last executing test programs:

7m47.586628222s ago: executing program 2 (id=755):
socket$inet6_mptcp(0xa, 0x1, 0x106)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x70)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x5, 0x9, 0x6, 0x0, 0xb49, 0x9, 0x8, 0x2, 0x3}, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000340)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x34808421, 0x401, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0xa4001f7a}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0x0, {0x0, 0x1}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x20c01, 0x36)
io_setup(0x202, &(0x7f0000000200)=<r3=>0x0)
io_submit(r3, 0x0, &(0x7f0000000780))
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000300)="d8000000180081054e81f782db4cb904021d080406037c09e8fe55a10a0015400400142603600e122f00160006000600a8000600200005400700027c035c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001f", 0x6c}], 0x1, 0x0, 0x0, 0x4a0f0000}, 0x0)
dup3(r2, r0, 0x0)
bind$can_raw(0xffffffffffffffff, &(0x7f0000000100), 0x10)

7m47.12901241s ago: executing program 2 (id=757):
set_mempolicy(0x3, &(0x7f0000000180)=0x8001, 0x8)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f0000000140), &(0x7f0000000180)=0x8)

7m46.651202172s ago: executing program 2 (id=759):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000e00), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000e40)={'wlan0\x00'})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
keyctl$reject(0x13, 0x0, 0x400, 0x8000000000000204, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
mlock(&(0x7f0000c00000/0x400000)=nil, 0x400000)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_CHANNEL(r5, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x0)
sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000580)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="210f000000000000000020000000080003"], 0x1c}, 0x1, 0x0, 0x0, 0x20000015}, 0x44000)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b703000000000000850000000e00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

7m45.332844946s ago: executing program 2 (id=765):
msgsnd(0x0, &(0x7f0000000000)={0x2}, 0x8, 0x0)
msgrcv(0x0, 0x0, 0x0, 0x2, 0x3800)

7m44.286633806s ago: executing program 2 (id=768):
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="043e0a03"], 0xd)

7m43.914402238s ago: executing program 2 (id=772):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000025c0)={<r0=>0xffffffffffffffff})
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r1 = io_uring_setup(0x56a9, &(0x7f0000000040)={0x0, 0x36d, 0xc000, 0xc, 0xa0002f5})
r2 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xc8df, 0xc000, 0x20000a, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x200, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xd}, {0xe, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x2000)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0xfffffffffffffda2, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x1a, 0x4)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)
shutdown(r0, 0x0)

7m27.70058858s ago: executing program 32 (id=772):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000025c0)={<r0=>0xffffffffffffffff})
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r1 = io_uring_setup(0x56a9, &(0x7f0000000040)={0x0, 0x36d, 0xc000, 0xc, 0xa0002f5})
r2 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xc8df, 0xc000, 0x20000a, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x200, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xd}, {0xe, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x2000)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0xfffffffffffffda2, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x1a, 0x4)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)
shutdown(r0, 0x0)

6m25.281997195s ago: executing program 4 (id=1057):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x2000000f5, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000300)={0xf0f02b, 0x1})
connect$unix(r1, &(0x7f00000003c0)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_sock_diag(0x10, 0x3, 0x4)
socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, &(0x7f0000000340)={0x0, 0x5, 0x3, 0x0, 0x3, [], [0x4, 0x7, 0x7b], [0x7, 0xffff, 0x2, 0x10000], [0x0, 0x0, 0x1, 0xfff]})
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
sendto$inet(r5, &(0x7f00000000c0)="ab", 0x1, 0xc1, &(0x7f0000000280)={0x2, 0x4e23, @loopback}, 0x10)
sendmsg$TCPDIAG_GETSOCK(r4, 0x0, 0x40)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuseblk(&(0x7f000000aa80), &(0x7f000000aac0)='./file0\x00', &(0x7f000000ab00), 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB='\x00\x00'])
mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x120020, 0x0)
unshare(0x20000400)
setresuid(0x0, 0xee00, 0x0)
getpid()

6m21.082196214s ago: executing program 4 (id=1069):
syz_mount_image$bfs(&(0x7f00000001c0), &(0x7f0000000400)='./file0\x00', 0x4, &(0x7f0000000600)=ANY=[], 0x8, 0xad, &(0x7f0000000040)="$eJzs0btpA0EUBdC7H/xJ7ALcg3tw6twVbOjQkY3BjlSGOlArKmE7ULCpkhHLrkChEAhJcA7MzA3mwYW33q5e8pSUv6SUUu6SPGbKX98/nx/v490kyTJt7jPZv9y4ej4P486fp7x5y+L/4E8//HZ9la4fyuyChQEAgJPVeZ1TdfxQm6Q5VyMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA67ILAAD//1vZIlc=")
r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)

6m20.743616704s ago: executing program 4 (id=1070):
socket$inet6_mptcp(0xa, 0x1, 0x106)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x70)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x5, 0x9, 0x6, 0x0, 0xb49, 0x9, 0x8, 0x2, 0x3}, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000340)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x34808421, 0x401, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0xa4001f7a}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0x0, {0x0, 0x1}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x20c01, 0x36)
io_setup(0x202, &(0x7f0000000200)=<r3=>0x0)
io_submit(r3, 0x2, &(0x7f0000000780)=[&(0x7f0000000440)={0xfffffffe, 0x20011004, 0x4, 0x1, 0x0, r2, &(0x7f00000000c0)='!', 0xb7f40, 0x3000000000000000}])
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280), 0x0, 0x0, 0x0, 0x4a0f0000}, 0x0)
dup3(r2, r0, 0x0)
bind$can_raw(0xffffffffffffffff, &(0x7f0000000100), 0x10)

6m19.02275943s ago: executing program 4 (id=1074):
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000000380)='./bus\x00', 0x88, &(0x7f0000000080)={[{@barrier}, {@autodefrag}, {@noacl}, {@compress_algo={'compress', 0x3d, 'no'}}, {@clear_cache}, {@noacl}, {@max_inline={'max_inline', 0x3d, [0x30, 0x37, 0x34, 0x74]}}, {@barrier}, {@nospace_cache}]}, 0x1, 0x55ae, &(0x7f000000ac40)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a6a038, &(0x7f0000002cc0)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10)

6m15.696624972s ago: executing program 4 (id=1083):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x5, 0x2, 0x4}, 0x48)
close(0x3)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0f000000040000000800000001"], 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000dc0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000001c40)={0x4, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000010000ee850000008600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f00000000c0)=r4, 0x4)
sendmsg$unix(r3, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24048045}, 0x20000000)

6m15.135730712s ago: executing program 4 (id=1090):
mount$tmpfs(0x0, &(0x7f0000000200)='.\x00', &(0x7f0000000240), 0x204080, &(0x7f0000004000)={[{}]})
socket$packet(0x11, 0x3, 0x300)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f00000001c0)=0xa3, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0xffffffffffffffef, 0x0, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket(0x10, 0x80003, 0x0)

6m14.292249456s ago: executing program 33 (id=1090):
mount$tmpfs(0x0, &(0x7f0000000200)='.\x00', &(0x7f0000000240), 0x204080, &(0x7f0000004000)={[{}]})
socket$packet(0x11, 0x3, 0x300)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f00000001c0)=0xa3, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0xffffffffffffffef, 0x0, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket(0x10, 0x80003, 0x0)

3m31.111563677s ago: executing program 3 (id=1750):
r0 = socket$kcm(0xa, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000600)={&(0x7f0000000040)={0x2, 0xffff, @multicast2}, 0x10, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1c000000000000000000000007000000890b040a0101027f00000100000000001400000000000000"], 0x40}, 0x20000000)

3m30.865561841s ago: executing program 3 (id=1753):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000000)='./bus\x00', 0x8000, &(0x7f0000000a80)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000", @ANYRES8, @ANYBLOB="41f53d8ea4eec15e3b0ac51edc2f1a99904001af7628ab56cda055a83b23b4f950c1c337588ed3b42f34752bd70e307237c846cc2d4de67127ff2177b7ea426e8b93f4f72bd2f6a34234016c53ee26f75eaa7e6df5a207f445cd303f6afb4f6370dc09696c91a171cbb13732c4f50f6b8ad51c1317eea579f39b1b38e75b237b78fbdef031ae262245dad9f72613b062a823e826dd87cac564731eb0f5bf6f48d4a3bf48ac3bf16381b3da5cd075213cf2f8d136d8653803ba3dc9e88a953bb68a9f1b4f2c06baa855d2cfcdb94edc48223db9c7a2c25a3b9080ecd549252f5ab8f73f46a9e8da6d7a0ff3", @ANYRESHEX, @ANYBLOB="c5ce1b9733c91520022860834995bd440de70a56f9b17205184d3be668bd36e2d9b2c62fb43e3a2a12e69d2eea113cf5ab1f668b2855d9a2bb426304b9bbf1debf4d593fe5"], 0x41, 0x2c6, &(0x7f0000000740)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x29)
getdents(r0, 0x0, 0x58)

3m29.485103981s ago: executing program 3 (id=1756):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x42901, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @broadcast})
write$tun(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="034886dd0900300003003000000060ce902d9f0c2f0081e949b93897bc3b0000000000007d01ff020000000000000000000000000001"], 0xfdef)

3m27.996828669s ago: executing program 3 (id=1760):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, 0x0, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = fsmount(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x24, 0x0, 0x0)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000ac0)=ANY=[@ANYBLOB="fc0000001900e1f6ddedabc4ac5c000000000000000000000000000000000001ac1414aa00"/56, @ANYRES32=r1, @ANYRES32=0x0, @ANYBLOB="00000000000000000c00000000000000000000000000000000000000000000000000000000000000ffffffffffffffff000000000000000000000000000000000000000000000000000a000000000000000000000100000006000000000000000000000000000000010000000000000044000500ac1414aa000000000000000000000000000000003c000000020000000a0101020000000000000000000000000600000004"], 0xfc}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r6 = socket$inet6(0xa, 0x800000000000002, 0x0)
connect$inet6(r6, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2, 0x4}, 0x1c)
sendmmsg$inet6(r6, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x36, 0x0, 0x0, 0x20000000}, 0xa}], 0x400000000000172, 0x0)

3m26.786216376s ago: executing program 3 (id=1761):
r0 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000380)={0x1d, r1, 0x1, {0x0, 0x1, 0x3}, 0xfe}, 0x18)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000040)={0x10000000})
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000000240)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f0000000640)={0x2c, 0x3, 0x1, 0x201, 0x0, 0x0, {0x5, 0x0, 0x2}, [@CTA_ID={0x8, 0xc, 0x1, 0x0, 0x1}, @CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x4}, @CTA_TUPLE_ORIG={0x4}, @CTA_NAT_SRC={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20008081}, 0x0)

3m25.649255489s ago: executing program 0 (id=1772):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$netlink(0x10, 0x3, 0xc)
syz_usb_connect(0x4, 0x1b, &(0x7f0000000800)=ANY=[], 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140), 0x100}, 0x0)
r2 = syz_io_uring_setup(0x10d2, &(0x7f0000000540)={0x0, 0x7734, 0x80, 0x0, 0x34f}, &(0x7f0000000600)=<r3=>0x0, &(0x7f00000005c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_SEND={0x1a, 0x31, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x8054})
io_uring_enter(r2, 0x47bc, 0x0, 0x0, 0x0, 0x0)

3m24.188730222s ago: executing program 3 (id=1774):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r0, &(0x7f00000000c0)=[{0x84, 0x84, 0x0, 0x0, @tick=0x6, {0x81}, {0x7}, @raw32={[0x2, 0x20a, 0x8000000]}}, {0x2, 0x0, 0x5, 0x83, @tick=0xa8, {0xfd}, {0x3}, @result={0x6, 0xffff}}, {0x6, 0x7, 0x9, 0x3, @time={0xe, 0xffffffff}, {0x10, 0x5}, {0x1, 0x2}, @connect={{0xf, 0x3}, {0x6, 0xb}}}], 0x54)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xa8c01)
write$sndseq(r1, &(0x7f0000000080)=[{0x1e, 0x0, 0x8, 0xfd, @tick=0x8, {}, {}, @result}], 0x1c)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)={0x4c, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x4c}}, 0x0)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x50, 0x9, 0x6, 0x201, 0x0, 0x0, {0x1, 0x0, 0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private=0xa010101}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @dev={0xac, 0x14, 0x14, 0x10}}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}]}]}, 0x50}, 0x1, 0x1000000, 0x0, 0x24004800}, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f0000000600)={'ip6tnl0\x00', &(0x7f0000000080)={'syztnl1\x00', 0x0, 0x0, 0xfd, 0x44, 0x0, 0x4f, @initdev={0xfe, 0x88, '\x00', 0xff, 0x0}, @mcast2={0xff, 0x3}, 0x80, 0x700}})

3m22.805488996s ago: executing program 0 (id=1780):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETTABLE(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)={0x14, 0x1, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x400c895}, 0x20000800)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x4000)
recvmmsg(r1, &(0x7f0000003540)=[{{0x0, 0x0, 0x0}, 0x7}], 0x1, 0x40000002, 0x0)

3m21.298007294s ago: executing program 0 (id=1782):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x2000000f5, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000300)={0xf0f02b, 0x1})
connect$unix(r1, &(0x7f00000003c0)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_sock_diag(0x10, 0x3, 0x4)
socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, &(0x7f0000000340)={0x0, 0x5, 0x3, 0x0, 0x3, [], [0x4, 0x7, 0x7b], [0x7, 0xffff, 0x2, 0x10000], [0x0, 0x0, 0x1, 0xfff]})
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
sendto$inet(r5, &(0x7f00000000c0)="ab", 0x1, 0xc1, &(0x7f0000000280)={0x2, 0x4e23, @loopback}, 0x10)
sendmsg$TCPDIAG_GETSOCK(r4, 0x0, 0x40)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuseblk(&(0x7f000000aa80), &(0x7f000000aac0)='./file0\x00', &(0x7f000000ab00), 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB='\x00\x00'])
mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x120020, 0x0)
unshare(0x20000400)
setresuid(0x0, 0xee00, 0x0)
getpid()

3m14.038440481s ago: executing program 0 (id=1803):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
io_setup(0x9, &(0x7f0000000240)=<r0=>0x0)
r1 = eventfd2(0x7, 0x0)
io_submit(r0, 0x3, &(0x7f00000003c0)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0xff45, 0xffffffffffffffff, &(0x7f0000000080)="d1", 0x1, 0x7, 0x0, 0x5, r1}, 0x0, 0x0])
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r2, 0xffffffffffffffff, 0x0)

3m11.813226916s ago: executing program 0 (id=1806):
pipe(&(0x7f0000000140))
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000001800)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="20000000520001000000000000000000020000000c00", @ANYRES16=r0], 0x20}, 0x1, 0x0, 0x0, 0x48010}, 0x0)

3m11.419882803s ago: executing program 0 (id=1808):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
write$sndseq(r0, &(0x7f00000000c0)=[{0x2, 0x0, 0x5, 0x83, @tick=0xa8, {0xfd}, {0x3}, @result={0x6, 0xffff}}, {0x6, 0x7, 0x9, 0x3, @time={0xe, 0xffffffff}, {0x10, 0x5}, {0x1, 0x2}, @connect={{0xf, 0x3}, {0x6, 0xb}}}], 0x38)
r1 = openat$sndseq(0xffffffffffffff9c, 0x0, 0xa8c01)
write$sndseq(r1, &(0x7f0000000080)=[{0x1e, 0x0, 0x8, 0xfd, @tick=0x8, {}, {}, @result}], 0x1c)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)={0x4c, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x4c}}, 0x0)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x50, 0x9, 0x6, 0x201, 0x0, 0x0, {0x1, 0x0, 0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private=0xa010101}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @dev={0xac, 0x14, 0x14, 0x10}}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}]}]}, 0x50}, 0x1, 0x1000000, 0x0, 0x24004800}, 0x4)

3m7.393335576s ago: executing program 34 (id=1774):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r0, &(0x7f00000000c0)=[{0x84, 0x84, 0x0, 0x0, @tick=0x6, {0x81}, {0x7}, @raw32={[0x2, 0x20a, 0x8000000]}}, {0x2, 0x0, 0x5, 0x83, @tick=0xa8, {0xfd}, {0x3}, @result={0x6, 0xffff}}, {0x6, 0x7, 0x9, 0x3, @time={0xe, 0xffffffff}, {0x10, 0x5}, {0x1, 0x2}, @connect={{0xf, 0x3}, {0x6, 0xb}}}], 0x54)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xa8c01)
write$sndseq(r1, &(0x7f0000000080)=[{0x1e, 0x0, 0x8, 0xfd, @tick=0x8, {}, {}, @result}], 0x1c)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)={0x4c, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x4c}}, 0x0)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x50, 0x9, 0x6, 0x201, 0x0, 0x0, {0x1, 0x0, 0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private=0xa010101}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @dev={0xac, 0x14, 0x14, 0x10}}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}]}]}, 0x50}, 0x1, 0x1000000, 0x0, 0x24004800}, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f0000000600)={'ip6tnl0\x00', &(0x7f0000000080)={'syztnl1\x00', 0x0, 0x0, 0xfd, 0x44, 0x0, 0x4f, @initdev={0xfe, 0x88, '\x00', 0xff, 0x0}, @mcast2={0xff, 0x3}, 0x80, 0x700}})

2m55.161505238s ago: executing program 35 (id=1808):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, 0x0)
write$sndseq(r0, &(0x7f00000000c0)=[{0x2, 0x0, 0x5, 0x83, @tick=0xa8, {0xfd}, {0x3}, @result={0x6, 0xffff}}, {0x6, 0x7, 0x9, 0x3, @time={0xe, 0xffffffff}, {0x10, 0x5}, {0x1, 0x2}, @connect={{0xf, 0x3}, {0x6, 0xb}}}], 0x38)
r1 = openat$sndseq(0xffffffffffffff9c, 0x0, 0xa8c01)
write$sndseq(r1, &(0x7f0000000080)=[{0x1e, 0x0, 0x8, 0xfd, @tick=0x8, {}, {}, @result}], 0x1c)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000002c0)={0x4c, 0x2, 0x6, 0x801, 0x0, 0x0, {0x0, 0x0, 0x4}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x4c}}, 0x0)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x50, 0x9, 0x6, 0x201, 0x0, 0x0, {0x1, 0x0, 0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @private=0xa010101}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @dev={0xac, 0x14, 0x14, 0x10}}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}]}]}, 0x50}, 0x1, 0x1000000, 0x0, 0x24004800}, 0x4)

8.819068726s ago: executing program 5 (id=2794):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000009b00)={0x0}, 0x1, 0x0, 0x0, 0x4000850}, 0x24044010)

7.769163999s ago: executing program 5 (id=2797):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000880)=ANY=[@ANYBLOB="b702000007000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831a37ea0c34f17e3946ef3bb622003b538dfd8e012e79578e51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1ff8d6704902cbe7bc04b82d2789cb132b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd7130856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002706870014f51c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff2c91018afc9ffc2cc788bee1b47683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa447e2edfae4f390a83984e68a6d80a5f5222ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae486aca54183fb01c73f979ca9857399537f5dc2a2d0e0007000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db7ab22e30d46a9d24d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e48455b5a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ff57c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe2f3ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a308bcc87dc3addb08141bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9000071414c99d4894ee7f8249dc1f6428d2129369ee1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987591ec3db58a7bb3042ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905deb28c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e5dee734fe7da3770845cf442d488afdc0e1700000000000000000a034000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea955a5f0dec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be1827fcd95cf107753cb0a6a979d3db0c407081c6281e2d8429a863903ca75f4c7df3ea8fc2018d07af1491ef060cd4403a099f32468f65bd06b4082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f96936b7e4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033ec14bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cdcfb1ebbb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce40c14089c82759106f422582b42e3e8484ea5a6ad9aa5210b16eafe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd48bbd61627a2e0a74b5e6aefb7eee403502734137ff47257f164391c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b5589829b6b0679b5d6"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="b9ff03076844268cb89e14f086dd47e0ffff00122c00631177fbac141416e000030a44079f034d2f87e589ca6aab845013f2325f1a392f050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d75a058f6efa6d1f5f7ff4000000000000000000", 0x0, 0xfe, 0x60000000, 0x0, 0x7000000, &(0x7f0000000000), &(0x7f0000000000), 0x2000000}, 0x2c)

7.395791316s ago: executing program 9 (id=2801):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x28}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r1}, 0xc)

7.16239382s ago: executing program 5 (id=2805):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x80008000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone3(&(0x7f0000000d40)={0xe5a44100, 0x0, 0x0, 0x0, {0x12}, 0x0, 0x0, 0x0, 0x0}, 0x58)

6.891447054s ago: executing program 9 (id=2808):
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0x100c404, &(0x7f0000000200)=ANY=[@ANYBLOB='nodots,fmask=00000000000000000006675,dots,dots,nodots,nodots,nfs=stale_rw,fmask=00000000000000000000011,dots,nodots,nodots,nodots,nodots,gid=', @ANYRESHEX=0xee00, @ANYBLOB="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"], 0x1, 0x1f5, &(0x7f0000000600)="$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")

6.690430669s ago: executing program 8 (id=2809):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$inet_tcp(0x2, 0x1, 0x0)
setxattr$security_ima(0x0, &(0x7f0000000080), &(0x7f0000000100)=@sha1={0x1, "135e05ce8ce63c18f826a69c16e06c678ba7da37"}, 0x15, 0x1)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r4 = socket$inet6(0xa, 0x1, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, 0x0, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000180)={{{@in=@private, @in6=@dev={0xfe, 0x80, '\x00', 0xfe}, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@local, 0x0, 0x6c}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0x4}}, 0xe8)
r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x281, 0x0)
ioctl$TIOCSSOFTCAR(r6, 0x5453, 0x0)
ioctl$TIOCMBIS(r6, 0x5416, &(0x7f0000000080)=0x8)
r7 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r7, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
r8 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPCONNADD(r8, 0x400448c8, &(0x7f0000000600)={r7, r7, 0x8, 0x0, 0x0, 0x6, 0xfe, 0x10cf, 0x5, 0x5, 0x2, 0x1, 'syz0\x00'})
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r8, 0x800448d2, &(0x7f00000000c0)={0x0, 0x0})

4.365730114s ago: executing program 8 (id=2812):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x80)
r0 = socket(0x28, 0x5, 0x0)
r1 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r1, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r1, 0x4)
connect$vsock_stream(r0, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
sendmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x2d, &(0x7f00000000c0)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x51, 0x0)
r2 = accept4$unix(r1, 0x0, 0x0, 0x800)
recvfrom(r2, &(0x7f0000000240)=""/105, 0x69, 0x40000000, 0x0, 0x0)

4.053505011s ago: executing program 9 (id=2813):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000080)={'vxcan0\x00', <r2=>0x0})
bind$can_raw(r1, &(0x7f00000000c0)={0x1d, r2}, 0x8)
socket(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000040)={'vxcan0\x00'})
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7ffffffd}]})
r5 = dup2(r0, r4)
close_range(r5, 0xffffffffffffffff, 0x0)

3.887628953s ago: executing program 1 (id=2814):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000800)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x5}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0x10, 0x4}, {}, {0x8, 0xfff3}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x4, 0xffffff00, 0x6, 0xc31, 0x7}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x20000010}, 0x20000000)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r6, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)="27030200590214000600002fb96dbcf706e10500000086ddffff1144ee163cd4b8bf4a31accb", 0x26}], 0x1}, 0x4)

3.795526288s ago: executing program 8 (id=2815):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r0, 0xc0bc5351, 0x0)

3.661935067s ago: executing program 9 (id=2816):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x2000000f5, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000300)={0xf0f02b, 0x1})
connect$unix(r1, &(0x7f00000003c0)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_sock_diag(0x10, 0x3, 0x4)
socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, &(0x7f0000000340)={0x0, 0x5, 0x3, 0x0, 0x3, [], [0x4, 0x7, 0x7b], [0x7, 0xffff, 0x2, 0x10000], [0x0, 0x0, 0x1, 0xfff]})
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
sendto$inet(r5, 0x0, 0x0, 0xc1, 0x0, 0x0)
sendmsg$TCPDIAG_GETSOCK(r4, 0x0, 0x40)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuseblk(&(0x7f000000aa80), &(0x7f000000aac0)='./file0\x00', &(0x7f000000ab00), 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x120020, 0x0)
unshare(0x20000400)
setresuid(0x0, 0xee00, 0x0)
getpid()

3.549643906s ago: executing program 5 (id=2817):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write(r0, &(0x7f00000000c0)="1546b2000000dd0000008043f3526b13f70900000000000000136ada17aed1c0ffd6e5c70f23c029b16d9c57316e8f0e809292c310ac208f1fd31c8d54881b5d38", 0x41)

3.072747447s ago: executing program 8 (id=2819):
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
r0 = syz_io_uring_setup(0x70ca, &(0x7f0000000080)={0x0, 0xffffffff, 0x10100, 0x3, 0x179}, &(0x7f0000000100)=<r1=>0x0, &(0x7f00000007c0)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_WRITEV={0x2, 0x0, 0x2000, @fd_index=0x3, 0x4000000000000000, 0x0, 0x0, 0x0, 0x0, {0x3}})
io_uring_enter(r0, 0x5976, 0x9765, 0x2, 0x0, 0x0)

2.907496576s ago: executing program 7 (id=2820):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x28}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r1}, 0xc)

2.601200035s ago: executing program 1 (id=2822):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file2\x00', 0x200801f, &(0x7f00000000c0), 0x2, 0x4fd, &(0x7f0000000d80)="$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")
mount$9p_fd(0x0, &(0x7f0000000240)='./file2\x00', 0x0, 0x22c000, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
openat(0xffffffffffffff9c, 0x0, 0x2440, 0x0)

2.416530872s ago: executing program 8 (id=2823):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000440), 0x40000, 0x0)
ioctl$TUNSETOFFLOAD(r0, 0xc004743e, 0x110e22fff6)
ioctl$TUNGETVNETLE(r0, 0x4004743b, &(0x7f0000001200))

2.365202766s ago: executing program 7 (id=2824):
ftruncate(0xffffffffffffffff, 0xc17a)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x8)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x2d}, 0x1, 0x0, 0x0, 0x8801}, 0x8000)
getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r4, &(0x7f0000000600)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r5, @ANYBLOB="00001000252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}}, 0x40000)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r6=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000440)=@newlink={0x44, 0x10, 0x401, 0xfffffffc, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x1503, 0x4}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r6}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}, 0x1, 0x0, 0x0, 0x4001}, 0x800)

2.36400097s ago: executing program 9 (id=2825):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x5, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdc01, {0x0, 0x0, 0x0, r2, {0x0, 0xd}, {0xffff, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0xc, 0x2, [@TCA_FQ_CODEL_CE_THRESHOLD={0x8, 0x7, 0xfffffff9}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4890)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r3)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r4, &(0x7f0000001680)="1834de82", 0x4, 0x200000c1, &(0x7f00000001c0)={0x11, 0xd, r2, 0x1, 0xff}, 0x14)

2.266821994s ago: executing program 1 (id=2827):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x80)
r0 = socket(0x28, 0x5, 0x0)
r1 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r1, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r1, 0x4)
connect$vsock_stream(r0, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
sendmmsg(r0, &(0x7f0000000100)=[{{0x0, 0x2d, &(0x7f00000000c0)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x51, 0x0)
r2 = accept4$unix(r1, 0x0, 0x0, 0x800)
recvfrom(r2, &(0x7f0000000240)=""/105, 0x69, 0x40000000, 0x0, 0x0)

1.946084074s ago: executing program 6 (id=2828):
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
ioctl$BTRFS_IOC_GET_DEV_STATS(0xffffffffffffffff, 0xc4089434, &(0x7f0000000780)={0x0, 0x1, 0x0, [0x806f, 0x0, 0x2d5, 0x2, 0x6], [0x6, 0x7, 0x1, 0x9, 0x8002, 0x0, 0x5, 0x2, 0x0, 0x802, 0x2, 0x200000100, 0x3, 0xfffffffffffffff4, 0x4a, 0x1000000000005, 0x100, 0xd, 0xd9, 0x5, 0x1, 0x2a9, 0x3, 0xc39, 0x8, 0x8, 0x100000000, 0x2, 0xa51, 0x4000000000008, 0x401, 0x800000000000003, 0x7, 0xfffffffffffffffa, 0x81, 0x100, 0x5, 0x931, 0x101, 0x3, 0x8001, 0x8000000000000000, 0x7, 0x1, 0x8, 0x8, 0x6aa, 0x102, 0x1, 0x83, 0x538a, 0x9, 0xfffffffffffffff7, 0x4, 0x0, 0x4, 0x5, 0x8, 0x80008000, 0x8000000000000000, 0x4, 0xfffffffffffffffc, 0xfffffffffffffffd, 0x5bc, 0x1, 0x7fffffff, 0x4, 0x8000, 0xc9, 0x7, 0x6, 0x9, 0x82c, 0x8000, 0xe000000000000, 0x4000000e4, 0x11, 0x0, 0x8, 0x22, 0xffffffffffffffff, 0x7, 0x1, 0x8000000000000000, 0x200000000c, 0x8, 0x0, 0x6, 0x6, 0x7, 0x100000002, 0x4, 0x4, 0x8, 0x7, 0x7, 0x2000000000000009, 0x1, 0x16d, 0x6, 0x68d, 0xffffffffffff43b0, 0x8, 0x50000000000000, 0xe, 0x0, 0x0, 0x1000100000003, 0x4, 0x7, 0x406, 0x3, 0x6, 0x5, 0x0, 0x3, 0x40, 0x7fffffff, 0x8, 0x3, 0x1]})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x899, &(0x7f0000000040)={0x0, 0x3cb1, 0x1c080, 0xa, 0x20002f7})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

1.882722696s ago: executing program 8 (id=2829):
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000100)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x13}}, 0x10)
setsockopt$sock_int(r3, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
connect$inet(r3, &(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10)
sendmmsg$inet(r3, &(0x7f0000004d00)=[{{0x0, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x30000}}], 0x400000000000284, 0xf00)
setsockopt$IP_VS_SO_SET_TIMEOUT(r3, 0x0, 0x4, 0x0, 0x0)

1.881565733s ago: executing program 1 (id=2830):
r0 = gettid()
timer_create(0x1, &(0x7f0000000800)={0x0, 0x21, 0x4, @tid=r0}, &(0x7f0000000000)=<r1=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x3ed4, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9)
timer_settime(r1, 0x1, &(0x7f0000000040), 0x0)
semctl$SEM_INFO(0x0, 0x4, 0x13, 0x0)

1.736236041s ago: executing program 6 (id=2831):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x70, 0x24, 0x4ee4e6a52ff56541, 0x3, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x0, 0x3, 0x6361, 0x6, 0xffffffff, 0x2003}}}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x3, 0xb, 0x14, 0xba, 0x1, 0x1, 0x7}}, {0x4}}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x40088c1}, 0x40000880)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70b928, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0xb, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_fq={{0x7}, {0xc, 0x2, [@TCA_FQ_FLOW_MAX_RATE={0x8, 0x7, 0x20000ff}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x240040e0}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_ENABLE_BEARER(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)

1.595453614s ago: executing program 9 (id=2832):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x2, 0x200, @loopback, 0x7}, 0x1c)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
sendto$inet6(r0, &(0x7f0000000300)="a6a7", 0x2, 0x24000045, &(0x7f00000001c0)={0xa, 0x2, 0xffff, @loopback, 0x9}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000000c0)='bic', 0x3)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, 0x0, &(0x7f0000000400))
setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r1, 0x84, 0x78, &(0x7f0000001240), 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x6, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
shutdown(r0, 0x1)

1.58513282s ago: executing program 6 (id=2833):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtfilter={0x34, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x4, 0xf}, {}, {0x7, 0xd}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000006040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=@delchain={0x2c, 0x65, 0x1, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r7, {0xffff, 0xc}, {}, {0xfff2}}, [@TCA_CHAIN={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8848}, 0x20004004)

1.416983531s ago: executing program 7 (id=2834):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000800)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x5}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
r5 = socket$kcm(0x11, 0x3, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r6)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
setsockopt$sock_attach_bpf(r5, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r5, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r7, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)="27030200590214000600002fb96dbcf706e10500000086ddffff1144ee163cd4b8bf4a31accb", 0x26}], 0x1}, 0x4)

1.347638109s ago: executing program 5 (id=2835):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x10040)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1a}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x67, 0x0, 0x2, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0xc2}}}}}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x3c, 0xfffe, 0x0, 0x95, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0xa, 0x4, 0xca, 0x0, 0x1000, {[@timestamp={0x8, 0xa, 0x81000001, 0x56}, @window={0x3, 0x3, 0x5}, @sack={0x5, 0x6, [0x1]}]}}}}}}}, 0x0)

1.286060852s ago: executing program 6 (id=2836):
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
r0 = syz_io_uring_setup(0x70ca, &(0x7f0000000080)={0x0, 0xffffffff, 0x10100, 0x3, 0x179}, &(0x7f0000000100)=<r1=>0x0, &(0x7f00000007c0)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000140)=@IORING_OP_WRITEV={0x2, 0x0, 0x2000, @fd_index=0x3, 0x4000000000000000, 0x0, 0x0, 0x0, 0x0, {0x3}})
io_uring_enter(r0, 0x5976, 0x9765, 0x2, 0x0, 0x0)

1.11746037s ago: executing program 7 (id=2837):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000400)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x2, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58", '\x00', "23000040121d00"}, 0x28)
writev(r0, &(0x7f00000009c0)=[{&(0x7f00000008c0)='X', 0x1}], 0x1)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f00000003c0)=@gcm_128={{0x303}, "bdab00c600", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "07000100", "bb100000e9ffff00"}, 0x28)
read(r0, 0x0, 0x78)

1.04908357s ago: executing program 5 (id=2838):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x2000000f5, 0x2)
ioctl$vim2m_VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000300)={0xf0f02b, 0x1})
connect$unix(r1, &(0x7f00000003c0)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_sock_diag(0x10, 0x3, 0x4)
socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, &(0x7f0000000340)={0x0, 0x5, 0x3, 0x0, 0x3, [], [0x4, 0x7, 0x7b], [0x7, 0xffff, 0x2, 0x10000], [0x0, 0x0, 0x1, 0xfff]})
r5 = socket$inet_sctp(0x2, 0x5, 0x84)
sendto$inet(r5, 0x0, 0x0, 0xc1, 0x0, 0x0)
sendmsg$TCPDIAG_GETSOCK(r4, 0x0, 0x40)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuseblk(&(0x7f000000aa80), &(0x7f000000aac0)='./file0\x00', &(0x7f000000ab00), 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x120020, 0x0)
unshare(0x20000400)
setresuid(0x0, 0xee00, 0x0)
getpid()

834.88642ms ago: executing program 7 (id=2839):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file2\x00', 0x200801f, &(0x7f00000000c0), 0x2, 0x4fd, &(0x7f0000000d80)="$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")
mount$9p_fd(0x0, &(0x7f0000000240)='./file2\x00', 0x0, 0x22c000, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
openat(0xffffffffffffff9c, 0x0, 0x2440, 0x0)

833.244004ms ago: executing program 6 (id=2840):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000500)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x28}, 0x1, 0x0, 0x0, 0x4000850}, 0x24044010)

584.187308ms ago: executing program 1 (id=2841):
r0 = signalfd(0xffffffffffffffff, &(0x7f00000001c0)={[0x9]}, 0x8)
close(r0)
fsopen(0x0, 0x0)
fcntl$setstatus(r0, 0x4, 0x2c00)
r1 = syz_io_uring_setup(0x5169, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000000)=<r2=>0x0)
syz_io_uring_setup(0xa94, &(0x7f0000000280)={0x0, 0x0, 0x0, 0xfffffffe, 0x368}, &(0x7f00000000c0)=<r3=>0x0, &(0x7f00000005c0))
syz_io_uring_submit(r3, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r1, 0x48e9, 0x0, 0x0, 0x0, 0x0)

423.534154ms ago: executing program 6 (id=2842):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x800718, &(0x7f00000003c0)={[{@delalloc}, {@journal_dev={'journal_dev', 0x3d, 0x40000ff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x60}}, {@nobh}, {@resgid}, {@resuid}, {@nombcache}, {@noblock_validity}, {@usrquota}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x4}}]}, 0x2, 0x4a3, &(0x7f00000004c0)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffffb)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)

314.638569ms ago: executing program 7 (id=2843):
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={0xffffffffffffffff, 0x2000300, 0x2, 0x0, &(0x7f0000000000)="63ec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000640)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48)

0s ago: executing program 1 (id=2844):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000240)='./file3\x00', 0x4002, &(0x7f0000000080)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@bh}, {@grpquota}, {@mblk_io_submit}]}, 0x1, 0xbd2, &(0x7f0000000540)="$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")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r1=>0x0)
io_submit(r1, 0x20000000000000d6, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x4000, 0xa00}])

kernel console output (not intermixed with test programs):

[  460.101478][ T9782] l2tp_ppp: sess 2/0: no socket in recv
[  460.677734][ T9753] loop6: detected capacity change from 0 to 40427
[  460.713389][ T9753] F2FS-fs (loop6): invalid crc value
[  460.936686][ T9804] openvswitch: netlink: IP tunnel dst address not specified
[  461.226574][ T9753] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  461.280996][ T9753] F2FS-fs (loop6): Start checkpoint disabled!
[  461.320567][ T9753] F2FS-fs (loop6): f2fs_disable_checkpoint() finish, err:0
[  461.360574][ T9753] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  461.544014][ T9817] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1250'.
[  461.832068][ T9824] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1251'.
[  463.285005][ T9753] f2fs_printk: 1 callbacks suppressed
[  463.285032][ T9753] F2FS-fs (loop6): ino:10, start:0, end:8192, need to trigger GC to reclaim enough free segment when checkpoint is enabled
[  463.605929][ T1000] kworker/u8:6: attempt to access beyond end of device
[  463.605929][ T1000] loop6: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  463.701435][ T1000] CPU: 1 UID: 0 PID: 1000 Comm: kworker/u8:6 Not tainted syzkaller #0 PREEMPT(full) 
[  463.701488][ T1000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  463.701520][ T1000] Workqueue: writeback wb_workfn (flush-7:6)
[  463.701579][ T1000] Call Trace:
[  463.701591][ T1000]  <TASK>
[  463.701605][ T1000]  dump_stack_lvl+0x100/0x190
[  463.701665][ T1000]  f2fs_handle_critical_error+0x5d7/0x970
[  463.701725][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.701772][ T1000]  ? f2fs_build_fault_attr+0x53/0x280
[  463.701830][ T1000]  f2fs_write_end_io+0xc3f/0xf30
[  463.701895][ T1000]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  463.701961][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.702017][ T1000]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  463.702077][ T1000]  bio_endio+0x7a3/0x910
[  463.702135][ T1000]  submit_bio_noacct+0x64c/0x2010
[  463.702187][ T1000]  f2fs_submit_write_bio+0x133/0x350
[  463.702246][ T1000]  __submit_merged_bio+0x331/0x7b0
[  463.702312][ T1000]  __submit_merged_write_cond+0x3fe/0x510
[  463.702384][ T1000]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  463.702456][ T1000]  ? __pfx___might_resched+0x10/0x10
[  463.702495][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.702556][ T1000]  f2fs_write_cache_pages+0x21c0/0x2720
[  463.702619][ T1000]  ? __pfx_f2fs_sync_meta_pages+0x10/0x10
[  463.702661][ T1000]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  463.702716][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.702762][ T1000]  ? find_held_lock+0x2b/0x80
[  463.702805][ T1000]  ? nr_blockdev_pages+0xde/0x120
[  463.702931][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.702977][ T1000]  ? find_held_lock+0x2b/0x80
[  463.703020][ T1000]  ? f2fs_write_meta_pages+0x45c/0x6e0
[  463.703062][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.703108][ T1000]  ? rcu_is_watching+0x12/0xc0
[  463.703154][ T1000]  f2fs_write_data_pages+0x799/0x16d0
[  463.703194][ T1000]  ? rcu_is_watching+0x12/0xc0
[  463.703246][ T1000]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  463.703287][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.703351][ T1000]  ? __lock_acquire+0x4a5/0x2630
[  463.703405][ T1000]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  463.703451][ T1000]  do_writepages+0x278/0x600
[  463.703518][ T1000]  ? __pfx_do_writepages+0x10/0x10
[  463.703573][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.703626][ T1000]  __writeback_single_inode+0x164/0x13c0
[  463.703671][ T1000]  ? find_held_lock+0x2b/0x80
[  463.703717][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.703766][ T1000]  ? __pfx___writeback_single_inode+0x10/0x10
[  463.703811][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.703857][ T1000]  ? do_raw_spin_unlock+0x145/0x1e0
[  463.703896][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.703949][ T1000]  writeback_sb_inodes+0x72e/0x1bf0
[  463.704016][ T1000]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  463.704060][ T1000]  ? do_raw_spin_lock+0x128/0x260
[  463.704099][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.704206][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.704252][ T1000]  ? rcu_is_watching+0x12/0xc0
[  463.704291][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.704337][ T1000]  ? queue_io+0x287/0x550
[  463.704377][ T1000]  wb_writeback+0x1c0/0xbe0
[  463.704434][ T1000]  ? __pfx_wb_writeback+0x10/0x10
[  463.704491][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.704543][ T1000]  ? mark_held_locks+0x40/0x70
[  463.704598][ T1000]  ? _raw_spin_unlock_irq+0x23/0x50
[  463.704643][ T1000]  wb_workfn+0x142/0xc00
[  463.704692][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.704738][ T1000]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  463.704778][ T1000]  ? __pfx_wb_workfn+0x10/0x10
[  463.704830][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.704881][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.704931][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.704977][ T1000]  ? rcu_is_watching+0x12/0xc0
[  463.705025][ T1000]  process_one_work+0x9d7/0x1920
[  463.705109][ T1000]  ? __pfx_process_one_work+0x10/0x10
[  463.705170][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.705232][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.705287][ T1000]  worker_thread+0x5da/0xe40
[  463.705340][ T1000]  ? kthread+0x13a/0x450
[  463.705396][ T1000]  ? __pfx_worker_thread+0x10/0x10
[  463.705429][ T1000]  kthread+0x370/0x450
[  463.705485][ T1000]  ? __pfx_kthread+0x10/0x10
[  463.705553][ T1000]  ret_from_fork+0x754/0xd80
[  463.705616][ T1000]  ? __pfx_ret_from_fork+0x10/0x10
[  463.705680][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  463.705726][ T1000]  ? __switch_to+0x7b4/0x1120
[  463.705768][ T1000]  ? __pfx_kthread+0x10/0x10
[  463.705829][ T1000]  ret_from_fork_asm+0x1a/0x30
[  463.705895][ T1000]  </TASK>
[  464.179300][ T1000] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  464.187563][ T1000] CPU: 1 UID: 0 PID: 1000 Comm: kworker/u8:6 Not tainted syzkaller #0 PREEMPT(full) 
[  464.187611][ T1000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  464.187637][ T1000] Workqueue: writeback wb_workfn (flush-7:6)
[  464.187696][ T1000] Call Trace:
[  464.187709][ T1000]  <TASK>
[  464.187723][ T1000]  dump_stack_lvl+0x100/0x190
[  464.187785][ T1000]  f2fs_handle_critical_error+0x5d7/0x970
[  464.187845][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.187893][ T1000]  ? f2fs_build_fault_attr+0x53/0x280
[  464.187953][ T1000]  f2fs_write_end_io+0xc3f/0xf30
[  464.188019][ T1000]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  464.188088][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.188145][ T1000]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  464.188206][ T1000]  bio_endio+0x7a3/0x910
[  464.188265][ T1000]  submit_bio_noacct+0x64c/0x2010
[  464.188319][ T1000]  f2fs_submit_write_bio+0x133/0x350
[  464.188378][ T1000]  __submit_merged_bio+0x331/0x7b0
[  464.188446][ T1000]  __submit_merged_write_cond+0x3fe/0x510
[  464.188525][ T1000]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  464.188599][ T1000]  ? __pfx___might_resched+0x10/0x10
[  464.188639][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.188697][ T1000]  f2fs_write_cache_pages+0x21c0/0x2720
[  464.188761][ T1000]  ? __pfx_f2fs_sync_meta_pages+0x10/0x10
[  464.188805][ T1000]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  464.188860][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.188911][ T1000]  ? find_held_lock+0x2b/0x80
[  464.188956][ T1000]  ? nr_blockdev_pages+0xde/0x120
[  464.189084][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.189131][ T1000]  ? find_held_lock+0x2b/0x80
[  464.189175][ T1000]  ? f2fs_write_meta_pages+0x45c/0x6e0
[  464.189218][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.189264][ T1000]  ? rcu_is_watching+0x12/0xc0
[  464.189313][ T1000]  f2fs_write_data_pages+0x799/0x16d0
[  464.189354][ T1000]  ? rcu_is_watching+0x12/0xc0
[  464.189407][ T1000]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  464.189448][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.189546][ T1000]  ? __lock_acquire+0x4a5/0x2630
[  464.189601][ T1000]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  464.189649][ T1000]  do_writepages+0x278/0x600
[  464.189711][ T1000]  ? __pfx_do_writepages+0x10/0x10
[  464.189768][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.189825][ T1000]  __writeback_single_inode+0x164/0x13c0
[  464.189871][ T1000]  ? find_held_lock+0x2b/0x80
[  464.189918][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.189968][ T1000]  ? __pfx___writeback_single_inode+0x10/0x10
[  464.190014][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.190061][ T1000]  ? do_raw_spin_unlock+0x145/0x1e0
[  464.190102][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.190156][ T1000]  writeback_sb_inodes+0x72e/0x1bf0
[  464.190224][ T1000]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  464.190269][ T1000]  ? do_raw_spin_lock+0x128/0x260
[  464.190309][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.190419][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.190466][ T1000]  ? rcu_is_watching+0x12/0xc0
[  464.190512][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.190559][ T1000]  ? queue_io+0x287/0x550
[  464.190601][ T1000]  wb_writeback+0x1c0/0xbe0
[  464.190659][ T1000]  ? __pfx_wb_writeback+0x10/0x10
[  464.190718][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.190764][ T1000]  ? mark_held_locks+0x40/0x70
[  464.190820][ T1000]  ? _raw_spin_unlock_irq+0x23/0x50
[  464.190865][ T1000]  wb_workfn+0x142/0xc00
[  464.190915][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.190963][ T1000]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  464.191005][ T1000]  ? __pfx_wb_workfn+0x10/0x10
[  464.191053][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.191102][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.191152][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.191197][ T1000]  ? rcu_is_watching+0x12/0xc0
[  464.191245][ T1000]  process_one_work+0x9d7/0x1920
[  464.191329][ T1000]  ? __pfx_process_one_work+0x10/0x10
[  464.191391][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.191454][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.191514][ T1000]  worker_thread+0x5da/0xe40
[  464.191569][ T1000]  ? kthread+0x13a/0x450
[  464.191624][ T1000]  ? __pfx_worker_thread+0x10/0x10
[  464.191657][ T1000]  kthread+0x370/0x450
[  464.191713][ T1000]  ? __pfx_kthread+0x10/0x10
[  464.191772][ T1000]  ret_from_fork+0x754/0xd80
[  464.191836][ T1000]  ? __pfx_ret_from_fork+0x10/0x10
[  464.191900][ T1000]  ? srso_alias_return_thunk+0x5/0xfbef5
[  464.191945][ T1000]  ? __switch_to+0x7b4/0x1120
[  464.191988][ T1000]  ? __pfx_kthread+0x10/0x10
[  464.192049][ T1000]  ret_from_fork_asm+0x1a/0x30
[  464.192116][ T1000]  </TASK>
[  464.646815][ T1000] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  465.313345][ T5935] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  465.516329][ T5935] usb 8-1: Using ep0 maxpacket: 16
[  466.313502][ T5935] usb 8-1: unable to get BOS descriptor or descriptor too short
[  466.385785][ T5935] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  466.449337][ T5935] usb 8-1: config 0 has no interfaces?
[  466.525961][ T9873] siw: device registration error -23
[  466.544904][ T9873] TCP: tcp_parse_options: Illegal window scaling value 150 > 14 received
[  466.685111][ T9873] loop5: detected capacity change from 0 to 512
[  467.283119][ T5935] usb 8-1: New USB device found, idVendor=19d2, idProduct=1590, bcdDevice=3f.7d
[  467.300742][ T5935] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  467.310922][ T5935] usb 8-1: Product: syz
[  467.354139][ T5935] usb 8-1: Manufacturer: syz
[  467.358812][ T5935] usb 8-1: SerialNumber: syz
[  467.409192][ T5935] usb 8-1: config 0 descriptor??
[  467.577472][ T9879] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1266'.
[  469.815487][ T9896] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1273'.
[  470.727825][    T9] usb 8-1: USB disconnect, device number 2
[  470.978747][ T9909] loop6: detected capacity change from 0 to 128
[  471.098274][ T9909] FAT-fs (loop6): Directory bread(block 524322) failed
[  471.169624][ T9909] FAT-fs (loop6): Directory bread(block 524323) failed
[  471.209065][ T9909] FAT-fs (loop6): Directory bread(block 524324) failed
[  471.237959][ T9909] FAT-fs (loop6): Directory bread(block 524325) failed
[  471.292400][ T9909] FAT-fs (loop6): Directory bread(block 524326) failed
[  471.331788][ T9909] FAT-fs (loop6): Directory bread(block 524327) failed
[  471.922764][ T9909] FAT-fs (loop6): Directory bread(block 524328) failed
[  472.369240][ T9909] FAT-fs (loop6): Directory bread(block 524329) failed
[  473.942827][ T9918] netlink: 68 bytes leftover after parsing attributes in process `syz.5.1281'.
[  475.065360][ T9935] loop6: detected capacity change from 0 to 64
[  477.197309][ T9953] TCP: tcp_parse_options: Illegal window scaling value 150 > 14 received
[  477.311860][ T9953] loop6: detected capacity change from 0 to 512
[  478.435649][ T5964] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[  479.308984][ T5964] usb 6-1: Using ep0 maxpacket: 8
[  479.426093][ T5964] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  479.530524][ T5964] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  479.623362][ T5964] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  479.702506][ T5964] usb 6-1: config 0 descriptor??
[  479.753341][ T9981] openvswitch: netlink: IP tunnel dst address not specified
[  479.836211][ T9984] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1302'.
[  480.851383][ T5964] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  483.726384][ T5964] usb 6-1: USB disconnect, device number 13
[  483.977250][ T9995] bridge0: port 1(bridge_slave_0) entered disabled state
[  484.101994][ T9995] bridge0: port 2(bridge_slave_1) entered disabled state
[  484.130763][T10006] tmpfs: Bad value for 'mpol'
[  484.922248][  T977] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[  485.993040][  T977] usb 6-1: Using ep0 maxpacket: 16
[  486.098392][  T977] usb 6-1: unable to get BOS descriptor or descriptor too short
[  486.118049][  T977] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  486.173814][  T977] usb 6-1: config 0 has no interfaces?
[  486.199866][  T977] usb 6-1: New USB device found, idVendor=19d2, idProduct=1590, bcdDevice=3f.7d
[  486.257252][  T977] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  486.892926][T10039] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1320'.
[  487.306491][  T977] usb 6-1: Product: syz
[  487.318018][  T977] usb 6-1: Manufacturer: syz
[  487.334501][  T977] usb 6-1: SerialNumber: syz
[  487.493990][  T977] usb 6-1: config 0 descriptor??
[  487.964135][  T977] usb 6-1: USB disconnect, device number 14
[  488.025446][ T5848] Bluetooth: hci6: command 0x0406 tx timeout
[  488.137026][T10045] loop7: detected capacity change from 0 to 2048
[  488.271518][ T8418]  loop7: p2 < > p4
[  488.304238][ T8418] loop7: p4 size 262144 extends beyond EOD, truncated
[  488.345287][T10050] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1325'.
[  488.413594][T10045]  loop7: p2 < > p4
[  488.457817][T10045] loop7: p4 size 262144 extends beyond EOD, truncated
[  488.513023][T10050] 8021q: adding VLAN 0 to HW filter on device team1
[  489.039781][ T8448] udevd[8448]: inotify_add_watch(7, /dev/loop7p2, 10) failed: No such file or directory
[  489.099774][ T8418] udevd[8418]: inotify_add_watch(7, /dev/loop7p4, 10) failed: No such file or directory
[  491.033705][T10072] A link change request failed with some changes committed already. Interface veth0_to_team may have been left with an inconsistent configuration, please check.
[  491.211716][T10065] loop5: detected capacity change from 0 to 64
[  493.424920][T10100] openvswitch: netlink: IP tunnel dst address not specified
[  495.163466][T10110] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1347'.
[  495.527439][   T30] audit: type=1326 audit(1771796178.004:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10119 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f422c59c629 code=0x7ffc0000
[  496.356963][   T30] audit: type=1326 audit(1771796178.041:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10119 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7f422c59c629 code=0x7ffc0000
[  496.473674][   T30] audit: type=1326 audit(1771796178.041:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10119 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f422c59c629 code=0x7ffc0000
[  496.572591][   T30] audit: type=1326 audit(1771796178.041:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10119 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f422c59c629 code=0x7ffc0000
[  496.732283][ T5834] lo speed is unknown, defaulting to 1000
[  496.738505][ T5936] lo speed is unknown, defaulting to 1000
[  498.543370][T10151] openvswitch: netlink: IP tunnel dst address not specified
[  499.274776][T10164] loop5: detected capacity change from 0 to 1024
[  499.310569][T10164] EXT4-fs: Ignoring removed orlov option
[  499.351573][T10164] EXT4-fs: Ignoring removed nobh option
[  499.415433][T10164] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  499.472248][   T30] audit: type=1800 audit(1771796181.691:72): pid=10164 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1367" name="file1" dev="loop5" ino=15 res=0 errno=0
[  499.999540][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  500.112135][T10185] loop6: detected capacity change from 0 to 1024
[  500.143617][T10186] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1377'.
[  500.856363][T10185] EXT4-fs: Ignoring removed bh option
[  501.346635][T10185] EXT4-fs: Ignoring removed nobh option
[  501.614846][T10185] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  501.701225][T10185] EXT4-fs warning (device loop6): ext4_resize_begin:71: won't resize using backup superblock at 1
[  501.932674][T10199] openvswitch: netlink: IP tunnel dst address not specified
[  502.876253][T10209] Illegal XDP return value 4294967262 on prog  (id 47) dev syz_tun, expect packet loss!
[  503.134246][ T8444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  505.480809][T10240] syzkaller0: entered promiscuous mode
[  505.521110][T10240] syzkaller0: entered allmulticast mode
[  506.101190][T10256] openvswitch: netlink: IP tunnel dst address not specified
[  507.305852][T10266] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1405'.
[  507.338349][T10264] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1404'.
[  509.021594][T10297] openvswitch: netlink: IP tunnel dst address not specified
[  511.517371][T10318] loop7: detected capacity change from 0 to 128
[  512.143929][T10318] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[  512.154395][   T30] audit: type=1800 audit(1771796193.557:73): pid=10318 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1425" name="file2" dev="loop7" ino=1048628 res=0 errno=0
[  512.214269][T10318] FAT-fs (loop7): Filesystem has been set read-only
[  512.221126][T10318] FAT-fs (loop7): error, invalid access to FAT (entry 0x00000100)
[  512.268285][T10318] syz.7.1425: attempt to access beyond end of device
[  512.268285][T10318] loop7: rw=2049, sector=2065, nr_sectors = 8 limit=128
[  514.221086][T10352] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1440'.
[  514.241198][T10353] loop7: detected capacity change from 0 to 1024
[  514.303348][T10353] EXT4-fs: Ignoring removed orlov option
[  514.356129][T10353] EXT4-fs: Ignoring removed nobh option
[  514.465341][T10353] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  514.586098][T10360] netlink: 'syz.0.1442': attribute type 14 has an invalid length.
[  514.822148][T10367] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1445'.
[  514.967424][ T9378] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  516.032831][T10380] loop7: detected capacity change from 0 to 128
[  516.169561][ T5911] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  516.595610][T10389] netlink: 72 bytes leftover after parsing attributes in process `syz.6.1452'.
[  517.311429][ T5911] usb 6-1: Using ep0 maxpacket: 8
[  517.329363][ T5911] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  517.341228][ T5911] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  517.350602][ T5911] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  517.364728][ T5911] usb 6-1: config 0 descriptor??
[  517.395374][T10395] netlink: 32 bytes leftover after parsing attributes in process `syz.7.1456'.
[  517.791809][ T5911] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  518.748381][T10413] TCP: tcp_parse_options: Illegal window scaling value 150 > 14 received
[  518.846385][T10413] loop6: detected capacity change from 0 to 512
[  519.401568][T10409] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1461'.
[  519.816653][ T5936] usb 6-1: USB disconnect, device number 15
[  521.181314][T10430] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  521.354800][T10434] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1469'.
[  522.421549][T10440] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1473'.
[  522.622405][ T5911] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  522.885220][ T5911] usb 7-1: Using ep0 maxpacket: 16
[  523.310579][ T5911] usb 7-1: unable to get BOS descriptor or descriptor too short
[  523.356118][ T5911] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  523.477426][ T5911] usb 7-1: config 0 has no interfaces?
[  523.521951][ T5911] usb 7-1: New USB device found, idVendor=19d2, idProduct=1590, bcdDevice=3f.7d
[  523.556760][ T5911] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  523.598905][ T5911] usb 7-1: Product: syz
[  523.604163][ T5911] usb 7-1: Manufacturer: syz
[  523.619941][ T5911] usb 7-1: SerialNumber: syz
[  523.647198][ T5911] usb 7-1: config 0 descriptor??
[  523.804872][T10460] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1480'.
[  524.105955][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  524.113187][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  524.584316][T10463] netlink: 'syz.5.1481': attribute type 4 has an invalid length.
[  525.064490][T10469] siw: device registration error -23
[  525.073529][T10469] TCP: tcp_parse_options: Illegal window scaling value 150 > 14 received
[  525.105139][T10469] loop7: detected capacity change from 0 to 512
[  525.389401][T10472] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1483'.
[  526.613478][ T5936] usb 7-1: USB disconnect, device number 3
[  526.943168][T10482] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  526.978439][T10484] netlink: 28 bytes leftover after parsing attributes in process `syz.7.1488'.
[  527.184475][T10486] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1489'.
[  527.718772][T10504] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1495'.
[  528.563942][T10512] netlink: 68 bytes leftover after parsing attributes in process `syz.7.1497'.
[  529.873935][T10534] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1508'.
[  529.903351][T10533] loop7: detected capacity change from 0 to 1024
[  529.954855][T10533] EXT4-fs: Ignoring removed orlov option
[  529.970283][T10533] EXT4-fs: Ignoring removed nobh option
[  530.019673][T10533] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  530.270123][ T9378] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  530.547886][T10545] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1512'.
[  531.137807][T10559] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  531.519504][T10564] loop5: detected capacity change from 0 to 1024
[  531.535820][T10564] EXT4-fs: inline encryption not supported
[  531.636336][T10564] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  531.988575][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  532.411553][T10578] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1524'.
[  533.173993][T10591] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  533.506196][T10591] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  533.755684][T10591] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  534.014609][T10591] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  534.407523][ T6304] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  534.425013][ T6304] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  534.514954][   T50] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  534.642874][ T6305] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  534.912752][T10619] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1539'.
[  535.088840][T10622] tmpfs: Unknown parameter 'context
[  535.088840][T10622] '
[  535.122198][T10619] 8021q: adding VLAN 0 to HW filter on device team2
[  535.520859][ T5936] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  535.703488][T10636] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1543'.
[  535.724620][ T5936] usb 8-1: Using ep0 maxpacket: 16
[  535.752403][ T5936] usb 8-1: unable to get BOS descriptor or descriptor too short
[  535.816042][ T5936] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  535.889225][ T5936] usb 8-1: config 0 has no interfaces?
[  535.929469][ T5936] usb 8-1: New USB device found, idVendor=19d2, idProduct=1590, bcdDevice=3f.7d
[  535.988710][ T5936] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  536.025071][ T5936] usb 8-1: Product: syz
[  536.048147][T10641] loop5: detected capacity change from 0 to 512
[  536.055837][ T5936] usb 8-1: Manufacturer: syz
[  536.060470][ T5936] usb 8-1: SerialNumber: syz
[  536.100902][ T5936] usb 8-1: config 0 descriptor??
[  536.150575][T10641] EXT4-fs (loop5): 1 truncate cleaned up
[  536.201259][T10641] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  537.183773][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  537.656068][T10663] loop5: detected capacity change from 0 to 1024
[  537.710353][T10663] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  537.842186][T10663] ext4 filesystem being mounted at /224/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  538.071883][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  538.614660][ T5834] usb 8-1: USB disconnect, device number 3
[  538.994261][T10683] siw: device registration error -23
[  539.188665][T10685] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1561'.
[  540.778883][T10653] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  540.945804][   T30] audit: type=1326 audit(1771796220.498:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10720 comm="syz.5.1577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1f99c629 code=0x7ffc0000
[  541.022523][   T30] audit: type=1326 audit(1771796220.536:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10720 comm="syz.5.1577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1f99c629 code=0x7ffc0000
[  541.098840][   T30] audit: type=1326 audit(1771796220.536:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10720 comm="syz.5.1577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f6c1f99c629 code=0x7ffc0000
[  541.193092][   T30] audit: type=1326 audit(1771796220.536:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10720 comm="syz.5.1577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1f99c629 code=0x7ffc0000
[  541.288897][   T30] audit: type=1326 audit(1771796220.545:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10720 comm="syz.5.1577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=245 compat=0 ip=0x7f6c1f99c629 code=0x7ffc0000
[  541.912542][T10736] siw: device registration error -23
[  541.931271][T10736] TCP: tcp_parse_options: Illegal window scaling value 150 > 14 received
[  542.019832][T10736] loop7: detected capacity change from 0 to 512
[  542.088965][   T30] audit: type=1326 audit(1771796220.545:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10720 comm="syz.5.1577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1f99c629 code=0x7ffc0000
[  542.531005][T10741] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1583'.
[  549.307713][T10811] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1607'.
[  552.402642][T10833] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1615'.
[  553.448073][T10841] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1618'.
[  557.204416][T10894] netlink: 68 bytes leftover after parsing attributes in process `syz.6.1632'.
[  560.570539][T10918] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1640'.
[  560.579655][T10918] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1640'.
[  561.882409][T10921] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1641'.
[  562.635172][T10937] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1645'.
[  563.336172][T10939] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1646'.
[  563.900352][T10941] siw: device registration error -23
[  563.907531][T10941] TCP: tcp_parse_options: Illegal window scaling value 150 > 14 received
[  563.928933][T10941] loop5: detected capacity change from 0 to 512
[  564.728670][T10933] Bluetooth: hci1: command 0x0406 tx timeout
[  564.842616][T10964] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1654'.
[  564.851738][T10964] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1654'.
[  565.769039][T10975] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1659'.
[  566.336173][T10991] netlink: 68 bytes leftover after parsing attributes in process `syz.7.1664'.
[  566.613851][T10993] bridge0: port 3(syz_tun) entered blocking state
[  566.638229][T10993] bridge0: port 3(syz_tun) entered disabled state
[  566.696847][T10993] syz_tun: entered allmulticast mode
[  567.221052][T10993] syz_tun: entered promiscuous mode
[  567.253255][T10993] lo speed is unknown, defaulting to 1000
[  569.483951][T11010] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1669'.
[  571.303338][T11030] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1673'.
[  571.312428][T11030] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1673'.
[  572.112942][T11032] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1676'.
[  573.590163][T11049] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1681'.
[  574.635606][T11043] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1680'.
[  574.777996][T11058] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1686'.
[  575.135309][T11067] vxcan1: entered promiscuous mode
[  576.030605][T11071] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1690'.
[  578.468582][T11095] netlink: 68 bytes leftover after parsing attributes in process `syz.6.1699'.
[  580.694485][T11120] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1703'.
[  581.555481][T11133] loop7: detected capacity change from 0 to 1024
[  582.797691][T11133] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  582.892921][T11144] netlink: 68 bytes leftover after parsing attributes in process `syz.6.1713'.
[  583.410141][T11148] siw: device registration error -23
[  583.416576][T11148] TCP: tcp_parse_options: Illegal window scaling value 150 > 14 received
[  583.432887][T11148] loop5: detected capacity change from 0 to 512
[  583.794115][ T9378] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  585.153087][T11174] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1725'.
[  585.431434][T11176] xt_hashlimit: size too large, truncated to 1048576
[  586.276009][T11187] loop7: detected capacity change from 0 to 512
[  586.667512][T11191] siw: device registration error -23
[  586.674026][T11191] TCP: tcp_parse_options: Illegal window scaling value 150 > 14 received
[  586.691823][T11191] loop5: detected capacity change from 0 to 512
[  586.869816][T11187] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  586.882658][T11187] ext4 filesystem being mounted at /92/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  586.897926][T11187] EXT4-fs error (device loop7): ext4_readdir:263: inode #2: block 3: comm syz.7.1730: path /92/file0: bad entry in directory: directory entry overrun - offset=60, inode=113, rec_len=2048, size=2048 fake=0
[  587.060098][T11187] EXT4-fs error (device loop7): ext4_readdir:263: inode #2: block 12: comm syz.7.1730: path /92/file0: bad entry in directory: directory entry overrun - offset=0, inode=5066064, rec_len=65536, size=2048 fake=0
[  587.160091][T11187] EXT4-fs error (device loop7): ext4_readdir:263: inode #2: block 13: comm syz.7.1730: path /92/file0: bad entry in directory: directory entry overrun - offset=0, inode=3653246737, rec_len=65536, size=2048 fake=0
[  587.413987][ T9378] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  587.798522][T11211] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1734'.
[  587.807699][T11211] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1734'.
[  588.808986][T11215] dns_resolver: Unsupported content type (2)
[  589.107574][T11224] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1743'.
[  589.512788][T11237] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1746'.
[  590.419955][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  590.452788][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  590.698433][T11234] netlink: 44 bytes leftover after parsing attributes in process `syz.7.1745'.
[  590.720805][T11234] bridge0: port 2(bridge_slave_1) entered disabled state
[  590.729414][T11234] bridge0: port 1(bridge_slave_0) entered disabled state
[  591.350529][T11247] siw: device registration error -23
[  593.228703][T11266] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1754'.
[  593.237812][T11266] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1754'.
[  594.845531][T11283] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1760'.
[  595.864497][T11287] loop7: detected capacity change from 0 to 512
[  596.008632][T11287] EXT4-fs (loop7): Cannot turn on journaled quota: type 0: error -2
[  596.052013][T11287] EXT4-fs (loop7): Cannot turn on journaled quota: type 1: error -2
[  596.120151][T11287] EXT4-fs (loop7): 1 truncate cleaned up
[  596.145511][T11287] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  596.228592][T11287] EXT4-fs: group quota file already specified
[  596.393030][ T9378] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  597.029543][T11314] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1773'.
[  598.215986][  T977] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  598.472356][  T977] usb 7-1: Using ep0 maxpacket: 16
[  598.772257][  T977] usb 7-1: unable to get BOS descriptor or descriptor too short
[  598.883717][  T977] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  598.896342][  T977] usb 7-1: config 0 has no interfaces?
[  599.019525][  T977] usb 7-1: New USB device found, idVendor=19d2, idProduct=1590, bcdDevice=3f.7d
[  599.035556][  T977] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  599.051300][  T977] usb 7-1: Product: syz
[  599.062823][  T977] usb 7-1: Manufacturer: syz
[  599.069725][  T977] usb 7-1: SerialNumber: syz
[  599.107845][  T977] usb 7-1: config 0 descriptor??
[  601.790006][T11353] siw: device registration error -23
[  602.067074][T11353] TCP: tcp_parse_options: Illegal window scaling value 150 > 14 received
[  602.260471][T11353] loop5: detected capacity change from 0 to 512
[  603.030412][  T977] usb 7-1: USB disconnect, device number 4
[  604.485155][T11372] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1789'.
[  605.673668][T11381] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1791'.
[  609.176242][T10644] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  609.553498][T10644] usb 7-1: Using ep0 maxpacket: 16
[  610.493485][T10644] usb 7-1: unable to get BOS descriptor or descriptor too short
[  610.519658][T10644] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  610.612921][T10644] usb 7-1: config 0 has no interfaces?
[  610.672554][T10644] usb 7-1: New USB device found, idVendor=19d2, idProduct=1590, bcdDevice=3f.7d
[  610.725109][T10644] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  610.752926][T10644] usb 7-1: Product: syz
[  610.757195][T10644] usb 7-1: Manufacturer: syz
[  610.797571][T10644] usb 7-1: SerialNumber: syz
[  610.901027][T10644] usb 7-1: config 0 descriptor??
[  615.310843][ T5935] usb 7-1: USB disconnect, device number 5
[  615.373366][T11479] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1818'.
[  615.686777][T10933] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  615.700876][T10933] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  615.711393][T10933] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  615.741305][T10933] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  615.765963][T10933] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  615.837162][T11486] lo speed is unknown, defaulting to 1000
[  616.149260][T11484] cgroup: fork rejected by pids controller in /syz6
[  616.623762][T11486] chnl_net:caif_netlink_parms(): no params data found
[  617.907753][T11486] bridge0: port 1(bridge_slave_0) entered blocking state
[  617.931431][T11486] bridge0: port 1(bridge_slave_0) entered disabled state
[  617.938821][T11486] bridge_slave_0: entered allmulticast mode
[  617.948435][T11486] bridge_slave_0: entered promiscuous mode
[  617.963581][T10933] Bluetooth: hci3: command tx timeout
[  617.990285][T11486] bridge0: port 2(bridge_slave_1) entered blocking state
[  617.997873][T11486] bridge0: port 2(bridge_slave_1) entered disabled state
[  618.005177][T11486] bridge_slave_1: entered allmulticast mode
[  618.044476][T11486] bridge_slave_1: entered promiscuous mode
[  618.126388][T11486] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  618.169302][T11486] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  618.447155][T11486] team0: Port device team_slave_0 added
[  618.486049][T11486] team0: Port device team_slave_1 added
[  618.709268][T11486] batman_adv: batadv0: Adding interface: batadv_slave_0
[  618.741415][T11486] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  618.896649][T11486] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  618.989594][T11486] batman_adv: batadv0: Adding interface: batadv_slave_1
[  618.996743][T11486] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  619.114256][T11486] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  619.515299][T11486] hsr_slave_0: entered promiscuous mode
[  619.535775][T11486] hsr_slave_1: entered promiscuous mode
[  619.585038][T11486] debugfs: 'hsr0' already exists in 'hsr'
[  619.606778][T11486] Cannot create hsr debugfs directory
[  620.011744][  T977] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  620.171431][T11726] loop6: detected capacity change from 0 to 1024
[  620.186297][T10933] Bluetooth: hci3: command tx timeout
[  620.228865][  T977] usb 6-1: Using ep0 maxpacket: 16
[  620.278513][  T977] usb 6-1: unable to get BOS descriptor or descriptor too short
[  620.338383][T11726] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  620.372246][  T977] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  620.438621][  T977] usb 6-1: config 0 has no interfaces?
[  620.507496][  T977] usb 6-1: New USB device found, idVendor=19d2, idProduct=1590, bcdDevice=3f.7d
[  620.516656][  T977] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  620.606489][  T977] usb 6-1: Product: syz
[  620.610813][  T977] usb 6-1: Manufacturer: syz
[  620.646160][  T977] usb 6-1: SerialNumber: syz
[  620.877446][  T977] usb 6-1: config 0 descriptor??
[  620.999964][T11733] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1834'.
[  621.808255][ T8444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  622.142999][T11486] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  622.337332][T11486] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  622.446176][T10933] Bluetooth: hci3: command tx timeout
[  622.548599][T11746] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1831'.
[  622.989430][T11749] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1835'.
[  623.066722][T11486] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  623.132062][T11486] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  623.504627][T11486] 8021q: adding VLAN 0 to HW filter on device bond0
[  623.678889][T11486] 8021q: adding VLAN 0 to HW filter on device team0
[  623.728950][ T6305] bridge0: port 1(bridge_slave_0) entered blocking state
[  623.736204][ T6305] bridge0: port 1(bridge_slave_0) entered forwarding state
[  623.815744][ T3485] bridge0: port 2(bridge_slave_1) entered blocking state
[  623.823016][ T3485] bridge0: port 2(bridge_slave_1) entered forwarding state
[  624.631582][T10933] Bluetooth: hci3: command tx timeout
[  625.105506][T11486] 8021q: adding VLAN 0 to HW filter on device batadv0
[  626.331675][T12239] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1848'.
[  627.253561][T11322] Set syz1 is full, maxelem 65536 reached
[  627.343405][  T977] usb 6-1: USB disconnect, device number 16
[  627.466779][T11486] veth0_vlan: entered promiscuous mode
[  627.584601][T11486] veth1_vlan: entered promiscuous mode
[  627.695533][T12246] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1852'.
[  627.867561][T11486] veth0_macvtap: entered promiscuous mode
[  627.950685][T11486] veth1_macvtap: entered promiscuous mode
[  628.077371][T11486] batman_adv: batadv0: Interface activated: batadv_slave_0
[  628.195627][ T5840] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  628.205897][ T5840] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  628.214777][T11486] batman_adv: batadv0: Interface activated: batadv_slave_1
[  628.224366][ T5840] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  628.244227][ T5840] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  628.266282][ T5840] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  628.318249][ T6306] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  628.327440][ T6306] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  628.360096][ T6306] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  628.431264][ T6306] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  628.477767][T12260] netlink: 148 bytes leftover after parsing attributes in process `syz.1.1853'.
[  628.637305][T12252] lo speed is unknown, defaulting to 1000
[  629.183065][ T6304] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  629.192716][ T6304] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  630.512348][T12275] loop7: detected capacity change from 0 to 1024
[  630.555133][ T5840] Bluetooth: hci7: command tx timeout
[  630.693118][T12275] EXT4-fs (loop7): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  630.779387][T12284] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1861'.
[  630.865978][T12275] ext4 filesystem being mounted at /123/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  631.565914][ T9378] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  631.577324][    T9] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  631.718544][   T36] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  631.759501][    T9] usb 6-1: Using ep0 maxpacket: 16
[  631.786061][    T9] usb 6-1: unable to get BOS descriptor or descriptor too short
[  631.806256][    T9] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  631.823049][    T9] usb 6-1: config 0 has no interfaces?
[  631.845318][    T9] usb 6-1: New USB device found, idVendor=19d2, idProduct=1590, bcdDevice=3f.7d
[  631.870603][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  631.900847][    T9] usb 6-1: Product: syz
[  631.922680][    T9] usb 6-1: Manufacturer: syz
[  631.922735][ T3540] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  631.935575][ T3540] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  631.955063][    T9] usb 6-1: SerialNumber: syz
[  631.982370][    T9] usb 6-1: config 0 descriptor??
[  632.204803][   T36] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  632.364797][T12294] loop6: detected capacity change from 0 to 256
[  632.383754][T12294] vfat: Unknown parameter 'uné_xlate'
[  632.753335][ T5840] Bluetooth: hci7: command tx timeout
[  633.371935][T12252] chnl_net:caif_netlink_parms(): no params data found
[  633.380442][T12301] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1866'.
[  633.431045][T12303] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1862'.
[  633.962926][T10644] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[  634.056148][T10644] hid-generic 0000:0000:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  634.222927][T12317] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1816'.
[  634.292993][   T36] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  634.670108][T12317] @: option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[  634.984591][ T5840] Bluetooth: hci7: command tx timeout
[  634.999626][T12317] @ (unregistering): Released all slaves
[  636.156751][T10644] usb 6-1: USB disconnect, device number 17
[  636.193004][T12327] loop6: detected capacity change from 0 to 256
[  636.233955][   T36] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  636.248414][T12327] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  636.492879][T12330] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1873'.
[  637.112970][T12327] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  637.278460][ T5840] Bluetooth: hci7: command tx timeout
[  637.437476][T12252] bridge0: port 1(bridge_slave_0) entered blocking state
[  637.489925][T12252] bridge0: port 1(bridge_slave_0) entered disabled state
[  637.505718][T12252] bridge_slave_0: entered allmulticast mode
[  637.514182][T12252] bridge_slave_0: entered promiscuous mode
[  637.599439][T12252] bridge0: port 2(bridge_slave_1) entered blocking state
[  637.616371][T12252] bridge0: port 2(bridge_slave_1) entered disabled state
[  637.637068][T12252] bridge_slave_1: entered allmulticast mode
[  637.663064][T12252] bridge_slave_1: entered promiscuous mode
[  637.801940][T12345] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1877'.
[  638.774737][T12252] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  638.790171][T12252] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  638.925655][T12252] team0: Port device team_slave_0 added
[  638.951976][T12352] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1882'.
[  638.985375][T12252] team0: Port device team_slave_1 added
[  639.452041][T12252] batman_adv: batadv0: Adding interface: batadv_slave_0
[  639.502608][T12252] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  639.721132][T12252] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  639.851884][T12252] batman_adv: batadv0: Adding interface: batadv_slave_1
[  639.944942][T12252] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  640.142304][T12252] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  640.254505][   T36] bridge_slave_1: left allmulticast mode
[  640.281939][   T36] bridge_slave_1: left promiscuous mode
[  640.338497][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  641.986735][   T36] bridge_slave_0: left allmulticast mode
[  642.034536][   T36] bridge_slave_0: left promiscuous mode
[  642.079008][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  642.590307][    T9] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  642.683744][T12383] openvswitch: netlink: Flow actions attr not present in new flow.
[  642.765230][    T9] usb 9-1: Using ep0 maxpacket: 16
[  642.856865][    T9] usb 9-1: unable to get BOS descriptor or descriptor too short
[  643.018877][    T9] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  643.039803][    T9] usb 9-1: config 0 has no interfaces?
[  643.095604][    T9] usb 9-1: New USB device found, idVendor=19d2, idProduct=1590, bcdDevice=3f.7d
[  643.140014][    T9] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  643.190153][    T9] usb 9-1: Product: syz
[  643.267307][    T9] usb 9-1: Manufacturer: syz
[  643.289131][    T9] usb 9-1: SerialNumber: syz
[  643.306565][    T9] usb 9-1: config 0 descriptor??
[  643.576438][T11449] Set syz1 is full, maxelem 65536 reached
[  644.033532][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  644.249521][T12395] netlink: 36 bytes leftover after parsing attributes in process `syz.8.1891'.
[  644.354318][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  644.819529][   T36] bond0 (unregistering): Released all slaves
[  644.998685][T12401] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1898'.
[  645.308232][T12386] lo speed is unknown, defaulting to 1000
[  645.468595][T12252] hsr_slave_0: entered promiscuous mode
[  645.476218][T12252] hsr_slave_1: entered promiscuous mode
[  645.483257][T12252] debugfs: 'hsr0' already exists in 'hsr'
[  645.489133][T12252] Cannot create hsr debugfs directory
[  645.512292][T12405] lo speed is unknown, defaulting to 1000
[  646.745467][ T5911] usb 9-1: USB disconnect, device number 2
[  646.935668][T12425] openvswitch: netlink: Flow actions attr not present in new flow.
[  647.780325][T12440] loop6: detected capacity change from 0 to 256
[  647.821244][T12440] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  647.857551][T12440] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  647.872246][   T36] hsr_slave_0: left promiscuous mode
[  647.901740][   T36] hsr_slave_1: left promiscuous mode
[  647.933183][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  647.977206][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  648.006595][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  648.031949][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  648.133280][   T36] veth1_macvtap: left promiscuous mode
[  648.158251][   T36] veth0_macvtap: left promiscuous mode
[  648.186547][   T36] veth1_vlan: left promiscuous mode
[  648.193152][   T36] veth0_vlan: left promiscuous mode
[  649.790701][T12458] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1914'.
[  649.890544][   T36] team0 (unregistering): Port device team_slave_1 removed
[  649.911467][   T36] team0 (unregistering): Port device team_slave_0 removed
[  651.103773][   T24] lo speed is unknown, defaulting to 1000
[  651.135104][   T24] infiniband syz0: ib_query_port failed (-19)
[  651.608039][T12471] openvswitch: netlink: Flow actions attr not present in new flow.
[  651.750843][ T5935] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  651.998456][ T5935] usb 7-1: Using ep0 maxpacket: 16
[  652.037238][ T5935] usb 7-1: unable to get BOS descriptor or descriptor too short
[  652.061759][ T5935] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  652.073886][ T5935] usb 7-1: config 0 has no interfaces?
[  652.085187][ T5935] usb 7-1: New USB device found, idVendor=19d2, idProduct=1590, bcdDevice=3f.7d
[  652.100271][ T5935] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  652.110326][ T5935] usb 7-1: Product: syz
[  652.114991][ T5935] usb 7-1: Manufacturer: syz
[  652.140728][ T5935] usb 7-1: SerialNumber: syz
[  652.196908][ T5935] usb 7-1: config 0 descriptor??
[  652.409995][T12479] loop5: detected capacity change from 0 to 512
[  652.592939][T12479] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  652.618524][T12479] ext4 filesystem being mounted at /293/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  653.509293][T12490] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1917'.
[  654.120314][   T36] IPVS: stop unused estimator thread 0...
[  654.224625][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  654.466340][T12252] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  654.547203][T12252] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  654.613223][T12252] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  655.740020][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  655.746580][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  655.961701][T12252] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  656.092852][ T5911] usb 7-1: USB disconnect, device number 6
[  656.488293][T12528] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1930'.
[  658.354984][T12252] 8021q: adding VLAN 0 to HW filter on device bond0
[  658.454939][T12252] 8021q: adding VLAN 0 to HW filter on device team0
[  658.522768][ T1000] bridge0: port 1(bridge_slave_0) entered blocking state
[  658.530134][ T1000] bridge0: port 1(bridge_slave_0) entered forwarding state
[  658.611710][ T1000] bridge0: port 2(bridge_slave_1) entered blocking state
[  658.619077][ T1000] bridge0: port 2(bridge_slave_1) entered forwarding state
[  660.912580][T12252] 8021q: adding VLAN 0 to HW filter on device batadv0
[  662.121100][T12616] loop6: detected capacity change from 0 to 512
[  662.200042][T12616] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  662.233032][T12625] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1955'.
[  662.319070][T12616] EXT4-fs (loop6): 1 truncate cleaned up
[  662.407742][T12625] team0: Port device team_slave_0 removed
[  662.420323][T12616] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  662.776157][ T8444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  662.836230][T12252] veth0_vlan: entered promiscuous mode
[  662.900049][T12252] veth1_vlan: entered promiscuous mode
[  663.030769][T12644] netlink: 68 bytes leftover after parsing attributes in process `syz.5.1962'.
[  663.103839][T12647] openvswitch: netlink: IP tunnel dst address not specified
[  663.154770][T12252] veth0_macvtap: entered promiscuous mode
[  663.484890][T12252] veth1_macvtap: entered promiscuous mode
[  663.576900][T12252] batman_adv: batadv0: Interface activated: batadv_slave_0
[  663.676132][T12252] batman_adv: batadv0: Interface activated: batadv_slave_1
[  663.736287][ T1000] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  663.766923][ T1000] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  663.834156][ T1000] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  663.914346][T12661] TCP: tcp_parse_options: Illegal window scaling value 150 > 14 received
[  663.964451][T12659] lo speed is unknown, defaulting to 1000
[  663.970555][T12659] lo speed is unknown, defaulting to 1000
[  663.978331][T12659] lo speed is unknown, defaulting to 1000
[  663.995997][T12659] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  664.048645][T12661] loop8: detected capacity change from 0 to 512
[  664.063362][T12659] lo speed is unknown, defaulting to 1000
[  664.072270][T12659] lo speed is unknown, defaulting to 1000
[  664.082854][T12659] lo speed is unknown, defaulting to 1000
[  664.098713][ T1000] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  664.941700][T12659] lo speed is unknown, defaulting to 1000
[  665.053920][T12659] lo speed is unknown, defaulting to 1000
[  665.062091][T12659] lo speed is unknown, defaulting to 1000
[  665.111552][T12659] lo speed is unknown, defaulting to 1000
[  665.119495][T12659] lo speed is unknown, defaulting to 1000
[  665.420954][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  665.472042][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  665.942803][T12693] loop6: detected capacity change from 0 to 2048
[  665.957067][T12695] openvswitch: netlink: IP tunnel dst address not specified
[  666.059750][T12693] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  666.094873][T12685] vlan0: entered promiscuous mode
[  666.127672][T12680] vlan0: left promiscuous mode
[  666.191883][ T6305] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  666.232169][ T6305] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  666.298347][ T8444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  666.836056][T12712] syzkaller1: entered promiscuous mode
[  666.926726][T12712] syzkaller1: entered allmulticast mode
[  667.119511][T12701] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1977'.
[  668.263609][T12729] tipc: Started in network mode
[  668.268664][T12729] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  668.333117][T12731] loop9: detected capacity change from 0 to 512
[  668.382988][T12729] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  668.418080][T12731] EXT4-fs (loop9): mounting ext3 file system using the ext4 subsystem
[  668.509088][T12729] tipc: Enabled bearer <udp:syz0>, priority 10
[  668.529021][T12731] EXT4-fs (loop9): invalid journal inode
[  668.579610][T12731] EXT4-fs (loop9): can't get journal size
[  668.730097][T12731] EXT4-fs (loop9): 1 truncate cleaned up
[  668.833868][T12731] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  669.495566][T12252] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  669.655428][   T24] tipc: Node number set to 1
[  672.106729][T12800] loop5: detected capacity change from 0 to 2048
[  672.177531][T12805] siw: device registration error -23
[  672.185814][T12805] TCP: tcp_parse_options: Illegal window scaling value 150 > 14 received
[  672.214314][T12805] loop9: detected capacity change from 0 to 512
[  673.535758][T12800] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  674.178886][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  675.750696][T12862] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2032'.
[  676.531714][T12875] syzkaller0: entered promiscuous mode
[  676.546897][T12875] syzkaller0: entered allmulticast mode
[  677.989150][T12910] openvswitch: netlink: IP tunnel dst address not specified
[  678.033873][T12908] loop9: detected capacity change from 0 to 1024
[  678.193037][T12908] EXT4-fs: Ignoring removed orlov option
[  678.494273][T12908] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  679.414126][T12923] netlink: 'syz.7.2054': attribute type 13 has an invalid length.
[  679.478309][T12923] netlink: 'syz.7.2054': attribute type 17 has an invalid length.
[  679.728498][T12923] bridge0: port 2(bridge_slave_1) entered blocking state
[  679.735826][T12923] bridge0: port 2(bridge_slave_1) entered listening state
[  679.743308][T12923] bridge0: port 1(bridge_slave_0) entered blocking state
[  679.750511][T12923] bridge0: port 1(bridge_slave_0) entered listening state
[  681.016569][T12923] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  681.159365][T12252] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  681.413069][T12932] bridge0: port 2(bridge_slave_1) entered disabled state
[  681.420528][T12932] bridge0: port 1(bridge_slave_0) entered disabled state
[  681.626278][T12951] loop8: detected capacity change from 0 to 256
[  681.771311][T12951] FAT-fs (loop8): Directory bread(block 64) failed
[  681.821586][T12951] FAT-fs (loop8): Directory bread(block 65) failed
[  681.855902][T12951] FAT-fs (loop8): Directory bread(block 66) failed
[  681.877252][T12951] FAT-fs (loop8): Directory bread(block 67) failed
[  681.883932][T12951] FAT-fs (loop8): Directory bread(block 68) failed
[  681.930157][T12951] FAT-fs (loop8): Directory bread(block 69) failed
[  681.940635][T12951] FAT-fs (loop8): Directory bread(block 70) failed
[  681.969117][T12955] loop6: detected capacity change from 0 to 4096
[  681.972644][T12951] FAT-fs (loop8): Directory bread(block 71) failed
[  681.979925][T12951] FAT-fs (loop8): Directory bread(block 72) failed
[  682.041832][T12951] FAT-fs (loop8): Directory bread(block 73) failed
[  682.153440][T12955] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  682.307247][T12932] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  682.375726][T12932] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  682.458007][ T8444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  683.633184][T11317] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  683.661173][T11317] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  683.736786][ T6879] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  683.746246][ T6879] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  684.181488][T12996] loop9: detected capacity change from 0 to 512
[  684.256205][T12996] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  684.408624][T12996] ext4 filesystem being mounted at /11/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  684.450610][T13005] loop8: detected capacity change from 0 to 512
[  684.471953][T13005] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[  684.537456][T13005] EXT4-fs (loop8): 1 truncate cleaned up
[  684.545362][T13005] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  684.771535][T12252] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  684.843905][T11486] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  685.340343][T13023] loop6: detected capacity change from 0 to 2048
[  685.474840][T13023] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  685.902270][T13039] loop5: detected capacity change from 0 to 512
[  685.914288][ T8444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  685.970520][T13039] EXT4-fs: Ignoring removed i_version option
[  685.976651][T13039] EXT4-fs: Ignoring removed oldalloc option
[  686.169971][T13039] EXT4-fs (loop5): 1 truncate cleaned up
[  686.348102][T13039] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  687.283835][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  687.365453][T13054] loop8: detected capacity change from 0 to 512
[  687.384933][T13056] netdevsim netdevsim9 netdevsim0: entered allmulticast mode
[  687.434162][T13054] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[  687.456861][T13058] loop6: detected capacity change from 0 to 512
[  687.512752][T13058] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  687.532155][T13054] EXT4-fs (loop8): 1 truncate cleaned up
[  687.573804][T13054] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  687.620968][T13058] EXT4-fs (loop6): 1 truncate cleaned up
[  687.646092][T13058] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  687.757842][ T8444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  687.975564][T11486] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  688.121066][T13076] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2103'.
[  688.636762][T13092] loop6: detected capacity change from 0 to 512
[  688.688117][T13092] EXT4-fs error (device loop6): ext4_orphan_get:1391: inode #15: comm syz.6.2109: inode has both inline data and extents flags
[  688.773712][T13092] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  688.790221][    C1] EXT4-fs (loop6): error count since last fsck: 1
[  688.806531][    C1] EXT4-fs (loop6): initial error at time 1771796358: ext4_orphan_get:1391: inode 15
[  688.815997][    C1] EXT4-fs (loop6): last error at time 1771796358: ext4_orphan_get:1391: inode 15
[  688.832369][T13092] EXT4-fs error (device loop6): ext4_orphan_get:1394: comm syz.6.2109: couldn't read orphan inode 15 (err -117)
[  688.880278][T13092] loop6: lost filesystem error report for type 5 error -117
[  688.894281][T13099] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2111'.
[  688.902692][T13092] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  689.336506][T13106] openvswitch: netlink: IP tunnel dst address not specified
[  689.404739][ T8444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  689.511442][T13112] vlan0: entered promiscuous mode
[  689.856261][T13119] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2119'.
[  689.915594][T13110] vlan0: left promiscuous mode
[  689.974371][T13124] loop9: detected capacity change from 0 to 512
[  690.079950][T13124] EXT4-fs (loop9): revision level too high, forcing read-only mode
[  690.168622][T13124] EXT4-fs (loop9): orphan cleanup on readonly fs
[  690.288861][T13124] Quota error (device loop9): dq_insert_tree: Quota tree root isn't allocated!
[  690.345749][T13124] Quota error (device loop9): qtree_write_dquot: Error -5 occurred while creating quota
[  690.401294][T13124] EXT4-fs error (device loop9): ext4_acquire_dquot:6999: comm syz.9.2120: Failed to acquire dquot type 1
[  690.475860][T13124] loop9: lost filesystem error report for type 5 error -5
[  690.478671][    C0] EXT4-fs (loop9): error count since last fsck: 1
[  690.492351][    C0] EXT4-fs (loop9): initial error at time 1771796360: ext4_acquire_dquot:6999
[  690.501208][    C0] EXT4-fs (loop9): last error at time 1771796360: ext4_acquire_dquot:6999
[  690.546793][T13124] EXT4-fs error (device loop9): ext4_validate_block_bitmap:440: comm syz.9.2120: bg 0: block 40: padding at end of block bitmap is not set
[  690.605760][T13124] loop9: lost filesystem error report for type 5 error -117
[  690.648421][T13124] EXT4-fs error (device loop9) in ext4_mb_clear_bb:6686: Corrupt filesystem
[  690.700836][T13139] loop5: detected capacity change from 0 to 256
[  690.713885][T13124] loop9: lost filesystem error report for type 5 error -117
[  690.744980][T13124] EXT4-fs (loop9): 1 truncate cleaned up
[  690.762857][T13139] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  690.794094][T13142] loop8: detected capacity change from 0 to 1024
[  690.868382][T13124] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  690.882348][T13139] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  690.915516][T13142] EXT4-fs (loop8): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  690.991843][T13142] ext4 filesystem being mounted at /49/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  691.110356][T13124] EXT4-fs error (device loop9): ext4_get_link:106: inode #16: comm syz.9.2120: bad symlink.
[  691.144493][T13149] EXT4-fs error (device loop9): ext4_get_link:106: inode #16: comm syz.9.2120: bad symlink.
[  691.370403][T13155] openvswitch: netlink: IP tunnel dst address not specified
[  691.471456][T12252] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  692.210535][T13173] netlink: 72 bytes leftover after parsing attributes in process `syz.9.2132'.
[  692.820655][T13167] loop6: detected capacity change from 0 to 4096
[  693.002574][T11486] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  693.064193][T13167] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  693.183841][   T30] audit: type=1800 audit(1771796362.974:80): pid=13167 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2135" name="file0" dev="loop6" ino=13 res=0 errno=0
[  694.285533][ T8444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  694.842387][T13212] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2145'.
[  695.253763][T13218] loop6: detected capacity change from 0 to 128
[  695.345919][T13218] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  695.482021][T13218] ext4 filesystem being mounted at /186/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  695.530461][   T30] audit: type=1326 audit(1771796365.164:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13224 comm="syz.7.2156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8f79c629 code=0x7ffc0000
[  695.590532][   T30] audit: type=1326 audit(1771796365.192:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13224 comm="syz.7.2156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8f79c629 code=0x7ffc0000
[  695.872122][   T30] audit: type=1326 audit(1771796365.192:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13224 comm="syz.7.2156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f0e8f79c629 code=0x7ffc0000
[  695.900733][   T30] audit: type=1326 audit(1771796365.192:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13224 comm="syz.7.2156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8f79c629 code=0x7ffc0000
[  695.924626][   T30] audit: type=1326 audit(1771796365.192:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13224 comm="syz.7.2156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8f79c629 code=0x7ffc0000
[  696.190512][   T30] audit: type=1326 audit(1771796365.192:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13224 comm="syz.7.2156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=226 compat=0 ip=0x7f0e8f79c629 code=0x7ffc0000
[  696.443585][    C1] bridge0: port 1(bridge_slave_0) entered learning state
[  696.451667][    C1] bridge0: port 2(bridge_slave_1) entered learning state
[  696.610722][   T30] audit: type=1326 audit(1771796365.192:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13224 comm="syz.7.2156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8f79c629 code=0x7ffc0000
[  696.854762][   T30] audit: type=1326 audit(1771796365.192:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13224 comm="syz.7.2156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e8f79c629 code=0x7ffc0000
[  696.970947][   T30] audit: type=1804 audit(1771796365.220:89): pid=13218 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.2150" name="bus" dev="ramfs" ino=29200 res=1 errno=0
[  697.094247][   T30] audit: type=1804 audit(1771796365.220:90): pid=13218 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.2150" name="bus" dev="ramfs" ino=29200 res=1 errno=0
[  697.680430][T13259] loop8: detected capacity change from 0 to 1024
[  697.718218][T13259] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  697.785095][T11486] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  697.836699][T13263] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2168'.
[  697.914878][ T8444] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  698.624893][T13281] syzkaller0: entered promiscuous mode
[  698.641598][T13281] syzkaller0: entered allmulticast mode
[  698.672500][T13281] TC_ACT_REPEAT abuse ?
[  698.706451][T13278] loop9: detected capacity change from 0 to 8192
[  702.202235][T13328] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2194'.
[  702.251018][   T30] audit: type=1326 audit(1771796371.443:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13329 comm="syz.5.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1f99c629 code=0x7ffc0000
[  702.296638][   T30] audit: type=1326 audit(1771796371.480:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13329 comm="syz.5.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=226 compat=0 ip=0x7f6c1f99c629 code=0x7ffc0000
[  702.381103][   T30] audit: type=1326 audit(1771796371.480:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13329 comm="syz.5.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1f99c629 code=0x7ffc0000
[  702.408892][T13328] team0: Port device team_slave_0 removed
[  702.540377][   T30] audit: type=1326 audit(1771796371.480:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13329 comm="syz.5.2195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1f99c629 code=0x7ffc0000
[  703.906613][T13366] openvswitch: netlink: IP tunnel dst address not specified
[  703.974001][T13361] netlink: 16 bytes leftover after parsing attributes in process `syz.9.2206'.
[  704.154697][T13370] vlan0: entered promiscuous mode
[  705.174697][T13368] vlan0: left promiscuous mode
[  705.203537][T13381] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2212'.
[  705.389921][T13381] team0: Port device team_slave_0 removed
[  706.438391][T13406] loop6: detected capacity change from 0 to 512
[  706.498385][T13406] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  706.525777][T13406] EXT4-fs (loop6): orphan cleanup on readonly fs
[  706.538323][T13406] Quota error (device loop6): dq_insert_tree: Quota tree root isn't allocated!
[  706.550510][T13406] Quota error (device loop6): qtree_write_dquot: Error -5 occurred while creating quota
[  706.555056][T13402] vlan0: entered promiscuous mode
[  706.563587][T13406] EXT4-fs error (device loop6): ext4_acquire_dquot:6999: comm syz.6.2220: Failed to acquire dquot type 1
[  706.577498][T13406] loop6: lost filesystem error report for type 5 error -5
[  706.582486][    C0] EXT4-fs (loop6): error count since last fsck: 1
[  706.596168][    C0] EXT4-fs (loop6): initial error at time 1771796375: ext4_acquire_dquot:6999
[  706.605017][    C0] EXT4-fs (loop6): last error at time 1771796375: ext4_acquire_dquot:6999
[  706.619361][T13406] EXT4-fs error (device loop6): ext4_validate_block_bitmap:440: comm syz.6.2220: bg 0: block 40: padding at end of block bitmap is not set
[  706.669878][T13406] loop6: lost filesystem error report for type 5 error -117
[  706.672506][T13406] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6686: Corrupt filesystem
[  707.196520][T13406] loop6: lost filesystem error report for type 5 error -117
[  707.261090][T13406] EXT4-fs (loop6): 1 truncate cleaned up
[  707.429054][T13406] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  707.632154][T13398] EXT4-fs error (device loop6): ext4_get_link:106: inode #16: comm syz.6.2220: bad symlink.
[  707.748542][T13426] vlan0: entered promiscuous mode
[  707.749526][T13398] EXT4-fs error (device loop6): ext4_lookup:1785: inode #15: comm syz.6.2220: iget: bad i_size value: 360287970189639690
[  707.808607][T13430] netlink: 'syz.8.2231': attribute type 21 has an invalid length.
[  707.872068][T13397] vlan0: left promiscuous mode
[  707.910510][T13424] vlan0: left promiscuous mode
[  708.059408][ T8444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  708.156226][T13441] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2234'.
[  709.646245][T13468] loop9: detected capacity change from 0 to 128
[  709.703858][T13468] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  709.719481][T13468] ext4 filesystem being mounted at /42/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  709.764806][  T977] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[  709.830888][   T30] audit: type=1804 audit(1771796378.546:95): pid=13468 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.9.2245" name="bus" dev="ramfs" ino=29571 res=1 errno=0
[  709.837356][  T977] hid-generic 0000:0000:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  709.889277][   T30] audit: type=1804 audit(1771796378.592:96): pid=13468 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.9.2245" name="bus" dev="ramfs" ino=29571 res=1 errno=0
[  709.932959][T13477] vlan0: entered promiscuous mode
[  710.044853][ T5964] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  710.203191][T13484] openvswitch: netlink: IP tunnel dst address not specified
[  710.374975][T13476] vlan0: left promiscuous mode
[  710.563300][ T5964] usb 7-1: device descriptor read/64, error -71
[  710.825477][ T5964] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  711.039384][ T5964] usb 7-1: device descriptor read/64, error -71
[  711.143635][T13499] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2255'.
[  711.156534][ T5964] usb usb7-port1: attempt power cycle
[  711.279369][T13502] loop8: detected capacity change from 0 to 1024
[  711.329512][T13502] EXT4-fs: Ignoring removed orlov option
[  711.335245][T13502] EXT4-fs: Ignoring removed nobh option
[  711.451377][T13502] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  711.500342][T12252] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  711.531135][ T5964] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[  711.586873][ T5964] usb 7-1: device descriptor read/8, error -71
[  711.851404][ T5964] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  711.933512][ T5964] usb 7-1: device descriptor read/8, error -71
[  712.081337][ T5964] usb usb7-port1: unable to enumerate USB device
[  712.855409][    C1] bridge0: port 2(bridge_slave_1) entered forwarding state
[  712.862706][    C1] bridge0: topology change detected, propagating
[  712.869524][    C1] bridge0: port 1(bridge_slave_0) entered forwarding state
[  712.876826][    C1] bridge0: topology change detected, propagating
[  713.205803][T13530] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2264'.
[  713.257517][T13535] netlink: 52 bytes leftover after parsing attributes in process `syz.6.2268'.
[  713.481393][T13538] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2270'.
[  713.656948][T13538] team0: Port device team_slave_0 removed
[  714.884766][T11486] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  714.996887][T13566] loop9: detected capacity change from 0 to 512
[  715.033268][T13566] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  715.099328][T13566] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  715.179710][T13566] EXT4-fs error (device loop9): ext4_orphan_get:1417: comm syz.9.2280: bad orphan inode 16
[  715.228171][T13566] loop9: lost filesystem error report for type 5 error -117
[  715.228665][T13566] ext4_test_bit(bit=15, block=4) = 0
[  715.241414][    C0] EXT4-fs (loop9): error count since last fsck: 1
[  715.241469][    C0] EXT4-fs (loop9): initial error at time 1771796383: ext4_orphan_get:1417
[  715.241512][    C0] EXT4-fs (loop9): last error at time 1771796383: ext4_orphan_get:1417
[  715.363233][T13566] EXT4-fs (loop9): 1 orphan inode deleted
[  715.384347][T13579] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2285'.
[  715.407009][T13566] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  715.510567][T13566] EXT4-fs (loop9): shut down requested (0)
[  715.677828][T13583] netlink: 72 bytes leftover after parsing attributes in process `syz.6.2278'.
[  715.830533][T12252] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  715.982248][T13590] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2289'.
[  716.097469][T13590] team0: Port device team_slave_0 removed
[  717.933478][T13621] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2301'.
[  718.095177][T13630] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2305'.
[  718.267179][T13636] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2306'.
[  718.310893][T13636] xfrm0: entered promiscuous mode
[  718.342880][T13636] xfrm0: entered allmulticast mode
[  720.147873][T13675] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2319'.
[  720.399835][T13683] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  720.943217][T13701] loop9: detected capacity change from 0 to 1024
[  721.007648][T13701] EXT4-fs: Ignoring removed orlov option
[  721.066923][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  721.073522][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  721.172840][T13701] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  721.795817][T12252] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  722.234924][T13737] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2341'.
[  722.310507][T13739] netlink: 'syz.1.2343': attribute type 1 has an invalid length.
[  722.521895][T13744] loop8: detected capacity change from 0 to 1024
[  722.617718][T13744] EXT4-fs error (device loop8): ext4_ext_check_inode:521: inode #4: comm syz.8.2345: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  722.636598][T13744] loop8: lost file I/O error report for ino 4 type 5 pos 0x0 len 0x0 error -117
[  722.643650][    C0] EXT4-fs (loop8): error count since last fsck: 1
[  722.659270][    C0] EXT4-fs (loop8): initial error at time 1771796390: ext4_ext_check_inode:521: inode 4
[  722.668989][    C0] EXT4-fs (loop8): last error at time 1771796390: ext4_ext_check_inode:521: inode 4
[  722.679789][T13744] EXT4-fs error (device loop8): ext4_quota_enable:7194: comm syz.8.2345: Bad quota inode: 4, type: 1
[  722.697734][T13744] loop8: lost filesystem error report for type 5 error -117
[  722.707794][T13744] EXT4-fs warning (device loop8): ext4_enable_quotas:7232: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  722.751169][T13744] EXT4-fs (loop8): mount failed
[  724.005254][T13756] loop5: detected capacity change from 0 to 4096
[  724.053352][T13764] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2352'.
[  724.099317][T13756] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  724.625409][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  726.428631][T13801] openvswitch: netlink: IP tunnel dst address not specified
[  726.652038][T13808] vlan0: entered promiscuous mode
[  726.693040][T13803] loop6: detected capacity change from 0 to 512
[  726.750462][T13803] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  726.780365][T13803] EXT4-fs (loop6): orphan cleanup on readonly fs
[  726.941266][T13803] Quota error (device loop6): dq_insert_tree: Quota tree root isn't allocated!
[  726.978193][T13803] Quota error (device loop6): qtree_write_dquot: Error -5 occurred while creating quota
[  727.026592][T13803] EXT4-fs error (device loop6): ext4_acquire_dquot:6999: comm syz.6.2365: Failed to acquire dquot type 1
[  727.027838][T13816] netlink: 'syz.9.2370': attribute type 10 has an invalid length.
[  727.067903][T13803] loop6: lost filesystem error report for type 5 error -5
[  727.069677][T13803] EXT4-fs error (device loop6): ext4_validate_block_bitmap:440: comm syz.6.2365: bg 0: block 40: padding at end of block bitmap is not set
[  727.091188][    C0] EXT4-fs (loop6): error count since last fsck: 1
[  727.091227][    C0] EXT4-fs (loop6): initial error at time 1771796394: ext4_acquire_dquot:6999
[  727.091271][    C0] EXT4-fs (loop6): last error at time 1771796394: ext4_acquire_dquot:6999
[  727.126640][T13803] loop6: lost filesystem error report for type 5 error -117
[  727.127184][T13803] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6686: Corrupt filesystem
[  727.150823][T13803] loop6: lost filesystem error report for type 5 error -117
[  727.151814][T13803] EXT4-fs (loop6): 1 truncate cleaned up
[  727.207005][T13816] geneve0: entered promiscuous mode
[  727.225766][T13803] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  727.286677][T13816] bond0: (slave geneve0): Enslaving as an active interface with an up link
[  727.334445][T13825] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2371'.
[  727.357832][T13803] EXT4-fs error (device loop6): ext4_get_link:106: inode #16: comm syz.6.2365: bad symlink.
[  727.464273][T13802] vlan0: left promiscuous mode
[  727.692833][ T8444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  727.844118][T13838] loop8: detected capacity change from 0 to 512
[  727.924759][T13838] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[  727.996085][T13838] EXT4-fs (loop8): 1 truncate cleaned up
[  728.022014][T13838] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  728.192439][T11486] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  728.487386][T13858] loop6: detected capacity change from 0 to 512
[  728.515251][T13858] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  728.566953][T13858] EXT4-fs (loop6): 1 truncate cleaned up
[  728.626250][T13858] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  728.716966][T13864] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2386'.
[  728.866796][ T8444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  729.827483][T13893] loop6: detected capacity change from 0 to 512
[  729.860785][T13893] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  729.916846][T13893] EXT4-fs (loop6): 1 truncate cleaned up
[  729.925378][T13893] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  730.140330][ T8444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  730.798598][T13914] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2403'.
[  731.638009][T13936] loop5: detected capacity change from 0 to 512
[  731.666072][T13936] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  731.728956][T13936] EXT4-fs (loop5): 1 truncate cleaned up
[  731.750978][T13936] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  731.827413][T13941] loop8: detected capacity change from 0 to 128
[  731.909372][T13941] FAT-fs (loop8): bogus logical sector size 2134
[  731.937707][T13941] FAT-fs (loop8): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  731.975589][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  731.997045][T13941] FAT-fs (loop8): Can't find a valid FAT filesystem
[  732.034208][T13871] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  732.091407][T13941] syz_tun: entered promiscuous mode
[  732.099433][T13941] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2413'.
[  732.201427][T13941] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  732.608828][T13956] loop9: detected capacity change from 0 to 2048
[  732.761971][T13963] vlan0: entered promiscuous mode
[  732.820474][T13968] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2420'.
[  733.118989][T13962] vlan0: left promiscuous mode
[  733.830956][T13992] loop8: detected capacity change from 0 to 512
[  733.861147][T13992] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[  733.898191][T13994] netlink: 500 bytes leftover after parsing attributes in process `syz.6.2429'.
[  733.922596][T13992] EXT4-fs (loop8): 1 truncate cleaned up
[  733.954964][T13992] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  734.253974][T11486] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  736.855913][T14019] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2438'.
[  737.464053][T14029] loop6: detected capacity change from 0 to 512
[  737.506240][T14029] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  737.595073][T14029] EXT4-fs (loop6): 1 truncate cleaned up
[  737.623517][T14029] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  737.885403][T14036] loop9: detected capacity change from 0 to 512
[  737.911627][ T8444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  738.004601][T14036] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  738.222901][T14036] ext4 filesystem being mounted at /72/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  739.238844][T14036] EXT4-fs error (device loop9): ext4_do_update_inode:5569: inode #2: comm syz.9.2446: corrupted inode contents
[  739.319379][T14046] EXT4-fs (loop9): shut down requested (2)
[  739.341526][T14036] EXT4-fs error (device loop9): ext4_dirty_inode:6450: inode #2: comm syz.9.2446: mark_inode_dirty error
[  739.419026][T14052] IPVS: sh: FWM 3 0x00000003 - no destination available
[  739.450603][    C1] IPVS: sh: FWM 3 0x00000003 - no destination available
[  739.911313][T14065] loop5: detected capacity change from 0 to 512
[  739.968872][T14065] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  740.055390][T14065] EXT4-fs (loop5): 1 truncate cleaned up
[  740.114809][T14065] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  740.230404][T11317] Quota error (device loop9): dquot_write_dquot: Can't write quota structure (error -5). Quota may get out of sync!
[  740.246817][T12252] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  740.279133][T14070] vlan0: entered promiscuous mode
[  740.434561][T14075] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2457'.
[  740.502730][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  740.540194][T14069] vlan0: left promiscuous mode
[  740.747606][T14078] 8021q: adding VLAN 0 to HW filter on device bond1
[  740.772066][T14081] macvlan2: entered promiscuous mode
[  740.777439][T14081] macvlan2: entered allmulticast mode
[  740.786779][T14081] bond1: entered allmulticast mode
[  740.792860][T14081] bond1: entered promiscuous mode
[  740.798889][T14081] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  740.835222][T14081] team0: Port device macvlan2 added
[  740.848056][T14083] loop5: detected capacity change from 0 to 512
[  740.940812][T14083] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  740.978815][T14083] EXT4-fs (loop5): 1 truncate cleaned up
[  740.991087][T14083] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  741.130694][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  742.645466][T14103] loop9: detected capacity change from 0 to 512
[  742.698433][T14103] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (24564!=0)
[  742.774350][T14103] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  742.852462][T14103] EXT4-fs (loop9): orphan cleanup on readonly fs
[  742.935012][T14103] EXT4-fs error (device loop9): ext4_ext_check_inode:521: inode #13: comm syz.9.2467: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  742.966750][T14112] loop8: detected capacity change from 0 to 512
[  743.018960][T14103] loop9: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  743.021903][    C1] EXT4-fs (loop9): error count since last fsck: 1
[  743.037679][    C1] EXT4-fs (loop9): last error at time 1771796409: ext4_ext_check_inode:521: inode 13
[  743.052089][T14103] EXT4-fs error (device loop9): ext4_orphan_get:1394: comm syz.9.2467: couldn't read orphan inode 13 (err -117)
[  743.069637][T14112] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[  743.079522][T14103] loop9: lost filesystem error report for type 5 error -117
[  743.087095][T14103] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  743.130333][T14112] EXT4-fs (loop8): 1 truncate cleaned up
[  743.142927][T14112] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  743.156713][T14117] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2473'.
[  743.412013][T12252] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  743.435397][T11486] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  743.710110][T14125] syzkaller0: entered promiscuous mode
[  743.742483][T14125] syzkaller0: entered allmulticast mode
[  744.739696][T14135] IPVS: sh: FWM 3 0x00000003 - no destination available
[  744.804817][    C1] IPVS: sh: FWM 3 0x00000003 - no destination available
[  745.046913][T14141] tipc: Started in network mode
[  745.052109][T14141] tipc: Node identity ac1414aa, cluster identity 4711
[  745.077900][T14141] tipc: Enabled bearer <udp:syz2>, priority 10
[  745.130501][T14148] tipc: Enabled bearer <ib:wg1>, priority 0
[  745.337274][T14155] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2483'.
[  745.450490][T14149] tipc: Started in network mode
[  745.522195][T14149] tipc: Node identity 1658b905e248, cluster identity 4711
[  745.850536][T14149] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  746.124887][T14160] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2488'.
[  746.344486][T14157] syzkaller0: entered promiscuous mode
[  746.354730][T14157] syzkaller0: entered allmulticast mode
[  746.370459][T14157] tipc: Resetting bearer <eth:syzkaller0>
[  746.679248][T11317] tipc: Resetting bearer <eth:syzkaller0>
[  746.722112][T14146] tipc: Resetting bearer <eth:syzkaller0>
[  748.918978][ T5964] IPVS: starting estimator thread 0...
[  749.022255][T14197] IPVS: using max 25 ests per chain, 60000 per kthread
[  750.642275][T10933] Bluetooth: hci3: command 0x0406 tx timeout
[  751.798166][T14227] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2510'.
[  752.270958][T14146] tipc: Disabling bearer <eth:syzkaller0>
[  752.287706][T10644] tipc: Node number set to 2886997162
[  752.293481][   T29] tipc: Node number set to 4094736645
[  752.837668][T14236] syzkaller0: entered promiscuous mode
[  752.837808][T14240] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2513'.
[  752.853824][T14236] syzkaller0: entered allmulticast mode
[  753.606393][T14269] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2525'.
[  754.036557][T14277] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2527'.
[  755.093543][T14292] loop5: detected capacity change from 0 to 512
[  755.148265][T14292] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  755.167847][T14291] loop9: detected capacity change from 0 to 512
[  755.202429][T14292] EXT4-fs (loop5): 1 truncate cleaned up
[  755.252050][T14291] EXT4-fs (loop9): revision level too high, forcing read-only mode
[  755.291741][T14292] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  755.311747][T14291] EXT4-fs (loop9): orphan cleanup on readonly fs
[  755.410400][T14291] Quota error (device loop9): dq_insert_tree: Quota tree root isn't allocated!
[  755.450398][T14291] Quota error (device loop9): qtree_write_dquot: Error -5 occurred while creating quota
[  755.460763][T14291] EXT4-fs error (device loop9): ext4_acquire_dquot:6999: comm syz.9.2531: Failed to acquire dquot type 1
[  755.508718][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  755.517890][T14291] loop9: lost filesystem error report for type 5 error -5
[  755.519108][T14291] EXT4-fs error (device loop9): ext4_validate_block_bitmap:440: comm syz.9.2531: bg 0: block 40: padding at end of block bitmap is not set
[  755.526320][    C0] EXT4-fs (loop9): error count since last fsck: 1
[  755.526353][    C0] EXT4-fs (loop9): initial error at time 1771796421: ext4_acquire_dquot:6999
[  755.526396][    C0] EXT4-fs (loop9): last error at time 1771796421: ext4_acquire_dquot:6999
[  755.622776][T14291] loop9: lost filesystem error report for type 5 error -117
[  755.644524][T14291] EXT4-fs error (device loop9) in ext4_mb_clear_bb:6686: Corrupt filesystem
[  755.695788][T14291] loop9: lost filesystem error report for type 5 error -117
[  755.697452][T14291] EXT4-fs (loop9): 1 truncate cleaned up
[  755.760957][T14291] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  755.798262][T14307] syzkaller1: entered promiscuous mode
[  755.836538][T14307] syzkaller1: entered allmulticast mode
[  755.841954][T14291] EXT4-fs error (device loop9): ext4_get_link:106: inode #16: comm syz.9.2531: bad symlink.
[  755.914661][T14291] EXT4-fs error (device loop9): ext4_get_link:106: inode #16: comm syz.9.2531: bad symlink.
[  756.050817][T12252] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  756.776139][T14331] loop6: detected capacity change from 0 to 512
[  756.784218][T14332] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2546'.
[  756.831237][T14331] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  756.931074][T14331] EXT4-fs (loop6): orphan cleanup on readonly fs
[  757.011134][T14331] Quota error (device loop6): dq_insert_tree: Quota tree root isn't allocated!
[  757.020167][T14331] Quota error (device loop6): qtree_write_dquot: Error -5 occurred while creating quota
[  757.074172][T14331] EXT4-fs error (device loop6): ext4_acquire_dquot:6999: comm syz.6.2547: Failed to acquire dquot type 1
[  757.095622][T14331] loop6: lost filesystem error report for type 5 error -5
[  757.096986][T14331] EXT4-fs error (device loop6): ext4_validate_block_bitmap:440: comm syz.6.2547: bg 0: block 40: padding at end of block bitmap is not set
[  757.118535][    C0] EXT4-fs (loop6): error count since last fsck: 1
[  757.118574][    C0] EXT4-fs (loop6): initial error at time 1771796422: ext4_acquire_dquot:6999
[  757.118617][    C0] EXT4-fs (loop6): last error at time 1771796422: ext4_acquire_dquot:6999
[  757.309281][T14331] loop6: lost filesystem error report for type 5 error -117
[  757.332302][T14331] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6686: Corrupt filesystem
[  757.576871][T14331] loop6: lost filesystem error report for type 5 error -117
[  757.656128][T14331] EXT4-fs (loop6): 1 truncate cleaned up
[  757.671809][T14331] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  757.697898][T14350] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2553'.
[  757.944403][T14354] TCP: tcp_parse_options: Illegal window scaling value 150 > 14 received
[  757.962797][T14354] loop8: detected capacity change from 0 to 512
[  758.772975][ T8444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  759.071412][T14357] loop5: detected capacity change from 0 to 512
[  759.097030][T14357] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  759.154385][T14357] EXT4-fs (loop5): orphan cleanup on readonly fs
[  759.223113][T14357] Quota error (device loop5): dq_insert_tree: Quota tree root isn't allocated!
[  759.273469][T14357] Quota error (device loop5): qtree_write_dquot: Error -5 occurred while creating quota
[  759.318279][T14357] EXT4-fs error (device loop5): ext4_acquire_dquot:6999: comm syz.5.2554: Failed to acquire dquot type 1
[  759.348676][T14357] loop5: lost filesystem error report for type 5 error -5
[  759.351526][    C1] EXT4-fs (loop5): error count since last fsck: 1
[  759.365212][    C1] EXT4-fs (loop5): initial error at time 1771796424: ext4_acquire_dquot:6999
[  759.374043][    C1] EXT4-fs (loop5): last error at time 1771796424: ext4_acquire_dquot:6999
[  759.405585][T14357] EXT4-fs error (device loop5): ext4_validate_block_bitmap:440: comm syz.5.2554: bg 0: block 40: padding at end of block bitmap is not set
[  759.421665][T14357] loop5: lost filesystem error report for type 5 error -117
[  759.429232][T14357] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6686: Corrupt filesystem
[  759.489226][T14357] loop5: lost filesystem error report for type 5 error -117
[  759.495495][T14357] EXT4-fs (loop5): 1 truncate cleaned up
[  759.523926][T14357] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  759.600611][T14357] EXT4-fs error (device loop5): ext4_get_link:106: inode #16: comm syz.5.2554: bad symlink.
[  759.736282][T14357] EXT4-fs error (device loop5): ext4_lookup:1785: inode #15: comm syz.5.2554: iget: bad i_size value: 360287970189639690
[  760.871609][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  761.405401][T14385] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2562'.
[  761.583852][T10933] Bluetooth: hci7: command 0x0406 tx timeout
[  762.363518][T14393] loop6: detected capacity change from 0 to 512
[  762.489530][T14393] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  762.515731][T14393] EXT4-fs (loop6): orphan cleanup on readonly fs
[  762.727305][T14393] Quota error (device loop6): dq_insert_tree: Quota tree root isn't allocated!
[  762.804847][T14393] Quota error (device loop6): qtree_write_dquot: Error -5 occurred while creating quota
[  762.863880][T14393] EXT4-fs error (device loop6): ext4_acquire_dquot:6999: comm syz.6.2567: Failed to acquire dquot type 1
[  762.933301][T14393] loop6: lost filesystem error report for type 5 error -5
[  762.946159][T14404] siw: device registration error -23
[  762.951339][    C0] EXT4-fs (loop6): error count since last fsck: 1
[  762.965110][    C0] EXT4-fs (loop6): initial error at time 1771796428: ext4_acquire_dquot:6999
[  762.973943][    C0] EXT4-fs (loop6): last error at time 1771796428: ext4_acquire_dquot:6999
[  762.986756][T14393] EXT4-fs error (device loop6): ext4_validate_block_bitmap:440: comm syz.6.2567: bg 0: block 40: padding at end of block bitmap is not set
[  763.036280][T14393] loop6: lost filesystem error report for type 5 error -117
[  763.057659][T14393] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6686: Corrupt filesystem
[  763.074905][T14393] loop6: lost filesystem error report for type 5 error -117
[  763.075764][T14393] EXT4-fs (loop6): 1 truncate cleaned up
[  763.096177][T14393] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  763.274079][ T8444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  763.552887][T14415] loop6: detected capacity change from 0 to 512
[  763.586658][T14415] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  763.607326][T14415] EXT4-fs (loop6): orphan cleanup on readonly fs
[  763.626603][T14415] Quota error (device loop6): dq_insert_tree: Quota tree root isn't allocated!
[  763.682893][T14415] Quota error (device loop6): qtree_write_dquot: Error -5 occurred while creating quota
[  763.750090][T14415] EXT4-fs error (device loop6): ext4_acquire_dquot:6999: comm syz.6.2574: Failed to acquire dquot type 1
[  763.782597][T14422] loop5: detected capacity change from 0 to 512
[  763.801311][T14415] loop6: lost filesystem error report for type 5 error -5
[  763.802466][T14415] EXT4-fs error (device loop6): ext4_validate_block_bitmap:440: comm syz.6.2574: bg 0: block 40: padding at end of block bitmap is not set
[  763.809797][    C1] EXT4-fs (loop6): error count since last fsck: 1
[  763.809830][    C1] EXT4-fs (loop6): initial error at time 1771796429: ext4_acquire_dquot:6999
[  763.809872][    C1] EXT4-fs (loop6): last error at time 1771796429: ext4_acquire_dquot:6999
[  763.861757][T14422] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  763.885705][T14415] loop6: lost filesystem error report for type 5 error -117
[  763.886208][T14415] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6686: Corrupt filesystem
[  763.928740][T14422] EXT4-fs warning (device loop5): ext4_expand_extra_isize_ea:2857: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  764.013013][T14415] loop6: lost filesystem error report for type 5 error -117
[  764.013171][T14422] EXT4-fs (loop5): 1 truncate cleaned up
[  764.034333][T14415] EXT4-fs (loop6): 1 truncate cleaned up
[  764.085435][T14415] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  764.086818][T14422] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  764.107964][T14415] EXT4-fs error (device loop6): ext4_get_link:106: inode #16: comm syz.6.2574: bad symlink.
[  764.174474][T14415] EXT4-fs error (device loop6): ext4_get_link:106: inode #16: comm syz.6.2574: bad symlink.
[  764.249511][T14430] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2580'.
[  764.369399][ T8444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  764.404230][T14432] xt_hashlimit: size too large, truncated to 1048576
[  764.473850][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  764.910540][T14442] syzkaller0: entered promiscuous mode
[  764.953143][T14442] syzkaller0: entered allmulticast mode
[  765.636983][T14446] loop5: detected capacity change from 0 to 512
[  765.880375][T14446] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  765.888723][T14446] EXT4-fs (loop5): orphan cleanup on readonly fs
[  766.003168][T14446] Quota error (device loop5): dq_insert_tree: Quota tree root isn't allocated!
[  766.055058][T14446] Quota error (device loop5): qtree_write_dquot: Error -5 occurred while creating quota
[  766.081352][T14446] EXT4-fs error (device loop5): ext4_acquire_dquot:6999: comm syz.5.2586: Failed to acquire dquot type 1
[  766.148075][T14446] loop5: lost filesystem error report for type 5 error -5
[  766.155359][T14446] EXT4-fs error (device loop5): ext4_validate_block_bitmap:440: comm syz.5.2586: bg 0: block 40: padding at end of block bitmap is not set
[  766.162657][    C1] EXT4-fs (loop5): error count since last fsck: 1
[  766.162695][    C1] EXT4-fs (loop5): initial error at time 1771796431: ext4_acquire_dquot:6999
[  766.162739][    C1] EXT4-fs (loop5): last error at time 1771796431: ext4_acquire_dquot:6999
[  766.235672][T14446] loop5: lost filesystem error report for type 5 error -117
[  766.236292][T14446] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6686: Corrupt filesystem
[  766.274760][T14446] loop5: lost filesystem error report for type 5 error -117
[  766.275555][T14446] EXT4-fs (loop5): 1 truncate cleaned up
[  766.308007][T14446] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  766.569965][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  766.836349][T14478] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2596'.
[  768.442555][T14504] loop9: detected capacity change from 0 to 512
[  768.594383][T14504] EXT4-fs (loop9): mounting ext3 file system using the ext4 subsystem
[  768.616706][T14512] loop5: detected capacity change from 0 to 256
[  768.657578][T14504] EXT4-fs (loop9): 1 truncate cleaned up
[  768.702058][T14504] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  768.905143][T14520] siw: device registration error -23
[  768.962228][T14520] TCP: tcp_parse_options: Illegal window scaling value 150 > 14 received
[  769.003833][T14519] loop6: detected capacity change from 0 to 8192
[  769.134984][T12252] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  769.145699][T14524] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2614'.
[  769.344336][T14527] loop5: detected capacity change from 0 to 512
[  769.395890][T14530] netlink: 108 bytes leftover after parsing attributes in process `syz.8.2616'.
[  769.411194][T14527] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  769.443094][T14527] EXT4-fs (loop5): orphan cleanup on readonly fs
[  769.530341][T14527] Quota error (device loop5): dq_insert_tree: Quota tree root isn't allocated!
[  769.609547][T14527] Quota error (device loop5): qtree_write_dquot: Error -5 occurred while creating quota
[  769.666577][T14527] EXT4-fs error (device loop5): ext4_acquire_dquot:6999: comm syz.5.2615: Failed to acquire dquot type 1
[  769.775334][T14527] loop5: lost filesystem error report for type 5 error -5
[  769.779748][    C1] EXT4-fs (loop5): error count since last fsck: 1
[  769.793503][    C1] EXT4-fs (loop5): initial error at time 1771796434: ext4_acquire_dquot:6999
[  769.802377][    C1] EXT4-fs (loop5): last error at time 1771796434: ext4_acquire_dquot:6999
[  770.416395][T14527] EXT4-fs error (device loop5): ext4_validate_block_bitmap:440: comm syz.5.2615: bg 0: block 40: padding at end of block bitmap is not set
[  770.464919][T14527] loop5: lost filesystem error report for type 5 error -117
[  770.475528][T14527] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6686: Corrupt filesystem
[  770.517292][T14527] loop5: lost filesystem error report for type 5 error -117
[  770.518092][T14527] EXT4-fs (loop5): 1 truncate cleaned up
[  770.673222][T14527] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  770.803764][T14527] EXT4-fs error (device loop5): ext4_get_link:106: inode #16: comm syz.5.2615: bad symlink.
[  770.876328][T14527] EXT4-fs error (device loop5): ext4_get_link:106: inode #16: comm syz.5.2615: bad symlink.
[  771.190714][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  774.371467][T14600] tipc: Started in network mode
[  774.389579][T14602] loop8: detected capacity change from 0 to 512
[  774.408702][T14600] tipc: Node identity 821bcea66fb8, cluster identity 4711
[  774.416092][T14600] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  774.519903][T14602] EXT4-fs (loop8): revision level too high, forcing read-only mode
[  774.525543][T14606] syzkaller0: entered promiscuous mode
[  774.635066][T14606] syzkaller0: entered allmulticast mode
[  774.753041][T14602] EXT4-fs (loop8): orphan cleanup on readonly fs
[  775.119155][T14602] Quota error (device loop8): do_check_range: Getting dqdh_prev_free 4294967295 out of range 0-7
[  775.197244][T14602] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota
[  775.289499][T14602] EXT4-fs error (device loop8): ext4_acquire_dquot:6999: comm syz.8.2643: Failed to acquire dquot type 1
[  775.358087][T14602] loop8: lost filesystem error report for type 5 error -117
[  775.368528][    C1] EXT4-fs (loop8): error count since last fsck: 1
[  775.382425][    C1] EXT4-fs (loop8): initial error at time 1771796439: ext4_acquire_dquot:6999
[  775.391375][    C1] EXT4-fs (loop8): last error at time 1771796439: ext4_acquire_dquot:6999
[  775.428596][T14602] EXT4-fs error (device loop8): ext4_do_update_inode:5569: inode #16: comm syz.8.2643: corrupted inode contents
[  775.443519][T14602] loop8: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[  775.447591][T14602] EXT4-fs error (device loop8): ext4_dirty_inode:6450: inode #16: comm syz.8.2643: mark_inode_dirty error
[  775.577658][T14602] loop8: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[  775.578222][T14602] EXT4-fs error (device loop8): ext4_do_update_inode:5569: inode #16: comm syz.8.2643: corrupted inode contents
[  775.639821][   T24] tipc: Node number set to 3986935462
[  775.708392][T14602] loop8: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[  776.009826][T14602] EXT4-fs error (device loop8): __ext4_ext_dirty:207: inode #16: comm syz.8.2643: mark_inode_dirty error
[  776.413298][T14602] loop8: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[  776.423874][T14602] EXT4-fs error (device loop8): ext4_do_update_inode:5569: inode #16: comm syz.8.2643: corrupted inode contents
[  776.482229][T14602] loop8: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[  776.519578][T14602] EXT4-fs error (device loop8) in ext4_orphan_del:303: Corrupt filesystem
[  776.584651][T14628] openvswitch: netlink: IP tunnel dst address not specified
[  776.671928][T14602] loop8: lost filesystem error report for type 5 error -117
[  776.672498][T14602] EXT4-fs error (device loop8): ext4_do_update_inode:5569: inode #16: comm syz.8.2643: corrupted inode contents
[  776.743884][T14602] loop8: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[  776.777716][T14602] EXT4-fs error (device loop8): ext4_truncate:4587: inode #16: comm syz.8.2643: mark_inode_dirty error
[  776.889861][T14602] loop8: lost file I/O error report for ino 16 type 5 pos 0x0 len 0x0 error -117
[  776.890758][T14602] EXT4-fs error (device loop8) in ext4_process_orphan:345: Corrupt filesystem
[  776.939435][T14602] loop8: lost filesystem error report for type 5 error -117
[  776.959991][T14602] EXT4-fs (loop8): 1 truncate cleaned up
[  777.001863][T14602] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-0000002a0000 ro without journal. Quota mode: writeback.
[  777.331176][T11486] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-0000002a0000.
[  777.439298][T14647] loop9: detected capacity change from 0 to 512
[  777.650935][T14652] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2663'.
[  777.953694][T14656] bridge1: port 1(veth7) entered blocking state
[  778.073893][T14666] openvswitch: netlink: IP tunnel dst address not specified
[  778.233242][T14656] bridge1: port 1(veth7) entered disabled state
[  778.257865][T14656] veth7: entered allmulticast mode
[  778.355030][T14669] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2665'.
[  778.396101][T14656] veth7: entered promiscuous mode
[  778.859342][T14659] bridge1: port 2(veth0_to_bond) entered blocking state
[  778.934478][T14659] bridge1: port 2(veth0_to_bond) entered disabled state
[  778.990564][T14659] veth0_to_bond: entered allmulticast mode
[  779.195293][T14659] veth0_to_bond: entered promiscuous mode
[  779.384339][T14674] syzkaller0: entered promiscuous mode
[  779.437925][T14674] syzkaller0: entered allmulticast mode
[  779.498971][T14674] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  779.945263][T14696] IPVS: sh: FWM 3 0x00000003 - no destination available
[  781.072456][T14703] loop6: detected capacity change from 0 to 2048
[  781.305615][T14719] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2686'.
[  781.328602][T14703] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  781.377299][T14724] netlink: 24 bytes leftover after parsing attributes in process `syz.8.2689'.
[  781.417903][T14703] ext4 filesystem being mounted at /268/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  781.454358][T14718] EXT4-fs error (device loop6): ext4_validate_block_bitmap:440: comm ext4lazyinit: bg 0: block 345: padding at end of block bitmap is not set
[  781.559409][T14718] EXT4-fs (loop6): Remounting filesystem read-only
[  781.703657][ T8444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  782.212298][T14745] loop8: detected capacity change from 0 to 512
[  782.688686][T14749] siw: device registration error -23
[  782.704487][T14749] loop6: detected capacity change from 0 to 512
[  783.671842][T14763] ucma_write: process 1121 (syz.5.2705) changed security contexts after opening file descriptor, this is not allowed.
[  784.025570][T14775] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2708'.
[  784.457455][T14789] netlink: 3 bytes leftover after parsing attributes in process `syz.9.2715'.
[  785.265429][T14811] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2726'.
[  785.275359][T14810] loop6: detected capacity change from 0 to 512
[  785.414334][T14810] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  785.476844][T14810] ext4 filesystem being mounted at /274/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  785.542361][T14826] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2729'.
[  785.632484][   T30] audit: type=1800 audit(1771796449.460:97): pid=14810 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2725" name="file1" dev="loop6" ino=15 res=0 errno=0
[  785.928089][ T8444] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  786.054465][T14829] lo speed is unknown, defaulting to 1000
[  786.724421][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  786.735915][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  787.373592][T14871] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2747'.
[  788.886828][T14894] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2755'.
[  789.505633][T14909] loop9: detected capacity change from 0 to 4096
[  789.525964][T14909] EXT4-fs: Ignoring removed bh option
[  789.567133][T14909] EXT4-fs: Ignoring removed mblk_io_submit option
[  789.724378][T14909] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  790.034005][T14927] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2768'.
[  790.152373][   T30] audit: type=1326 audit(1771796453.709:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14929 comm="syz.5.2769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1f99c629 code=0x7ffc0000
[  790.196088][T12252] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  790.254757][   T30] audit: type=1326 audit(1771796453.709:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14929 comm="syz.5.2769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1f99c629 code=0x7ffc0000
[  790.370898][   T30] audit: type=1326 audit(1771796453.709:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14929 comm="syz.5.2769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1f99c629 code=0x7ffc0000
[  790.495934][   T30] audit: type=1326 audit(1771796453.728:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14929 comm="syz.5.2769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=210 compat=0 ip=0x7f6c1f99c629 code=0x7ffc0000
[  790.638948][   T30] audit: type=1326 audit(1771796453.728:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14929 comm="syz.5.2769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1f99c629 code=0x7ffc0000
[  790.809279][T14939] loop8: detected capacity change from 0 to 512
[  790.822117][   T30] audit: type=1326 audit(1771796453.728:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14929 comm="syz.5.2769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c1f99c629 code=0x7ffc0000
[  790.953025][   T30] audit: type=1326 audit(1771796453.746:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14929 comm="syz.5.2769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f6c1f99c629 code=0x7ffc0000
[  791.094722][   T30] audit: type=1326 audit(1771796453.746:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14929 comm="syz.5.2769" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f6c1f99c629 code=0x7ffc0000
[  791.189004][T14939] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  791.301603][T14939] ext4 filesystem being mounted at /160/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  791.592482][T14951] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  791.737790][T11486] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  792.498018][T14971] netlink: 'syz.8.2785': attribute type 1 has an invalid length.
[  792.870116][T14975] bond1: (slave bridge1): making interface the new active one
[  792.933052][T14975] bond1: (slave bridge1): Enslaving as an active interface with an up link
[  793.033378][T14977] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  793.099744][T14971] macvlan2: entered promiscuous mode
[  793.126857][T14971] macvlan2: entered allmulticast mode
[  793.160357][T14971] bond1: entered promiscuous mode
[  793.196281][T14991] loop6: detected capacity change from 0 to 512
[  793.202366][T14971] bridge1: entered promiscuous mode
[  793.227711][T14991] EXT4-fs: Ignoring removed orlov option
[  793.243765][T14971] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  793.269421][T14991] ext2: Unknown parameter 'nouser_xattr'
[  793.302766][T14971] bond1: (slave macvlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  793.384226][T14971] bond1: left promiscuous mode
[  793.439438][T14971] bridge1: left promiscuous mode
[  796.112805][T15038] lo speed is unknown, defaulting to 1000
[  796.513235][T15041] loop9: detected capacity change from 0 to 256
[  796.608938][T15041] msdos: Unexpected value for 'sys_immutable'
[  798.372486][T15052] loop6: detected capacity change from 0 to 764
[  798.561825][T15052] Symlink component flag not implemented
[  798.591901][T15052] Symlink component flag not implemented (116)
[  800.181536][T15083] netlink: 'syz.7.2824': attribute type 1 has an invalid length.
[  800.454987][T15090] bond1: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  800.534316][T15090] bond1: (slave ipvlan2): The slave device specified does not support setting the MAC address
[  800.575961][T15090] bond1: (slave ipvlan2): Setting fail_over_mac to active for active-backup mode
[  802.271029][T15133] loop6: detected capacity change from 0 to 512
[  802.282676][T15133] EXT4-fs: Ignoring removed nobh option
[  802.527617][T15133] 
[  802.530007][T15133] ======================================================
[  802.537342][T15133] WARNING: possible circular locking dependency detected
[  802.544375][T15133] syzkaller #0 Not tainted
[  802.548791][T15133] ------------------------------------------------------
[  802.555855][T15133] syz.6.2842/15133 is trying to acquire lock:
[  802.561907][T15133] ffff888079d6ab98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x278/0x600
[  802.571780][T15133] 
[  802.571780][T15133] but task is already holding lock:
[  802.579147][T15133] ffff888052cdea50 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x606/0x8b0
[  802.589087][T15133] 
[  802.589087][T15133] which lock already depends on the new lock.
[  802.589087][T15133] 
[  802.599507][T15133] 
[  802.599507][T15133] the existing dependency chain (in reverse order) is:
[  802.608532][T15133] 
[  802.608532][T15133] -> #1 (&ei->xattr_sem){++++}-{4:4}:
[  802.616258][T15133]        down_write+0x8b/0x1f0
[  802.621266][T15133]        ext4_destroy_inline_data+0x2d/0xe0
[  802.627234][T15133]        ext4_do_writepages+0x1185/0x3f50
[  802.632983][T15133]        ext4_writepages+0x347/0x790
[  802.638421][T15133]        do_writepages+0x278/0x600
[  802.643655][T15133]        filemap_writeback+0x22d/0x2e0
[  802.649151][T15133]        file_write_and_wait_range+0xcd/0x140
[  802.655347][T15133]        generic_buffers_fsync_noflush+0x77/0x490
[  802.661786][T15133]        ext4_sync_file+0x63e/0xf10
[  802.667002][T15133]        vfs_fsync_range+0x9b/0x190
[  802.672228][T15133]        ext4_buffered_write_iter+0x2e2/0x440
[  802.678338][T15133]        ext4_file_write_iter+0xa2f/0x1d40
[  802.684189][T15133]        vfs_write+0x6ac/0x1070
[  802.689192][T15133]        __x64_sys_pwrite64+0x1eb/0x250
[  802.694868][T15133]        do_syscall_64+0x106/0xf80
[  802.700010][T15133]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  802.706441][T15133] 
[  802.706441][T15133] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[  802.714898][T15133]        __lock_acquire+0x14b8/0x2630
[  802.720395][T15133]        lock_acquire+0x1cf/0x380
[  802.725537][T15133]        ext4_writepages+0x21d/0x790
[  802.730841][T15133]        do_writepages+0x278/0x600
[  802.736513][T15133]        __writeback_single_inode+0x164/0x13c0
[  802.742787][T15133]        writeback_single_inode+0x4d3/0xf30
[  802.748703][T15133]        write_inode_now+0x174/0x1f0
[  802.754044][T15133]        iput.part.0+0x7f3/0xf50
[  802.758986][T15133]        iput+0x35/0x40
[  802.763143][T15133]        ext4_xattr_block_set+0x6f7/0x3660
[  802.768977][T15133]        ext4_expand_extra_isize_ea+0x17c6/0x1d70
[  802.775427][T15133]        __ext4_expand_extra_isize+0x346/0x480
[  802.781734][T15133]        __ext4_mark_inode_dirty+0x693/0x8b0
[  802.787744][T15133]        ext4_evict_inode+0x860/0x17c0
[  802.793312][T15133]        evict+0x3c2/0xad0
[  802.797738][T15133]        iput.part.0+0x605/0xf50
[  802.802685][T15133]        iput+0x35/0x40
[  802.806855][T15133]        ext4_orphan_cleanup+0x71e/0x11e0
[  802.812603][T15133]        ext4_fill_super+0x9009/0xb470
[  802.818102][T15133]        get_tree_bdev_flags+0x38c/0x620
[  802.823765][T15133]        vfs_get_tree+0x92/0x320
[  802.828721][T15133]        path_mount+0x7d0/0x23d0
[  802.833693][T15133]        __x64_sys_mount+0x293/0x310
[  802.839018][T15133]        do_syscall_64+0x106/0xf80
[  802.844149][T15133]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  802.850637][T15133] 
[  802.850637][T15133] other info that might help us debug this:
[  802.850637][T15133] 
[  802.861249][T15133]  Possible unsafe locking scenario:
[  802.861249][T15133] 
[  802.868852][T15133]        CPU0                    CPU1
[  802.874250][T15133]        ----                    ----
[  802.879724][T15133]   lock(&ei->xattr_sem);
[  802.884081][T15133]                                lock(&sbi->s_writepages_rwsem);
[  802.891902][T15133]                                lock(&ei->xattr_sem);
[  802.898778][T15133]   rlock(&sbi->s_writepages_rwsem);
[  802.904089][T15133] 
[  802.904089][T15133]  *** DEADLOCK ***
[  802.904089][T15133] 
[  802.912248][T15133] 3 locks held by syz.6.2842/15133:
[  802.917554][T15133]  #0: ffff888089dcc0e0 (&type->s_umount_key#28/1){+.+.}-{4:4}, at: alloc_super+0x244/0xd20
[  802.927752][T15133]  #1: ffff888089dcc610 (sb_internal){++++}-{0:0}, at: evict+0x3c2/0xad0
[  802.936437][T15133]  #2: ffff888052cdea50 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x606/0x8b0
[  802.946781][T15133] 
[  802.946781][T15133] stack backtrace:
[  802.952699][T15133] CPU: 0 UID: 0 PID: 15133 Comm: syz.6.2842 Not tainted syzkaller #0 PREEMPT(full) 
[  802.952741][T15133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  802.952762][T15133] Call Trace:
[  802.952775][T15133]  <TASK>
[  802.952789][T15133]  dump_stack_lvl+0x100/0x190
[  802.952846][T15133]  print_circular_bug.cold+0x178/0x1c7
[  802.952911][T15133]  check_noncircular+0x146/0x160
[  802.952969][T15133]  __lock_acquire+0x14b8/0x2630
[  802.953027][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.953074][T15133]  lock_acquire+0x1cf/0x380
[  802.953129][T15133]  ? do_writepages+0x278/0x600
[  802.953181][T15133]  ? __pfx___might_resched+0x10/0x10
[  802.953220][T15133]  ext4_writepages+0x21d/0x790
[  802.953258][T15133]  ? do_writepages+0x278/0x600
[  802.953306][T15133]  ? __pfx_ext4_writepages+0x10/0x10
[  802.953352][T15133]  ? do_writepages+0x4b5/0x600
[  802.953400][T15133]  ? do_writepages+0x4b5/0x600
[  802.953445][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.953494][T15133]  ? __pfx_ext4_writepages+0x10/0x10
[  802.953535][T15133]  do_writepages+0x278/0x600
[  802.953589][T15133]  ? __pfx_do_writepages+0x10/0x10
[  802.953643][T15133]  __writeback_single_inode+0x164/0x13c0
[  802.953685][T15133]  ? find_held_lock+0x2b/0x80
[  802.953729][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.953772][T15133]  ? __pfx___writeback_single_inode+0x10/0x10
[  802.953814][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.953856][T15133]  ? do_raw_spin_unlock+0x145/0x1e0
[  802.953891][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.953947][T15133]  writeback_single_inode+0x4d3/0xf30
[  802.953993][T15133]  write_inode_now+0x174/0x1f0
[  802.954033][T15133]  ? __pfx_write_inode_now+0x10/0x10
[  802.954100][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.954143][T15133]  ? find_held_lock+0x2b/0x80
[  802.954181][T15133]  ? iput.part.0+0x7e6/0xf50
[  802.954213][T15133]  ? iput.part.0+0x7e6/0xf50
[  802.954243][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.954292][T15133]  iput.part.0+0x7f3/0xf50
[  802.954322][T15133]  ? __pfx_ext4_drop_inode+0x10/0x10
[  802.954362][T15133]  iput+0x35/0x40
[  802.954391][T15133]  ext4_xattr_block_set+0x6f7/0x3660
[  802.954447][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.954492][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.954539][T15133]  ? __pfx_ext4_xattr_block_set+0x10/0x10
[  802.954598][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.954640][T15133]  ? xattr_find_entry+0x240/0x2e0
[  802.954694][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.954736][T15133]  ? ext4_xattr_block_find+0x59/0x430
[  802.954791][T15133]  ext4_expand_extra_isize_ea+0x17c6/0x1d70
[  802.954867][T15133]  ? __pfx_ext4_expand_extra_isize_ea+0x10/0x10
[  802.954939][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.954981][T15133]  ? dquot_initialize_needed+0x183/0x2a0
[  802.955024][T15133]  __ext4_expand_extra_isize+0x346/0x480
[  802.955082][T15133]  __ext4_mark_inode_dirty+0x693/0x8b0
[  802.955125][T15133]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  802.955175][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.955217][T15133]  ? __ext4_journal_start_sb+0x1ce/0x6a0
[  802.955254][T15133]  ? ext4_evict_inode+0x6e2/0x17c0
[  802.955297][T15133]  ext4_evict_inode+0x860/0x17c0
[  802.955340][T15133]  ? __pfx_ext4_evict_inode+0x10/0x10
[  802.955379][T15133]  ? evict+0x37e/0xad0
[  802.955407][T15133]  ? evict+0x37e/0xad0
[  802.955435][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.955481][T15133]  ? __pfx_ext4_evict_inode+0x10/0x10
[  802.955521][T15133]  evict+0x3c2/0xad0
[  802.955553][T15133]  ? __pfx_evict+0x10/0x10
[  802.955581][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.955628][T15133]  ? iput.part.0+0x5fd/0xf50
[  802.955658][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.955707][T15133]  iput.part.0+0x605/0xf50
[  802.955737][T15133]  ? __pfx_ext4_drop_inode+0x10/0x10
[  802.955776][T15133]  iput+0x35/0x40
[  802.955804][T15133]  ext4_orphan_cleanup+0x71e/0x11e0
[  802.955854][T15133]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  802.955904][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.955946][T15133]  ? ext4_register_li_request+0xef/0xa00
[  802.955998][T15133]  ext4_fill_super+0x9009/0xb470
[  802.956063][T15133]  ? __pfx_ext4_fill_super+0x10/0x10
[  802.956108][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.956155][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.956196][T15133]  ? sb_set_blocksize+0x1fe/0x290
[  802.956256][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.956298][T15133]  ? setup_bdev_super+0x425/0x730
[  802.956336][T15133]  get_tree_bdev_flags+0x38c/0x620
[  802.956376][T15133]  ? __pfx_ext4_fill_super+0x10/0x10
[  802.956424][T15133]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  802.956465][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.956511][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.956553][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.956595][T15133]  ? security_capable+0x80/0x260
[  802.956640][T15133]  vfs_get_tree+0x92/0x320
[  802.956670][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.956715][T15133]  path_mount+0x7d0/0x23d0
[  802.956773][T15133]  ? __pfx_path_mount+0x10/0x10
[  802.956825][T15133]  ? lockdep_hardirqs_on+0x78/0x100
[  802.956864][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.956914][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.956955][T15133]  ? kmem_cache_free+0x124/0x6a0
[  802.957021][T15133]  ? __x64_sys_mount+0x293/0x310
[  802.957074][T15133]  __x64_sys_mount+0x293/0x310
[  802.957129][T15133]  ? __pfx___x64_sys_mount+0x10/0x10
[  802.957186][T15133]  ? do_user_addr_fault+0x8d6/0x12f0
[  802.957221][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  802.957268][T15133]  do_syscall_64+0x106/0xf80
[  802.957306][T15133]  ? irqentry_exit+0x138/0x670
[  802.957347][T15133]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  802.957383][T15133] RIP: 0033:0x7f3f19b9d8ca
[  802.957411][T15133] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  802.957446][T15133] RSP: 002b:00007f3f1aacde58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  802.957478][T15133] RAX: ffffffffffffffda RBX: 00007f3f1aacdee0 RCX: 00007f3f19b9d8ca
[  802.957501][T15133] RDX: 0000200000000180 RSI: 0000200000000140 RDI: 00007f3f1aacdea0
[  802.957523][T15133] RBP: 0000200000000180 R08: 00007f3f1aacdee0 R09: 0000000000800718
[  802.957546][T15133] R10: 0000000000800718 R11: 0000000000000246 R12: 0000200000000140
[  802.957571][T15133] R13: 00007f3f1aacdea0 R14: 00000000000004a3 R15: 00002000000003c0
[  802.957607][T15133]  </TASK>
[  803.691247][T15133] ------------[ cut here ]------------
[  803.696805][T15133] EA inode 11 i_nlink=1026
[  803.696832][T15133] WARNING: fs/ext4/xattr.c:1057 at ext4_xattr_inode_update_ref+0x477/0x590, CPU#1: syz.6.2842/15133
[  803.712494][T15133] Modules linked in:
[  803.716711][T15133] CPU: 1 UID: 0 PID: 15133 Comm: syz.6.2842 Not tainted syzkaller #0 PREEMPT(full) 
[  803.726975][T15133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  803.737875][T15133] RIP: 0010:ext4_xattr_inode_update_ref+0x47e/0x590
[  803.745106][T15133] Code: 40 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 0a 01 00 00 48 8d 3d e9 7d fe 0d 48 8b 73 40 44 89 e2 <67> 48 0f b9 3a eb a6 e8 c6 df 26 ff 48 8d 7b 40 48 b8 00 00 00 00
[  803.766197][T15133] RSP: 0018:ffffc9000df57188 EFLAGS: 00010246
[  803.772619][T15133] RAX: dffffc0000000000 RBX: ffff888077613c28 RCX: ffffc9001f7d5000
[  803.780702][T15133] RDX: 0000000000000402 RSI: 000000000000000b RDI: ffffffff90e01c50
[  803.789177][T15133] RBP: ffffc9000df57250 R08: 0000000000000005 R09: 0000000000000001
[  803.799759][T15133] R10: 0000000000000402 R11: 0000000000000001 R12: 0000000000000402
[  803.808391][T15133] R13: 1ffff92001beae34 R14: 00000000ffffffff R15: 0000000000000000
[  803.816746][T15133] FS:  00007f3f1aace6c0(0000) GS:ffff88812444a000(0000) knlGS:0000000000000000
[  803.826577][T15133] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  803.833189][T15133] CR2: 0000555573162a28 CR3: 00000000b0197000 CR4: 0000000000350ef0
[  803.841693][T15133] Call Trace:
[  803.844979][T15133]  <TASK>
[  803.847966][T15133]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[  803.854439][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  803.860879][T15133]  ? ext4_xattr_inode_iget+0x1ee/0x400
[  803.866399][T15133]  ext4_xattr_set_entry+0x185b/0x20b0
[  803.871928][T15133]  ? __pfx_ext4_xattr_set_entry+0x10/0x10
[  803.877691][T15133]  ? xattr_find_entry+0x240/0x2e0
[  803.882841][T15133]  ext4_xattr_ibody_set+0x3d3/0x5d0
[  803.888095][T15133]  ext4_expand_extra_isize_ea+0x180d/0x1d70
[  803.894840][T15133]  ? __pfx_ext4_expand_extra_isize_ea+0x10/0x10
[  803.901879][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  803.907958][T15133]  ? dquot_initialize_needed+0x183/0x2a0
[  803.913690][T15133]  __ext4_expand_extra_isize+0x346/0x480
[  803.919371][T15133]  __ext4_mark_inode_dirty+0x693/0x8b0
[  803.925678][T15133]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  803.931725][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  803.937572][T15133]  ? __ext4_journal_start_sb+0x1ce/0x6a0
[  803.943330][T15133]  ? ext4_evict_inode+0x6e2/0x17c0
[  803.948828][T15133]  ext4_evict_inode+0x860/0x17c0
[  803.954578][T15133]  ? __pfx_ext4_evict_inode+0x10/0x10
[  803.959998][T15133]  ? evict+0x37e/0xad0
[  803.964118][T15133]  ? evict+0x37e/0xad0
[  803.968270][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  803.973947][T15133]  ? __pfx_ext4_evict_inode+0x10/0x10
[  803.979443][T15133]  evict+0x3c2/0xad0
[  803.983375][T15133]  ? __pfx_evict+0x10/0x10
[  803.988961][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  803.994664][T15133]  ? iput.part.0+0x5fd/0xf50
[  803.999365][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.005044][T15133]  iput.part.0+0x605/0xf50
[  804.010081][T15133]  ? __pfx_ext4_drop_inode+0x10/0x10
[  804.015844][T15133]  iput+0x35/0x40
[  804.020370][T15133]  ext4_orphan_cleanup+0x71e/0x11e0
[  804.025717][T15133]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  804.031627][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.037522][T15133]  ? ext4_register_li_request+0xef/0xa00
[  804.043512][T15133]  ext4_fill_super+0x9009/0xb470
[  804.048535][T15133]  ? __pfx_ext4_fill_super+0x10/0x10
[  804.054885][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.060741][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.066399][T15133]  ? sb_set_blocksize+0x1fe/0x290
[  804.071818][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.077531][T15133]  ? setup_bdev_super+0x425/0x730
[  804.083228][T15133]  get_tree_bdev_flags+0x38c/0x620
[  804.088378][T15133]  ? __pfx_ext4_fill_super+0x10/0x10
[  804.093718][T15133]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  804.099514][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.105279][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.111059][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.117977][T15133]  ? security_capable+0x80/0x260
[  804.123537][T15133]  vfs_get_tree+0x92/0x320
[  804.128493][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.134169][T15133]  path_mount+0x7d0/0x23d0
[  804.138705][T15133]  ? __pfx_path_mount+0x10/0x10
[  804.143576][T15133]  ? lockdep_hardirqs_on+0x78/0x100
[  804.149400][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.155180][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.160908][T15133]  ? kmem_cache_free+0x124/0x6a0
[  804.165972][T15133]  ? __x64_sys_mount+0x293/0x310
[  804.170970][T15133]  __x64_sys_mount+0x293/0x310
[  804.175807][T15133]  ? __pfx___x64_sys_mount+0x10/0x10
[  804.181849][T15133]  ? do_user_addr_fault+0x8d6/0x12f0
[  804.187174][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.193129][T15133]  do_syscall_64+0x106/0xf80
[  804.197765][T15133]  ? irqentry_exit+0x138/0x670
[  804.202630][T15133]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  804.208731][T15133] RIP: 0033:0x7f3f19b9d8ca
[  804.213979][T15133] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  804.234361][T15133] RSP: 002b:00007f3f1aacde58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  804.244177][T15133] RAX: ffffffffffffffda RBX: 00007f3f1aacdee0 RCX: 00007f3f19b9d8ca
[  804.252227][T15133] RDX: 0000200000000180 RSI: 0000200000000140 RDI: 00007f3f1aacdea0
[  804.260302][T15133] RBP: 0000200000000180 R08: 00007f3f1aacdee0 R09: 0000000000800718
[  804.268407][T15133] R10: 0000000000800718 R11: 0000000000000246 R12: 0000200000000140
[  804.277244][T15133] R13: 00007f3f1aacdea0 R14: 00000000000004a3 R15: 00002000000003c0
[  804.285330][T15133]  </TASK>
[  804.288368][T15133] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  804.295676][T15133] CPU: 1 UID: 0 PID: 15133 Comm: syz.6.2842 Not tainted syzkaller #0 PREEMPT(full) 
[  804.305099][T15133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  804.315175][T15133] Call Trace:
[  804.318454][T15133]  <TASK>
[  804.321397][T15133]  dump_stack_lvl+0x100/0x190
[  804.326138][T15133]  vpanic+0x552/0x970
[  804.330137][T15133]  ? __pfx_vpanic+0x10/0x10
[  804.334653][T15133]  ? lock_release+0x263/0x320
[  804.339477][T15133]  panic+0xd1/0xe0
[  804.343235][T15133]  ? __pfx_panic+0x10/0x10
[  804.347693][T15133]  check_panic_on_warn.cold+0x19/0x34
[  804.353093][T15133]  ? ext4_xattr_inode_update_ref+0x477/0x590
[  804.359118][T15133]  __warn.cold+0x191/0x348
[  804.363553][T15133]  __report_bug+0x296/0x3d0
[  804.368157][T15133]  ? ext4_xattr_inode_update_ref+0x477/0x590
[  804.374351][T15133]  ? __pfx___report_bug+0x10/0x10
[  804.379493][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.385153][T15133]  ? rcu_is_watching+0x12/0xc0
[  804.389942][T15133]  report_bug_entry+0xe1/0x290
[  804.394811][T15133]  ? ext4_xattr_inode_update_ref+0x47e/0x590
[  804.401159][T15133]  handle_bug+0x1c9/0x2a0
[  804.405607][T15133]  exc_invalid_op+0x17/0x50
[  804.410264][T15133]  asm_exc_invalid_op+0x1a/0x20
[  804.415227][T15133] RIP: 0010:ext4_xattr_inode_update_ref+0x47e/0x590
[  804.421859][T15133] Code: 40 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 0a 01 00 00 48 8d 3d e9 7d fe 0d 48 8b 73 40 44 89 e2 <67> 48 0f b9 3a eb a6 e8 c6 df 26 ff 48 8d 7b 40 48 b8 00 00 00 00
[  804.441499][T15133] RSP: 0018:ffffc9000df57188 EFLAGS: 00010246
[  804.447594][T15133] RAX: dffffc0000000000 RBX: ffff888077613c28 RCX: ffffc9001f7d5000
[  804.455595][T15133] RDX: 0000000000000402 RSI: 000000000000000b RDI: ffffffff90e01c50
[  804.463599][T15133] RBP: ffffc9000df57250 R08: 0000000000000005 R09: 0000000000000001
[  804.471587][T15133] R10: 0000000000000402 R11: 0000000000000001 R12: 0000000000000402
[  804.479581][T15133] R13: 1ffff92001beae34 R14: 00000000ffffffff R15: 0000000000000000
[  804.487688][T15133]  ? ext4_xattr_inode_update_ref+0x451/0x590
[  804.493728][T15133]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[  804.500668][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.506350][T15133]  ? ext4_xattr_inode_iget+0x1ee/0x400
[  804.511870][T15133]  ext4_xattr_set_entry+0x185b/0x20b0
[  804.517330][T15133]  ? __pfx_ext4_xattr_set_entry+0x10/0x10
[  804.523085][T15133]  ? xattr_find_entry+0x240/0x2e0
[  804.528148][T15133]  ext4_xattr_ibody_set+0x3d3/0x5d0
[  804.533390][T15133]  ext4_expand_extra_isize_ea+0x180d/0x1d70
[  804.539426][T15133]  ? __pfx_ext4_expand_extra_isize_ea+0x10/0x10
[  804.545712][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.551367][T15133]  ? dquot_initialize_needed+0x183/0x2a0
[  804.557108][T15133]  __ext4_expand_extra_isize+0x346/0x480
[  804.562785][T15133]  __ext4_mark_inode_dirty+0x693/0x8b0
[  804.568279][T15133]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  804.574383][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.580037][T15133]  ? __ext4_journal_start_sb+0x1ce/0x6a0
[  804.585947][T15133]  ? ext4_evict_inode+0x6e2/0x17c0
[  804.591081][T15133]  ext4_evict_inode+0x860/0x17c0
[  804.596561][T15133]  ? __pfx_ext4_evict_inode+0x10/0x10
[  804.601967][T15133]  ? evict+0x37e/0xad0
[  804.606047][T15133]  ? evict+0x37e/0xad0
[  804.610117][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.615859][T15133]  ? __pfx_ext4_evict_inode+0x10/0x10
[  804.621511][T15133]  evict+0x3c2/0xad0
[  804.625418][T15133]  ? __pfx_evict+0x10/0x10
[  804.630038][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.635699][T15133]  ? iput.part.0+0x5fd/0xf50
[  804.640299][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.645963][T15133]  iput.part.0+0x605/0xf50
[  804.650396][T15133]  ? __pfx_ext4_drop_inode+0x10/0x10
[  804.655703][T15133]  iput+0x35/0x40
[  804.659339][T15133]  ext4_orphan_cleanup+0x71e/0x11e0
[  804.664743][T15133]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  804.670846][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.676504][T15133]  ? ext4_register_li_request+0xef/0xa00
[  804.682164][T15133]  ext4_fill_super+0x9009/0xb470
[  804.687142][T15133]  ? __pfx_ext4_fill_super+0x10/0x10
[  804.692446][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.698291][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.703946][T15133]  ? sb_set_blocksize+0x1fe/0x290
[  804.709013][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.714669][T15133]  ? setup_bdev_super+0x425/0x730
[  804.719708][T15133]  get_tree_bdev_flags+0x38c/0x620
[  804.724835][T15133]  ? __pfx_ext4_fill_super+0x10/0x10
[  804.730145][T15133]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  804.735885][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.741590][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.747266][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.752912][T15133]  ? security_capable+0x80/0x260
[  804.757962][T15133]  vfs_get_tree+0x92/0x320
[  804.762392][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.768045][T15133]  path_mount+0x7d0/0x23d0
[  804.772499][T15133]  ? __pfx_path_mount+0x10/0x10
[  804.777380][T15133]  ? lockdep_hardirqs_on+0x78/0x100
[  804.782685][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.788337][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.793993][T15133]  ? kmem_cache_free+0x124/0x6a0
[  804.798968][T15133]  ? __x64_sys_mount+0x293/0x310
[  804.803936][T15133]  __x64_sys_mount+0x293/0x310
[  804.808927][T15133]  ? __pfx___x64_sys_mount+0x10/0x10
[  804.814285][T15133]  ? do_user_addr_fault+0x8d6/0x12f0
[  804.819786][T15133]  ? srso_alias_return_thunk+0x5/0xfbef5
[  804.825485][T15133]  do_syscall_64+0x106/0xf80
[  804.830205][T15133]  ? irqentry_exit+0x138/0x670
[  804.835093][T15133]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  804.841008][T15133] RIP: 0033:0x7f3f19b9d8ca
[  804.845434][T15133] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  804.865190][T15133] RSP: 002b:00007f3f1aacde58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  804.873639][T15133] RAX: ffffffffffffffda RBX: 00007f3f1aacdee0 RCX: 00007f3f19b9d8ca
[  804.881632][T15133] RDX: 0000200000000180 RSI: 0000200000000140 RDI: 00007f3f1aacdea0
[  804.889850][T15133] RBP: 0000200000000180 R08: 00007f3f1aacdee0 R09: 0000000000800718
[  804.897856][T15133] R10: 0000000000800718 R11: 0000000000000246 R12: 0000200000000140
[  804.905897][T15133] R13: 00007f3f1aacdea0 R14: 00000000000004a3 R15: 00002000000003c0
[  804.913983][T15133]  </TASK>
[  804.917351][T15133] Kernel Offset: disabled
[  804.921976][T15133] Rebooting in 86400 seconds..