.375997][ T5631] Cannot find del_set index 4 as target
[  197.438644][ T5620] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  197.459426][ T4856] EXT4-fs error (device loop1): ext4_release_dquot:6825: comm kworker/u4:12: Failed to release dquot type 1
[  197.600058][ T4268] Bluetooth: hci3: command 0x0c1a tx timeout
[  197.614429][ T5620] ext4 filesystem being mounted at /99/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  198.732212][ T4268] Bluetooth: hci1: command 0x0406 tx timeout
[  199.344370][ T4262] Bluetooth: hci0: command 0x0406 tx timeout
[  199.351629][ T4262] Bluetooth: hci4: command 0x0406 tx timeout
[  199.430434][ T4262] Bluetooth: hci2: command 0x0406 tx timeout
[  199.433120][   T22] usb 3-1: USB disconnect, device number 3
[  199.510761][ T5640] netlink: 'syz.5.428': attribute type 13 has an invalid length.
[  199.680784][ T4262] Bluetooth: hci3: command 0x0406 tx timeout
[  199.762757][   T27] audit: type=1326 audit(1744794822.953:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5642 comm="syz.2.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d6af8e169 code=0x7ffc0000
[  199.876533][   T27] audit: type=1326 audit(1744794822.953:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5642 comm="syz.2.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d6af8e169 code=0x7ffc0000
[  200.034131][   T27] audit: type=1326 audit(1744794822.953:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5642 comm="syz.2.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f7d6af8e169 code=0x7ffc0000
[  200.035976][ T5648] loop4: detected capacity change from 0 to 16
[  200.151070][   T27] audit: type=1326 audit(1744794822.953:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5642 comm="syz.2.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d6af8e169 code=0x7ffc0000
[  200.194156][ T5648] erofs: (device loop4): mounted with root inode @ nid 36.
[  200.317204][   T27] audit: type=1326 audit(1744794822.953:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5642 comm="syz.2.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7d6af8e169 code=0x7ffc0000
[  200.809241][ T4262] Bluetooth: hci1: command 0x0406 tx timeout
[  200.868420][ T5655] syz.4.431: attempt to access beyond end of device
[  200.868420][ T5655] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[  200.894417][ T5655] syz.4.431: attempt to access beyond end of device
[  200.894417][ T5655] loop4: rw=0, sector=296, nr_sectors = 16 limit=16
[  200.908729][ T5655] erofs: (device loop4): erofs_readdir: fail to readdir of logical block 0 of nid 36
[  201.587311][ T5640] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.597942][ T5640] bridge0: port 1(bridge_slave_0) entered disabled state
[  202.405822][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  202.874333][ T5666] 9pnet: Could not find request transport: fd0x0000000000000003
[  203.197684][ T5669] Cannot find del_set index 4 as target
[  203.466992][ T5640] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  203.626431][ T5640] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  204.933393][ T5640] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  204.956161][ T5640] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  204.991794][ T5640] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  205.019327][ T5640] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  205.432726][ T5696] 9pnet: Could not find request transport: fd0x0000000000000003
[  205.848941][ T5700] loop4: detected capacity change from 0 to 16
[  205.920700][ T5700] erofs: (device loop4): mounted with root inode @ nid 36.
[  205.998620][ T5702] Cannot find del_set index 4 as target
[  206.897069][ T5711] syz.4.448: attempt to access beyond end of device
[  206.897069][ T5711] loop4: rw=0, sector=8, nr_sectors = 16 limit=16
[  206.945418][ T5711] syz.4.448: attempt to access beyond end of device
[  206.945418][ T5711] loop4: rw=0, sector=296, nr_sectors = 16 limit=16
[  206.961273][ T5711] erofs: (device loop4): erofs_readdir: fail to readdir of logical block 0 of nid 36
[  207.840913][ T5714] loop1: detected capacity change from 0 to 512
[  207.882017][ T5717] netlink: 68 bytes leftover after parsing attributes in process `syz.5.452'.
[  207.929464][ T5714] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  207.963780][ T5714] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem
[  208.110056][ T5714] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended
[  208.243451][ T5714] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  208.317618][ T5728] 9pnet_fd: Insufficient options for proto=fd
[  208.325736][ T5714] System zones: 0-2, 18-18, 34-34
[  208.433036][ T5714] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  208.504408][ T5714] EXT4-fs (loop1): 1 truncate cleaned up
[  208.526007][ T5714] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  208.913466][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  209.181989][ T5745] loop4: detected capacity change from 0 to 128
[  209.313776][ T5750] loop1: detected capacity change from 0 to 512
[  209.326874][ T5752] loop5: detected capacity change from 0 to 16
[  209.373324][ T5752] erofs: (device loop5): mounted with root inode @ nid 36.
[  209.407740][ T5750] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  209.461633][ T5750] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c01c, mo2=0002]
[  209.489323][ T5682] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  209.497263][ T5750] EXT4-fs (loop1): orphan cleanup on readonly fs
[  209.520670][ T5750] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279949761 > max in inode 13
[  210.048684][ T5750] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279949762 > max in inode 13
[  210.133160][ T5761] syz.5.465: attempt to access beyond end of device
[  210.133160][ T5761] loop5: rw=0, sector=8, nr_sectors = 16 limit=16
[  210.164993][ T5761] syz.5.465: attempt to access beyond end of device
[  210.164993][ T5761] loop5: rw=0, sector=296, nr_sectors = 16 limit=16
[  210.179676][ T5761] erofs: (device loop5): erofs_readdir: fail to readdir of logical block 0 of nid 36
[  210.363182][ T5750] EXT4-fs (loop1): 1 truncate cleaned up
[  210.418027][ T5750] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  210.692720][ T5750] EXT4-fs warning (device loop1): dx_probe:893: inode #2: comm syz.1.462: dx entry: limit 65535 != root limit 120
[  210.793313][ T5750] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.462: Corrupt directory, running e2fsck is recommended
[  210.906091][ T5682] usb 3-1: Using ep0 maxpacket: 32
[  210.964414][ T5682] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  211.019010][ T5682] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  211.030081][ T5682] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  211.032303][ T5764] netlink: 12 bytes leftover after parsing attributes in process `syz.0.468'.
[  211.044307][ T5682] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  211.272297][ T5682] usb 3-1: config 0 descriptor??
[  211.347465][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  211.494604][ T5768] program syz.5.469 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  211.785074][ T5745] loop4: detected capacity change from 0 to 512
[  211.830737][ T5745] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  212.790052][ T5745] EXT4-fs warning (device loop4): ext4_multi_mount_protect:404: Unable to create kmmpd thread for loop4.
[  214.274093][ T4296] usb 3-1: USB disconnect, device number 4
[  214.664639][ T5803] netlink: 12 bytes leftover after parsing attributes in process `syz.5.481'.
[  214.761260][ T4296] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  214.831293][ T4296] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  214.872453][ T5802] loop0: detected capacity change from 0 to 1024
[  217.691080][ T4297] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  217.909211][ T4297] usb 3-1: Using ep0 maxpacket: 32
[  217.917388][ T4297] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  218.037000][ T4297] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  218.158503][ T4297] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  218.247642][ T4297] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  218.318802][ T4297] usb 3-1: config 0 descriptor??
[  219.854187][ T5854] loop1: detected capacity change from 0 to 128
[  219.870748][ T5854] EXT4-fs: Ignoring removed bh option
[  219.876987][ T5854] EXT4-fs: Ignoring removed nobh option
[  220.329595][ T5854] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  220.340303][ T5854] ext4 filesystem being mounted at /111/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  220.693630][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  220.732832][ T5870] Invalid ELF header magic: != ELF
[  220.771732][ T4296] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  220.883175][ T5871] loop4: detected capacity change from 0 to 1024
[  220.890509][ T4296] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  221.114323][ T4297] usb 3-1: USB disconnect, device number 5
[  222.339580][ T5901] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  222.371608][ T5899] IPVS: stopping master sync thread 5901 ...
[  223.116840][ T4297] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  223.174024][ T4297] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  223.195222][ T5915] loop2: detected capacity change from 0 to 1024
[  224.038195][ T5935] netlink: 16 bytes leftover after parsing attributes in process `syz.4.527'.
[  224.561362][ T4297] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  224.669767][ T4297] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  224.690377][ T5945] loop4: detected capacity change from 0 to 1024
[  225.687921][ T5681] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  225.784121][ T5681] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  225.840169][ T5967] loop1: detected capacity change from 0 to 1024
[  227.773814][ T5990] netlink: 24 bytes leftover after parsing attributes in process `syz.2.546'.
[  227.886006][ T4296] hid-generic 0000:0000:0000.0008: unknown main item tag 0x0
[  227.950023][ T4296] hid-generic 0000:0000:0000.0008: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  228.018822][ T5995] loop4: detected capacity change from 0 to 1024
[  228.426349][ T6006] loop0: detected capacity change from 0 to 512
[  228.560124][ T6006] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  228.660031][ T6006] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  228.766351][ T6006] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[  228.949235][ T6006] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  229.059697][ T6006] System zones: 0-2, 18-18, 34-34
[  229.100188][ T6006] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  229.227930][ T6018] netlink: 'syz.2.556': attribute type 10 has an invalid length.
[  229.228894][ T6006] EXT4-fs (loop0): 1 truncate cleaned up
[  229.280186][ T6018] bridge0: port 2(bridge_slave_1) entered disabled state
[  229.287884][ T6021] loop5: detected capacity change from 0 to 128
[  229.289588][ T6021] EXT4-fs: Ignoring removed bh option
[  229.296288][ T6018] bridge0: port 1(bridge_slave_0) entered disabled state
[  229.301711][ T6021] EXT4-fs: Ignoring removed nobh option
[  229.317190][ T6006] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  229.367899][ T6021] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  229.378818][ T6021] ext4 filesystem being mounted at /34/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  229.505526][ T6018] bridge0: port 2(bridge_slave_1) entered blocking state
[  229.515834][ T6018] bridge0: port 2(bridge_slave_1) entered forwarding state
[  229.525786][ T5682] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0
[  229.527349][ T6018] bridge0: port 1(bridge_slave_0) entered blocking state
[  229.542528][ T6018] bridge0: port 1(bridge_slave_0) entered forwarding state
[  229.609780][ T5682] hid-generic 0000:0000:0000.0009: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  229.634749][ T6026] loop1: detected capacity change from 0 to 1024
[  229.635819][ T6018] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  229.834705][ T5223] EXT4-fs (loop5): unmounting filesystem.
[  229.965918][ T4250] EXT4-fs (loop0): unmounting filesystem.
[  231.485638][ T6057] netlink: 4 bytes leftover after parsing attributes in process `syz.0.571'.
[  231.553016][ T6061] netlink: 4 bytes leftover after parsing attributes in process `syz.0.571'.
[  231.832596][ T5681] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  231.911744][ T5681] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  231.929708][ T6066] loop5: detected capacity change from 0 to 1024
[  233.219567][ T6095] program syz.4.585 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  233.938644][ T6107] loop2: detected capacity change from 0 to 512
[  234.150647][ T6107] EXT4-fs (loop2): 1 orphan inode deleted
[  234.169786][   T11] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  234.239579][ T6107] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  234.285118][   T11] EXT4-fs error (device loop2): ext4_release_dquot:6825: comm kworker/u4:1: Failed to release dquot type 1
[  234.396336][ T6107] ext4 filesystem being mounted at /113/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  237.889427][ T4298] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  238.079913][ T4298] usb 5-1: Using ep0 maxpacket: 8
[  238.093554][ T4298] usb 5-1: no configurations
[  238.098857][ T4298] usb 5-1: can't read configurations, error -22
[  238.369585][ T4298] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  238.699449][ T4298] usb 5-1: Using ep0 maxpacket: 8
[  238.729577][ T4298] usb 5-1: no configurations
[  238.845123][ T4298] usb 5-1: can't read configurations, error -22
[  238.975198][ T4298] usb usb5-port1: attempt power cycle
[  239.459572][ T4298] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  239.503008][ T4298] usb 5-1: Using ep0 maxpacket: 8
[  239.511230][ T4298] usb 5-1: no configurations
[  239.530039][ T4298] usb 5-1: can't read configurations, error -22
[  239.709397][ T4298] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  239.770300][ T4298] usb 5-1: Using ep0 maxpacket: 8
[  239.807399][ T4298] usb 5-1: no configurations
[  239.839313][ T4298] usb 5-1: can't read configurations, error -22
[  239.866962][ T4298] usb usb5-port1: unable to enumerate USB device
[  240.116331][ T4251] EXT4-fs (loop2): unmounting filesystem.
[  242.000292][ T6184] 9pnet_virtio: no channels available for device ./file0
[  242.677347][ T6195] loop0: detected capacity change from 0 to 512
[  242.894130][ T6195] EXT4-fs (loop0): orphan cleanup on readonly fs
[  242.987590][ T6195] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.612: bg 0: block 248: padding at end of block bitmap is not set
[  243.100178][ T6195] Quota error (device loop0): write_blk: dquota write failed
[  243.185835][ T6195] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  243.288199][ T6195] EXT4-fs error (device loop0): ext4_acquire_dquot:6802: comm syz.0.612: Failed to acquire dquot type 1
[  243.382049][ T6195] EXT4-fs (loop0): 1 truncate cleaned up
[  243.433947][ T6195] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  243.745251][ T4250] EXT4-fs (loop0): unmounting filesystem.
[  244.677354][ T6235] 9pnet_virtio: no channels available for device ./file0
[  247.670473][ T6267] 9pnet_virtio: no channels available for device ./file0
[  248.163347][ T6279] tipc: Started in network mode
[  248.188976][ T6279] tipc: Node identity a22f9e8755b1, cluster identity 4711
[  248.223265][ T6279] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  248.266706][ T6284] tipc: Disabling bearer <eth:syzkaller0>
[  250.525072][  T127] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[  250.622852][  T127] hid-generic 0000:0000:0000.000B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  250.730664][ T6299] loop1: detected capacity change from 0 to 1024
[  250.861131][ T6302] loop4: detected capacity change from 0 to 128
[  250.870831][ T6302] EXT4-fs: Ignoring removed bh option
[  250.878192][ T6302] EXT4-fs: Ignoring removed nobh option
[  251.032381][ T6302] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  251.049761][ T6302] ext4 filesystem being mounted at /139/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  251.321999][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  253.753369][ T6333] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  254.180869][ T6343] loop4: detected capacity change from 0 to 512
[  254.700643][ T6348] loop5: detected capacity change from 0 to 512
[  254.773454][ T6335] netlink: 'syz.1.652': attribute type 10 has an invalid length.
[  254.805807][ T6343] EXT4-fs error (device loop4): ext4_orphan_get:1426: comm syz.4.655: bad orphan inode 15
[  254.829391][ T6335] netlink: 40 bytes leftover after parsing attributes in process `syz.1.652'.
[  254.861659][ T6343] ext4_test_bit(bit=14, block=18) = 1
[  254.886228][ T6343] is_bad_inode(inode)=0
[  254.915391][ T6343] NEXT_ORPHAN(inode)=1023
[  254.918858][ T6348] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  254.939658][ T6335] team0: Port device geneve0 added
[  254.939778][ T6348] ext4 filesystem being mounted at /55/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  255.000328][ T6343] max_ino=32
[  255.004579][ T6343] i_nlink=0
[  255.106697][ T6343] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2925: inode #15: comm syz.4.655: corrupted xattr block 19
[  255.264573][ T6343] EXT4-fs warning (device loop4): ext4_evict_inode:299: xattr delete (err -117)
[  255.316733][ T6343] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  255.400924][ T6343] ext4 filesystem being mounted at /142/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  255.474082][ T5223] EXT4-fs (loop5): unmounting filesystem.
[  255.487660][ T6333] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.762296][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  255.770939][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  255.793183][ T4299] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[  255.837863][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  255.880304][ T4299] hid-generic 0000:0000:0000.000C: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  255.920829][ T6361] loop2: detected capacity change from 0 to 1024
[  255.940696][ T6333] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.322660][ T6333] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.805841][ T6333] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  256.912943][ T6333] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  257.077565][ T6333] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  257.191388][ T6333] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  257.616387][ T6386] loop2: detected capacity change from 0 to 4096
[  257.871471][ T6386] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  259.619570][   T27] audit: type=1800 audit(1744794881.803:145): pid=6386 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.667" name="bus" dev="loop2" ino=18 res=0 errno=0
[  259.680099][ T6384] loop0: detected capacity change from 0 to 8192
[  260.123810][ T4251] EXT4-fs (loop2): unmounting filesystem.
[  260.838344][ T6404] loop4: detected capacity change from 0 to 8192
[  260.983827][ T4299] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  261.076446][ T4299] hid-generic 0000:0000:0000.000D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  261.158168][ T6414] loop5: detected capacity change from 0 to 1024
[  261.716585][ T6423] loop1: detected capacity change from 0 to 128
[  264.686684][ T6447] loop4: detected capacity change from 0 to 2048
[  264.871026][ T6447] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  265.141297][ T6447] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  265.303774][ T6447] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  265.369354][ T6447] EXT4-fs (loop4): This should not happen!! Data will be lost
[  265.369354][ T6447] 
[  265.549638][ T6447] EXT4-fs (loop4): Total free blocks count 0
[  265.594546][ T6447] EXT4-fs (loop4): Free/Dirty block details
[  265.639386][ T6447] EXT4-fs (loop4): free_blocks=2415919104
[  265.699350][ T6447] EXT4-fs (loop4): dirty_blocks=16
[  265.739452][ T6465] loop2: detected capacity change from 0 to 512
[  265.747712][ T6447] EXT4-fs (loop4): Block reservation details
[  265.774239][ T6447] EXT4-fs (loop4): i_reserved_data_blocks=1
[  265.858606][ T6465] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  265.942205][ T6465] ext4 filesystem being mounted at /133/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  266.052633][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  266.544492][ T4251] EXT4-fs (loop2): unmounting filesystem.
[  268.404931][ T6495] usb usb8: usbfs: process 6495 (syz.1.698) did not claim interface 0 before use
[  268.778038][ T6501] loop4: detected capacity change from 0 to 128
[  270.049820][ T4330] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  270.610154][ T6516] loop5: detected capacity change from 0 to 512
[  270.711148][ T6516] EXT4-fs: Ignoring removed nobh option
[  270.851243][ T6516] fscrypt (loop5, inode 2): Error -61 getting encryption context
[  270.932917][ T6516] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -61
[  271.021581][ T6516] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #13: comm syz.5.702: casefold flag without casefold feature
[  271.127075][ T6516] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.702: couldn't read orphan inode 13 (err -117)
[  271.249833][ T6516] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  271.744832][ T4295] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  271.794770][ T4295] hid-generic 0000:0000:0000.000E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  271.820642][ T6532] EXT4-fs (loop5): re-mounted. Quota mode: writeback.
[  276.800007][ T6565] dccp_close: ABORT with 52 bytes unread
[  277.464545][ T6578] netlink: 24 bytes leftover after parsing attributes in process `syz.4.722'.
[  279.189781][ T6589] loop0: detected capacity change from 0 to 512
[  279.275178][ T6589] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  279.319479][ T6589] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  279.456317][ T6589] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[  280.037112][ T6589] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  280.061268][ T6589] System zones: 0-2, 18-18, 34-35
[  280.099272][ T6589] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  280.175706][ T6600] tipc: Cannot configure node identity twice
[  280.548942][ T4250] EXT4-fs (loop0): unmounting filesystem.
[  280.983620][   T22] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  281.189353][   T22] usb 5-1: Using ep0 maxpacket: 32
[  281.205937][   T22] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  281.256267][   T22] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  281.294941][ T6608] netlink: 'syz.2.735': attribute type 4 has an invalid length.
[  281.307855][   T22] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  281.329262][   T22] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  281.353599][ T6611] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.734'.
[  281.382411][   T22] usb 5-1: config 0 descriptor??
[  281.618799][ T5223] EXT4-fs (loop5): unmounting filesystem.
[  283.517859][ T6634] loop5: detected capacity change from 0 to 512
[  283.561819][ T6634] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  283.574644][ T6634] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  283.608089][ T6634] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended
[  283.653764][ T6634] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  283.708173][ T6634] System zones: 0-2, 18-18, 34-35
[  283.750043][ T6634] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  283.879223][ T5223] EXT4-fs (loop5): unmounting filesystem.
[  284.084151][ T5682] usb 5-1: USB disconnect, device number 9
[  284.466085][ T6650] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.749'.
[  284.911942][   T27] audit: type=1326 audit(1744794907.103:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.4.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  284.941265][ T6653] loop2: detected capacity change from 0 to 2048
[  285.036913][ T6660] loop0: detected capacity change from 0 to 128
[  285.080477][ T6653] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  285.091643][ T6663] netlink: 8 bytes leftover after parsing attributes in process `syz.5.754'.
[  285.111161][   T27] audit: type=1326 audit(1744794907.103:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.4.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  285.139110][   T27] audit: type=1326 audit(1744794907.153:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.4.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  285.167795][   T27] audit: type=1326 audit(1744794907.153:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.4.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  285.197238][   T27] audit: type=1326 audit(1744794907.153:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.4.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  285.226126][   T27] audit: type=1326 audit(1744794907.153:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.4.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  285.234219][ T4330] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  285.254890][   T27] audit: type=1326 audit(1744794907.183:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.4.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  285.297223][ T6663] device macvtap0 entered promiscuous mode
[  285.332018][   T27] audit: type=1326 audit(1744794907.183:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.4.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  285.341140][ T6663] device macvtap0 left promiscuous mode
[  285.376121][   T27] audit: type=1326 audit(1744794907.183:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.4.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  285.405414][   T27] audit: type=1326 audit(1744794907.183:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.4.753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  285.731535][ T4251] EXT4-fs (loop2): unmounting filesystem.
[  286.299396][ T4329] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  286.519252][ T4329] usb 5-1: Using ep0 maxpacket: 32
[  287.773440][ T4329] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  287.819170][ T4329] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  287.831856][ T4329] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  287.844245][ T4329] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  287.881562][ T4329] usb 5-1: config 0 descriptor??
[  292.579832][ T4268] Bluetooth: hci3: command 0x0406 tx timeout
[  293.351832][ T4296] usb 5-1: USB disconnect, device number 10
[  293.658535][ T6711] loop4: detected capacity change from 0 to 512
[  293.767929][ T6711] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  293.803669][ T6715] loop0: detected capacity change from 0 to 128
[  293.811917][ T6715] EXT4-fs: Ignoring removed bh option
[  293.817818][ T6715] EXT4-fs: Ignoring removed nobh option
[  293.847342][ T6711] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  293.888985][ T6715] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  293.898888][ T6715] ext4 filesystem being mounted at /149/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  294.120513][ T6711] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[  294.144494][ T6711] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  294.170930][ T6711] System zones: 0-2, 18-18, 34-35
[  294.229817][ T6711] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  294.252498][ T4250] EXT4-fs (loop0): unmounting filesystem.
[  294.477090][ T6724] netlink: 8 bytes leftover after parsing attributes in process `+}[@'.
[  294.586351][ T6724] IPVS: Error joining to the multicast group
[  294.638442][ T6727] loop0: detected capacity change from 0 to 128
[  294.692857][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  295.111732][ T6728] device syzkaller0 entered promiscuous mode
[  295.118174][ T6737] loop5: detected capacity change from 0 to 128
[  295.154733][ T6737] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  295.244665][ T6737] ext4 filesystem being mounted at /76/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  295.310650][ T5683] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  295.344723][ T6731] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  295.401201][ T6734] netlink: 'syz.2.779': attribute type 10 has an invalid length.
[  295.417536][ T6734] netlink: 40 bytes leftover after parsing attributes in process `syz.2.779'.
[  295.461841][ T6734] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  295.539562][ T5683] usb 5-1: Using ep0 maxpacket: 32
[  295.549408][ T6731] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  295.567485][ T5683] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  295.583313][ T5683] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  295.596064][ T5683] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  295.608009][ T5683] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  295.683084][ T5683] usb 5-1: config 0 descriptor??
[  295.714740][ T6742] netlink: 'syz.0.782': attribute type 4 has an invalid length.
[  295.734079][ T5223] EXT4-fs (loop5): unmounting filesystem.
[  297.554336][   T27] kauditd_printk_skb: 16 callbacks suppressed
[  297.554355][   T27] audit: type=1326 audit(1744794919.743:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.0.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  297.608065][   T27] audit: type=1326 audit(1744794919.743:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.0.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  297.631520][ T6758] loop5: detected capacity change from 0 to 128
[  297.632729][ T6758] EXT4-fs: Ignoring removed bh option
[  297.632771][ T6758] EXT4-fs: Ignoring removed nobh option
[  297.733852][   T27] audit: type=1326 audit(1744794919.743:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.0.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  297.759612][ T6758] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  297.770167][ T6758] ext4 filesystem being mounted at /79/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  297.773561][   T27] audit: type=1326 audit(1744794919.743:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.0.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  297.900168][ T5223] EXT4-fs (loop5): unmounting filesystem.
[  297.912345][   T27] audit: type=1326 audit(1744794919.743:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.0.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  297.983807][   T27] audit: type=1326 audit(1744794919.743:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.0.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=37 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  298.081462][   T27] audit: type=1326 audit(1744794919.743:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.0.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  298.146132][   T27] audit: type=1326 audit(1744794919.743:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.0.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  298.190113][   T27] audit: type=1326 audit(1744794919.743:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.0.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  298.297066][ T4329] usb 5-1: USB disconnect, device number 11
[  298.312399][   T27] audit: type=1326 audit(1744794919.743:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.0.786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  300.228589][ T6781] capability: warning: `syz.5.795' uses deprecated v2 capabilities in a way that may be insecure
[  301.266342][ T6792] netlink: 16 bytes leftover after parsing attributes in process `syz.5.799'.
[  302.723939][ T6731] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  302.776059][ T6783] IPv6: ADDRCONF(NETDEV_CHANGE): nr16: link becomes ready
[  303.200610][ T6731] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  303.429377][ T4329] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  303.650941][ T4329] usb 1-1: Using ep0 maxpacket: 32
[  303.664272][ T4329] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  303.679189][ T6731] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  303.704885][ T4329] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  303.734896][ T6731] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  303.745752][ T4329] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  303.769381][ T4329] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  303.807988][ T6731] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  303.831050][ T4329] usb 1-1: config 0 descriptor??
[  303.887415][ T6731] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  304.216653][ T4298] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  304.271760][ T4298] hid-generic 0000:0000:0000.000F: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  304.335816][ T6813] loop1: detected capacity change from 0 to 1024
[  305.403587][ T6821] loop5: detected capacity change from 0 to 512
[  305.485778][ T6821] __quota_error: 7 callbacks suppressed
[  305.485838][ T6821] Quota error (device loop5): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  305.507861][ T6821] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0
[  305.565393][ T6821] EXT4-fs error (device loop5): ext4_acquire_dquot:6802: comm syz.5.810: Failed to acquire dquot type 0
[  305.739658][ T6821] Quota error (device loop5): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  305.802700][ T6821] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0
[  305.843539][ T6821] EXT4-fs error (device loop5): ext4_acquire_dquot:6802: comm syz.5.810: Failed to acquire dquot type 0
[  305.905442][ T6821] Quota error (device loop5): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0
[  306.020552][ T6821] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0
[  306.127040][ T6821] EXT4-fs error (device loop5): ext4_acquire_dquot:6802: comm syz.5.810: Failed to acquire dquot type 0
[  306.205985][ T6821] EXT4-fs (loop5): 1 orphan inode deleted
[  306.278154][ T6821] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  306.302786][ T6821] ext4 filesystem being mounted at /89/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  306.560101][ T4298] usb 1-1: USB disconnect, device number 3
[  306.937443][ T6844] loop1: detected capacity change from 0 to 512
[  306.955818][ T6844] EXT4-fs: Ignoring removed orlov option
[  310.129189][ T6844] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities
[  310.287655][ T5223] EXT4-fs (loop5): unmounting filesystem.
[  310.734399][ T6860] netlink: 'syz.2.824': attribute type 2 has an invalid length.
[  311.232559][ T5682] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  311.239745][ T6866] loop5: detected capacity change from 0 to 512
[  311.283731][ T6868] loop0: detected capacity change from 0 to 1024
[  311.285187][ T6866] EXT4-fs (loop5): failed to initialize system zone (-117)
[  311.299595][ T5682] hid-generic 0000:0000:0000.0010: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  311.337929][ T6866] EXT4-fs (loop5): mount failed
[  311.384720][ T6873] loop2: detected capacity change from 0 to 512
[  311.478391][ T6873] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  311.509375][ T6873] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  311.592929][ T6873] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[  311.723801][ T6876] netlink: 16 bytes leftover after parsing attributes in process `syz.4.831'.
[  311.989286][ T6873] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  312.002590][ T6873] System zones: 0-2, 18-18, 34-35
[  312.010347][ T6873] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  313.769439][ T4251] EXT4-fs (loop2): unmounting filesystem.
[  314.461322][ T6894] loop2: detected capacity change from 0 to 128
[  314.957230][ T6901] loop2: detected capacity change from 0 to 512
[  315.135470][ T6901] Quota error (device loop2): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  315.204373][ T6901] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  315.217918][ T6901] EXT4-fs error (device loop2): ext4_acquire_dquot:6802: comm syz.2.840: Failed to acquire dquot type 1
[  315.286078][ T6901] EXT4-fs (loop2): 1 truncate cleaned up
[  315.340687][ T6901] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  315.403785][ T6901] ext4 filesystem being mounted at /159/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  315.694559][ T4296] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  315.770305][ T4296] hid-generic 0000:0000:0000.0011: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  315.803012][ T6913] loop1: detected capacity change from 0 to 1024
[  315.871919][ T4251] EXT4-fs (loop2): unmounting filesystem.
[  317.321044][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  317.329928][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  317.540976][ T6928] netlink: 'syz.0.850': attribute type 7 has an invalid length.
[  317.600892][ T6928] netlink: 8 bytes leftover after parsing attributes in process `syz.0.850'.
[  317.736409][ T6923] loop5: detected capacity change from 0 to 1024
[  317.855113][ T6923] EXT4-fs: Ignoring removed oldalloc option
[  317.934405][ T6923] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  318.154865][ T6923] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  318.553174][ T5223] EXT4-fs (loop5): unmounting filesystem.
[  319.066410][ T6950] sctp: [Deprecated]: syz.5.856 (pid 6950) Use of int in maxseg socket option.
[  319.066410][ T6950] Use struct sctp_assoc_value instead
[  319.148457][ T6952] loop4: detected capacity change from 0 to 512
[  319.241453][ T6952] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  319.388882][ T6952] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  319.409470][ T6952] ext4 filesystem being mounted at /182/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  319.499302][  T127] usb 6-1: new low-speed USB device number 2 using dummy_hcd
[  320.567156][  T127] usb 6-1: device descriptor read/64, error -71
[  320.849309][  T127] usb 6-1: new low-speed USB device number 3 using dummy_hcd
[  321.059489][  T127] usb 6-1: device descriptor read/64, error -71
[  321.190793][  T127] usb usb6-port1: attempt power cycle
[  321.619198][  T127] usb 6-1: new low-speed USB device number 4 using dummy_hcd
[  321.658332][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  321.672301][  T127] usb 6-1: device descriptor read/8, error -71
[  321.959223][  T127] usb 6-1: new low-speed USB device number 5 using dummy_hcd
[  322.017414][ T6979] loop4: detected capacity change from 0 to 1024
[  322.044717][  T127] usb 6-1: device descriptor read/8, error -71
[  322.094023][ T6979] EXT4-fs: Ignoring removed oldalloc option
[  322.179418][ T6979] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  322.199347][  T127] usb usb6-port1: unable to enumerate USB device
[  322.331731][ T6979] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  322.777219][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  323.555551][ T7002] loop1: detected capacity change from 0 to 128
[  323.732810][ T4330] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  324.277764][ T7018] loop4: detected capacity change from 0 to 512
[  324.353190][ T7018] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  324.402474][ T7018] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00cc128, mo2=0002]
[  324.429479][ T7018] System zones: 1-12
[  324.460521][ T7018] EXT4-fs (loop4): 1 truncate cleaned up
[  324.466732][ T7018] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  324.822760][ T7028] loop5: detected capacity change from 0 to 1024
[  324.875836][ T7028] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  324.957217][ T7028] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  324.991292][ T7028] EXT4-fs (loop5): orphan cleanup on readonly fs
[  325.053158][ T7028] EXT4-fs error (device loop5): __ext4_get_inode_loc:4506: comm syz.5.885: Invalid inode table block 0 in block_group 0
[  325.150874][ T7028] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5885: Corrupt filesystem
[  325.202321][ T7028] EXT4-fs error (device loop5): ext4_quota_write:7197: inode #3: comm syz.5.885: mark_inode_dirty error
[  325.256652][ T7028] Quota error (device loop5): write_blk: dquota write failed
[  325.299780][ T7028] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  325.345257][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  325.358823][ T7028] EXT4-fs error (device loop5): ext4_acquire_dquot:6802: comm syz.5.885: Failed to acquire dquot type 0
[  325.477399][ T7028] EXT4-fs error (device loop5): __ext4_get_inode_loc:4506: comm syz.5.885: Invalid inode table block 0 in block_group 0
[  325.547827][ T7028] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5885: Corrupt filesystem
[  325.630282][ T7028] EXT4-fs error (device loop5): ext4_ext_truncate:4453: inode #15: comm syz.5.885: mark_inode_dirty error
[  325.722750][ T7028] EXT4-fs error (device loop5): __ext4_get_inode_loc:4506: comm syz.5.885: Invalid inode table block 0 in block_group 0
[  325.795301][ T7028] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5885: Corrupt filesystem
[  325.823870][ T7028] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  325.847980][ T7028] EXT4-fs error (device loop5): __ext4_get_inode_loc:4506: comm syz.5.885: Invalid inode table block 0 in block_group 0
[  325.929269][ T7028] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5885: Corrupt filesystem
[  325.999327][ T7028] EXT4-fs error (device loop5): ext4_truncate:4311: inode #15: comm syz.5.885: mark_inode_dirty error
[  326.045906][ T7028] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  326.118646][ T7028] EXT4-fs (loop5): 1 truncate cleaned up
[  326.146899][ T7028] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  326.241730][ T7044] netlink: 'syz.4.892': attribute type 2 has an invalid length.
[  326.418027][ T7028] EXT4-fs error (device loop5): __ext4_get_inode_loc:4506: comm syz.5.885: Invalid inode table block 0 in block_group 0
[  326.781433][ T5223] EXT4-fs (loop5): unmounting filesystem.
[  327.103642][ T7056] loop5: detected capacity change from 0 to 512
[  327.236481][ T7056] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2
[  327.268547][ T7056] EXT4-fs (loop5): 1 truncate cleaned up
[  327.293685][ T7061] loop1: detected capacity change from 0 to 512
[  327.319271][ T7056] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  327.332452][ T7061] EXT4-fs: Ignoring removed orlov option
[  327.343376][ T7061] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  327.375298][ T7061] EXT4-fs error (device loop1): dx_probe:823: inode #2: comm syz.1.900: Attempting to read directory block (0) that is past i_size (256)
[  327.403041][ T7061] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[  327.406574][ T7056] EXT4-fs (loop5): re-mounted. Quota mode: writeback.
[  327.414110][ T7061] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  327.502774][ T7061] EXT4-fs error (device loop1): dx_probe:823: inode #2: comm syz.1.900: Attempting to read directory block (0) that is past i_size (256)
[  327.520685][ T7064] loop4: detected capacity change from 0 to 128
[  327.529581][ T7064] EXT4-fs: Ignoring removed bh option
[  327.536859][ T7064] EXT4-fs: Ignoring removed nobh option
[  327.566352][ T7064] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  327.577858][ T7064] ext4 filesystem being mounted at /191/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  328.003074][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  328.090950][ T7067] netlink: 4 bytes leftover after parsing attributes in process `syz.1.900'.
[  328.166722][ T5223] EXT4-fs (loop5): unmounting filesystem.
[  328.475738][  T127] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  328.519440][  T127] hid-generic 0000:0000:0000.0012: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  328.571119][ T7072] loop5: detected capacity change from 0 to 1024
[  330.410748][ T7094] syz.0.913 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  330.590769][ T7097] loop5: detected capacity change from 0 to 512
[  330.666581][ T7097] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  330.829578][ T7097] EXT4-fs (loop5): 1 truncate cleaned up
[  330.835805][ T7097] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  330.959527][ T6989] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 255: padding at end of block bitmap is not set
[  331.353187][ T5223] EXT4-fs (loop5): unmounting filesystem.
[  331.637119][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  331.654937][ T7112] loop2: detected capacity change from 0 to 128
[  331.732132][ T7112] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  331.798776][ T7112] ext4 filesystem being mounted at /180/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  334.025359][ T4251] EXT4-fs (loop2): unmounting filesystem.
[  334.123086][ T7128] loop1: detected capacity change from 0 to 128
[  334.523436][ T4298] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  334.564649][ T4298] hid-generic 0000:0000:0000.0013: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  334.628761][ T7136] loop4: detected capacity change from 0 to 1024
[  334.820594][ T7141] loop0: detected capacity change from 0 to 512
[  334.906377][ T7141] EXT4-fs: Ignoring removed orlov option
[  334.991050][ T7141] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  335.141660][ T7141] EXT4-fs error (device loop0): dx_probe:823: inode #2: comm syz.0.931: Attempting to read directory block (0) that is past i_size (256)
[  335.260207][ T7141] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117
[  335.297995][ T7141] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  335.358977][ T7147] netlink: 8 bytes leftover after parsing attributes in process `syz.4.933'.
[  335.423452][ T7141] EXT4-fs error (device loop0): dx_probe:823: inode #2: comm syz.0.931: Attempting to read directory block (0) that is past i_size (256)
[  335.910231][ T7154] netlink: 4 bytes leftover after parsing attributes in process `syz.0.931'.
[  336.704494][ T4250] EXT4-fs (loop0): unmounting filesystem.
[  336.908840][ T7163] loop2: detected capacity change from 0 to 128
[  336.973712][ T7159] loop1: detected capacity change from 0 to 8192
[  338.838931][ T7183] netlink: 8 bytes leftover after parsing attributes in process `syz.5.945'.
[  339.354829][ T7174] FAT-fs (loop1): error, corrupted directory (invalid entries)
[  339.485807][ T7174] FAT-fs (loop1): Filesystem has been set read-only
[  339.590421][ T7175] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[  340.138768][ T7204] random: crng reseeded on system resumption
[  340.281232][   T27] audit: type=1326 audit(1744794962.473:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.0.953" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd38db8e169 code=0x0
[  340.487616][ T7212] loop1: detected capacity change from 0 to 128
[  342.852484][ T7224] loop4: detected capacity change from 0 to 128
[  343.099492][ T7228] netlink: 8 bytes leftover after parsing attributes in process `syz.5.960'.
[  344.235545][ T7244] loop0: detected capacity change from 0 to 1024
[  344.442128][ T7244] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  346.179410][ T7258] netlink: 'syz.0.966': attribute type 3 has an invalid length.
[  347.174194][ T7269] program syz.1.971 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  348.808063][ T7293] loop5: detected capacity change from 0 to 128
[  348.953291][ T4330] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  349.087558][ T7273] infiniband syz0: set active
[  349.165227][ T7273] infiniband syz0: added bond0
[  349.304108][ T7273] rdma_rxe: unable to create cq
[  349.429271][ T7273] infiniband syz0: Couldn't create ib_mad CQ
[  349.497689][ T7273] infiniband syz0: Couldn't open port 1
[  351.301636][ T7273] RDS/IB: syz0: added
[  351.307595][ T7273] smc: adding ib device syz0 with port count 1
[  351.344229][ T7273] smc:    ib device syz0 port 1 has pnetid 
[  351.660562][ T7308] program syz.1.984 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  351.681878][ T4250] EXT4-fs (loop0): unmounting filesystem.
[  352.205748][ T7316] netlink: 16 bytes leftover after parsing attributes in process `syz.1.988'.
[  352.388562][ T7318] loop4: detected capacity change from 0 to 1024
[  352.440975][ T7318] EXT4-fs: Ignoring removed oldalloc option
[  352.460197][ T7318] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  352.652281][ T7318] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  353.274541][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  355.799700][ T7355] program syz.4.999 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  356.832618][ T7366] loop0: detected capacity change from 0 to 1024
[  356.855299][ T7366] EXT4-fs: Ignoring removed oldalloc option
[  356.899640][ T7366] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  356.941672][ T7369] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1007'.
[  356.992130][ T7369] bridge0: port 2(bridge_slave_1) entered disabled state
[  357.031329][ T7366] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  357.200955][ T7369] device bridge_slave_1 left promiscuous mode
[  357.222001][ T4250] EXT4-fs (loop0): unmounting filesystem.
[  357.226287][ T7369] bridge0: port 2(bridge_slave_1) entered disabled state
[  357.949287][ T7384] loop4: detected capacity change from 0 to 128
[  358.139281][ T7386] program syz.1.1012 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  359.478695][ T7404] loop1: detected capacity change from 0 to 128
[  359.575683][ T7404] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  359.717970][ T7404] ext4 filesystem being mounted at /224/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  360.468496][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  360.477066][ T7417] program syz.5.1025 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  360.689129][ T7419] netlink: 'syz.0.1024': attribute type 10 has an invalid length.
[  360.697664][ T7419] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1024'.
[  360.780023][ T7419] device dummy0 entered promiscuous mode
[  360.839652][ T7419] bridge0: port 3(dummy0) entered blocking state
[  360.861282][ T7419] bridge0: port 3(dummy0) entered disabled state
[  360.937241][ T7419] bridge0: port 3(dummy0) entered blocking state
[  360.944326][ T7419] bridge0: port 3(dummy0) entered forwarding state
[  361.144216][ T4262] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  361.158106][ T4262] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  361.168497][ T4262] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  361.193304][ T4262] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  361.210475][ T4262] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  361.229822][ T4262] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  362.158242][   T46] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  362.266264][ T4296] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  362.344517][ T4296] hid-generic 0000:0000:0000.0014: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  362.364374][   T46] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  362.415076][ T7446] loop1: detected capacity change from 0 to 1024
[  362.586595][   T46] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  362.605596][ T4330] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  362.659890][ T7449] program syz.5.1037 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  362.818090][   T46] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  363.114026][ T7457] loop5: detected capacity change from 0 to 512
[  363.152760][ T7457] EXT4-fs: Ignoring removed orlov option
[  363.169949][ T7457] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  363.240800][ T7457] EXT4-fs error (device loop5): dx_probe:823: inode #2: comm syz.5.1041: Attempting to read directory block (0) that is past i_size (256)
[  363.281474][ T4264] Bluetooth: hci2: command 0x0409 tx timeout
[  363.295122][ T7457] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117
[  363.309280][ T7457] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  363.400169][ T7457] EXT4-fs error (device loop5): dx_probe:823: inode #2: comm syz.5.1041: Attempting to read directory block (0) that is past i_size (256)
[  363.682165][ T7463] loop1: detected capacity change from 0 to 16
[  363.791619][ T7463] erofs: (device loop1): mounted with root inode @ nid 36.
[  363.918297][ T7467] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1041'.
[  364.536883][ T5223] EXT4-fs (loop5): unmounting filesystem.
[  364.949638][ T7428] chnl_net:caif_netlink_parms(): no params data found
[  365.359237][ T4264] Bluetooth: hci2: command 0x041b tx timeout
[  365.809803][ T7491] loop5: detected capacity change from 0 to 128
[  365.932080][ T7428] bridge0: port 1(bridge_slave_0) entered blocking state
[  365.979603][ T7428] bridge0: port 1(bridge_slave_0) entered disabled state
[  366.039363][ T7428] device bridge_slave_0 entered promiscuous mode
[  366.477615][ T7498] syz.1.1042: attempt to access beyond end of device
[  366.477615][ T7498] loop1: rw=0, sector=8, nr_sectors = 16 limit=16
[  366.507223][ T7498] syz.1.1042: attempt to access beyond end of device
[  366.507223][ T7498] loop1: rw=0, sector=296, nr_sectors = 16 limit=16
[  366.524325][ T7498] erofs: (device loop1): erofs_readdir: fail to readdir of logical block 0 of nid 36
[  367.265341][ T7428] bridge0: port 2(bridge_slave_1) entered blocking state
[  367.309398][ T7428] bridge0: port 2(bridge_slave_1) entered disabled state
[  367.388508][ T7428] device bridge_slave_1 entered promiscuous mode
[  367.423819][ T7504] program syz.5.1050 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  367.439477][ T4264] Bluetooth: hci2: command 0x040f tx timeout
[  367.746966][ T7508] loop4: detected capacity change from 0 to 512
[  367.787538][ T7510] loop0: detected capacity change from 0 to 128
[  367.825688][ T7508] EXT4-fs: Ignoring removed orlov option
[  367.858322][ T7508] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  367.918348][ T7428] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  367.958073][ T7428] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  367.959506][ T4330] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  368.000708][ T7508] EXT4-fs error (device loop4): dx_probe:823: inode #2: comm syz.4.1053: Attempting to read directory block (0) that is past i_size (256)
[  368.145371][ T7508] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  368.199362][ T7508] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  368.337759][ T7428] team0: Port device team_slave_0 added
[  368.377672][ T7508] EXT4-fs error (device loop4): dx_probe:823: inode #2: comm syz.4.1053: Attempting to read directory block (0) that is past i_size (256)
[  368.503114][ T7428] team0: Port device team_slave_1 added
[  368.939406][ T7522] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1053'.
[  369.261444][ T7428] batman_adv: batadv0: Adding interface: batadv_slave_0
[  369.309153][ T7428] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  369.338926][   T22] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  369.440569][ T7428] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  369.519393][ T4264] Bluetooth: hci2: command 0x0419 tx timeout
[  369.543119][   T22] usb 6-1: Using ep0 maxpacket: 32
[  369.557651][   T22] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  369.589779][   T22] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  369.600015][ T7428] batman_adv: batadv0: Adding interface: batadv_slave_1
[  369.631404][ T7428] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  369.664763][   T22] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  369.664819][   T22] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  369.690370][   T22] usb 6-1: config 0 descriptor??
[  369.789337][ T7428] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  369.801539][ T7533] loop0: detected capacity change from 0 to 16
[  369.822051][ T7533] erofs: (device loop0): mounted with root inode @ nid 36.
[  374.505360][   T22] usb 6-1: USB disconnect, device number 6
[  375.141907][ T7428] device hsr_slave_0 entered promiscuous mode
[  375.224639][ T7428] device hsr_slave_1 entered promiscuous mode
[  375.293702][ T7515] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 255: padding at end of block bitmap is not set
[  375.382976][ T7544] program syz.1.1063 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  375.394376][ T7428] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  375.443397][ T7428] Cannot create hsr debugfs directory
[  376.227696][   T46] device hsr_slave_0 left promiscuous mode
[  376.248350][   T46] device hsr_slave_1 left promiscuous mode
[  376.284073][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  376.313185][   T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[  376.354649][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  376.392789][   T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[  376.439604][   T46] device bridge_slave_1 left promiscuous mode
[  376.484430][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  376.590068][   T46] device bridge_slave_0 left promiscuous mode
[  376.603939][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  376.881434][   T46] device veth1_macvtap left promiscuous mode
[  376.888103][   T46] device veth0_macvtap left promiscuous mode
[  376.939634][   T46] device veth1_vlan left promiscuous mode
[  376.986683][   T46] device veth0_vlan left promiscuous mode
[  377.129154][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  377.489817][ T7581] process 'syz.0.1071' launched './file0' with NULL argv: empty string added
[  377.544609][   T46] infiniband syz0: set down
[  377.849335][   T27] audit: type=1326 audit(1744795000.023:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7583 comm="syz.0.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  378.008460][   T27] audit: type=1326 audit(1744795000.023:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7583 comm="syz.0.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  378.229340][   T27] audit: type=1326 audit(1744795000.023:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7583 comm="syz.0.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  378.347521][   T27] audit: type=1326 audit(1744795000.023:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7583 comm="syz.0.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  378.374010][   T27] audit: type=1326 audit(1744795000.023:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7583 comm="syz.0.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  378.412727][ T7589] loop0: detected capacity change from 0 to 16
[  378.438618][ T7589] erofs: (device loop0): mounted with root inode @ nid 36.
[  378.463478][   T27] audit: type=1326 audit(1744795000.023:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7583 comm="syz.0.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  378.511172][   T27] audit: type=1326 audit(1744795000.023:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7583 comm="syz.0.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  378.815001][ T1273] ieee802154 phy0 wpan0: encryption failed: -22
[  378.825865][ T1273] ieee802154 phy1 wpan1: encryption failed: -22
[  378.853596][   T27] audit: type=1326 audit(1744795000.063:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7583 comm="syz.0.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  379.080574][ T7595] syz.0.1074: attempt to access beyond end of device
[  379.080574][ T7595] loop0: rw=0, sector=8, nr_sectors = 16 limit=16
[  379.105016][ T7595] syz.0.1074: attempt to access beyond end of device
[  379.105016][ T7595] loop0: rw=0, sector=296, nr_sectors = 16 limit=16
[  379.119554][ T7595] erofs: (device loop0): erofs_readdir: fail to readdir of logical block 0 of nid 36
[  379.303901][   T27] audit: type=1326 audit(1744795000.063:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7583 comm="syz.0.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  379.384764][   T27] audit: type=1326 audit(1744795000.063:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7583 comm="syz.0.1073" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd38db8e169 code=0x7ffc0000
[  380.216639][   T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  380.322423][   T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  380.880755][ T4300] smc: removing ib device syz0
[  380.893680][   T46] bond0 (unregistering): (slave bridge0): Releasing backup interface
[  380.905259][   T46] bond0 (unregistering): Released all slaves
[  381.056411][ T7561] dummy0 speed is unknown, defaulting to 1000
[  381.076405][ T4296] bond0 speed is unknown, defaulting to 1000
[  381.109952][ T7561] dummy0 speed is unknown, defaulting to 1000
[  381.184804][ T7561] dummy0 speed is unknown, defaulting to 1000
[  381.264920][ T7561] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  381.378060][ T7561] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  381.624010][ T7561] dummy0 speed is unknown, defaulting to 1000
[  381.717324][ T7561] dummy0 speed is unknown, defaulting to 1000
[  381.743282][ T7561] dummy0 speed is unknown, defaulting to 1000
[  381.803893][ T7561] dummy0 speed is unknown, defaulting to 1000
[  381.815506][ T7617] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1086'.
[  381.867217][ T7561] dummy0 speed is unknown, defaulting to 1000
[  381.985387][ T7428] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  382.052825][ T7428] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  382.148104][ T7428] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  382.217387][ T7428] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  382.236658][ T7621] loop0: detected capacity change from 0 to 512
[  382.282389][ T7621] EXT4-fs: Ignoring removed orlov option
[  382.328084][ T7621] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  382.474011][ T7621] EXT4-fs error (device loop0): dx_probe:823: inode #2: comm syz.0.1079: Attempting to read directory block (0) that is past i_size (256)
[  382.491987][ T7621] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117
[  382.644091][ T7621] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  382.702136][ T7621] EXT4-fs error (device loop0): dx_probe:823: inode #2: comm syz.0.1079: Attempting to read directory block (0) that is past i_size (256)
[  383.229389][ T7634] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1079'.
[  383.699995][ T7428] 8021q: adding VLAN 0 to HW filter on device bond0
[  383.830882][ T4250] EXT4-fs (loop0): unmounting filesystem.
[  383.857362][ T6704] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  383.911036][ T6704] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  384.010718][ T7428] 8021q: adding VLAN 0 to HW filter on device team0
[  384.044283][   T27] kauditd_printk_skb: 18 callbacks suppressed
[  384.044332][   T27] audit: type=1326 audit(1744795006.233:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7641 comm="syz.4.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  384.073558][ T6704] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  384.150107][ T6704] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  384.243560][ T6704] bridge0: port 1(bridge_slave_0) entered blocking state
[  384.247485][   T27] audit: type=1326 audit(1744795006.273:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7641 comm="syz.4.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  384.251342][ T6704] bridge0: port 1(bridge_slave_0) entered forwarding state
[  384.524585][ T7647] loop5: detected capacity change from 0 to 16
[  384.549279][   T27] audit: type=1326 audit(1744795006.273:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7641 comm="syz.4.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  384.569527][ T6704] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  384.589392][ T7647] erofs: (device loop5): mounted with root inode @ nid 36.
[  385.121143][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  385.305509][ T7652] syz.5.1085: attempt to access beyond end of device
[  385.305509][ T7652] loop5: rw=0, sector=8, nr_sectors = 16 limit=16
[  385.332497][ T7652] syz.5.1085: attempt to access beyond end of device
[  385.332497][ T7652] loop5: rw=0, sector=296, nr_sectors = 16 limit=16
[  385.346986][ T7652] erofs: (device loop5): erofs_readdir: fail to readdir of logical block 0 of nid 36
[  385.529222][   T27] audit: type=1326 audit(1744795006.283:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7641 comm="syz.4.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  385.637115][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  385.770477][ T4378] bridge0: port 2(bridge_slave_1) entered blocking state
[  385.778353][ T4378] bridge0: port 2(bridge_slave_1) entered forwarding state
[  385.844803][   T27] audit: type=1326 audit(1744795006.303:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7641 comm="syz.4.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  385.933476][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  385.997568][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  386.029747][   T27] audit: type=1326 audit(1744795006.303:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7641 comm="syz.4.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  386.083884][   T27] audit: type=1326 audit(1744795006.313:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7641 comm="syz.4.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  386.104654][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  386.137533][   T27] audit: type=1326 audit(1744795006.313:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7641 comm="syz.4.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  386.211272][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  386.270975][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  386.327120][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  386.370467][   T27] audit: type=1326 audit(1744795006.313:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7641 comm="syz.4.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  386.397517][   T27] audit: type=1326 audit(1744795006.313:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7641 comm="syz.4.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85aed8e169 code=0x7ffc0000
[  386.435580][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  386.570789][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  386.656342][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  386.737980][ T7428] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  386.857069][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  386.876738][ T4414] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  386.894482][ T7666] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1091'.
[  387.217122][ T7669] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1092'.
[  387.311440][ T7675] loop0: detected capacity change from 0 to 512
[  387.346349][ T7675] EXT4-fs: Ignoring removed orlov option
[  387.387642][ T7675] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  387.522192][ T7675] EXT4-fs error (device loop0): dx_probe:823: inode #2: comm syz.0.1094: Attempting to read directory block (0) that is past i_size (256)
[  387.626251][ T7675] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117
[  387.636042][ T7675] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  387.721467][ T7675] EXT4-fs error (device loop0): dx_probe:823: inode #2: comm syz.0.1094: Attempting to read directory block (0) that is past i_size (256)
[  388.188898][ T7684] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1094'.
[  389.222790][ T4250] EXT4-fs (loop0): unmounting filesystem.
[  389.617843][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  389.645110][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  389.774810][ T7428] 8021q: adding VLAN 0 to HW filter on device batadv0
[  389.788950][ T7702] loop0: detected capacity change from 0 to 16
[  389.902254][ T7702] erofs: (device loop0): mounted with root inode @ nid 36.
[  392.326488][ T7734] loop5: detected capacity change from 0 to 512
[  392.353443][ T7741] syz.0.1099: attempt to access beyond end of device
[  392.353443][ T7741] loop0: rw=0, sector=8, nr_sectors = 16 limit=16
[  392.374682][ T7741] syz.0.1099: attempt to access beyond end of device
[  392.374682][ T7741] loop0: rw=0, sector=296, nr_sectors = 16 limit=16
[  392.389434][ T7741] erofs: (device loop0): erofs_readdir: fail to readdir of logical block 0 of nid 36
[  392.667742][ T7734] EXT4-fs (loop5): 1 orphan inode deleted
[  392.704060][ T4413] __quota_error: 25 callbacks suppressed
[  392.704105][ T4413] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  392.852017][ T7734] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  392.894484][ T4413] EXT4-fs error (device loop5): ext4_release_dquot:6825: comm kworker/u4:9: Failed to release dquot type 1
[  392.970198][ T7734] ext4 filesystem being mounted at /155/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  393.014823][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  393.058288][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  393.161827][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  393.191059][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  393.276963][ T7428] device veth0_vlan entered promiscuous mode
[  393.297881][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  393.326710][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  393.408223][ T7428] device veth1_vlan entered promiscuous mode
[  393.667755][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  393.690310][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  393.729571][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  393.755330][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  393.797411][ T7428] device veth0_macvtap entered promiscuous mode
[  393.870664][ T7428] device veth1_macvtap entered promiscuous mode
[  394.024519][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  394.092424][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  394.154304][ T7428] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  394.208890][ T7428] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.272600][ T7428] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  394.348167][ T7428] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.410281][ T7428] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  394.489239][ T7428] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.577590][ T7428] batman_adv: batadv0: Interface activated: batadv_slave_0
[  394.632185][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  394.664222][ T4413] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  394.720346][ T7428] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  394.760194][ T7428] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.803253][ T7428] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  394.845584][ T7428] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.899227][ T7428] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  394.968130][ T7428] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  395.068929][ T7767] loop4: detected capacity change from 0 to 512
[  395.091855][ T7428] batman_adv: batadv0: Interface activated: batadv_slave_1
[  395.119904][ T7767] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  395.142127][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  395.432636][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  395.547719][ T7767] EXT4-fs (loop4): 1 truncate cleaned up
[  395.588155][ T7767] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  395.641552][ T7428] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  395.707846][ T7428] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  395.719233][ T7428] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  395.730500][ T7428] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  395.860075][ T7780] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1119'.
[  396.081975][ T4253] EXT4-fs (loop4): unmounting filesystem.
[  396.349612][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  396.358665][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  396.429381][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  396.624149][ T7786] loop1: detected capacity change from 0 to 512
[  396.679660][ T4300] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  396.703951][ T4300] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  396.798279][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  396.801364][ T7786] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  396.892785][ T7786] ext4 filesystem being mounted at /252/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  397.270348][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  397.592900][ T5223] EXT4-fs (loop5): unmounting filesystem.
[  398.775699][ T7820] loop1: detected capacity change from 0 to 128
[  398.809590][ T7824] loop6: detected capacity change from 0 to 128
[  399.059289][ T4296] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  399.259140][ T4296] usb 5-1: Using ep0 maxpacket: 32
[  399.277006][ T4296] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  399.377173][ T4296] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  399.478916][ T4296] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  399.540189][ T4296] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  399.613699][ T4296] usb 5-1: config 0 descriptor??
[  399.643929][   T27] audit: type=1326 audit(1744795021.833:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7835 comm="syz.6.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecab18e169 code=0x7ffc0000
[  399.805638][   T27] audit: type=1326 audit(1744795021.873:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7835 comm="syz.6.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecab18e169 code=0x7ffc0000
[  400.251760][   T27] audit: type=1326 audit(1744795021.873:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7835 comm="syz.6.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fecab18e169 code=0x7ffc0000
[  402.038734][   T27] audit: type=1326 audit(1744795021.873:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7835 comm="syz.6.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecab18e169 code=0x7ffc0000
[  402.263893][   T27] audit: type=1326 audit(1744795021.873:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7835 comm="syz.6.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecab18e169 code=0x7ffc0000
[  402.366668][   T27] audit: type=1326 audit(1744795021.933:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7835 comm="syz.6.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=52 compat=0 ip=0x7fecab18e169 code=0x7ffc0000
[  402.396581][   T27] audit: type=1326 audit(1744795021.933:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7835 comm="syz.6.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecab18e169 code=0x7ffc0000
[  402.441190][   T27] audit: type=1326 audit(1744795021.933:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7835 comm="syz.6.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecab18e169 code=0x7ffc0000
[  402.685781][ T7865] loop0: detected capacity change from 0 to 164
[  402.762241][ T7865] iso9660: Corrupted directory entry in block 4 of inode 1792
[  402.830190][ T7869] loop6: detected capacity change from 0 to 128
[  403.030994][ T4298] usb 5-1: USB disconnect, device number 12
[  404.072396][ T7885] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  404.367686][ T7893] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1156'.
[  404.619850][ T7898] loop0: detected capacity change from 0 to 512
[  404.625390][ T7891] device syzkaller0 entered promiscuous mode
[  404.663850][ T7898] EXT4-fs (loop0): couldn't mount as ext2 due to feature incompatibilities
[  405.215844][ T7915] loop5: detected capacity change from 0 to 128
[  405.843166][ T7934] loop5: detected capacity change from 0 to 1024
[  405.929648][ T7934] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  406.524937][ T7939] netlink: 'syz.5.1162': attribute type 3 has an invalid length.
[  407.921780][ T7943] loop1: detected capacity change from 0 to 128
[  407.970969][ T5223] EXT4-fs (loop5): unmounting filesystem.
[  407.990821][ T7943] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  408.000866][ T7943] ext4 filesystem being mounted at /263/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  408.313159][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  408.431109][ T7950] random: crng reseeded on system resumption
[  409.738268][ T7954] ipt_REJECT: TCP_RESET invalid for non-tcp
[  410.618063][ T7959] loop5: detected capacity change from 0 to 128
[  411.935061][ T7965] loop5: detected capacity change from 0 to 16
[  411.964365][ T7965] erofs: (device loop5): mounted with root inode @ nid 36.
[  412.628560][ T7968] syz.5.1173: attempt to access beyond end of device
[  412.628560][ T7968] loop5: rw=0, sector=8, nr_sectors = 16 limit=16
[  412.660492][ T7968] syz.5.1173: attempt to access beyond end of device
[  412.660492][ T7968] loop5: rw=0, sector=296, nr_sectors = 16 limit=16
[  412.677689][ T7968] erofs: (device loop5): erofs_readdir: fail to readdir of logical block 0 of nid 36
[  413.610015][ T7904] netdevsim netdevsim6: loading /lib/firmware/. failed with error -22
[  413.640744][ T7904] netdevsim netdevsim6: Direct firmware load for . failed with error -22
[  413.677380][ T7904] netdevsim netdevsim6: Falling back to sysfs fallback for: .
[  413.791153][ T4296] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  414.000732][ T4296] usb 6-1: Using ep0 maxpacket: 32
[  414.019228][ T4296] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  414.079603][ T7977] loop6: detected capacity change from 0 to 128
[  414.109934][ T4296] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  414.147882][ T7976] loop0: detected capacity change from 0 to 1024
[  414.159141][ T4296] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  414.177901][ T4296] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  414.181705][ T7977] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  414.200943][ T4296] usb 6-1: config 0 descriptor??
[  414.349868][ T7977] ext4 filesystem being mounted at /9/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  414.405777][ T7976] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  417.215924][ T7428] EXT4-fs (loop6): unmounting filesystem.
[  417.280306][ T7993] netlink: 'syz.0.1176': attribute type 3 has an invalid length.
[  418.316183][ T4329] usb 6-1: USB disconnect, device number 7
[  418.413755][ T4250] EXT4-fs (loop0): unmounting filesystem.
[  418.498099][ T8016] loop6: detected capacity change from 0 to 16
[  418.539899][ T8016] erofs: (device loop6): mounted with root inode @ nid 36.
[  418.812123][ T8023] loop1: detected capacity change from 0 to 128
[  419.233408][ T4330] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  419.283481][ T8032] syz.6.1184: attempt to access beyond end of device
[  419.283481][ T8032] loop6: rw=0, sector=8, nr_sectors = 16 limit=16
[  419.303872][ T8032] syz.6.1184: attempt to access beyond end of device
[  419.303872][ T8032] loop6: rw=0, sector=296, nr_sectors = 16 limit=16
[  419.319140][ T8032] erofs: (device loop6): erofs_readdir: fail to readdir of logical block 0 of nid 36
[  419.697615][ T8034] device syzkaller0 entered promiscuous mode
[  420.989698][ T8042] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1191'.
[  421.306914][ T8042] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1191'.
[  422.593575][ T8052] loop5: detected capacity change from 0 to 1024
[  422.636758][ T8052] EXT4-fs: inline encryption not supported
[  422.797839][ T8052] EXT4-fs: Ignoring removed bh option
[  422.996352][ T8052] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  423.113801][ T8060] loop6: detected capacity change from 0 to 1024
[  423.190738][ T8060] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  423.407402][ T5223] EXT4-fs (loop5): unmounting filesystem.
[  423.726074][ T8064] netlink: 'syz.6.1196': attribute type 3 has an invalid length.
[  424.163809][ T7428] EXT4-fs (loop6): unmounting filesystem.
[  424.350786][ T8070] loop6: detected capacity change from 0 to 512
[  424.358731][ T8070] EXT4-fs: Ignoring removed mblk_io_submit option
[  424.391063][ T8070] ext4: Unknown parameter 'seclabel'
[  424.430736][ T4330] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  426.217787][ T8038] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1189'.
[  426.658912][ T8080] loop1: detected capacity change from 0 to 164
[  426.747437][ T8086] loop6: detected capacity change from 0 to 128
[  426.891799][ T8080] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  426.987162][ T8080] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  427.343954][ T8093] loop0: detected capacity change from 0 to 1024
[  427.441475][ T8093] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  427.862148][ T8102] syz.5.1209[8102] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  428.261853][ T8109] netlink: 'syz.0.1208': attribute type 3 has an invalid length.
[  429.090105][   T22] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  429.257085][ T4250] EXT4-fs (loop0): unmounting filesystem.
[  429.289368][   T22] usb 5-1: Using ep0 maxpacket: 32
[  429.298095][   T22] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  429.410097][   T22] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  429.471446][   T22] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  429.542719][   T22] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  429.622315][   T22] usb 5-1: config 0 descriptor??
[  430.119451][ T8127] device syzkaller0 entered promiscuous mode
[  430.127535][   T27] audit: type=1326 audit(1744795052.243:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8079 comm="syz.1.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f287f385127 code=0x7ffc0000
[  430.204704][   T27] audit: type=1326 audit(1744795052.243:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8079 comm="syz.1.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f287f32a359 code=0x7ffc0000
[  430.697543][   T27] audit: type=1326 audit(1744795052.243:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8079 comm="syz.1.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f287f38e169 code=0x7ffc0000
[  431.133365][   T27] audit: type=1326 audit(1744795052.243:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8079 comm="syz.1.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f287f38e169 code=0x7ffc0000
[  431.863313][   T27] audit: type=1326 audit(1744795052.253:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8079 comm="syz.1.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f287f385127 code=0x7ffc0000
[  431.987642][ T4298] usb 5-1: USB disconnect, device number 13
[  431.995398][   T27] audit: type=1326 audit(1744795052.263:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8079 comm="syz.1.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f287f32a359 code=0x7ffc0000
[  432.224096][   T27] audit: type=1326 audit(1744795052.263:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8079 comm="syz.1.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7f287f38e169 code=0x7ffc0000
[  432.374213][   T27] audit: type=1326 audit(1744795052.263:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8079 comm="syz.1.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f287f38e169 code=0x7ffc0000
[  432.443682][ T8141] loop0: detected capacity change from 0 to 512
[  432.511966][   T27] audit: type=1326 audit(1744795052.263:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8079 comm="syz.1.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f287f385127 code=0x7ffc0000
[  432.557253][ T8141] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  432.587148][   T27] audit: type=1326 audit(1744795052.263:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8079 comm="syz.1.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f287f32a359 code=0x7ffc0000
[  432.737467][ T8141] EXT4-fs warning (device loop0): ext4_enable_quotas:7037: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  432.822399][ T8141] EXT4-fs (loop0): mount failed
[  437.672212][ T8153] Set syz1 is full, maxelem 65536 reached
[  437.944137][ T8162] loop6: detected capacity change from 0 to 1024
[  438.033529][ T8162] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  438.515603][ T8167] netlink: 'syz.6.1223': attribute type 3 has an invalid length.
[  438.621910][ T8159] ------------[ cut here ]------------
[  438.628374][ T8159] WARNING: CPU: 1 PID: 8159 at net/sched/sch_taprio.c:1020 taprio_get_start_time+0x162/0x190
[  438.639535][ T8159] Modules linked in:
[  438.643849][ T8159] CPU: 1 PID: 8159 Comm: syz.0.1222 Not tainted 6.1.134-syzkaller #0
[  438.652691][ T8159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  438.663681][ T8159] RIP: 0010:taprio_get_start_time+0x162/0x190
[  438.670343][ T8159] Code: 03 42 80 3c 30 00 74 08 48 89 ef e8 b8 8c 07 f9 48 89 5d 00 31 c0 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 3e 2a b0 f8 <0f> 0b b8 f2 ff ff ff eb e3 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c 0b
[  438.691577][ T8159] RSP: 0018:ffffc90003bc6dc0 EFLAGS: 00010287
[  438.698191][ T8159] RAX: ffffffff88da8012 RBX: 0000000000000000 RCX: 0000000000080000
[  438.706899][ T8159] RDX: ffffc900053c9000 RSI: 0000000000001ee0 RDI: 0000000000001ee1
[  438.715605][ T8159] RBP: ffff8880291992d4 R08: ffffffff88da7fbf R09: fffffbfff2257880
[  438.724272][ T8159] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
[  438.732971][ T8159] R13: 1836c1dd0de84822 R14: dffffc0000000000 R15: 0000000000000000
[  438.741698][ T8159] FS:  00007fd38e99c6c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  438.751497][ T8159] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  438.758666][ T8159] CR2: 00007fecaafffd58 CR3: 0000000063971000 CR4: 00000000003506e0
[  438.767379][ T8159] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  438.776076][ T8159] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  438.784798][ T8159] Call Trace:
[  438.788402][ T8159]  <TASK>
[  438.791648][ T8159]  taprio_change+0x4319/0x5600
[  438.796879][ T8159]  ? _raw_spin_unlock_irqrestore+0x8b/0x130
[  438.803404][ T8159]  ? taprio_destroy+0x4a0/0x4a0
[  438.808725][ T8159]  ? lockdep_init_map_type+0x9d/0x900
[  438.814651][ T8159]  ? rtnetlink_rcv_msg+0x822/0x1000
[  438.820350][ T8159]  ? netlink_rcv_skb+0x1cd/0x410
[  438.825724][ T8159]  ? netlink_unicast+0x7e2/0x970
[  438.831144][ T8159]  ? netlink_sendmsg+0xa26/0xd60
[  438.836562][ T8159]  ? ____sys_sendmsg+0x5d3/0x9a0
[  438.841975][ T8159]  ? __sys_sendmsg+0x2a9/0x390
[  438.847249][ T8159]  ? memset+0x1f/0x40
[  438.851604][ T8159]  ? fifo_init+0x41e/0x760
[  438.856452][ T8159]  ? qdisc_peek_head+0x40/0x40
[  438.861750][ T8159]  ? taprio_peek+0x590/0x590
[  438.866802][ T8159]  qdisc_create+0x8a1/0x1220
[  438.871860][ T8159]  ? qdisc_notify+0x390/0x390
[  438.877011][ T8159]  ? lockdep_rtnl_is_held+0x22/0x30
[  438.882790][ T8159]  tc_modify_qdisc+0xb6d/0x1e60
[  438.888168][ T8159]  ? qdisc_offload_query_caps+0x170/0x170
[  438.894514][ T8159]  ? qdisc_offload_query_caps+0x170/0x170
[  438.900803][ T8159]  rtnetlink_rcv_msg+0x822/0x1000
[  438.906330][ T8159]  ? rtnetlink_bind+0x80/0x80
[  438.911505][ T8159]  ? __local_bh_enable_ip+0x164/0x1f0
[  438.917402][ T8159]  ? __dev_queue_xmit+0x2d6/0x3d50
[  438.923045][ T8159]  ? _local_bh_enable+0xa0/0xa0
[  438.928391][ T8159]  ? __dev_queue_xmit+0x2d6/0x3d50
[  438.934040][ T8159]  ? __dev_queue_xmit+0x173c/0x3d50
[  438.939799][ T8159]  ? __dev_queue_xmit+0x2d6/0x3d50
[  438.945399][ T8159]  ? netdev_core_pick_tx+0x320/0x320
[  438.951231][ T8159]  ? ref_tracker_free+0x638/0x7d0
[  438.956759][ T8159]  ? memcpy+0x3c/0x60
[  438.961171][ T8159]  ? refcount_inc+0x80/0x80
[  438.966129][ T8159]  ? __copy_skb_header+0x47b/0x600
[  438.971770][ T8159]  netlink_rcv_skb+0x1cd/0x410
[  438.976972][ T8159]  ? rtnetlink_bind+0x80/0x80
[  438.982152][ T8159]  ? netlink_ack+0x12a0/0x12a0
[  438.987382][ T8159]  ? __netlink_deliver_tap+0x748/0x780
[  438.993423][ T8159]  ? netlink_deliver_tap+0x2e/0x1b0
[  438.999158][ T8159]  netlink_unicast+0x7e2/0x970
[  439.004386][ T8159]  ? netlink_detachskb+0x90/0x90
[  439.009817][ T8159]  ? __virt_addr_valid+0x45b/0x530
[  439.015429][ T8159]  ? __phys_addr_symbol+0x2b/0x70
[  439.020952][ T8159]  ? __check_object_size+0x4dd/0xa30
[  439.026766][ T8159]  ? bpf_lsm_netlink_send+0x5/0x10
[  439.032421][ T8159]  netlink_sendmsg+0xa26/0xd60
[  439.037660][ T8159]  ? netlink_getsockopt+0x580/0x580
[  439.043403][ T8159]  ? aa_sock_msg_perm+0x91/0x150
[  439.048798][ T8159]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  439.054644][ T8159]  ? security_socket_sendmsg+0x7d/0xa0
[  439.060673][ T8159]  ? netlink_getsockopt+0x580/0x580
[  439.066361][ T8159]  ____sys_sendmsg+0x5d3/0x9a0
[  439.071642][ T8159]  ? __sys_sendmsg_sock+0x30/0x30
[  439.077160][ T8159]  __sys_sendmsg+0x2a9/0x390
[  439.082225][ T8159]  ? ____sys_sendmsg+0x9a0/0x9a0
[  439.087675][ T8159]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  439.094460][ T8159]  ? lockdep_hardirqs_on+0x94/0x130
[  439.100217][ T8159]  ? syscall_enter_from_user_mode+0x37/0x230
[  439.106733][ T8159]  ? syscall_enter_from_user_mode+0x2e/0x230
[  439.113332][ T8159]  do_syscall_64+0x3b/0xb0
[  439.118180][ T8159]  ? clear_bhb_loop+0x45/0xa0
[  439.123362][ T8159]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  439.129814][ T8159] RIP: 0033:0x7fd38db8e169
[  439.134659][ T8159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  439.155896][ T8159] RSP: 002b:00007fd38e99c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  439.165130][ T8159] RAX: ffffffffffffffda RBX: 00007fd38ddb5fa0 RCX: 00007fd38db8e169
[  439.173852][ T8159] RDX: 0000000000000000 RSI: 00002000000007c0 RDI: 0000000000000005
[  439.182599][ T8159] RBP: 00007fd38dc10a68 R08: 0000000000000000 R09: 0000000000000000
[  439.191316][ T8159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  439.199999][ T8159] R13: 0000000000000000 R14: 00007fd38ddb5fa0 R15: 00007ffd0fbd1f88
[  439.208704][ T8159]  </TASK>
[  439.212095][ T8159] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  439.219389][ T8159] CPU: 1 PID: 8159 Comm: syz.0.1222 Not tainted 6.1.134-syzkaller #0
[  439.227475][ T8159] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  439.237553][ T8159] Call Trace:
[  439.240859][ T8159]  <TASK>
[  439.243809][ T8159]  dump_stack_lvl+0x1e3/0x2cb
[  439.248867][ T8159]  ? nf_tcp_handle_invalid+0x647/0x647
[  439.254356][ T8159]  ? panic+0x764/0x764
[  439.258462][ T8159]  ? vscnprintf+0x59/0x80
[  439.262834][ T8159]  panic+0x318/0x764
[  439.266760][ T8159]  ? __warn+0x169/0x520
[  439.270958][ T8159]  ? memcpy_page_flushcache+0xfc/0xfc
[  439.276382][ T8159]  __warn+0x348/0x520
[  439.280407][ T8159]  ? taprio_get_start_time+0x162/0x190
[  439.285898][ T8159]  report_bug+0x2af/0x500
[  439.290263][ T8159]  ? taprio_get_start_time+0x162/0x190
[  439.295772][ T8159]  handle_bug+0x3d/0x70
[  439.299953][ T8159]  exc_invalid_op+0x16/0x40
[  439.304489][ T8159]  asm_exc_invalid_op+0x16/0x20
[  439.309365][ T8159] RIP: 0010:taprio_get_start_time+0x162/0x190
[  439.315455][ T8159] Code: 03 42 80 3c 30 00 74 08 48 89 ef e8 b8 8c 07 f9 48 89 5d 00 31 c0 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 3e 2a b0 f8 <0f> 0b b8 f2 ff ff ff eb e3 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c 0b
[  439.335087][ T8159] RSP: 0018:ffffc90003bc6dc0 EFLAGS: 00010287
[  439.341182][ T8159] RAX: ffffffff88da8012 RBX: 0000000000000000 RCX: 0000000000080000
[  439.349180][ T8159] RDX: ffffc900053c9000 RSI: 0000000000001ee0 RDI: 0000000000001ee1
[  439.357176][ T8159] RBP: ffff8880291992d4 R08: ffffffff88da7fbf R09: fffffbfff2257880
[  439.365166][ T8159] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
[  439.373169][ T8159] R13: 1836c1dd0de84822 R14: dffffc0000000000 R15: 0000000000000000
[  439.381164][ T8159]  ? taprio_get_start_time+0x10f/0x190
[  439.386648][ T8159]  ? taprio_get_start_time+0x162/0x190
[  439.392175][ T8159]  taprio_change+0x4319/0x5600
[  439.396977][ T8159]  ? _raw_spin_unlock_irqrestore+0x8b/0x130
[  439.403015][ T8159]  ? taprio_destroy+0x4a0/0x4a0
[  439.407908][ T8159]  ? lockdep_init_map_type+0x9d/0x900
[  439.413324][ T8159]  ? rtnetlink_rcv_msg+0x822/0x1000
[  439.418550][ T8159]  ? netlink_rcv_skb+0x1cd/0x410
[  439.423529][ T8159]  ? netlink_unicast+0x7e2/0x970
[  439.428493][ T8159]  ? netlink_sendmsg+0xa26/0xd60
[  439.433455][ T8159]  ? ____sys_sendmsg+0x5d3/0x9a0
[  439.438423][ T8159]  ? __sys_sendmsg+0x2a9/0x390
[  439.443248][ T8159]  ? memset+0x1f/0x40
[  439.447258][ T8159]  ? fifo_init+0x41e/0x760
[  439.451730][ T8159]  ? qdisc_peek_head+0x40/0x40
[  439.456570][ T8159]  ? taprio_peek+0x590/0x590
[  439.461204][ T8159]  qdisc_create+0x8a1/0x1220
[  439.465835][ T8159]  ? qdisc_notify+0x390/0x390
[  439.470545][ T8159]  ? lockdep_rtnl_is_held+0x22/0x30
[  439.475791][ T8159]  tc_modify_qdisc+0xb6d/0x1e60
[  439.480688][ T8159]  ? qdisc_offload_query_caps+0x170/0x170
[  439.486464][ T8159]  ? qdisc_offload_query_caps+0x170/0x170
[  439.492230][ T8159]  rtnetlink_rcv_msg+0x822/0x1000
[  439.497296][ T8159]  ? rtnetlink_bind+0x80/0x80
[  439.502001][ T8159]  ? __local_bh_enable_ip+0x164/0x1f0
[  439.507414][ T8159]  ? __dev_queue_xmit+0x2d6/0x3d50
[  439.512561][ T8159]  ? _local_bh_enable+0xa0/0xa0
[  439.517453][ T8159]  ? __dev_queue_xmit+0x2d6/0x3d50
[  439.522599][ T8159]  ? __dev_queue_xmit+0x173c/0x3d50
[  439.527840][ T8159]  ? __dev_queue_xmit+0x2d6/0x3d50
[  439.532986][ T8159]  ? netdev_core_pick_tx+0x320/0x320
[  439.538310][ T8159]  ? ref_tracker_free+0x638/0x7d0
[  439.543367][ T8159]  ? memcpy+0x3c/0x60
[  439.547378][ T8159]  ? refcount_inc+0x80/0x80
[  439.551915][ T8159]  ? __copy_skb_header+0x47b/0x600
[  439.557069][ T8159]  netlink_rcv_skb+0x1cd/0x410
[  439.561874][ T8159]  ? rtnetlink_bind+0x80/0x80
[  439.566577][ T8159]  ? netlink_ack+0x12a0/0x12a0
[  439.571366][ T8159]  ? __netlink_deliver_tap+0x748/0x780
[  439.576864][ T8159]  ? netlink_deliver_tap+0x2e/0x1b0
[  439.582099][ T8159]  netlink_unicast+0x7e2/0x970
[  439.586919][ T8159]  ? netlink_detachskb+0x90/0x90
[  439.591920][ T8159]  ? __virt_addr_valid+0x45b/0x530
[  439.597076][ T8159]  ? __phys_addr_symbol+0x2b/0x70
[  439.602165][ T8159]  ? __check_object_size+0x4dd/0xa30
[  439.607494][ T8159]  ? bpf_lsm_netlink_send+0x5/0x10
[  439.612646][ T8159]  netlink_sendmsg+0xa26/0xd60
[  439.617457][ T8159]  ? netlink_getsockopt+0x580/0x580
[  439.622693][ T8159]  ? aa_sock_msg_perm+0x91/0x150
[  439.627666][ T8159]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  439.633000][ T8159]  ? security_socket_sendmsg+0x7d/0xa0
[  439.638501][ T8159]  ? netlink_getsockopt+0x580/0x580
[  439.643731][ T8159]  ____sys_sendmsg+0x5d3/0x9a0
[  439.648538][ T8159]  ? __sys_sendmsg_sock+0x30/0x30
[  439.653612][ T8159]  __sys_sendmsg+0x2a9/0x390
[  439.658240][ T8159]  ? ____sys_sendmsg+0x9a0/0x9a0
[  439.663238][ T8159]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  439.669436][ T8159]  ? lockdep_hardirqs_on+0x94/0x130
[  439.674691][ T8159]  ? syscall_enter_from_user_mode+0x37/0x230
[  439.680710][ T8159]  ? syscall_enter_from_user_mode+0x2e/0x230
[  439.686731][ T8159]  do_syscall_64+0x3b/0xb0
[  439.691181][ T8159]  ? clear_bhb_loop+0x45/0xa0
[  439.695895][ T8159]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  439.701823][ T8159] RIP: 0033:0x7fd38db8e169
[  439.706270][ T8159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  439.725935][ T8159] RSP: 002b:00007fd38e99c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  439.734387][ T8159] RAX: ffffffffffffffda RBX: 00007fd38ddb5fa0 RCX: 00007fd38db8e169
[  439.742387][ T8159] RDX: 0000000000000000 RSI: 00002000000007c0 RDI: 0000000000000005
[  439.750651][ T8159] RBP: 00007fd38dc10a68 R08: 0000000000000000 R09: 0000000000000000
[  439.758648][ T8159] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  439.766647][ T8159] R13: 0000000000000000 R14: 00007fd38ddb5fa0 R15: 00007ffd0fbd1f88
[  439.774675][ T8159]  </TASK>
[  439.778011][ T8159] Kernel Offset: disabled
[  439.782425][ T8159] Rebooting in 86400 seconds..