last executing test programs:

22m36.077326142s ago: executing program 4 (id=2407):
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d4, 0xfffffffffffffffe)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, 0x0, 0x0)
ioctl$PPPIOCGCHAN(r1, 0x80047437, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x3)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x94)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$PPPIOCSFLAGS1(r3, 0x4004743a, 0x0)

22m36.013103593s ago: executing program 4 (id=2410):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000080), 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7050000080000a8c5000000a5000000180100002020640500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b300000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x35, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

22m36.012888733s ago: executing program 4 (id=2411):
r0 = bpf$ITER_CREATE(0xb, &(0x7f0000000100), 0x0)
close(r0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000640)={r1, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0xa)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000d00)={0x0, <r2=>0x0}, 0x8)
r3 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000580)=r2, 0x4)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000500)={r3, r1, 0x4, r1}, 0x10)

22m35.967653684s ago: executing program 4 (id=2413):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xc40a, &(0x7f0000000180)={[{@noblock_validity}, {@dioread_lock}, {@nobh}, {@nojournal_checksum}, {@acl}, {@usrjquota, 0x2e}, {@grpquota}, {@nodiscard}, {@jqfmt_vfsv0}, {@noload}], [], 0x2c}, 0x84, 0x459, &(0x7f0000000900)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x42, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x141842, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000240)='./bus\x00', 0x1c7102, 0x1)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x10, 0x3, 0x0, 0x0, 0x5, 0xc4, &(0x7f0000000280)=""/196, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x5}, 0x94)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f00000003c0)={0x17c04, 0xffffffffffffffff, 0x200000ba, 0x41000ff7ff, 0xdc, 0x6d3})

22m35.51881905s ago: executing program 4 (id=2417):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d00000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x20081e, &(0x7f0000000240), 0x1, 0x4fb, &(0x7f0000000500)="$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")
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000140)={@loopback={0xa4, 0x7ffffffff000}, 0x800, 0x0, 0x2, 0x1, 0x0, 0xffff}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000140)={@loopback={0x0, 0x7ffffffff000}, 0x800, 0x0, 0x2, 0x1, 0x0, 0xffff}, 0x20)

22m35.108803436s ago: executing program 4 (id=2428):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f00000001c0)={&(0x7f0000002000/0x2000)=nil, &(0x7f0000000000/0x2000)=nil, &(0x7f0000000000/0x1000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000001000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000002000/0x2000)=nil, &(0x7f0000000000/0x1000)=nil, &(0x7f0000ff9000/0x2000)=nil, 0x0}, 0x68)

22m35.018410068s ago: executing program 32 (id=2428):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f00000001c0)={&(0x7f0000002000/0x2000)=nil, &(0x7f0000000000/0x2000)=nil, &(0x7f0000000000/0x1000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000001000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000002000/0x2000)=nil, &(0x7f0000000000/0x1000)=nil, &(0x7f0000ff9000/0x2000)=nil, 0x0}, 0x68)

3.735356091s ago: executing program 5 (id=27457):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)=ANY=[@ANYBLOB="4400000001010101"], 0x44}}, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f00000014c0), r2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x3c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_SPLIT_GSO={0x8}]}}]}, 0x3c}}, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r4, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r4, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000a00)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000002a00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x18)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="0003230c1100"})
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, 0x0, 0x0)
r7 = socket$kcm(0x10, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000001500)={[{@errors_remount}, {@bh}, {@data_err_abort}, {@dioread_nolock}, {@auto_da_alloc}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1ff0}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080)={0x0, r7}, 0x8)
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r8, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
socket$nl_route(0x10, 0x3, 0x0)

2.916679763s ago: executing program 1 (id=27464):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="68377863ac6ea61666eaa696435a75f1626fe3a3acedcaf71527ff51d446daac757559d2d6fc2b90952355ec6c61d718c91784312b1b4771888a0811895b02ffb658934b0bbd6466c9cc04cc7252f1f1deea5a8b9c6797c8f1263db526cf88899f7ecab544662eb34743cefb660a78cb9468d2900b3cda4cca9d89ab6d341d145acf249276dda272407bc98d9e5431316d468b9e4750f2316589dc4de3157592d27fd723a512c85b08035842b75ec422346f9696f4bb3226b0ca75d135ebd8cae46fb83b71c103e1fdcb1934fd1d28b4916abe2c44e26ea72be426c27052e816212096000155788943b846746ccb492175fc9e01", 0xf4}, {&(0x7f00000003c0)="5453b4b759f9d4f4f33bda880b70e0dadde06223919f4585429ef69078a4956f646ea03bfd4c090a003c01f32b1a175baf38c1eb4572c8b372a4cf9128062e58ff575546876a2804144c3aea98c4a3533396f87e860de8c66bceb0e6b387ec853b7e91c57587d38436637e702ae18eeccefdcd7a3cdd7bfc327b5d619b57d56afe1628b65e2948af5ee0e3f52746a5aff58bb7c6d253a58bf745584d1bc19fe5e42b5534eab9e9d2587b413e81f68b60f56130f82b327f5fe900e3e107bc6b783d1d23a056426d6502133386b51e657046c1c43a2a2c4a7611ee6592a5ee08700d24d832163b3def1f", 0xe9}, {&(0x7f0000000640)="d48c8225ddfdf2c06c27763617468581389d34126760ba3dd0fe077a7c2ce378dd62cafeeb4ba1493766d09fd561d69a5bf8109ffcd3e43d8c16b9c3fa92d4439c5af1", 0x43}], 0x3}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e461725b5e437323385b88c368f8bb5b933aa9169f5f7b51dd5319b8016623d1863d70581691a79a6678db1e5e7fa1c98c5b9e4a87272e9c4a1bd98dbb2ab76919ba5c1020e80bd0659e82d861dc6fe4c62639134c504aa438689d28748c22ebfe2772d64b64e706d94864d785dcc6b24fff7858b", 0xdf}, {&(0x7f0000000e80)="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", 0x167}], 0x2}}], 0x2, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

2.780076616s ago: executing program 2 (id=27466):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)=ANY=[@ANYBLOB="4400000001010101"], 0x44}}, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f00000014c0), r2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x3c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_SPLIT_GSO={0x8}]}}]}, 0x3c}}, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r4, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r4, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x18)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="0003230c1100"})
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, 0x0, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000001500)={[{@errors_remount}, {@bh}, {@data_err_abort}, {@dioread_nolock}, {@auto_da_alloc}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
perf_event_open(&(0x7f0000000800)={0x2, 0x80, 0x38, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x1, 0x1, 0x8, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1ff0}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080)={0x0, r6}, 0x8)
r7 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r7, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r8, 0x8983, &(0x7f0000000000)={0x6, 'veth0_vlan\x00', {}, 0x105})

2.636817498s ago: executing program 5 (id=27468):
socket$nl_xfrm(0x10, 0x3, 0x6)
inotify_init1(0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e20, @broadcast}, 0x10)
sendto$inet(r0, &(0x7f0000000140), 0xffffffffffffff58, 0x20008005, &(0x7f0000000100)={0x2, 0x4e20}, 0x10)
recvfrom(r0, &(0x7f0000000480)=""/110, 0x168f6f3d, 0x734, 0x0, 0xfffffffffffffecb)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

2.334489572s ago: executing program 3 (id=27470):
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000500)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdnY=', @ANYRESHEX, @ANYBLOB=',version=9p2000.u,\x00'])

2.310104293s ago: executing program 3 (id=27471):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800"], 0x64}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)=ANY=[@ANYBLOB="4400000001010101"], 0x44}}, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f00000014c0), r1)

2.185274055s ago: executing program 3 (id=27472):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)}, {&(0x7f00000003c0)="5453b4b759f9d4f4f33bda880b70e0dadde06223919f4585429ef69078a4956f646ea03bfd4c090a003c01f32b1a175baf38c1eb4572c8b372a4cf9128062e58ff575546876a2804144c3aea98c4a3533396f87e860de8c66bceb0e6b387ec853b7e91c57587d38436637e702ae18eeccefdcd7a3cdd7bfc327b5d619b57d56afe1628b65e2948af5ee0e3f52746a5aff58bb7c6d253a58bf745584d1bc19fe5e42b5534eab9e9d2587b413e81f68b60f56130f82b327f5fe900e3e107bc6b783d1d23a056426d6502133386b51e657046c1c43a2a2c4a7611ee6592a5ee08700d24d832163b3def1f", 0xe9}, {&(0x7f0000000640)="d48c8225ddfdf2c06c27763617468581389d34126760ba3dd0fe077a7c2ce378dd62cafeeb4ba1493766d09fd561d69a5bf8109ffcd3e43d8c16b9c3fa92d4439c5af1fa4775d01dcf0748a24ab51b52fbe75287a4b9aaa18fd479bdd154b4efe531a242d90a1ca2799c242bfd4ddd8271448d3415bd3a907ad340dc2fa2471393212d02eb25242808cffdc4e7a646211c18ac8602f5fc1e4f82b72871a8d42f37988365ff226c1523bf01617976641421438e16378094c94f2e55a44150d9a358d92606afb12f21a63daadbb143d6ccdae88d53521b9fe51ffabb08ff67cb98266eeb1fbf81ec1e06", 0xe9}, {&(0x7f0000000040)="f96be6c391f1f8b23ae44a70a75f4a5ed0e013f80882907ab089ee65d16a6c6f", 0x20}], 0x4}}], 0x1, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

2.168282895s ago: executing program 3 (id=27473):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)=ANY=[@ANYBLOB="4400000001010101"], 0x44}}, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f00000014c0), r2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x3c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_SPLIT_GSO={0x8}]}}]}, 0x3c}}, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r4, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r4, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000a00)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000002a00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x18)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="0003230c1100"})
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, 0x0, 0x0)
r7 = socket$kcm(0x10, 0x2, 0x0)
perf_event_open(&(0x7f0000000800)={0x2, 0x80, 0x38, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x1, 0x1, 0x8, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1ff0}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080)={0x0, r7}, 0x8)
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r8, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
socket$nl_route(0x10, 0x3, 0x0)

2.063539987s ago: executing program 1 (id=27474):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000100000000000000040000850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
writev(r0, &(0x7f0000000040)=[{&(0x7f0000000100)}], 0x1)

1.964185828s ago: executing program 1 (id=27475):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xaa62e000)
write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="364000002600913e"], 0xfe33)

1.906674839s ago: executing program 2 (id=27476):
r0 = socket(0x2b, 0x80801, 0x1)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4, 0x3ff, @empty, 0x1}, 0x1c)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r1}, &(0x7f0000000240), &(0x7f0000000280)=r2}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000002840)=@nat={'nat\x00', 0x1b, 0x5, 0x338, 0xa8, 0x1f8, 0xffffffff, 0x150, 0x1f8, 0x2a0, 0x2a0, 0xffffffff, 0x2a0, 0x2a0, 0x5, 0x0, {[{{@uncond, 0x0, 0x70, 0xa8}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x10, @rand_addr=0x64010103, @dev={0xac, 0x14, 0x14, 0x24}, @icmp_id=0x65, @icmp_id=0x66}}}}, {{@uncond, 0x0, 0x70, 0xa8}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x19, @empty, @multicast2, @port=0x4e21, @port=0x4e24}}}}, {{@uncond, 0x0, 0x70, 0xa8}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x4, @broadcast, @rand_addr=0x64010102, @port=0x4e23, @gre_key=0x5}}}}, {{@ip={@multicast1, @multicast1, 0xffffffff, 0xffffffff, 'ipvlan1\x00', 'caif0\x00', {0xff}, {0xff}, 0x21, 0x6, 0x8}, 0x0, 0x70, 0xa8}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x3, @broadcast, @remote, @icmp_id=0x67, @icmp_id=0x64}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x398)

1.87814694s ago: executing program 2 (id=27477):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)=ANY=[@ANYBLOB="4400000001010101"], 0x44}}, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f00000014c0), r2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x3c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_SPLIT_GSO={0x8}]}}]}, 0x3c}}, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r4, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r4, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x18)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="0003230c1100"})
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, 0x0, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000001500)={[{@errors_remount}, {@bh}, {@data_err_abort}, {@dioread_nolock}, {@auto_da_alloc}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
perf_event_open(&(0x7f0000000800)={0x2, 0x80, 0x38, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x1, 0x1, 0x8, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1ff0}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080)={0x0, r6}, 0x8)
r7 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r7, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r8, 0x8983, &(0x7f0000000000)={0x6, 'veth0_vlan\x00', {}, 0x105})

1.705477012s ago: executing program 5 (id=27478):
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r0, 0x0, 0x0)
ioctl$SIOCPNENABLEPIPE(r0, 0x89ed, 0x0)

1.704990222s ago: executing program 0 (id=27479):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000021c0), 0x181000)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r0, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port1\x00', 0x28, 0x1b1878, 0x4, 0x2, 0x3e4, 0x0, 0x4, 0x0, 0x0, 0x3}) (async)
close(r0) (async, rerun: 64)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) (async, rerun: 64)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000600)={0x20, r2, 0x81, 0x70bd2b, 0x25dfdbfe, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x4000)

1.648799553s ago: executing program 5 (id=27480):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000003680)='sched_switch\x00', r0}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = gettid()
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000029000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$int_in(r4, 0x5452, &(0x7f0000000180)=0xffffffffffffffff)
fcntl$setsig(r4, 0xa, 0x12)
r6 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r6, &(0x7f0000000000)={&(0x7f0000000080)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e22, @dev}}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000ac0)="ee", 0x1}], 0x1, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c6c8189587d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988ab013f40afe403041323110f62055394412158e7a3adb148d641aa40d4ab077fe34232aa8b31851466d0998a61"], 0x10b8}, 0xff00)
ppoll(&(0x7f0000000100)=[{r5}], 0x1, 0x0, 0x0, 0x0)
dup2(r4, r5)
fcntl$setown(r5, 0x8, r3)
tkill(r3, 0x13)

1.648021053s ago: executing program 1 (id=27481):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f00000018c0)=""/220, 0xdc}], 0x1, 0x0, 0x5)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x16, &(0x7f0000000240)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095", @ANYRESOCT=0x0], &(0x7f0000000300)='GPL\x00', 0x800000, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_CLEAR_HALT(r5, 0xc0105502, 0x0)
ioctl$IMADDTIMER(0xffffffffffffffff, 0x80044940, &(0x7f0000000080)=0x14)
unshare(0x62040200)
close(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x18)
r6 = io_uring_setup(0x192, &(0x7f0000000300)={0x0, 0x4178, 0x400, 0x8000002, 0x3d7})
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}, 0x1, 0x0, 0x0, 0x4040080}, 0x20000010)
close_range(r6, 0xffffffffffffffff, 0x0)
r8 = perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0xf6, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={0x0, 0xc91542382b09e080}, 0x40db, 0x0, 0x4, 0x8, 0x4, 0x100, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r8, 0x40082406, &(0x7f0000000000)='cpu<=0||!')

1.500293436s ago: executing program 0 (id=27482):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xb, 0xb9, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10002, 0x9, 0x1}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000040), &(0x7f0000000440)=""/183}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000340)={r1, &(0x7f0000000040)}, 0x20)

1.500146806s ago: executing program 0 (id=27483):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000"], 0x64}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)=ANY=[@ANYBLOB="4400000001010101"], 0x44}}, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f00000014c0), r1)

1.22870529s ago: executing program 0 (id=27484):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x11, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000ffffffff000000000000000085000000a8000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000000000000850000007300000095"], &(0x7f0000000b00)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000400)={r1, r0}, 0x26) (fail_nth: 1)

965.272374ms ago: executing program 0 (id=27485):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)=ANY=[@ANYBLOB="4400000001010101"], 0x44}}, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f00000014c0), r2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x3c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_SPLIT_GSO={0x8}]}}]}, 0x3c}}, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r4, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r4, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000a00)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000002a00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80001}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x18)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="0003230c1100"})
socket$nl_generic(0x10, 0x3, 0x10)
r7 = socket$kcm(0x10, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000001500)={[{@errors_remount}, {@bh}, {@data_err_abort}, {@dioread_nolock}, {@auto_da_alloc}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
perf_event_open(&(0x7f0000000800)={0x2, 0x80, 0x38, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x1, 0x1, 0x8, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1ff0}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080)={0x0, r7}, 0x8)
r8 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r8, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r9, 0x8983, &(0x7f0000000000)={0x6, 'veth0_vlan\x00', {}, 0x105})

964.821424ms ago: executing program 1 (id=27486):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)=ANY=[@ANYBLOB="4400000001010101"], 0x44}}, 0x0)
syz_genetlink_get_family_id$ipvs(&(0x7f00000014c0), r2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x3c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_SPLIT_GSO={0x8}]}}]}, 0x3c}}, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r4, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r4, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x18)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="0003230c1100"})
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, 0x0, 0x0)
r6 = socket$kcm(0x10, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000001500)={[{@errors_remount}, {@bh}, {@data_err_abort}, {@dioread_nolock}, {@auto_da_alloc}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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")
perf_event_open(&(0x7f0000000800)={0x2, 0x80, 0x38, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x1, 0x1, 0x8, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1ff0}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000080)={0x0, r6}, 0x8)
r7 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r7, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r8, 0x8983, &(0x7f0000000000)={0x6, 'veth0_vlan\x00', {}, 0x105})

807.745007ms ago: executing program 3 (id=27487):
r0 = socket(0x2b, 0x80801, 0x1)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4, 0x3ff, @empty, 0x1}, 0x1c)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050000000181100", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r1}, &(0x7f0000000240), &(0x7f0000000280)=r2}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000002840)=@nat={'nat\x00', 0x1b, 0x5, 0x338, 0xa8, 0x1f8, 0xffffffff, 0x150, 0x1f8, 0x2a0, 0x2a0, 0xffffffff, 0x2a0, 0x2a0, 0x5, 0x0, {[{{@uncond, 0x0, 0x70, 0xa8}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x10, @rand_addr=0x64010103, @dev={0xac, 0x14, 0x14, 0x24}, @icmp_id=0x65, @icmp_id=0x66}}}}, {{@uncond, 0x0, 0x70, 0xa8}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x19, @empty, @multicast2, @port=0x4e21, @port=0x4e24}}}}, {{@uncond, 0x0, 0x70, 0xa8}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x4, @broadcast, @rand_addr=0x64010102, @port=0x4e23, @gre_key=0x5}}}}, {{@ip={@multicast1, @multicast1, 0xffffffff, 0xffffffff, 'ipvlan1\x00', 'caif0\x00', {0xff}, {0xff}, 0x21, 0x6, 0x8}, 0x0, 0x70, 0xa8}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x3, @broadcast, @remote, @icmp_id=0x67, @icmp_id=0x64}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x398)

660.272439ms ago: executing program 3 (id=27488):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, 0x0, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000080)=ANY=[], 0x8)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

598.28838ms ago: executing program 2 (id=27489):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x800040, &(0x7f0000000340), 0x1, 0x597, &(0x7f0000000b80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f0000000180)="f7e0dcb33d3ecded65", 0x9, 0x200980)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
sendfile(r1, r1, 0x0, 0xe0000000)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x84042, 0x1fb)
write$P9_RUNLINKAT(r2, &(0x7f0000000000)={0xfffffffffffffecb, 0x4d, 0x1}, 0xffffffd7)

335.925734ms ago: executing program 0 (id=27490):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000200)="67d89024", 0x4}], 0x1}, 0x0)
pipe(&(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x129c81, 0x0)
ppoll(&(0x7f0000000280)=[{r3, 0x2000}], 0x1, 0x0, 0x0, 0x0)
write$binfmt_aout(r3, &(0x7f0000000000)=ANY=[], 0xff2e)
ioctl$TCSETS(r3, 0x40045431, &(0x7f0000000200)={0x0, 0x0, 0x6, 0x6, 0x1, "42341f9b1000007e4f00"})
ioctl$FS_IOC_GETVERSION(r1, 0x80087601, &(0x7f0000000000))
r4 = syz_open_pts(r3, 0x0)
dup3(r4, r3, 0x0)
splice(r3, 0x0, r2, 0x0, 0x7ffff000, 0x0)
recvmmsg$unix(r0, &(0x7f0000000300)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000000), 0x4)
r6 = getpid()
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), r5)
sendmsg$DEVLINK_CMD_RELOAD(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r8, 0x1, 0x70bd26, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r6}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x0)
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(r1, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="5000000095f2cffedae3cda5b84b4de0e12b3d1e36d43bee95a9759baf5a54a897576a8000d4f350e8fbeb5f8ddf7f0eaf517e854f009787ebbc63a8ca4bf031862e49d0decfbd517ea686", @ANYRES16=r8, @ANYBLOB="000329bd7000fcdbdf2514000000080001007063690011000200303030303a30303a31302e3000000000080003000100000008000b00faffffff06001100000000000800150001000000"], 0x50}, 0x1, 0x0, 0x0, 0x20040000}, 0x4000010)

335.408184ms ago: executing program 5 (id=27491):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x800040, &(0x7f0000000340), 0x1, 0x597, &(0x7f0000000b80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f0000000180)="f7e0dcb33d3ecded65", 0x9, 0x200980)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
sendfile(r1, r1, 0x0, 0xe0000000)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x0, &(0x7f0000000580), 0xfe, 0x507, &(0x7f0000001780)="$eJzs3c9vI1cdAPDvOL+cNG3S0gMgoEspLGi1TuJto6oHWE4IoUqIHkHahsQbRbHjKHZKE/aQ/g9IVOIER/4Azj1x54LgxqUckChEoM1KHIxmPMk6WXtjSGJH8ecjjea9N46/78Wa9+Kvd/0CGFm3IuIgIiYj4v2ImMvbk/yI++0jfdzjw0erR4ePVpNotd77R5JdT9ui42dSL+TPWYyIH30v4qfJs3Ebe/ubK9VqZaddnV5o1rYXGnv7dzdqK+uV9cpWuby8tLz49r23ypc21tdqk3npy5/+4eBbP0+7NZu3dI7jMrWHPnESJzUeET+4imBDMJaPZ3LYHeH/UoiIVyLi9ez+n4ux7NUEAG6yVmsuWnOddQDgpitkObCkUMpzAbNRKJRK7RzeqzFTqNYbzTsP67tba+1c2XxMFB5uVCuLea5wPiaStL6UlZ/Wy2fq9yLi5Yj4xdR0Vi+t1qtrw/zDBwBG2Atn1v9/T7XXfwDghisOuwMAwMBZ/wFg9Fj/AWD0WP8BYPQ8Xf/vD7UfAMDgeP8PAKPH+g8AI+WH776bHq2j/Puv1z7Y292sf3B3rdLYLNV2V0ur9Z3t0nq9vp59Z0/tvOer1uvbS2/G7ofz395uNBcae/sPavXdreaD7Hu9H1QmBjIqAOB5Xn7tkz8nEXHwznR2RMdeDtZquNkKw+4AMDRjw+4AMDR2+4LRdYH3+NIDcEN02aL3lGJETJ9tbLVaravrEnDFbn9B/h9GVUf+378ChhEj/w+jS/4fRlerlfS753/0+0AA4HqT4wd6fP7/Sn7+bf7hwE/Wzj7i46vsFQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFxvx/v/lvK9wGejUCiVIl6MiPmYSB5uVCuLEfFSRPxpamIqrS8Nuc8AwEUV/pbk+3/dnntj9uzVyeTJVHaOiJ/96r1ffrjSbO78MW3/50l78+O8vTyM/gMA5zlep7Nzxxv5x4ePVo+PQfbn79+NiGI7/tHhZBydxB+P8excjImImPlXktfbko7cxUUcfBQRn+82/iRmsxxIe+fTs/HT2C8ONH7hVPxCdq19Tn8Xn7uEvsCo+SSdf+53u/8KcSs7d7//i9kMdXH5/Jc+1epRNgc+jX88/431mP9u9Rvjzd9/v12afvbaRxFfHI84jn3UMf8cx096xH+jz/h/+dJXXu91rfXriNvRPX5nrIVmbXuhsbd/d6O2sl5Zr2yVy8tLy4tv33urvJDlqBd6rwafvXPnpazQ5SHp+Gd6xC+eM/6v9zn+3/zn/R9/tce1NP43v9YtfiFefU78dE38Rp/xV2Z+V+x1LY2/1mP8573+d/qM/+lf95/ZNhwAGJ7G3v7mSrVa2Rlk4fgPiYEGVeivMJW/ONelP6cK17ZjmyvV7wwq1mT8Tz/Vap1u+Wy8r99hrxnjMrJuwHVwctNHxJNhdwYAAAAAAAAAAAAAAOjqSv+jUtIuDHuMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3Fz/DQAA//+sasqI")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x84042, 0x1fb)
write$P9_RUNLINKAT(r2, &(0x7f0000000000)={0xfffffffffffffecb, 0x4d, 0x1}, 0xffffffd7)

136.069267ms ago: executing program 2 (id=27492):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="68377863ac6ea61666eaa696435a75f1626fe3a3acedcaf71527ff51d446daac757559d2d6fc2b90952355ec6c61d718c91784312b1b4771888a0811895b02ffb658934b0bbd6466c9cc04cc7252f1f1deea5a8b9c6797c8f1263db526cf88899f7ecab544662eb34743cefb660a78cb9468d2900b3cda4cca9d89ab6d341d145acf249276dda272407bc98d9e5431316d468b9e4750f2316589dc4de3157592d27fd723a512c85b08035842b75ec422346f9696f4bb3226b0ca75d135ebd8cae46fb83b71c103e1fdcb1934fd1d28b4916abe2c44e26ea72be426c27052e816212096000155788943b846746ccb492175fc9e01", 0xf4}, {&(0x7f00000003c0)="5453b4b759f9d4f4f33bda880b70e0dadde06223919f4585429ef69078a4956f646ea03bfd4c090a003c01f32b1a175baf38c1eb4572c8b372a4cf9128062e58ff575546876a2804144c3aea98c4a3533396f87e860de8c66bceb0e6b387ec853b7e91c57587d38436637e702ae18eeccefdcd7a3cdd7bfc327b5d619b57d56afe1628b65e2948af5ee0e3f52746a5aff58bb7c6d253a58bf745584d1bc19fe5e42b5534eab9e9d2587b413e81f68b60f56130f82b327f5fe900e3e107bc6b783d1d23a056426d6502133386b51e657046c1c43a2a2c4a7611ee6592a5ee08700d24d832163b3def1f", 0xe9}, {&(0x7f0000000640)="d48c8225ddfdf2c06c27763617468581389d34126760ba3dd0fe077a7c2ce378dd62cafeeb4ba1493766d09fd561d69a5bf8109ffcd3e43d8c16b9c3fa92d4439c5af1fa4775d01dcf0748a24ab51b52fbe75287a4b9aaa18fd479bdd154b4efe531a242d90a1ca2799c242bfd4ddd8271448d3415bd3a907ad340dc2fa2471393212d02eb25242808cffdc4e7a646211c18ac8602f5fc1e4f82b72871a8d42f37988365ff226c1523bf01617976641421438e16378094c94f2e55a44150d9a358d92606afb12f21a63daadbb143d6ccdae88d53521b9fe51ffabb08ff67cb98266eeb1fbf81ec1e06", 0xe9}, {&(0x7f0000000040)="f96be6c391f1f8b23ae44a70a75f4a5ed0e013f80882907ab089ee65d16a6c6f5c666dad31257fb48b66d9", 0x2b}, {0x0}], 0x5}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e461725b5e437323385b88c368f8bb5b933aa9169f5f7b51dd5319b8016623d1863d70581691a79a6678db1e5e7fa1c98c5b9e4a87272e9c4a1bd98dbb2ab76919ba5c1020e80bd0659e82d861dc6fe4c62639134c504aa438689d28748c22ebfe2772d64b64e706d94864d785dcc6b24fff7", 0xdd}, {&(0x7f0000000e80)="5be3b011e12323e4ab88c0472f0700000000000000e71ba6231f303d2db97401439932cfd4855c4cc243dae723789d8a9a16be3135c5f82691837c90ab19545f7a1dcf1449fd59eecae5f52fba1e89d6d34b39297bbbc2580600000000000000d6e36e737691a1c6bd2a64b2a85cbaaf646e72f8fe08c33a33b275", 0x7b}], 0x2}}], 0x2, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

40.759769ms ago: executing program 2 (id=27493):
syz_emit_ethernet(0x46, &(0x7f0000000200)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x33, 0x0, @loopback, @loopback}, "00186371ae9b1c03"}}}}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000040)={[{@stripe={'stripe', 0x3d, 0x1}}, {@nolazytime}, {@delalloc}, {@i_version}, {@lazytime}, {@nodiscard}, {@grpjquota}, {@block_validity}, {@errors_remount}]}, 0x1, 0x549, &(0x7f0000000540)="$eJzs3c9vI1cdAPDvTH65222zCz1ABewChQWt1t5421XVS8sFhKpKiIoD4rANiTcKseMQO6UJkUj/BpBA4gR/AgckDkg9ceDGEYkDQpQDUoEItEHiYDRjJ+smNmtqx+7Gn480O/Pmzcz3PWdn3vNz4hfA1LoeEQcRMR8Rb0TEYmd/0lnilfaSHffgcH/l6HB/JYlW6/W/J3l+ti+6zsk82blmISK+/pWIbydn4zZ29zaWq9XKdiddata2So3dvVvrteW1ylpls1y+u3T39ot3XiiPrK7Xar9478vrr37j17/65Lu/O/ji97NiXe7kdddjlNpVnzuJk5mNiFfPI9gEzHTW8xMuBx9MGhEfiYjP5Pf/Yszk/zsBgIus1VqM1mJ3GgC46NJ8DCxJixGRpp1OQLE9hvdMXEqr9Ubz5v36zuZqe6zsSsyl99erldtXF/7w3fzguSRLL+V5eX6eLp9K34mIqxHxo4Un8nRxpV5dnUyXBwCm3pPd7X9E/GshTYvFgU7t8akeAPDYKEy6AADA2Gn/AWD6aP8BYPoM0P53Puw/OPeyAADj4f0/AEwf7T8ATB/tPwBMla+99lq2tI4633+9+ubuzkb9zVurlcZGsbazUlypb28V1+r1tfw7e2qPul61Xt9aej523io1K41mqbG7d69W39ls3su/1/teZW4stQIA/per1975fRIRBy89kS/RNZeDthoutnSERwGPl5lhTtZBgMea2b5geg3UhOedhN+ee1mAyej5Zd6Fnpvv95P/I4jfM4IPlRsfH3z83xzPcLEY2Yfp9cHG/18eeTmA8TP+D9Or1UpOz/k/f5IFAFxIQ/wKX+sHo+qEABP1qMm8R/L5PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFwwlyPiO5GkxXwu8DT7Ny0WI56KiCsxl9xfr1ZuR8TTcS0i5hay9NKkCw0ADCn9a9KZ/+vG4nOXT+fOJ/9eyNcR8b2fvv7jt5abze2lbP8/TvYvHE8fVn543hDzCgIAg/vzIAfl7Xe5s+56I//gcH/leDnHMp7x3pdOJh9dOTrcz5d2zmy0Wq1WRCHvS1z6ZxKznXMKEfFsRMyMIP7B2xHxsV71T/KxkSudmU+740cn9lNjjZ++L36a57XX2cv30RGUBabNO9nz55Ve918a1/N17/u/kD+hhpc//woRx8++o674s51IMz3iZ/f89UFjPP+br57Z2Vps570d8exsr/jJSfykT/znBoz/x0986ocv98lr/SziRvSO3x2r1KxtlRq7e7fWa8trlbXKZrl8d+nu7RfvvFAu5WPUpeOR6rP+9tLNp/uVLav/pT7xCz3rP39y7ucGrP/P//PGtz79MLlwOv4XPtv75/9Mz/htWZv4+QHjL1/6Zd/pu7P4q33q/6if/80B47/7l73VAQ8FAMagsbu3sVytVraH2sjehY7iOmc2siIOdvBxd3G4oH+KfGNEL0ufjawzNsjBc+f1qp77xuxJX3G0V/5mdsUxVycdeS2G2ngwrliTeyYB4/Hwpp90SQAAAAAAAAAAAAAAgH7G8adLk64jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAF9d/AwAA//8+JMPM")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
fsetxattr$system_posix_acl(r0, &(0x7f0000000180)='system.posix_acl_default\x00', &(0x7f0000000140)=ANY=[@ANYBLOB="0200000001000000280000000400000000000000100006000000000020"], 0x24, 0x2)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000000c0)='./file1\x00', 0x3200414, 0x0, 0x1, 0x0, &(0x7f0000000480))
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "7f12ddc1517600"})
ioctl$TIOCGPTPEER(r1, 0x5441, 0x0)
mknod$loop(&(0x7f0000000a00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1000, 0x1)
ioctl$BLKTRACESTART(r0, 0x1274, 0x0)
r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000280), r0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
r5 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r5, 0x402, 0x8000001f)
r6 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r6, 0x402, 0x8000003d)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000400180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r7}, 0x10)
close_range(r5, r6, 0x0)
sendmsg$IPVS_CMD_DEL_DAEMON(r0, &(0x7f0000000440)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000400)={&(0x7f00000002c0)={0x11c, r2, 0x800, 0x70bd25, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e21}]}, @IPVS_CMD_ATTR_DEST={0x3c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x1}, @IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x4}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x8}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0xb3}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0xc73}]}, @IPVS_CMD_ATTR_DAEMON={0x50, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x3}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'team_slave_0\x00'}, @IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_MCAST_PORT={0x6, 0x7, 0x4e22}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x2}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0xb}]}, @IPVS_CMD_ATTR_DEST={0x1c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x7fff}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e22}, @IPVS_DEST_ATTR_TUN_PORT={0x6, 0xe, 0x4e24}]}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}]}, @IPVS_CMD_ATTR_SERVICE={0x48, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@private2={0xfc, 0x2, '\x00', 0x1}}, @IPVS_SVC_ATTR_SCHED_NAME={0x7, 0x6, 'nq\x00'}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e21}, @IPVS_SVC_ATTR_SCHED_NAME={0x9, 0x6, 'lblc\x00'}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@dev={0xac, 0x14, 0x14, 0x18}}]}]}, 0x11c}, 0x1, 0x0, 0x0, 0x40044}, 0x4000080)

740.669µs ago: executing program 1 (id=27494):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="68377863ac6ea61666eaa696435a75f1626fe3a3acedcaf71527ff51d446daac757559d2d6fc2b90952355ec6c61d718c91784312b1b4771888a0811895b02ffb658934b0bbd6466c9cc04cc7252f1f1deea5a8b9c6797c8f1263db526cf88899f7ecab544662eb34743cefb660a78cb9468d2900b3cda4cca9d89ab6d341d145acf249276dda272407bc98d9e5431316d468b9e4750f2316589dc4de3157592d27fd723a512c85b08035842b75ec422346f9696f4bb32", 0xb7}, {&(0x7f00000003c0)="5453b4b759f9d4f4f33bda880b70e0dadde06223919f4585429ef69078a4956f646ea03bfd4c090a003c01f32b1a175baf38c1eb4572c8b372a4cf9128062e58ff575546876a2804144c3aea98c4a3533396f87e860de8c66bceb0e6b387ec853b7e91c57587d38436637e702ae18eeccefdcd7a3cdd7bfc327b5d619b57d56afe1628b65e2948af5ee0e3f52746a5aff58bb7c6d253a58bf745584d1bc19fe5e42b5534eab9e9d2587b413e81f68b60f56130f82b327f5fe900e3e107bc6b783d1d23a056426d6502133386b51e657046c1c43a2a2c4a7611ee6592a5ee08700d24d832163b3def1f", 0xe9}, {&(0x7f0000000640)="d48c8225ddfdf2c06c27763617468581389d34126760ba3dd0fe077a7c2ce378dd62cafeeb4ba1493766d09fd561d69a5bf8109ffcd3e43d8c16b9c3fa92d4439c5af1fa4775d01dcf0748a24ab51b52fbe75287a4b9aaa18fd479bdd154b4efe531a242d90a1ca2799c242bfd4ddd8271448d3415bd3a907ad340dc2fa2471393212d02eb25242808cffdc4e7a646211c18ac8602f5fc1e4f82b72871a8d42f37988365ff226c1523bf01617976641421438e16378094c94f2e55a44150d9a358d92606afb12f21a63daadbb143d6ccdae88d53521b9fe51ffabb08ff67cb98266eeb1fbf81ec1e06", 0xe9}, {&(0x7f0000000040)="f96be6c391f1f8b23ae44a70a75f4a5ed0e013f80882907ab089ee65d16a6c6f", 0x20}], 0x4}}], 0x1, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

0s ago: executing program 5 (id=27495):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="68377863ac6ea61666eaa696435a75f1626fe3a3acedcaf71527ff51d446daac757559d2d6fc2b90952355ec6c61d718c91784312b1b4771888a0811895b02ffb658934b0bbd6466c9cc04cc7252f1f1deea5a8b9c6797c8f1263db526cf88899f7ecab544662eb34743cefb660a78cb9468d2900b3cda4cca9d89ab6d341d145acf249276dda272407bc98d9e5431316d468b9e4750f2316589dc4de3157592d27fd723a512c85b08035842b75ec422346f9696f4bb3226b0ca75d135ebd8cae46fb83b71c103e1fdcb1934fd1d28b4916abe2c44e26ea72be426c27052e816212096000155788943b846746ccb492175fc9e01", 0xf4}, {&(0x7f00000003c0)="5453b4b759f9d4f4f33bda880b70e0dadde06223919f4585429ef69078a4956f646ea03bfd4c090a003c01f32b1a175baf38c1eb4572c8b372a4cf9128062e58ff575546876a2804144c3aea98c4a3533396f87e860de8c66bceb0e6b387ec853b7e91c57587d38436637e702ae18eeccefdcd7a3cdd7bfc327b5d619b57d56afe1628b65e2948af5ee0e3f52746a5aff58bb7c6d253a58bf745584d1bc19fe5e42b5534eab9e9d2587b413e81f68b60f56130f82b327f5fe900e3e107bc6b783d1d23a056426d6502133386b51e657046c1c43a2a2c4a7611ee6592a5ee08700d24d832163b3def1f", 0xe9}, {&(0x7f0000000640)="d48c8225ddfdf2c06c27763617468581389d34126760ba3dd0fe077a7c2ce378dd62cafeeb4ba1493766d09fd561d69a5bf8109ffcd3e43d8c16b9c3fa92d4439c5af1fa4775d01dcf0748a24ab51b52fbe75287a4b9aaa18fd479bdd154b4efe531a242d90a1ca2799c242bfd4ddd8271448d3415bd3a907ad340dc2fa2471393212d02eb25242808cffdc4e7a646211c18ac8602f5fc1e4f82b72871a8d42f37988365ff226c1523bf01617976641421438e16378094c94f2e55a44150d9a358d92606afb12f21a63daadbb143d6ccdae88d53521b9fe51ffabb08ff67cb98266eeb1fbf81ec1e06", 0xe9}, {&(0x7f0000000040)="f96be6c391f1f8b23ae44a70a75f4a5ed0e013f80882", 0x16}], 0x4}}, {{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000840)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e461725b5e437323385b88c368f8bb5b933aa9169f5f7b51dd5319b8016623d1863d70581691a79a6678db1e5e7fa1c98c5b9e4a87272e9c4a1bd98dbb2ab76919ba5c1020e80bd0659e82d861dc6fe4c62639134c504aa438689d28748c22ebfe2772d64b64e706d94864d785dcc6b24fff7", 0xdd}, {&(0x7f0000000e80)="5be3b011e12323e4ab88c0472f0700000000000000e71ba6231f303d2db97401439932cfd4855c4cc243dae723789d8a9a16be3135c5f82691837c90ab19545f7a1dcf1449fd59eecae5f52fba1e89d6d34b39297bbbc2580600000000000000d6e36e737691a1c6bd2a64b2a85cbaaf646e72f8fe08c33a33b275787892f61fbb621794716f96031931b55af30fa01d72aa5a53ee4c07ab7c96a4a9ed93f4d20269982ab6feb22d", 0xa8}], 0x2}}], 0x2, 0xc0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)

kernel console output (not intermixed with test programs):

000003e syscall=202 compat=0 ip=0x7f1eb6e2e929 code=0x7ffc0000
[ 1618.180450][   T29] audit: type=1326 audit(1750821892.141:52055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10849 comm="syz.0.26809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f1eb6e2e929 code=0x7ffc0000
[ 1618.204164][   T29] audit: type=1326 audit(1750821892.151:52056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10849 comm="syz.0.26809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1eb6e2e929 code=0x7ffc0000
[ 1618.227834][   T29] audit: type=1326 audit(1750821892.151:52057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10849 comm="syz.0.26809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f1eb6e2e929 code=0x7ffc0000
[ 1618.251528][   T29] audit: type=1326 audit(1750821892.151:52058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10849 comm="syz.0.26809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1eb6e2e929 code=0x7ffc0000
[ 1618.275254][   T29] audit: type=1326 audit(1750821892.151:52059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10849 comm="syz.0.26809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1eb6e2e929 code=0x7ffc0000
[ 1618.299062][   T29] audit: type=1326 audit(1750821892.151:52060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10849 comm="syz.0.26809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1eb6e2e929 code=0x7ffc0000
[ 1618.328154][T10855] loop1: detected capacity change from 0 to 512
[ 1618.335832][T10855] EXT4-fs: Ignoring removed bh option
[ 1618.342122][T10855] EXT4-fs: Mount option(s) incompatible with ext3
[ 1618.555655][T10870] netlink: 48 bytes leftover after parsing attributes in process `syz.3.26816'.
[ 1618.720228][T10874] loop2: detected capacity change from 0 to 1024
[ 1618.804674][T10874] ext4 filesystem being mounted at /318/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1618.896789][T10875] loop5: detected capacity change from 0 to 512
[ 1618.903714][T10875] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1618.910249][T10875] EXT4-fs: Ignoring removed bh option
[ 1618.916862][T10875] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1618.928687][T10875] EXT4-fs (loop5): 1 truncate cleaned up
[ 1619.124629][T10891] netlink: 48 bytes leftover after parsing attributes in process `syz.3.26823'.
[ 1619.321674][ T8436] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm kworker/u8:17: bg 0: block 393: padding at end of block bitmap is not set
[ 1619.324894][T10899] netlink: 48 bytes leftover after parsing attributes in process `syz.0.26824'.
[ 1619.375407][ T8436] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 117
[ 1619.388177][ T8436] EXT4-fs (loop2): This should not happen!! Data will be lost
[ 1619.388177][ T8436] 
[ 1619.590848][T10907] loop3: detected capacity change from 0 to 512
[ 1619.594097][T10909] loop0: detected capacity change from 0 to 128
[ 1619.619050][T10907] EXT4-fs: Ignoring removed bh option
[ 1619.659458][T10907] EXT4-fs: Mount option(s) incompatible with ext3
[ 1619.820071][ T8431] bio_check_eod: 22461 callbacks suppressed
[ 1619.820087][ T8431] kworker/u8:12: attempt to access beyond end of device
[ 1619.820087][ T8431] loop0: rw=1, sector=145, nr_sectors = 8 limit=128
[ 1619.839919][ T8431] kworker/u8:12: attempt to access beyond end of device
[ 1619.839919][ T8431] loop0: rw=1, sector=161, nr_sectors = 8 limit=128
[ 1619.853514][ T8431] kworker/u8:12: attempt to access beyond end of device
[ 1619.853514][ T8431] loop0: rw=1, sector=177, nr_sectors = 8 limit=128
[ 1619.868928][ T8431] kworker/u8:12: attempt to access beyond end of device
[ 1619.868928][ T8431] loop0: rw=1, sector=193, nr_sectors = 8 limit=128
[ 1619.883547][ T8431] kworker/u8:12: attempt to access beyond end of device
[ 1619.883547][ T8431] loop0: rw=1, sector=209, nr_sectors = 8 limit=128
[ 1619.897273][ T8431] kworker/u8:12: attempt to access beyond end of device
[ 1619.897273][ T8431] loop0: rw=1, sector=225, nr_sectors = 8 limit=128
[ 1619.912089][ T8431] kworker/u8:12: attempt to access beyond end of device
[ 1619.912089][ T8431] loop0: rw=1, sector=241, nr_sectors = 8 limit=128
[ 1619.983997][ T8431] kworker/u8:12: attempt to access beyond end of device
[ 1619.983997][ T8431] loop0: rw=1, sector=257, nr_sectors = 8 limit=128
[ 1620.051049][ T8431] kworker/u8:12: attempt to access beyond end of device
[ 1620.051049][ T8431] loop0: rw=1, sector=273, nr_sectors = 8 limit=128
[ 1620.121882][ T8431] kworker/u8:12: attempt to access beyond end of device
[ 1620.121882][ T8431] loop0: rw=1, sector=289, nr_sectors = 8 limit=128
[ 1620.444003][T10933] loop3: detected capacity change from 0 to 1024
[ 1620.467998][T10933] ext4 filesystem being mounted at /352/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1620.563283][T10943] loop3: detected capacity change from 0 to 128
[ 1620.574009][T10944] loop0: detected capacity change from 0 to 512
[ 1620.596497][T10944] EXT4-fs: Ignoring removed bh option
[ 1620.674128][T10944] EXT4-fs: Mount option(s) incompatible with ext3
[ 1620.975193][T10956] loop5: detected capacity change from 0 to 512
[ 1620.982854][T10956] EXT4-fs: Ignoring removed bh option
[ 1620.988544][T10956] EXT4-fs: Mount option(s) incompatible with ext3
[ 1621.381933][T10977] loop0: detected capacity change from 0 to 1024
[ 1621.392496][T10977] ext4 filesystem being mounted at /27/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1621.486509][T10983] loop3: detected capacity change from 0 to 512
[ 1621.533064][T10983] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #3: comm syz.3.26854: corrupted inode contents
[ 1621.591653][T10983] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #3: comm syz.3.26854: mark_inode_dirty error
[ 1621.644060][T10983] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #3: comm syz.3.26854: corrupted inode contents
[ 1621.665657][T10983] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #3: comm syz.3.26854: mark_inode_dirty error
[ 1621.677426][T10983] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.26854: Failed to acquire dquot type 0
[ 1621.706767][T10983] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.26854: corrupted inode contents
[ 1621.725525][T10983] EXT4-fs error (device loop3): ext4_dirty_inode:6459: inode #16: comm syz.3.26854: mark_inode_dirty error
[ 1621.743289][T10983] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.26854: corrupted inode contents
[ 1621.759268][T10983] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #16: comm syz.3.26854: mark_inode_dirty error
[ 1621.777792][T10983] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.26854: corrupted inode contents
[ 1621.791040][T10983] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[ 1621.799786][T10983] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #16: comm syz.3.26854: corrupted inode contents
[ 1621.813073][T10983] EXT4-fs error (device loop3): ext4_truncate:4597: inode #16: comm syz.3.26854: mark_inode_dirty error
[ 1621.824458][T10983] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[ 1621.835101][T10983] EXT4-fs (loop3): 1 truncate cleaned up
[ 1621.844128][T11001] __nla_validate_parse: 12 callbacks suppressed
[ 1621.844143][T11001] netlink: 28 bytes leftover after parsing attributes in process `syz.5.26861'.
[ 1621.862335][T10983] ext4 filesystem being mounted at /356/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1621.879623][T11001] netlink: 4 bytes leftover after parsing attributes in process `syz.5.26861'.
[ 1621.913489][T11003] loop1: detected capacity change from 0 to 128
[ 1622.143145][T11013] loop2: detected capacity change from 0 to 512
[ 1622.149787][T11013] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1622.156271][T11013] EXT4-fs: Ignoring removed bh option
[ 1622.162296][T11013] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1622.181291][T11013] EXT4-fs (loop2): 1 truncate cleaned up
[ 1622.191027][ T8436] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm kworker/u8:17: bg 0: block 393: padding at end of block bitmap is not set
[ 1622.244200][T11017] netlink: 48 bytes leftover after parsing attributes in process `syz.1.26867'.
[ 1622.256314][ T8436] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[ 1622.268880][ T8436] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1622.268880][ T8436] 
[ 1622.314140][T28316] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[ 1622.326700][T28316] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1622.326700][T28316] 
[ 1622.336430][T28316] EXT4-fs (loop0): Total free blocks count 0
[ 1622.342485][T28316] EXT4-fs (loop0): Free/Dirty block details
[ 1622.348403][T28316] EXT4-fs (loop0): free_blocks=0
[ 1622.353360][T28316] EXT4-fs (loop0): dirty_blocks=32
[ 1622.358465][T28316] EXT4-fs (loop0): Block reservation details
[ 1622.364471][T28316] EXT4-fs (loop0): i_reserved_data_blocks=2
[ 1622.483877][T11031] loop3: detected capacity change from 0 to 512
[ 1622.491694][T11031] EXT4-fs: Ignoring removed i_version option
[ 1622.507908][T11031] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1622.544839][T11037] loop1: detected capacity change from 0 to 512
[ 1622.564280][T11031] ext4 filesystem being mounted at /357/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1622.574088][T11037] EXT4-fs: Ignoring removed bh option
[ 1622.582658][T11037] EXT4-fs: Mount option(s) incompatible with ext3
[ 1622.603255][T11031] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.26871: corrupted inode contents
[ 1622.616754][T11031] EXT4-fs (loop3): Remounting filesystem read-only
[ 1622.693480][T11053] loop0: detected capacity change from 0 to 128
[ 1622.821988][T11061] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8192 sclass=netlink_route_socket pid=11061 comm=syz.2.26880
[ 1622.901330][T11038] chnl_net:caif_netlink_parms(): no params data found
[ 1623.025300][T11073] netlink: 4 bytes leftover after parsing attributes in process `syz.3.26879'.
[ 1623.288237][ T8423] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1623.314139][T11038] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1623.321339][T11038] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1623.331155][T11038] bridge_slave_0: entered allmulticast mode
[ 1623.337646][T11038] bridge_slave_0: entered promiscuous mode
[ 1623.343582][   T29] kauditd_printk_skb: 69 callbacks suppressed
[ 1623.343593][   T29] audit: type=1326 audit(1750821897.391:52128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11081 comm="syz.0.26886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1eb6e2e929 code=0x7ffc0000
[ 1623.351380][T11038] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1623.373408][   T29] audit: type=1326 audit(1750821897.391:52129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11081 comm="syz.0.26886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1eb6e2e929 code=0x7ffc0000
[ 1623.380403][T11038] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1623.418500][T11038] bridge_slave_1: entered allmulticast mode
[ 1623.425687][T11038] bridge_slave_1: entered promiscuous mode
[ 1623.434482][   T29] audit: type=1326 audit(1750821897.501:52130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11081 comm="syz.0.26886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=92 compat=0 ip=0x7f1eb6e2e929 code=0x7ffc0000
[ 1623.446660][T11086] loop2: detected capacity change from 0 to 512
[ 1623.458175][   T29] audit: type=1326 audit(1750821897.501:52131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11081 comm="syz.0.26886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1eb6e2e929 code=0x7ffc0000
[ 1623.488064][   T29] audit: type=1326 audit(1750821897.501:52132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11081 comm="syz.0.26886" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1eb6e2e929 code=0x7ffc0000
[ 1623.513655][ T8423] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1623.526431][T11086] EXT4-fs (loop2): too many log groups per flexible block group
[ 1623.534145][T11086] EXT4-fs (loop2): failed to initialize mballoc (-12)
[ 1623.546143][T11086] EXT4-fs (loop2): mount failed
[ 1623.568476][T11086] 9pnet_fd: Insufficient options for proto=fd
[ 1623.573547][T11038] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1623.585143][T11038] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1623.659212][ T8423] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1623.677929][T11038] team0: Port device team_slave_0 added
[ 1623.688778][T11038] team0: Port device team_slave_1 added
[ 1623.827477][T11105] loop1: detected capacity change from 0 to 512
[ 1623.863063][T11105] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1623.869537][T11105] EXT4-fs: Ignoring removed bh option
[ 1623.912420][T11105] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1623.954673][T11105] EXT4-fs (loop1): 1 truncate cleaned up
[ 1623.978485][T11105] EXT4-fs mount: 14 callbacks suppressed
[ 1623.978502][T11105] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1624.135162][T11113] netlink: 48 bytes leftover after parsing attributes in process `syz.2.26896'.
[ 1624.261509][T11038] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1624.268486][T11038] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1624.294477][T11038] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1624.332397][ T8423] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1624.361137][T11038] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1624.368126][T11038] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1624.394302][T11038] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1624.464231][T11118] loop2: detected capacity change from 0 to 512
[ 1624.470782][T11118] EXT4-fs: Ignoring removed bh option
[ 1624.477942][T11118] EXT4-fs: Mount option(s) incompatible with ext3
[ 1624.518275][T11121] loop3: detected capacity change from 0 to 512
[ 1624.552869][T11121] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1624.559342][T11121] EXT4-fs: Ignoring removed bh option
[ 1624.666502][T11038] hsr_slave_0: entered promiscuous mode
[ 1624.671751][T11121] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1624.675865][T11038] hsr_slave_1: entered promiscuous mode
[ 1624.694955][T11038] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1624.720998][T11121] EXT4-fs (loop3): 1 truncate cleaned up
[ 1624.726544][T11126] netlink: 48 bytes leftover after parsing attributes in process `syz.0.26898'.
[ 1624.742124][T11121] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1624.775284][T11038] Cannot create hsr debugfs directory
[ 1624.839140][ T4665] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1624.844409][ T8423] bridge_slave_1: left allmulticast mode
[ 1624.853800][ T8423] bridge_slave_1: left promiscuous mode
[ 1624.859459][ T8423] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1624.876663][   T29] audit: type=1326 audit(1750821898.931:52133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11128 comm="syz.1.26899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33504ce929 code=0x7ffc0000
[ 1624.900471][   T29] audit: type=1326 audit(1750821898.931:52134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11128 comm="syz.1.26899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=92 compat=0 ip=0x7f33504ce929 code=0x7ffc0000
[ 1624.924056][   T29] audit: type=1326 audit(1750821898.931:52135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11128 comm="syz.1.26899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33504ce929 code=0x7ffc0000
[ 1624.975737][ T8423] bridge_slave_0: left promiscuous mode
[ 1624.981733][ T8423] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1625.046969][T11136] 9pnet_fd: Insufficient options for proto=fd
[ 1625.102975][ T8423] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1625.112757][ T8423] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1625.131135][ T8423] bond0 (unregistering): Released all slaves
[ 1625.174400][ T8423] IPVS: stopping backup sync thread 2758 ...
[ 1625.201947][T11126] loop0: detected capacity change from 0 to 512
[ 1625.211846][T11126] EXT4-fs: Ignoring removed bh option
[ 1625.231518][T11126] EXT4-fs: Mount option(s) incompatible with ext3
[ 1625.233190][T11139] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.26902'.
[ 1625.268742][ T8423] hsr_slave_0: left promiscuous mode
[ 1625.280758][ T8423] hsr_slave_1: left promiscuous mode
[ 1625.287123][ T8423] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1625.294856][ T8423] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1625.304999][ T8423] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1625.312450][ T8423] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1625.328424][ T8423] veth1_macvtap: left promiscuous mode
[ 1625.340852][ T8423] veth0_macvtap: left promiscuous mode
[ 1625.354315][ T8423] veth1_vlan: left promiscuous mode
[ 1625.359626][ T8423] veth0_vlan: left promiscuous mode
[ 1625.435488][ T8423] team0 (unregistering): Port device team_slave_1 removed
[ 1625.445186][ T8423] team0 (unregistering): Port device team_slave_0 removed
[ 1625.661527][ T5796] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1625.767331][T11151] netlink: 44 bytes leftover after parsing attributes in process `syz.3.26906'.
[ 1625.909220][T11152] netlink: 4 bytes leftover after parsing attributes in process `syz.0.26905'.
[ 1626.055993][T11038] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1626.095517][T11158] netlink: 4 bytes leftover after parsing attributes in process `syz.1.26909'.
[ 1626.115398][T11038] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1626.126032][   T29] audit: type=1326 audit(1750821900.190:52136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="syz.2.26910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1626.149870][   T29] audit: type=1326 audit(1750821900.190:52137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11159 comm="syz.2.26910" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1626.181441][T11158] macvtap10: entered promiscuous mode
[ 1626.186866][T11158] bond0: entered promiscuous mode
[ 1626.192076][T11158] macvtap10: entered allmulticast mode
[ 1626.197552][T11158] bond0: entered allmulticast mode
[ 1626.203635][T11158] 8021q: adding VLAN 0 to HW filter on device macvtap10
[ 1626.219808][T11038] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1626.228618][T11038] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1626.343735][T11038] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1626.355966][T11038] 8021q: adding VLAN 0 to HW filter on device team0
[ 1626.364758][ T8442] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1626.371832][ T8442] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1626.384907][ T8437] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1626.392152][ T8437] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1626.450430][T11038] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1626.501861][T11181] loop1: detected capacity change from 0 to 512
[ 1626.508998][T11181] EXT4-fs: Ignoring removed bh option
[ 1626.514758][T11181] EXT4-fs: Mount option(s) incompatible with ext3
[ 1626.648156][T11038] veth0_vlan: entered promiscuous mode
[ 1626.664547][T11038] veth1_vlan: entered promiscuous mode
[ 1626.681420][T11038] veth0_macvtap: entered promiscuous mode
[ 1626.688915][T11038] veth1_macvtap: entered promiscuous mode
[ 1626.708370][T11038] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1626.720132][T11038] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1626.742196][T11038] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1626.751036][T11038] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1626.759792][T11038] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1626.768608][T11038] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1626.906650][T11217] __nla_validate_parse: 1 callbacks suppressed
[ 1626.906664][T11217] netlink: 48 bytes leftover after parsing attributes in process `syz.5.26922'.
[ 1627.167567][T11229] loop5: detected capacity change from 0 to 512
[ 1627.193682][T11229] EXT4-fs: Ignoring removed bh option
[ 1627.217123][T11229] EXT4-fs: Mount option(s) incompatible with ext3
[ 1627.347166][T11236] netlink: 4 bytes leftover after parsing attributes in process `syz.0.26925'.
[ 1627.708097][T11251] loop2: detected capacity change from 0 to 128
[ 1627.753677][T11259] 9pnet_fd: Insufficient options for proto=fd
[ 1627.863057][T11260] netlink: 4 bytes leftover after parsing attributes in process `syz.1.26934'.
[ 1628.069870][T11262] netlink: 48 bytes leftover after parsing attributes in process `syz.0.26941'.
[ 1628.137102][ T8437] bio_check_eod: 442 callbacks suppressed
[ 1628.137116][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1628.137116][ T8437] loop2: rw=1, sector=145, nr_sectors = 8 limit=128
[ 1628.194042][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1628.194042][ T8437] loop2: rw=1, sector=161, nr_sectors = 8 limit=128
[ 1628.236672][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1628.236672][ T8437] loop2: rw=1, sector=177, nr_sectors = 8 limit=128
[ 1628.263526][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1628.263526][ T8437] loop2: rw=1, sector=193, nr_sectors = 8 limit=128
[ 1628.277094][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1628.277094][ T8437] loop2: rw=1, sector=209, nr_sectors = 8 limit=128
[ 1628.290630][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1628.290630][ T8437] loop2: rw=1, sector=225, nr_sectors = 8 limit=128
[ 1628.304327][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1628.304327][ T8437] loop2: rw=1, sector=241, nr_sectors = 8 limit=128
[ 1628.317788][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1628.317788][ T8437] loop2: rw=1, sector=257, nr_sectors = 8 limit=128
[ 1628.331236][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1628.331236][ T8437] loop2: rw=1, sector=273, nr_sectors = 8 limit=128
[ 1628.345842][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1628.345842][ T8437] loop2: rw=1, sector=289, nr_sectors = 8 limit=128
[ 1628.362956][T11265] loop0: detected capacity change from 0 to 512
[ 1628.373903][T11265] EXT4-fs: Ignoring removed bh option
[ 1628.383990][T11265] EXT4-fs: Mount option(s) incompatible with ext3
[ 1628.414910][   T29] kauditd_printk_skb: 13 callbacks suppressed
[ 1628.414925][   T29] audit: type=1326 audit(1750821902.480:52151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11270 comm="syz.2.26943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1628.444748][   T29] audit: type=1326 audit(1750821902.480:52152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11270 comm="syz.2.26943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1628.489937][   T29] audit: type=1326 audit(1750821902.540:52153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11270 comm="syz.2.26943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1628.513920][   T29] audit: type=1326 audit(1750821902.540:52154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11270 comm="syz.2.26943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1628.538265][   T29] audit: type=1326 audit(1750821902.540:52155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11270 comm="syz.2.26943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1628.667941][   T29] audit: type=1326 audit(1750821902.730:52156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11280 comm="syz.2.26948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1628.691699][   T29] audit: type=1326 audit(1750821902.730:52157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11280 comm="syz.2.26948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1628.730664][   T29] audit: type=1326 audit(1750821902.780:52158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11280 comm="syz.2.26948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1628.754516][   T29] audit: type=1326 audit(1750821902.780:52159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11280 comm="syz.2.26948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1628.778240][   T29] audit: type=1326 audit(1750821902.780:52160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11280 comm="syz.2.26948" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1628.784477][T11294] netlink: 48 bytes leftover after parsing attributes in process `syz.3.26955'.
[ 1628.811630][T11287] netlink: 48 bytes leftover after parsing attributes in process `syz.2.26952'.
[ 1628.812067][T11295] 9pnet_fd: Insufficient options for proto=fd
[ 1628.958880][T11307] loop5: detected capacity change from 0 to 1024
[ 1629.023088][T11307] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1629.051099][T11307] ext4 filesystem being mounted at /6/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1629.075173][T11294] loop3: detected capacity change from 0 to 512
[ 1629.081703][T11294] EXT4-fs: Ignoring removed bh option
[ 1629.088304][T11294] EXT4-fs: Mount option(s) incompatible with ext3
[ 1629.095481][T11313] loop0: detected capacity change from 0 to 512
[ 1629.132783][T11038] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1629.143537][T11313] EXT4-fs (loop0): too many log groups per flexible block group
[ 1629.151300][T11313] EXT4-fs (loop0): failed to initialize mballoc (-12)
[ 1629.160371][T11313] EXT4-fs (loop0): mount failed
[ 1629.193693][T11313] loop0: detected capacity change from 0 to 512
[ 1629.210049][T11313] EXT4-fs (loop0): 1 orphan inode deleted
[ 1629.223204][T11313] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1629.252197][T11313] ext4 filesystem being mounted at /52/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1629.268709][T11313] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1629.278499][T11326] netlink: 4 bytes leftover after parsing attributes in process `syz.5.26963'.
[ 1629.288937][T11326] batadv0: entered promiscuous mode
[ 1629.294308][T11326] batadv0: entered allmulticast mode
[ 1629.409411][T11334] loop5: detected capacity change from 0 to 128
[ 1629.496924][T11336] netlink: 48 bytes leftover after parsing attributes in process `syz.5.26968'.
[ 1629.645816][T11342] loop0: detected capacity change from 0 to 512
[ 1629.654266][T11342] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1629.660730][T11342] EXT4-fs: Ignoring removed bh option
[ 1629.673738][T11342] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1629.691016][T11344] loop3: detected capacity change from 0 to 512
[ 1629.699431][T11344] EXT4-fs: Ignoring removed i_version option
[ 1629.706418][T11344] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1629.719645][T11342] EXT4-fs (loop0): 1 truncate cleaned up
[ 1629.726022][T11342] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1629.762079][T11348] netlink: 44 bytes leftover after parsing attributes in process `syz.2.26969'.
[ 1629.809041][T11340] loop5: detected capacity change from 0 to 512
[ 1629.834818][T11340] EXT4-fs: Ignoring removed bh option
[ 1629.843390][T11344] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1629.856531][T11340] EXT4-fs: Mount option(s) incompatible with ext3
[ 1629.864016][T11344] ext4 filesystem being mounted at /375/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1629.875587][T11344] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.26970: corrupted inode contents
[ 1629.888696][T11344] EXT4-fs (loop3): Remounting filesystem read-only
[ 1629.917363][ T5796] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1630.157398][T11355] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.26972'.
[ 1630.224813][T11357] loop1: detected capacity change from 0 to 1024
[ 1630.242910][T10611] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1630.253333][T11357] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1630.265565][T11357] ext4 filesystem being mounted at /433/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1630.285377][T11361] bond_slave_0: entered promiscuous mode
[ 1630.291112][T11361] bond_slave_1: entered promiscuous mode
[ 1630.296888][T11361] macvtap1: entered promiscuous mode
[ 1630.297951][ T4665] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1630.302212][T11361] bond0: entered promiscuous mode
[ 1630.302604][T11361] macvtap1: entered allmulticast mode
[ 1630.321594][T11361] bond0: entered allmulticast mode
[ 1630.326727][T11361] bond_slave_0: entered allmulticast mode
[ 1630.332627][T11361] bond_slave_1: entered allmulticast mode
[ 1630.339554][T11361] 8021q: adding VLAN 0 to HW filter on device macvtap1
[ 1630.403797][T11368] loop1: detected capacity change from 0 to 128
[ 1630.717526][T11389] loop1: detected capacity change from 0 to 1024
[ 1630.779713][T11389] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1630.791867][T11389] ext4 filesystem being mounted at /436/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1630.815201][T11397] loop5: detected capacity change from 0 to 1024
[ 1630.844210][T11397] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1630.876843][T11397] ext4 filesystem being mounted at /15/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1631.006221][T11038] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1631.165651][T11413] loop3: detected capacity change from 0 to 128
[ 1631.176978][T11402] loop2: detected capacity change from 0 to 512
[ 1631.185195][T11402] EXT4-fs: Ignoring removed bh option
[ 1631.190873][T11402] EXT4-fs: Mount option(s) incompatible with ext3
[ 1631.306656][T11416] loop5: detected capacity change from 0 to 512
[ 1631.324554][T11416] EXT4-fs: Ignoring removed bh option
[ 1631.333466][T11416] EXT4-fs: Mount option(s) incompatible with ext3
[ 1631.399168][ T8437] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:18: bg 0: block 393: padding at end of block bitmap is not set
[ 1631.436112][ T8437] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[ 1631.448824][ T8437] EXT4-fs (loop1): This should not happen!! Data will be lost
[ 1631.448824][ T8437] 
[ 1631.460371][T28316] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[ 1631.472911][T28316] EXT4-fs (loop1): This should not happen!! Data will be lost
[ 1631.472911][T28316] 
[ 1631.482574][T28316] EXT4-fs (loop1): Total free blocks count 0
[ 1631.488588][T28316] EXT4-fs (loop1): Free/Dirty block details
[ 1631.494555][T28316] EXT4-fs (loop1): free_blocks=0
[ 1631.499483][T28316] EXT4-fs (loop1): dirty_blocks=32
[ 1631.504684][T28316] EXT4-fs (loop1): Block reservation details
[ 1631.837543][T11443] loop1: detected capacity change from 0 to 512
[ 1631.844926][T11443] EXT4-fs: Ignoring removed bh option
[ 1631.850675][T11443] EXT4-fs: Mount option(s) incompatible with ext3
[ 1631.924681][T11450] __nla_validate_parse: 10 callbacks suppressed
[ 1631.924697][T11450] netlink: 44 bytes leftover after parsing attributes in process `syz.0.27003'.
[ 1632.151947][T11460] loop5: detected capacity change from 0 to 1024
[ 1632.181199][T11461] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.27008'.
[ 1632.315043][T11460] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1632.327493][T11460] ext4 filesystem being mounted at /18/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1632.462353][T11471] netlink: 48 bytes leftover after parsing attributes in process `syz.2.27012'.
[ 1632.483949][T11474] netlink: 48 bytes leftover after parsing attributes in process `syz.3.27014'.
[ 1632.753135][T11484] loop3: detected capacity change from 0 to 128
[ 1632.831938][ T8436] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm kworker/u8:17: bg 0: block 393: padding at end of block bitmap is not set
[ 1632.858142][ T8436] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[ 1632.870669][ T8436] EXT4-fs (loop5): This should not happen!! Data will be lost
[ 1632.870669][ T8436] 
[ 1632.883144][ T8436] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[ 1632.895700][ T8436] EXT4-fs (loop5): This should not happen!! Data will be lost
[ 1632.895700][ T8436] 
[ 1632.905353][ T8436] EXT4-fs (loop5): Total free blocks count 0
[ 1632.911368][ T8436] EXT4-fs (loop5): Free/Dirty block details
[ 1632.917303][ T8436] EXT4-fs (loop5): free_blocks=0
[ 1632.922256][ T8436] EXT4-fs (loop5): dirty_blocks=32
[ 1632.927367][ T8436] EXT4-fs (loop5): Block reservation details
[ 1633.124279][T11499] loop0: detected capacity change from 0 to 1024
[ 1633.141348][T11484] bio_check_eod: 7071 callbacks suppressed
[ 1633.141362][T11484] syz.3.27016: attempt to access beyond end of device
[ 1633.141362][T11484] loop3: rw=0, sector=185, nr_sectors = 8 limit=128
[ 1633.163328][T11489] syz.3.27016: attempt to access beyond end of device
[ 1633.163328][T11489] loop3: rw=0, sector=169, nr_sectors = 8 limit=128
[ 1633.177137][T11489] syz.3.27016: attempt to access beyond end of device
[ 1633.177137][T11489] loop3: rw=0, sector=169, nr_sectors = 8 limit=128
[ 1633.277762][T11501] netlink: 4 bytes leftover after parsing attributes in process `syz.5.27019'.
[ 1633.347947][T11484] syz.3.27016: attempt to access beyond end of device
[ 1633.347947][T11484] loop3: rw=0, sector=185, nr_sectors = 8 limit=128
[ 1633.363663][T11489] syz.3.27016: attempt to access beyond end of device
[ 1633.363663][T11489] loop3: rw=0, sector=169, nr_sectors = 8 limit=128
[ 1633.377277][T11484] syz.3.27016: attempt to access beyond end of device
[ 1633.377277][T11484] loop3: rw=0, sector=185, nr_sectors = 8 limit=128
[ 1633.423277][T11489] syz.3.27016: attempt to access beyond end of device
[ 1633.423277][T11489] loop3: rw=0, sector=169, nr_sectors = 8 limit=128
[ 1633.437470][T11484] syz.3.27016: attempt to access beyond end of device
[ 1633.437470][T11484] loop3: rw=0, sector=185, nr_sectors = 8 limit=128
[ 1633.452295][T11489] syz.3.27016: attempt to access beyond end of device
[ 1633.452295][T11489] loop3: rw=0, sector=169, nr_sectors = 8 limit=128
[ 1633.471834][T11484] syz.3.27016: attempt to access beyond end of device
[ 1633.471834][T11484] loop3: rw=0, sector=185, nr_sectors = 8 limit=128
[ 1633.504576][T11499] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1633.525530][T11504] loop2: detected capacity change from 0 to 128
[ 1633.640282][T11499] ext4 filesystem being mounted at /66/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1633.812626][T10611] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1633.828213][T11511] netlink: 48 bytes leftover after parsing attributes in process `syz.2.27025'.
[ 1634.023581][T11518] netlink: 4 bytes leftover after parsing attributes in process `syz.1.27023'.
[ 1634.771324][T11525] netlink: 44 bytes leftover after parsing attributes in process `syz.3.27027'.
[ 1634.866213][T11529] loop2: detected capacity change from 0 to 512
[ 1634.947600][T11530] loop1: detected capacity change from 0 to 1024
[ 1634.982463][T11529] EXT4-fs: Ignoring removed bh option
[ 1634.995083][T11529] EXT4-fs: Mount option(s) incompatible with ext3
[ 1635.035538][T11530] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1635.047792][T11530] ext4 filesystem being mounted at /443/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1635.067395][T11533] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.27030'.
[ 1635.084079][T11535] loop5: detected capacity change from 0 to 128
[ 1635.305569][   T29] kauditd_printk_skb: 52 callbacks suppressed
[ 1635.305584][   T29] audit: type=1326 audit(1750821909.370:52213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11538 comm="syz.3.27033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1635.335437][   T29] audit: type=1326 audit(1750821909.370:52214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11538 comm="syz.3.27033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1635.359346][   T29] audit: type=1326 audit(1750821909.370:52215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11538 comm="syz.3.27033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1635.383020][   T29] audit: type=1326 audit(1750821909.370:52216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11538 comm="syz.3.27033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1635.406757][   T29] audit: type=1326 audit(1750821909.370:52217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11538 comm="syz.3.27033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1635.444174][   T29] audit: type=1326 audit(1750821909.459:52218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11538 comm="syz.3.27033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1635.500486][T11546] loop0: detected capacity change from 0 to 128
[ 1635.627186][ T8423] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:3: bg 0: block 393: padding at end of block bitmap is not set
[ 1635.663076][ T8423] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[ 1635.675727][ T8423] EXT4-fs (loop1): This should not happen!! Data will be lost
[ 1635.675727][ T8423] 
[ 1635.685766][T11557] loop0: detected capacity change from 0 to 512
[ 1635.693641][ T8423] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[ 1635.706210][ T8423] EXT4-fs (loop1): This should not happen!! Data will be lost
[ 1635.706210][ T8423] 
[ 1635.715951][ T8423] EXT4-fs (loop1): Total free blocks count 0
[ 1635.722026][ T8423] EXT4-fs (loop1): Free/Dirty block details
[ 1635.727928][ T8423] EXT4-fs (loop1): free_blocks=0
[ 1635.732917][ T8423] EXT4-fs (loop1): dirty_blocks=32
[ 1635.738158][ T8423] EXT4-fs (loop1): Block reservation details
[ 1635.744924][T11557] EXT4-fs (loop0): 1 orphan inode deleted
[ 1635.751373][T11557] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1635.767882][T11557] ext4 filesystem being mounted at /74/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1635.786752][T10611] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1635.909991][T11570] loop3: detected capacity change from 0 to 128
[ 1635.923866][T11571] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.27045'.
[ 1636.060456][T11572] loop1: detected capacity change from 0 to 512
[ 1636.067307][T11572] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1636.073761][T11572] EXT4-fs: Ignoring removed bh option
[ 1636.129407][T11572] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1636.143033][T11572] EXT4-fs (loop1): 1 truncate cleaned up
[ 1636.149340][T11572] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1636.282302][T11579] loop0: detected capacity change from 0 to 128
[ 1636.546199][T11592] loop5: detected capacity change from 0 to 1024
[ 1636.574185][T11592] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1636.586427][T11592] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1636.629758][T11577] loop3: detected capacity change from 0 to 512
[ 1636.636734][T11577] EXT4-fs: Ignoring removed bh option
[ 1636.643711][T11577] EXT4-fs: Mount option(s) incompatible with ext3
[ 1636.734189][ T4665] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1636.917176][   T29] audit: type=1326 audit(1750821910.949:52219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11600 comm="syz.2.27056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1636.940921][   T29] audit: type=1326 audit(1750821910.949:52220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11600 comm="syz.2.27056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1636.964584][   T29] audit: type=1326 audit(1750821910.949:52221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11600 comm="syz.2.27056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1636.988268][   T29] audit: type=1326 audit(1750821910.949:52222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11600 comm="syz.2.27056" exe="/root/syz-executor" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1637.204070][ T8423] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm kworker/u8:3: bg 0: block 393: padding at end of block bitmap is not set
[ 1637.230809][ T8423] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[ 1637.243353][ T8423] EXT4-fs (loop5): This should not happen!! Data will be lost
[ 1637.243353][ T8423] 
[ 1637.263118][ T8423] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[ 1637.275698][ T8423] EXT4-fs (loop5): This should not happen!! Data will be lost
[ 1637.275698][ T8423] 
[ 1637.285371][ T8423] EXT4-fs (loop5): Total free blocks count 0
[ 1637.291352][ T8423] EXT4-fs (loop5): Free/Dirty block details
[ 1637.297286][ T8423] EXT4-fs (loop5): free_blocks=0
[ 1637.302274][ T8423] EXT4-fs (loop5): dirty_blocks=32
[ 1637.307421][ T8423] EXT4-fs (loop5): Block reservation details
[ 1637.444467][T11623] loop2: detected capacity change from 0 to 128
[ 1637.446913][T11624] __nla_validate_parse: 2 callbacks suppressed
[ 1637.446927][T11624] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.27060'.
[ 1638.248391][T11629] netlink: 4 bytes leftover after parsing attributes in process `syz.2.27063'.
[ 1638.311328][T11633] loop5: detected capacity change from 0 to 128
[ 1638.379717][T11633] bio_check_eod: 12387 callbacks suppressed
[ 1638.379732][T11633] syz.5.27065: attempt to access beyond end of device
[ 1638.379732][T11633] loop5: rw=2049, sector=153, nr_sectors = 8 limit=128
[ 1638.443393][T11633] syz.5.27065: attempt to access beyond end of device
[ 1638.443393][T11633] loop5: rw=2049, sector=169, nr_sectors = 8 limit=128
[ 1638.459873][T11633] syz.5.27065: attempt to access beyond end of device
[ 1638.459873][T11633] loop5: rw=2049, sector=185, nr_sectors = 8 limit=128
[ 1638.476169][T11633] syz.5.27065: attempt to access beyond end of device
[ 1638.476169][T11633] loop5: rw=2049, sector=201, nr_sectors = 8 limit=128
[ 1638.491464][T11633] syz.5.27065: attempt to access beyond end of device
[ 1638.491464][T11633] loop5: rw=2049, sector=217, nr_sectors = 8 limit=128
[ 1638.505351][T11633] syz.5.27065: attempt to access beyond end of device
[ 1638.505351][T11633] loop5: rw=2049, sector=233, nr_sectors = 8 limit=128
[ 1638.519429][T11633] syz.5.27065: attempt to access beyond end of device
[ 1638.519429][T11633] loop5: rw=2049, sector=249, nr_sectors = 8 limit=128
[ 1638.523750][T11640] netlink: 48 bytes leftover after parsing attributes in process `syz.2.27068'.
[ 1638.533506][T11633] syz.5.27065: attempt to access beyond end of device
[ 1638.533506][T11633] loop5: rw=2049, sector=265, nr_sectors = 8 limit=128
[ 1638.555915][T11633] syz.5.27065: attempt to access beyond end of device
[ 1638.555915][T11633] loop5: rw=2049, sector=281, nr_sectors = 8 limit=128
[ 1638.569641][T11633] syz.5.27065: attempt to access beyond end of device
[ 1638.569641][T11633] loop5: rw=2049, sector=297, nr_sectors = 8 limit=128
[ 1638.647166][T11644] netlink: 48 bytes leftover after parsing attributes in process `syz.5.27069'.
[ 1638.882957][T11649] netlink: 4 bytes leftover after parsing attributes in process `syz.1.27067'.
[ 1638.935712][T11648] loop2: detected capacity change from 0 to 512
[ 1639.037304][T11648] EXT4-fs: Ignoring removed bh option
[ 1639.100590][T11648] EXT4-fs: Mount option(s) incompatible with ext3
[ 1639.132779][T11652] loop5: detected capacity change from 0 to 512
[ 1639.139295][T11652] EXT4-fs: Ignoring removed bh option
[ 1639.151862][T11652] EXT4-fs: Mount option(s) incompatible with ext3
[ 1639.355189][T11660] netlink: 48 bytes leftover after parsing attributes in process `syz.2.27074'.
[ 1639.743716][T11665] loop1: detected capacity change from 0 to 1024
[ 1639.925894][T11665] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1639.952475][T11665] ext4 filesystem being mounted at /451/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1639.963068][T11677] loop5: detected capacity change from 0 to 512
[ 1640.018339][T11677] EXT4-fs (loop5): 1 orphan inode deleted
[ 1640.028826][T11677] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1640.042200][T11677] ext4 filesystem being mounted at /28/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1640.054276][T11677] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1640.124988][T11688] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.27077'.
[ 1640.141529][T11689] netlink: 44 bytes leftover after parsing attributes in process `syz.0.27081'.
[ 1640.332450][ T8423] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:3: bg 0: block 393: padding at end of block bitmap is not set
[ 1640.349887][ T8423] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[ 1640.362411][ T8423] EXT4-fs (loop1): This should not happen!! Data will be lost
[ 1640.362411][ T8423] 
[ 1640.382130][ T8437] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[ 1640.394711][ T8437] EXT4-fs (loop1): This should not happen!! Data will be lost
[ 1640.394711][ T8437] 
[ 1640.404365][ T8437] EXT4-fs (loop1): Total free blocks count 0
[ 1640.410339][ T8437] EXT4-fs (loop1): Free/Dirty block details
[ 1640.416239][ T8437] EXT4-fs (loop1): free_blocks=0
[ 1640.421177][ T8437] EXT4-fs (loop1): dirty_blocks=32
[ 1640.426295][ T8437] EXT4-fs (loop1): Block reservation details
[ 1640.485079][T11694] loop5: detected capacity change from 0 to 512
[ 1640.491671][T11694] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1640.498180][T11694] EXT4-fs: Ignoring removed bh option
[ 1640.504265][T11694] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1640.525772][T11694] EXT4-fs (loop5): 1 truncate cleaned up
[ 1640.531970][T11694] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1640.669324][T11710] netlink: 44 bytes leftover after parsing attributes in process `syz.3.27085'.
[ 1640.727699][T11717] loop1: detected capacity change from 0 to 512
[ 1640.753344][T11717] EXT4-fs (loop1): too many log groups per flexible block group
[ 1640.761102][T11717] EXT4-fs (loop1): failed to initialize mballoc (-12)
[ 1640.768004][T11717] EXT4-fs (loop1): mount failed
[ 1641.158293][T11038] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1641.237999][T11734] netlink: 4 bytes leftover after parsing attributes in process `syz.0.27099'.
[ 1641.289133][   T29] kauditd_printk_skb: 19 callbacks suppressed
[ 1641.289149][   T29] audit: type=1400 audit(1750821915.359:52242): avc:  denied  { ioctl } for  pid=11733 comm="syz.0.27099" path="socket:[254145]" dev="sockfs" ino=254145 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1641.305326][T11737] netdevsim netdevsim0: Direct firmware load for ..€ failed with error -2
[ 1641.320360][   T29] audit: type=1400 audit(1750821915.359:52243): avc:  denied  { getopt } for  pid=11733 comm="syz.0.27099" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[ 1641.441860][T11740] loop5: detected capacity change from 0 to 512
[ 1641.448514][T11740] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1641.455099][T11740] EXT4-fs: Ignoring removed bh option
[ 1641.524068][T11740] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1641.624150][T11754] loop3: detected capacity change from 0 to 128
[ 1641.698286][T11740] EXT4-fs (loop5): 1 truncate cleaned up
[ 1641.713852][T11740] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1641.859369][   T29] audit: type=1326 audit(1750821915.929:52244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11762 comm="syz.3.27107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1641.883350][   T29] audit: type=1326 audit(1750821915.929:52245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11762 comm="syz.3.27107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1641.907043][   T29] audit: type=1326 audit(1750821915.929:52246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11762 comm="syz.3.27107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1641.930734][   T29] audit: type=1326 audit(1750821915.929:52247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11762 comm="syz.3.27107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1641.954475][   T29] audit: type=1326 audit(1750821915.929:52248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11762 comm="syz.3.27107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1641.978055][   T29] audit: type=1326 audit(1750821915.929:52249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11762 comm="syz.3.27107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1642.001748][   T29] audit: type=1326 audit(1750821915.959:52250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11762 comm="syz.3.27107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1642.033552][T11752] loop2: detected capacity change from 0 to 512
[ 1642.040179][T11752] EXT4-fs: Ignoring removed bh option
[ 1642.052516][T11752] EXT4-fs: Mount option(s) incompatible with ext3
[ 1642.082923][T11038] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1642.183246][   T29] audit: type=1400 audit(1750821916.239:52251): avc:  denied  { ioctl } for  pid=11764 comm="syz.1.27108" path="socket:[254264]" dev="sockfs" ino=254264 ioctlcmd=0xf513 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1
[ 1642.650988][T11779] __nla_validate_parse: 3 callbacks suppressed
[ 1642.651141][T11779] netlink: 44 bytes leftover after parsing attributes in process `syz.3.27111'.
[ 1642.720170][T11785] netlink: 48 bytes leftover after parsing attributes in process `syz.2.27116'.
[ 1643.106424][T11795] loop0: detected capacity change from 0 to 512
[ 1643.113142][T11795] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1643.119633][T11795] EXT4-fs: Ignoring removed bh option
[ 1643.125485][T11795] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1643.197606][T11795] EXT4-fs (loop0): 1 truncate cleaned up
[ 1643.203731][T11795] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1643.268905][T11811] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1643.276144][T11811] IPv6: NLM_F_CREATE should be set when creating new route
[ 1643.561335][T11822] loop5: detected capacity change from 0 to 512
[ 1643.584101][T10611] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1643.593466][T11822] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1643.600007][T11822] EXT4-fs: Ignoring removed bh option
[ 1643.611150][T11822] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1643.646936][T11822] EXT4-fs (loop5): 1 truncate cleaned up
[ 1643.654654][T11822] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1643.954499][T11844] netlink: 4 bytes leftover after parsing attributes in process `syz.0.27132'.
[ 1644.539561][T11849] netlink: 44 bytes leftover after parsing attributes in process `syz.2.27140'.
[ 1644.775211][T11857] FAULT_INJECTION: forcing a failure.
[ 1644.775211][T11857] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1644.788415][T11857] CPU: 0 UID: 0 PID: 11857 Comm: syz.3.27143 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(voluntary) 
[ 1644.788440][T11857] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1644.788452][T11857] Call Trace:
[ 1644.788458][T11857]  <TASK>
[ 1644.788465][T11857]  __dump_stack+0x1d/0x30
[ 1644.788524][T11857]  dump_stack_lvl+0xe8/0x140
[ 1644.788541][T11857]  dump_stack+0x15/0x1b
[ 1644.788555][T11857]  should_fail_ex+0x265/0x280
[ 1644.788581][T11857]  should_fail+0xb/0x20
[ 1644.788626][T11857]  should_fail_usercopy+0x1a/0x20
[ 1644.788652][T11857]  _copy_from_user+0x1c/0xb0
[ 1644.788670][T11857]  ___sys_sendmsg+0xc1/0x1d0
[ 1644.788710][T11857]  __x64_sys_sendmsg+0xd4/0x160
[ 1644.788739][T11857]  x64_sys_call+0x2999/0x2fb0
[ 1644.788759][T11857]  do_syscall_64+0xd2/0x200
[ 1644.788775][T11857]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1644.788797][T11857]  ? clear_bhb_loop+0x40/0x90
[ 1644.788815][T11857]  ? clear_bhb_loop+0x40/0x90
[ 1644.788897][T11857]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1644.788918][T11857] RIP: 0033:0x7fd8d63ae929
[ 1644.788935][T11857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1644.788964][T11857] RSP: 002b:00007fd8d4a17038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1644.788981][T11857] RAX: ffffffffffffffda RBX: 00007fd8d65d5fa0 RCX: 00007fd8d63ae929
[ 1644.788991][T11857] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000004
[ 1644.789005][T11857] RBP: 00007fd8d4a17090 R08: 0000000000000000 R09: 0000000000000000
[ 1644.789047][T11857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1644.789061][T11857] R13: 0000000000000000 R14: 00007fd8d65d5fa0 R15: 00007fffadbc68d8
[ 1644.789076][T11857]  </TASK>
[ 1644.970578][T11038] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1645.019533][T11859] loop3: detected capacity change from 0 to 512
[ 1645.168531][T11869] netlink: 44 bytes leftover after parsing attributes in process `syz.2.27149'.
[ 1645.418792][T11891] FAULT_INJECTION: forcing a failure.
[ 1645.418792][T11891] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1645.432049][T11891] CPU: 0 UID: 0 PID: 11891 Comm: syz.0.27156 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(voluntary) 
[ 1645.432079][T11891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1645.432172][T11891] Call Trace:
[ 1645.432179][T11891]  <TASK>
[ 1645.432187][T11891]  __dump_stack+0x1d/0x30
[ 1645.432247][T11891]  dump_stack_lvl+0xe8/0x140
[ 1645.432268][T11891]  dump_stack+0x15/0x1b
[ 1645.432285][T11891]  should_fail_ex+0x265/0x280
[ 1645.432356][T11891]  should_fail+0xb/0x20
[ 1645.432379][T11891]  should_fail_usercopy+0x1a/0x20
[ 1645.432409][T11891]  _copy_from_user+0x1c/0xb0
[ 1645.432432][T11891]  ___sys_sendmsg+0xc1/0x1d0
[ 1645.432525][T11891]  __x64_sys_sendmsg+0xd4/0x160
[ 1645.432558][T11891]  x64_sys_call+0x2999/0x2fb0
[ 1645.432581][T11891]  do_syscall_64+0xd2/0x200
[ 1645.432600][T11891]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1645.432632][T11891]  ? clear_bhb_loop+0x40/0x90
[ 1645.432679][T11891]  ? clear_bhb_loop+0x40/0x90
[ 1645.432697][T11891]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1645.432718][T11891] RIP: 0033:0x7f1eb6e2e929
[ 1645.432735][T11891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1645.432755][T11891] RSP: 002b:00007f1eb5497038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1645.432806][T11891] RAX: ffffffffffffffda RBX: 00007f1eb7055fa0 RCX: 00007f1eb6e2e929
[ 1645.432820][T11891] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003
[ 1645.432833][T11891] RBP: 00007f1eb5497090 R08: 0000000000000000 R09: 0000000000000000
[ 1645.432845][T11891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1645.432858][T11891] R13: 0000000000000000 R14: 00007f1eb7055fa0 R15: 00007ffdfefe67d8
[ 1645.432876][T11891]  </TASK>
[ 1645.970203][T11903] 9pnet_fd: Insufficient options for proto=fd
[ 1646.040175][T11904] loop3: detected capacity change from 0 to 1024
[ 1646.094913][T11906] FAULT_INJECTION: forcing a failure.
[ 1646.094913][T11906] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1646.108053][T11906] CPU: 1 UID: 0 PID: 11906 Comm: syz.2.27161 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(voluntary) 
[ 1646.108120][T11906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1646.108134][T11906] Call Trace:
[ 1646.108142][T11906]  <TASK>
[ 1646.108151][T11906]  __dump_stack+0x1d/0x30
[ 1646.108173][T11906]  dump_stack_lvl+0xe8/0x140
[ 1646.108190][T11906]  dump_stack+0x15/0x1b
[ 1646.108204][T11906]  should_fail_ex+0x265/0x280
[ 1646.108294][T11906]  should_fail+0xb/0x20
[ 1646.108318][T11906]  should_fail_usercopy+0x1a/0x20
[ 1646.108353][T11906]  _copy_to_user+0x20/0xa0
[ 1646.108438][T11906]  simple_read_from_buffer+0xb5/0x130
[ 1646.108473][T11906]  proc_fail_nth_read+0x100/0x140
[ 1646.108503][T11906]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1646.108531][T11906]  vfs_read+0x19d/0x6f0
[ 1646.108601][T11906]  ? __rcu_read_unlock+0x4f/0x70
[ 1646.108619][T11906]  ? __fget_files+0x184/0x1c0
[ 1646.108667][T11906]  ksys_read+0xda/0x1a0
[ 1646.108700][T11906]  __x64_sys_read+0x40/0x50
[ 1646.108740][T11906]  x64_sys_call+0x2d77/0x2fb0
[ 1646.108759][T11906]  do_syscall_64+0xd2/0x200
[ 1646.108777][T11906]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1646.108812][T11906]  ? clear_bhb_loop+0x40/0x90
[ 1646.108835][T11906]  ? clear_bhb_loop+0x40/0x90
[ 1646.108897][T11906]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1646.108920][T11906] RIP: 0033:0x7fbccd31d33c
[ 1646.108937][T11906] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[ 1646.108954][T11906] RSP: 002b:00007fbccb987030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1646.109007][T11906] RAX: ffffffffffffffda RBX: 00007fbccd545fa0 RCX: 00007fbccd31d33c
[ 1646.109019][T11906] RDX: 000000000000000f RSI: 00007fbccb9870a0 RDI: 0000000000000004
[ 1646.109033][T11906] RBP: 00007fbccb987090 R08: 0000000000000000 R09: 0000000000000000
[ 1646.109081][T11906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1646.109094][T11906] R13: 0000000000000000 R14: 00007fbccd545fa0 R15: 00007ffe62b1d268
[ 1646.109110][T11906]  </TASK>
[ 1646.359756][T11911] netlink: 44 bytes leftover after parsing attributes in process `syz.0.27162'.
[ 1646.388069][   T29] kauditd_printk_skb: 44 callbacks suppressed
[ 1646.388083][   T29] audit: type=1326 audit(1750821920.458:52296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11913 comm="syz.2.27164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1646.417897][   T29] audit: type=1326 audit(1750821920.458:52297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11913 comm="syz.2.27164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1646.421548][T11904] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1646.441620][   T29] audit: type=1326 audit(1750821920.458:52298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11913 comm="syz.2.27164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1646.453675][T11904] ext4 filesystem being mounted at /416/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1646.645708][   T29] audit: type=1326 audit(1750821920.718:52299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11927 comm="syz.1.27171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33504ce929 code=0x7ffc0000
[ 1646.669433][   T29] audit: type=1326 audit(1750821920.718:52300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11927 comm="syz.1.27171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33504ce929 code=0x7ffc0000
[ 1646.693129][   T29] audit: type=1326 audit(1750821920.718:52301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11927 comm="syz.1.27171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f33504ce929 code=0x7ffc0000
[ 1646.751508][ T8434] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:15: bg 0: block 393: padding at end of block bitmap is not set
[ 1646.766333][ T8434] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[ 1646.778883][ T8434] EXT4-fs (loop3): This should not happen!! Data will be lost
[ 1646.778883][ T8434] 
[ 1646.789346][ T8434] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[ 1646.801906][ T8434] EXT4-fs (loop3): This should not happen!! Data will be lost
[ 1646.801906][ T8434] 
[ 1646.811560][ T8434] EXT4-fs (loop3): Total free blocks count 0
[ 1646.817594][ T8434] EXT4-fs (loop3): Free/Dirty block details
[ 1646.823603][ T8434] EXT4-fs (loop3): free_blocks=0
[ 1646.828529][ T8434] EXT4-fs (loop3): dirty_blocks=32
[ 1646.833670][ T8434] EXT4-fs (loop3): Block reservation details
[ 1646.844671][T11931] loop5: detected capacity change from 0 to 1024
[ 1646.851317][T11931] EXT4-fs: Ignoring removed i_version option
[ 1646.858024][T11931] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[ 1646.869490][T11931] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.27172: Invalid block bitmap block 0 in block_group 0
[ 1646.883162][T11931] Quota error (device loop5): write_blk: dquota write failed
[ 1646.890561][T11931] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[ 1646.900507][T11931] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.27172: Failed to acquire dquot type 0
[ 1646.912926][T11931] EXT4-fs error (device loop5): ext4_free_blocks:6587: comm syz.5.27172: Freeing blocks not in datazone - block = 0, count = 4096
[ 1646.926789][T11931] EXT4-fs error (device loop5): ext4_read_inode_bitmap:139: comm syz.5.27172: Invalid inode bitmap blk 0 in block_group 0
[ 1646.939799][T11931] EXT4-fs error (device loop5) in ext4_free_inode:361: Corrupt filesystem
[ 1646.948716][T11931] EXT4-fs (loop5): 1 orphan inode deleted
[ 1646.954936][T11931] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1646.999567][ T8437] Quota error (device loop5): do_check_range: Getting block 0 out of range 1-8
[ 1647.008641][ T8437] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:18: Failed to release dquot type 0
[ 1647.155736][T11938] netlink: 4 bytes leftover after parsing attributes in process `syz.3.27173'.
[ 1647.387162][   T29] audit: type=1326 audit(1750821921.458:52302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11945 comm="syz.0.27177" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1eb6e2e929 code=0x7ffc0000
[ 1647.630770][T11956] netlink: 4 bytes leftover after parsing attributes in process `syz.0.27178'.
[ 1647.834843][T11038] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1648.188497][T11972] netlink: 16402 bytes leftover after parsing attributes in process `syz.5.27184'.
[ 1648.202187][T11974] FAULT_INJECTION: forcing a failure.
[ 1648.202187][T11974] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1648.215330][T11974] CPU: 0 UID: 0 PID: 11974 Comm: syz.3.27187 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(voluntary) 
[ 1648.215367][T11974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1648.215379][T11974] Call Trace:
[ 1648.215385][T11974]  <TASK>
[ 1648.215392][T11974]  __dump_stack+0x1d/0x30
[ 1648.215414][T11974]  dump_stack_lvl+0xe8/0x140
[ 1648.215435][T11974]  dump_stack+0x15/0x1b
[ 1648.215500][T11974]  should_fail_ex+0x265/0x280
[ 1648.215530][T11974]  should_fail+0xb/0x20
[ 1648.215559][T11974]  should_fail_usercopy+0x1a/0x20
[ 1648.215646][T11974]  _copy_from_user+0x1c/0xb0
[ 1648.215664][T11974]  ___sys_recvmsg+0xaa/0x370
[ 1648.215688][T11974]  ? _parse_integer+0x27/0x40
[ 1648.215724][T11974]  do_recvmmsg+0x1ef/0x540
[ 1648.215748][T11974]  ? fput+0x8f/0xc0
[ 1648.215768][T11974]  __x64_sys_recvmmsg+0xe5/0x170
[ 1648.215859][T11974]  x64_sys_call+0x1c6a/0x2fb0
[ 1648.215877][T11974]  do_syscall_64+0xd2/0x200
[ 1648.215893][T11974]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1648.215919][T11974]  ? clear_bhb_loop+0x40/0x90
[ 1648.215992][T11974]  ? clear_bhb_loop+0x40/0x90
[ 1648.216012][T11974]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1648.216047][T11974] RIP: 0033:0x7fd8d63ae929
[ 1648.216061][T11974] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1648.216080][T11974] RSP: 002b:00007fd8d4a17038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 1648.216221][T11974] RAX: ffffffffffffffda RBX: 00007fd8d65d5fa0 RCX: 00007fd8d63ae929
[ 1648.216232][T11974] RDX: 0000000000000001 RSI: 0000200000002480 RDI: 0000000000000003
[ 1648.216244][T11974] RBP: 00007fd8d4a17090 R08: 0000000000000000 R09: 0000000000000000
[ 1648.216257][T11974] R10: 0000000040002003 R11: 0000000000000246 R12: 0000000000000001
[ 1648.216271][T11974] R13: 0000000000000000 R14: 00007fd8d65d5fa0 R15: 00007fffadbc68d8
[ 1648.216290][T11974]  </TASK>
[ 1648.492973][T11980] netlink: 48 bytes leftover after parsing attributes in process `syz.3.27190'.
[ 1648.709358][T11989] 9pnet_fd: Insufficient options for proto=fd
[ 1648.766533][T11994] loop3: detected capacity change from 0 to 512
[ 1648.773173][T11994] EXT4-fs: Ignoring removed bh option
[ 1648.778676][T11995] netlink: 48 bytes leftover after parsing attributes in process `syz.2.27196'.
[ 1648.807516][T11994] EXT4-fs: Mount option(s) incompatible with ext3
[ 1648.826299][T11998] netlink: 44 bytes leftover after parsing attributes in process `syz.5.27197'.
[ 1648.888809][T12002] netlink: 48 bytes leftover after parsing attributes in process `syz.5.27198'.
[ 1649.027236][T11999] loop2: detected capacity change from 0 to 512
[ 1649.055593][T11999] EXT4-fs: Ignoring removed bh option
[ 1649.064968][T11999] EXT4-fs: Mount option(s) incompatible with ext3
[ 1649.162420][T12002] loop5: detected capacity change from 0 to 512
[ 1649.169471][T12002] EXT4-fs: Ignoring removed bh option
[ 1649.175265][T12002] EXT4-fs: Mount option(s) incompatible with ext3
[ 1649.491810][T12020] netlink: 16 bytes leftover after parsing attributes in process `syz.3.27204'.
[ 1649.491832][T12019] netlink: 16 bytes leftover after parsing attributes in process `syz.3.27204'.
[ 1649.545575][T12025] 9pnet_fd: Insufficient options for proto=fd
[ 1649.625700][T12031] netlink: 44 bytes leftover after parsing attributes in process `syz.1.27208'.
[ 1649.686904][T12034] loop3: detected capacity change from 0 to 128
[ 1649.746670][T12036] loop1: detected capacity change from 0 to 128
[ 1649.783981][T12038] netlink: 48 bytes leftover after parsing attributes in process `syz.5.27212'.
[ 1649.804681][T12040] netlink: 48 bytes leftover after parsing attributes in process `syz.2.27211'.
[ 1650.023130][T12041] bio_check_eod: 210 callbacks suppressed
[ 1650.023145][T12041] syz.1.27210: attempt to access beyond end of device
[ 1650.023145][T12041] loop1: rw=2049, sector=153, nr_sectors = 8 limit=128
[ 1650.042982][ T8434] kworker/u8:15: attempt to access beyond end of device
[ 1650.042982][ T8434] loop3: rw=1, sector=145, nr_sectors = 8 limit=128
[ 1650.063014][ T8434] kworker/u8:15: attempt to access beyond end of device
[ 1650.063014][ T8434] loop3: rw=1, sector=161, nr_sectors = 8 limit=128
[ 1650.074849][T12041] syz.1.27210: attempt to access beyond end of device
[ 1650.074849][T12041] loop1: rw=2049, sector=169, nr_sectors = 8 limit=128
[ 1650.085362][ T8434] kworker/u8:15: attempt to access beyond end of device
[ 1650.085362][ T8434] loop3: rw=1, sector=177, nr_sectors = 8 limit=128
[ 1650.105984][ T8434] kworker/u8:15: attempt to access beyond end of device
[ 1650.105984][ T8434] loop3: rw=1, sector=193, nr_sectors = 8 limit=128
[ 1650.119513][ T8434] kworker/u8:15: attempt to access beyond end of device
[ 1650.119513][ T8434] loop3: rw=1, sector=209, nr_sectors = 8 limit=128
[ 1650.181035][T12041] syz.1.27210: attempt to access beyond end of device
[ 1650.181035][T12041] loop1: rw=2049, sector=185, nr_sectors = 8 limit=128
[ 1650.202266][T12043] loop2: detected capacity change from 0 to 512
[ 1650.226032][T12043] EXT4-fs: Ignoring removed bh option
[ 1650.227753][T12041] syz.1.27210: attempt to access beyond end of device
[ 1650.227753][T12041] loop1: rw=2049, sector=201, nr_sectors = 8 limit=128
[ 1650.238354][ T8434] kworker/u8:15: attempt to access beyond end of device
[ 1650.238354][ T8434] loop3: rw=1, sector=225, nr_sectors = 8 limit=128
[ 1650.258539][T12043] EXT4-fs: Mount option(s) incompatible with ext3
[ 1650.330556][T12047] loop5: detected capacity change from 0 to 512
[ 1650.347603][T12047] EXT4-fs: Ignoring removed bh option
[ 1650.385018][T12047] EXT4-fs: Mount option(s) incompatible with ext3
[ 1650.425139][T12051] loop3: detected capacity change from 0 to 128
[ 1650.667985][T12061] loop2: detected capacity change from 0 to 1024
[ 1650.699527][T12061] EXT4-fs: inline encryption not supported
[ 1650.727193][T12061] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1650.751655][T12061] ext4 filesystem being mounted at /415/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1651.006324][ T6805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1651.034865][T12076] 9pnet_fd: Insufficient options for proto=fd
[ 1651.309106][T12080] loop0: detected capacity change from 0 to 512
[ 1651.315831][T12080] EXT4-fs: Ignoring removed bh option
[ 1651.321690][T12080] EXT4-fs: Mount option(s) incompatible with ext3
[ 1651.329928][T12086] loop3: detected capacity change from 0 to 512
[ 1651.337194][T12086] EXT4-fs: Ignoring removed i_version option
[ 1651.343992][T12086] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1651.368110][T12086] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1651.433202][T12086] ext4 filesystem being mounted at /434/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1651.478086][T12091] FAULT_INJECTION: forcing a failure.
[ 1651.478086][T12091] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1651.491196][T12091] CPU: 1 UID: 0 PID: 12091 Comm: syz.5.27225 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(voluntary) 
[ 1651.491222][T12091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1651.491296][T12091] Call Trace:
[ 1651.491302][T12091]  <TASK>
[ 1651.491309][T12091]  __dump_stack+0x1d/0x30
[ 1651.491403][T12091]  dump_stack_lvl+0xe8/0x140
[ 1651.491423][T12091]  dump_stack+0x15/0x1b
[ 1651.491441][T12091]  should_fail_ex+0x265/0x280
[ 1651.491524][T12091]  should_fail+0xb/0x20
[ 1651.491551][T12091]  should_fail_usercopy+0x1a/0x20
[ 1651.491578][T12091]  _copy_from_user+0x1c/0xb0
[ 1651.491645][T12091]  __sys_bpf+0x178/0x790
[ 1651.491682][T12091]  __x64_sys_bpf+0x41/0x50
[ 1651.491706][T12091]  x64_sys_call+0x2478/0x2fb0
[ 1651.491792][T12091]  do_syscall_64+0xd2/0x200
[ 1651.491812][T12091]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1651.491901][T12091]  ? clear_bhb_loop+0x40/0x90
[ 1651.491924][T12091]  ? clear_bhb_loop+0x40/0x90
[ 1651.492000][T12091]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1651.492018][T12091] RIP: 0033:0x7f8a12d2e929
[ 1651.492032][T12091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1651.492051][T12091] RSP: 002b:00007f8a11397038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1651.492110][T12091] RAX: ffffffffffffffda RBX: 00007f8a12f55fa0 RCX: 00007f8a12d2e929
[ 1651.492121][T12091] RDX: 0000000000000050 RSI: 0000200000000000 RDI: 000000000000000a
[ 1651.492134][T12091] RBP: 00007f8a11397090 R08: 0000000000000000 R09: 0000000000000000
[ 1651.492148][T12091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1651.492161][T12091] R13: 0000000000000000 R14: 00007f8a12f55fa0 R15: 00007ffcfafda928
[ 1651.492181][T12091]  </TASK>
[ 1651.718456][T12086] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.27224: corrupted inode contents
[ 1651.736444][T12086] EXT4-fs (loop3): Remounting filesystem read-only
[ 1651.808679][ T5796] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1652.634068][T12111] loop3: detected capacity change from 0 to 512
[ 1652.640827][T12111] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1652.647308][T12111] EXT4-fs: Ignoring removed bh option
[ 1652.653522][T12111] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1652.684568][T12111] EXT4-fs (loop3): 1 truncate cleaned up
[ 1652.691342][T12111] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1653.066538][ T5796] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1653.085027][   T29] kauditd_printk_skb: 23 callbacks suppressed
[ 1653.085041][   T29] audit: type=1326 audit(1750821927.158:52326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.3.27235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1653.091305][T12119] loop0: detected capacity change from 0 to 512
[ 1653.121361][   T29] audit: type=1326 audit(1750821927.188:52327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.3.27235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1653.145156][   T29] audit: type=1326 audit(1750821927.188:52328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.3.27235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1653.147768][T12119] EXT4-fs: Ignoring removed bh option
[ 1653.177522][   T29] audit: type=1326 audit(1750821927.238:52329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.3.27235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1653.201265][   T29] audit: type=1326 audit(1750821927.238:52330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.3.27235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=107 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1653.224986][   T29] audit: type=1326 audit(1750821927.238:52331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.3.27235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1653.248636][   T29] audit: type=1326 audit(1750821927.238:52332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.3.27235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1653.272155][   T29] audit: type=1326 audit(1750821927.238:52333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.3.27235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1653.296037][   T29] audit: type=1326 audit(1750821927.238:52334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.3.27235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1653.319774][   T29] audit: type=1326 audit(1750821927.238:52335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12124 comm="syz.3.27235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1653.350542][T12119] EXT4-fs: Mount option(s) incompatible with ext3
[ 1653.379661][T12133] __nla_validate_parse: 4 callbacks suppressed
[ 1653.379678][T12133] netlink: 48 bytes leftover after parsing attributes in process `syz.3.27240'.
[ 1653.388522][T12135] netlink: 48 bytes leftover after parsing attributes in process `syz.2.27241'.
[ 1653.682900][T12143] netlink: 48 bytes leftover after parsing attributes in process `syz.5.27242'.
[ 1653.820443][T12151] netlink: 48 bytes leftover after parsing attributes in process `syz.3.27245'.
[ 1653.826421][T12152] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.27244'.
[ 1653.988320][T12166] xt_CT: No such helper "pptp"
[ 1654.131942][T12174] loop3: detected capacity change from 0 to 512
[ 1654.139561][T12174] EXT4-fs: Ignoring removed bh option
[ 1654.145294][T12174] EXT4-fs: Mount option(s) incompatible with ext3
[ 1654.383097][T12186] netlink: 48 bytes leftover after parsing attributes in process `syz.2.27257'.
[ 1654.457562][T12188] loop5: detected capacity change from 0 to 512
[ 1654.464284][T12188] EXT4-fs: Ignoring removed i_version option
[ 1654.571483][T12188] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1654.598834][T12188] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1654.611689][T12188] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1654.705258][T12193] loop2: detected capacity change from 0 to 512
[ 1654.716123][T12195] netlink: 48 bytes leftover after parsing attributes in process `syz.1.27259'.
[ 1654.717025][T12193] EXT4-fs: Ignoring removed bh option
[ 1654.734220][T12188] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm syz.5.27258: corrupted inode contents
[ 1654.814027][T12193] EXT4-fs: Mount option(s) incompatible with ext3
[ 1654.820654][T12188] EXT4-fs (loop5): Remounting filesystem read-only
[ 1654.850394][T11038] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1654.979213][T12206] netlink: 48 bytes leftover after parsing attributes in process `syz.0.27263'.
[ 1655.085620][T12210] loop3: detected capacity change from 0 to 512
[ 1655.092233][T12210] EXT4-fs: Ignoring removed i_version option
[ 1655.098813][T12210] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1655.107497][T12211] netlink: 16402 bytes leftover after parsing attributes in process `syz.5.27260'.
[ 1655.123523][T20410] page_pool_release_retry() stalled pool shutdown: id 606, 1 inflight 60 sec
[ 1655.145703][T12206] loop0: detected capacity change from 0 to 512
[ 1655.145978][T12210] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1655.152211][T12206] EXT4-fs: Ignoring removed bh option
[ 1655.164512][T12210] ext4 filesystem being mounted at /440/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1655.182887][T12206] EXT4-fs: Mount option(s) incompatible with ext3
[ 1655.197631][T12210] EXT4-fs error (device loop3): ext4_do_update_inode:5568: inode #2: comm syz.3.27264: corrupted inode contents
[ 1655.210928][T12210] EXT4-fs (loop3): Remounting filesystem read-only
[ 1655.232316][ T5796] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1655.265438][T12216] loop5: detected capacity change from 0 to 128
[ 1655.365849][T12223] loop2: detected capacity change from 0 to 1024
[ 1655.445346][ T8437] bio_check_eod: 32820 callbacks suppressed
[ 1655.445362][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1655.445362][ T8437] loop5: rw=1, sector=145, nr_sectors = 8 limit=128
[ 1655.477333][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1655.477333][ T8437] loop5: rw=1, sector=161, nr_sectors = 8 limit=128
[ 1655.490824][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1655.490824][ T8437] loop5: rw=1, sector=177, nr_sectors = 8 limit=128
[ 1655.505185][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1655.505185][ T8437] loop5: rw=1, sector=193, nr_sectors = 8 limit=128
[ 1655.518718][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1655.518718][ T8437] loop5: rw=1, sector=209, nr_sectors = 8 limit=128
[ 1655.533313][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1655.533313][ T8437] loop5: rw=1, sector=225, nr_sectors = 8 limit=128
[ 1655.548248][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1655.548248][ T8437] loop5: rw=1, sector=241, nr_sectors = 8 limit=128
[ 1655.557085][T12223] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1655.563381][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1655.563381][ T8437] loop5: rw=1, sector=257, nr_sectors = 8 limit=128
[ 1655.573648][T12223] ext4 filesystem being mounted at /430/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1655.588045][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1655.588045][ T8437] loop5: rw=1, sector=273, nr_sectors = 8 limit=128
[ 1655.643623][ T8437] kworker/u8:18: attempt to access beyond end of device
[ 1655.643623][ T8437] loop5: rw=1, sector=289, nr_sectors = 8 limit=128
[ 1655.673003][T12223] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.27269: bg 0: block 393: padding at end of block bitmap is not set
[ 1655.704601][T12223] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[ 1655.717399][T12223] EXT4-fs (loop2): This should not happen!! Data will be lost
[ 1655.717399][T12223] 
[ 1655.748335][T12240] program syz.0.27275 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1655.767035][T12243] loop1: detected capacity change from 0 to 512
[ 1655.775675][T12243] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 1655.891477][T12249] loop5: detected capacity change from 0 to 128
[ 1655.917026][T12243] EXT4-fs (loop1): 1 truncate cleaned up
[ 1655.933300][T12243] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1656.067139][T12251] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.27277'.
[ 1656.191978][ T6805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1656.613450][ T4665] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1656.627065][T12270] loop0: detected capacity change from 0 to 512
[ 1656.637082][T12270] EXT4-fs: Ignoring removed bh option
[ 1656.679832][T12283] loop1: detected capacity change from 0 to 512
[ 1656.693689][T12270] EXT4-fs: Mount option(s) incompatible with ext3
[ 1656.703358][T12283] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[ 1656.711549][T12283] EXT4-fs (loop1): orphan cleanup on readonly fs
[ 1656.718156][T12283] EXT4-fs error (device loop1): ext4_quota_enable:7124: inode #15: comm syz.1.27289: iget: bad i_size value: 360287970189639690
[ 1656.731663][T12283] EXT4-fs error (device loop1): ext4_quota_enable:7127: comm syz.1.27289: Bad quota inode: 15, type: 2
[ 1656.743174][T12283] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[ 1656.763515][T12283] EXT4-fs (loop1): Cannot turn on quotas: error -117
[ 1656.774602][T12283] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1656.800411][T12283] EXT4-fs error (device loop1): ext4_lookup:1787: comm syz.1.27289: inode #15: comm syz.1.27289: iget: illegal inode #
[ 1656.835419][T12283] EXT4-fs error (device loop1): ext4_lookup:1787: comm syz.1.27289: inode #15: comm syz.1.27289: iget: illegal inode #
[ 1656.923381][T12283] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 1656.956909][T12283] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[ 1656.979720][T12296] loop2: detected capacity change from 0 to 512
[ 1656.986407][T12296] EXT4-fs: Ignoring removed bh option
[ 1657.006475][T12283] EXT4-fs error (device loop1): ext4_quota_enable:7124: inode #15: comm syz.1.27289: iget: bad i_size value: 360287970189639690
[ 1657.007382][T12296] EXT4-fs: Mount option(s) incompatible with ext3
[ 1657.039457][T12283] EXT4-fs error (device loop1): ext4_quota_enable:7127: comm syz.1.27289: Bad quota inode: 15, type: 2
[ 1657.052717][T12302] FAULT_INJECTION: forcing a failure.
[ 1657.052717][T12302] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1657.065882][T12302] CPU: 0 UID: 0 PID: 12302 Comm: syz.5.27297 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(voluntary) 
[ 1657.065910][T12302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1657.065957][T12302] Call Trace:
[ 1657.065965][T12302]  <TASK>
[ 1657.065973][T12302]  __dump_stack+0x1d/0x30
[ 1657.065996][T12302]  dump_stack_lvl+0xe8/0x140
[ 1657.066014][T12302]  dump_stack+0x15/0x1b
[ 1657.066032][T12302]  should_fail_ex+0x265/0x280
[ 1657.066063][T12302]  should_fail+0xb/0x20
[ 1657.066138][T12302]  should_fail_usercopy+0x1a/0x20
[ 1657.066171][T12302]  _copy_from_user+0x1c/0xb0
[ 1657.066194][T12302]  ___sys_sendmsg+0xc1/0x1d0
[ 1657.066304][T12302]  __x64_sys_sendmsg+0xd4/0x160
[ 1657.066341][T12302]  x64_sys_call+0x2999/0x2fb0
[ 1657.066363][T12302]  do_syscall_64+0xd2/0x200
[ 1657.066383][T12302]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1657.066435][T12302]  ? clear_bhb_loop+0x40/0x90
[ 1657.066497][T12302]  ? clear_bhb_loop+0x40/0x90
[ 1657.066576][T12302]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1657.066599][T12302] RIP: 0033:0x7f8a12d2e929
[ 1657.066612][T12302] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1657.066627][T12302] RSP: 002b:00007f8a11397038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1657.066644][T12302] RAX: ffffffffffffffda RBX: 00007f8a12f55fa0 RCX: 00007f8a12d2e929
[ 1657.066726][T12302] RDX: 0000000004000084 RSI: 0000200000000000 RDI: 0000000000000003
[ 1657.066740][T12302] RBP: 00007f8a11397090 R08: 0000000000000000 R09: 0000000000000000
[ 1657.066753][T12302] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1657.066767][T12302] R13: 0000000000000000 R14: 00007f8a12f55fa0 R15: 00007ffcfafda928
[ 1657.066791][T12302]  </TASK>
[ 1657.068050][T12283] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix.
[ 1657.148129][T12292] loop0: detected capacity change from 0 to 512
[ 1657.267650][T12292] EXT4-fs: Ignoring removed bh option
[ 1657.273530][T12292] EXT4-fs: Mount option(s) incompatible with ext3
[ 1657.390839][T12312] loop5: detected capacity change from 0 to 1024
[ 1657.404937][T12312] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.27300: Failed to acquire dquot type 0
[ 1657.432684][T12312] EXT4-fs (loop5): 1 truncate cleaned up
[ 1657.460903][T12312] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1657.529383][ T4665] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1657.871894][T12329] loop0: detected capacity change from 0 to 512
[ 1657.918568][T12329] EXT4-fs: Ignoring removed bh option
[ 1657.947210][T12329] EXT4-fs: Mount option(s) incompatible with ext3
[ 1658.195960][T11038] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1658.305337][T12351] loop0: detected capacity change from 0 to 1024
[ 1658.316952][T12331] loop2: detected capacity change from 0 to 1024
[ 1658.327140][T12351] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1658.339271][T12351] ext4 filesystem being mounted at /130/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1658.447466][T12355] __nla_validate_parse: 6 callbacks suppressed
[ 1658.447559][T12355] netlink: 48 bytes leftover after parsing attributes in process `syz.5.27313'.
[ 1658.596244][T12331] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1658.625524][T12331] ext4 filesystem being mounted at /438/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1658.678324][T12356] loop5: detected capacity change from 0 to 512
[ 1658.687450][T12356] EXT4-fs: Ignoring removed bh option
[ 1658.719327][T12356] EXT4-fs: Mount option(s) incompatible with ext3
[ 1658.878925][T12366] FAULT_INJECTION: forcing a failure.
[ 1658.878925][T12366] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1658.892041][T12366] CPU: 1 UID: 0 PID: 12366 Comm: syz.3.27316 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(voluntary) 
[ 1658.892121][T12366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1658.892132][T12366] Call Trace:
[ 1658.892138][T12366]  <TASK>
[ 1658.892145][T12366]  __dump_stack+0x1d/0x30
[ 1658.892165][T12366]  dump_stack_lvl+0xe8/0x140
[ 1658.892187][T12366]  dump_stack+0x15/0x1b
[ 1658.892270][T12366]  should_fail_ex+0x265/0x280
[ 1658.892302][T12366]  should_fail+0xb/0x20
[ 1658.892341][T12366]  should_fail_usercopy+0x1a/0x20
[ 1658.892368][T12366]  _copy_from_user+0x1c/0xb0
[ 1658.892386][T12366]  ___sys_sendmsg+0xc1/0x1d0
[ 1658.892470][T12366]  __x64_sys_sendmsg+0xd4/0x160
[ 1658.892526][T12366]  x64_sys_call+0x2999/0x2fb0
[ 1658.892548][T12366]  do_syscall_64+0xd2/0x200
[ 1658.892641][T12366]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1658.892667][T12366]  ? clear_bhb_loop+0x40/0x90
[ 1658.892690][T12366]  ? clear_bhb_loop+0x40/0x90
[ 1658.892764][T12366]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1658.892783][T12366] RIP: 0033:0x7fd8d63ae929
[ 1658.892796][T12366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1658.892815][T12366] RSP: 002b:00007fd8d4a17038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1658.892835][T12366] RAX: ffffffffffffffda RBX: 00007fd8d65d5fa0 RCX: 00007fd8d63ae929
[ 1658.892926][T12366] RDX: 0000000000000000 RSI: 00002000000012c0 RDI: 0000000000000003
[ 1658.892940][T12366] RBP: 00007fd8d4a17090 R08: 0000000000000000 R09: 0000000000000000
[ 1658.892952][T12366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1658.892963][T12366] R13: 0000000000000000 R14: 00007fd8d65d5fa0 R15: 00007fffadbc68d8
[ 1658.892981][T12366]  </TASK>
[ 1659.149073][ T8434] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm kworker/u8:15: bg 0: block 393: padding at end of block bitmap is not set
[ 1659.173794][ T8434] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[ 1659.186312][ T8434] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1659.186312][ T8434] 
[ 1659.204282][ T8431] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[ 1659.216814][ T8431] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1659.216814][ T8431] 
[ 1659.226588][ T8431] EXT4-fs (loop0): Total free blocks count 0
[ 1659.232654][ T8431] EXT4-fs (loop0): Free/Dirty block details
[ 1659.238581][ T8431] EXT4-fs (loop0): free_blocks=0
[ 1659.243559][ T8431] EXT4-fs (loop0): dirty_blocks=32
[ 1659.248705][ T8431] EXT4-fs (loop0): Block reservation details
[ 1659.300789][T12375] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.27318'.
[ 1659.380229][T12378] netlink: 48 bytes leftover after parsing attributes in process `syz.3.27320'.
[ 1659.390187][ T8434] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm kworker/u8:15: bg 0: block 393: padding at end of block bitmap is not set
[ 1659.405314][ T8434] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[ 1659.417770][ T8434] EXT4-fs (loop2): This should not happen!! Data will be lost
[ 1659.417770][ T8434] 
[ 1659.427985][ T8434] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[ 1659.440562][ T8434] EXT4-fs (loop2): This should not happen!! Data will be lost
[ 1659.440562][ T8434] 
[ 1659.450208][ T8434] EXT4-fs (loop2): Total free blocks count 0
[ 1659.456198][ T8434] EXT4-fs (loop2): Free/Dirty block details
[ 1659.462075][ T8434] EXT4-fs (loop2): free_blocks=0
[ 1659.467032][ T8434] EXT4-fs (loop2): dirty_blocks=32
[ 1659.472184][ T8434] EXT4-fs (loop2): Block reservation details
[ 1659.543450][T12381] netlink: 4 bytes leftover after parsing attributes in process `syz.0.27319'.
[ 1659.762357][T12386] loop3: detected capacity change from 0 to 512
[ 1659.790182][T12386] EXT4-fs: Ignoring removed bh option
[ 1659.805709][T12386] EXT4-fs: Mount option(s) incompatible with ext3
[ 1660.149956][T12405] netlink: 44 bytes leftover after parsing attributes in process `syz.2.27328'.
[ 1660.303705][T12414] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.27330'.
[ 1660.403253][T12417] netlink: 44 bytes leftover after parsing attributes in process `syz.3.27333'.
[ 1660.415516][T12417] netlink: 48 bytes leftover after parsing attributes in process `syz.3.27333'.
[ 1660.516962][T12413] loop5: detected capacity change from 0 to 512
[ 1660.523575][T12413] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1660.530058][T12413] EXT4-fs: Ignoring removed bh option
[ 1660.535743][T12413] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1660.546954][T12413] EXT4-fs (loop5): 1 truncate cleaned up
[ 1660.553170][T12413] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1660.592381][T12428] loop3: detected capacity change from 0 to 128
[ 1660.612173][T11038] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1660.634678][T12432] loop5: detected capacity change from 0 to 512
[ 1660.641258][T12432] EXT4-fs: Ignoring removed i_version option
[ 1660.657489][T12432] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1660.707231][T12428] bio_check_eod: 215 callbacks suppressed
[ 1660.707247][T12428] syz.3.27337: attempt to access beyond end of device
[ 1660.707247][T12428] loop3: rw=2049, sector=153, nr_sectors = 8 limit=128
[ 1660.727642][T12428] syz.3.27337: attempt to access beyond end of device
[ 1660.727642][T12428] loop3: rw=2049, sector=169, nr_sectors = 8 limit=128
[ 1660.743003][T12428] syz.3.27337: attempt to access beyond end of device
[ 1660.743003][T12428] loop3: rw=2049, sector=185, nr_sectors = 8 limit=128
[ 1660.757574][T12428] syz.3.27337: attempt to access beyond end of device
[ 1660.757574][T12428] loop3: rw=2049, sector=201, nr_sectors = 8 limit=128
[ 1660.759985][T12432] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1660.771554][T12428] syz.3.27337: attempt to access beyond end of device
[ 1660.771554][T12428] loop3: rw=2049, sector=217, nr_sectors = 8 limit=128
[ 1660.783943][T12432] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1660.807903][T12428] syz.3.27337: attempt to access beyond end of device
[ 1660.807903][T12428] loop3: rw=2049, sector=233, nr_sectors = 8 limit=128
[ 1660.814001][T12432] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm syz.5.27339: corrupted inode contents
[ 1660.821630][T12428] syz.3.27337: attempt to access beyond end of device
[ 1660.821630][T12428] loop3: rw=2049, sector=249, nr_sectors = 8 limit=128
[ 1660.834451][T12432] EXT4-fs (loop5): Remounting filesystem read-only
[ 1660.846818][T12428] syz.3.27337: attempt to access beyond end of device
[ 1660.846818][T12428] loop3: rw=2049, sector=265, nr_sectors = 8 limit=128
[ 1660.867089][T12428] syz.3.27337: attempt to access beyond end of device
[ 1660.867089][T12428] loop3: rw=2049, sector=281, nr_sectors = 8 limit=128
[ 1660.880720][T12428] syz.3.27337: attempt to access beyond end of device
[ 1660.880720][T12428] loop3: rw=2049, sector=297, nr_sectors = 8 limit=128
[ 1660.957645][T12440] netlink: 4 bytes leftover after parsing attributes in process `syz.0.27340'.
[ 1661.072421][T11038] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1661.182494][T12447] netlink: 48 bytes leftover after parsing attributes in process `syz.1.27344'.
[ 1661.523692][T12463] loop1: detected capacity change from 0 to 512
[ 1661.535047][T12463] EXT4-fs: Ignoring removed bh option
[ 1661.541151][T12463] EXT4-fs: Mount option(s) incompatible with ext3
[ 1661.623403][T12453] loop5: detected capacity change from 0 to 512
[ 1661.630010][T12453] EXT4-fs: Ignoring removed bh option
[ 1661.637645][T12453] EXT4-fs: Mount option(s) incompatible with ext3
[ 1661.766509][T12471] loop3: detected capacity change from 0 to 512
[ 1661.773141][T12471] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1661.779715][T12471] EXT4-fs: Ignoring removed bh option
[ 1661.787656][T12471] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1661.801901][T12471] EXT4-fs (loop3): 1 truncate cleaned up
[ 1661.807948][T12471] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1661.875467][ T5796] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1661.935298][T12481] loop0: detected capacity change from 0 to 512
[ 1661.942089][T12481] EXT4-fs: Ignoring removed i_version option
[ 1661.948738][T12481] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1661.989168][T12481] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1662.003121][T12481] ext4 filesystem being mounted at /141/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1662.050539][T12481] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #2: comm syz.0.27355: corrupted inode contents
[ 1662.062553][   T29] kauditd_printk_skb: 36 callbacks suppressed
[ 1662.062568][   T29] audit: type=1326 audit(1750821936.107:52370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12493 comm="syz.3.27359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1662.092317][   T29] audit: type=1326 audit(1750821936.107:52371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12493 comm="syz.3.27359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1662.116004][   T29] audit: type=1326 audit(1750821936.117:52372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12493 comm="syz.3.27359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1662.139759][   T29] audit: type=1326 audit(1750821936.117:52373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12493 comm="syz.3.27359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1662.163423][   T29] audit: type=1326 audit(1750821936.117:52374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12493 comm="syz.3.27359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1662.187032][   T29] audit: type=1326 audit(1750821936.117:52375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12493 comm="syz.3.27359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8d63ae929 code=0x7ffc0000
[ 1662.193745][T12498] loop3: detected capacity change from 0 to 128
[ 1662.218929][T12481] EXT4-fs (loop0): Remounting filesystem read-only
[ 1662.239983][T10611] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1662.285025][T12502] loop2: detected capacity change from 0 to 512
[ 1662.293063][T12502] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1662.335523][T12502] EXT4-fs error (device loop2): ext4_quota_enable:7120: comm syz.2.27363: Bad quota inum: 29696, type: 1
[ 1662.346986][T12502] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=29696). Please run e2fsck to fix.
[ 1662.362519][T12502] EXT4-fs (loop2): mount failed
[ 1662.391164][T12514] loop1: detected capacity change from 0 to 512
[ 1662.397793][T12514] EXT4-fs: Ignoring removed bh option
[ 1662.403364][T12514] EXT4-fs: Mount option(s) incompatible with ext3
[ 1662.423919][T12502] 9pnet_fd: Insufficient options for proto=fd
[ 1662.435178][T12512] loop0: detected capacity change from 0 to 512
[ 1662.449734][T12512] EXT4-fs: Ignoring removed bh option
[ 1662.457156][T12512] EXT4-fs: Mount option(s) incompatible with ext3
[ 1662.569406][   T29] audit: type=1400 audit(1750821936.617:52376): avc:  denied  { write } for  pid=12501 comm="syz.2.27363" name="tcp6" dev="proc" ino=4026532662 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[ 1663.013023][   T29] audit: type=1326 audit(1750821937.077:52377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12531 comm="syz.2.27369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1663.036942][   T29] audit: type=1326 audit(1750821937.077:52378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12531 comm="syz.2.27369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1663.060998][   T29] audit: type=1326 audit(1750821937.077:52379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12531 comm="syz.2.27369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=92 compat=0 ip=0x7fbccd31e929 code=0x7ffc0000
[ 1663.539007][T12550] 9pnet_fd: Insufficient options for proto=fd
[ 1663.750021][T12562] loop1: detected capacity change from 0 to 512
[ 1663.756594][T12562] EXT4-fs: Ignoring removed bh option
[ 1663.762172][T12562] EXT4-fs: Mount option(s) incompatible with ext3
[ 1663.925675][T12570] loop0: detected capacity change from 0 to 1024
[ 1664.022785][T12573] loop5: detected capacity change from 0 to 512
[ 1664.029610][T12573] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1664.036135][T12573] EXT4-fs: Ignoring removed bh option
[ 1664.041981][T12573] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1664.053811][T12570] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1664.081328][T12573] EXT4-fs (loop5): 1 truncate cleaned up
[ 1664.087312][T12576] __nla_validate_parse: 11 callbacks suppressed
[ 1664.087328][T12576] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.27380'.
[ 1664.087391][T12573] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1664.094200][T12570] ext4 filesystem being mounted at /148/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1664.244591][T12570] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.27385: bg 0: block 393: padding at end of block bitmap is not set
[ 1664.261745][T12587] 9pnet_fd: Insufficient options for proto=fd
[ 1664.268199][T12588] netlink: 8 bytes leftover after parsing attributes in process `syz.3.27390'.
[ 1664.291222][T12570] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[ 1664.303876][T12570] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1664.303876][T12570] 
[ 1664.356856][T12594] loop2: detected capacity change from 0 to 128
[ 1664.382988][T10611] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1664.596226][T12607] netlink: 8 bytes leftover after parsing attributes in process `syz.0.27398'.
[ 1664.615900][T12607] netlink: 48 bytes leftover after parsing attributes in process `syz.0.27398'.
[ 1664.746902][T12602] netlink: 4 bytes leftover after parsing attributes in process `syz.2.27396'.
[ 1664.756968][T11038] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1664.777332][T12616] netlink: 48 bytes leftover after parsing attributes in process `syz.5.27400'.
[ 1664.794822][T12619] 9pnet_fd: Insufficient options for proto=fd
[ 1664.822801][T12621] loop3: detected capacity change from 0 to 1024
[ 1664.905270][T12621] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1664.924773][T12621] ext4 filesystem being mounted at /481/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1664.941575][T12630] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.27405'.
[ 1665.004390][T12622] loop5: detected capacity change from 0 to 512
[ 1665.019685][T12632] loop0: detected capacity change from 0 to 128
[ 1665.032536][T12622] EXT4-fs: Ignoring removed bh option
[ 1665.069118][T12622] EXT4-fs: Mount option(s) incompatible with ext3
[ 1665.082496][T12621] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.27404: bg 0: block 393: padding at end of block bitmap is not set
[ 1665.099287][T12621] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[ 1665.111991][T12621] EXT4-fs (loop3): This should not happen!! Data will be lost
[ 1665.111991][T12621] 
[ 1665.183705][ T5796] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1665.361702][T12652] netlink: 48 bytes leftover after parsing attributes in process `syz.2.27415'.
[ 1665.485418][T12646] loop3: detected capacity change from 0 to 512
[ 1665.491963][T12646] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1665.498417][T12646] EXT4-fs: Ignoring removed bh option
[ 1665.503994][T12646] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1665.515145][T12646] EXT4-fs (loop3): 1 truncate cleaned up
[ 1665.521205][T12646] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1665.582614][T12657] loop2: detected capacity change from 0 to 512
[ 1665.589299][T12657] EXT4-fs: Ignoring removed bh option
[ 1665.595142][T12657] EXT4-fs: Mount option(s) incompatible with ext3
[ 1665.636042][T12659] loop5: detected capacity change from 0 to 512
[ 1665.642892][T12659] EXT4-fs: Ignoring removed i_version option
[ 1665.649631][T12659] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1665.668294][T12659] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1665.683508][T12659] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1665.697427][T12659] EXT4-fs error (device loop5): ext4_do_update_inode:5568: inode #2: comm syz.5.27416: corrupted inode contents
[ 1665.709570][T12659] EXT4-fs (loop5): Remounting filesystem read-only
[ 1665.733553][T11038] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1665.751306][T12663] loop5: detected capacity change from 0 to 128
[ 1665.791020][T12667] netlink: 48 bytes leftover after parsing attributes in process `syz.5.27419'.
[ 1665.930037][T12673] netlink: 48 bytes leftover after parsing attributes in process `syz.0.27421'.
[ 1666.033054][T12667] loop5: detected capacity change from 0 to 512
[ 1666.039939][T12667] EXT4-fs: Ignoring removed bh option
[ 1666.045888][T12667] EXT4-fs: Mount option(s) incompatible with ext3
[ 1666.091951][T12673] loop0: detected capacity change from 0 to 512
[ 1666.099391][T12673] EXT4-fs: Ignoring removed bh option
[ 1666.109429][T12673] EXT4-fs: Mount option(s) incompatible with ext3
[ 1666.267236][ T5796] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1666.411774][T12690] loop2: detected capacity change from 0 to 512
[ 1666.419362][T12690] EXT4-fs: Ignoring removed i_version option
[ 1666.427210][T12690] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1666.457797][T12690] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1666.472532][T12690] ext4 filesystem being mounted at /460/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1666.505887][T12690] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.27427: corrupted inode contents
[ 1666.527860][T12690] EXT4-fs (loop2): Remounting filesystem read-only
[ 1666.556458][ T6805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1666.672960][T12709] loop5: detected capacity change from 0 to 1024
[ 1666.708120][T12709] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1666.730718][T12709] ext4 filesystem being mounted at /91/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1666.790634][T12714] loop0: detected capacity change from 0 to 512
[ 1666.823212][T12714] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1666.829833][T12714] EXT4-fs: Ignoring removed bh option
[ 1666.865531][T12714] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1666.876559][ T8434] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm kworker/u8:15: bg 0: block 393: padding at end of block bitmap is not set
[ 1666.934518][ T8434] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[ 1666.947267][ T8434] EXT4-fs (loop5): This should not happen!! Data will be lost
[ 1666.947267][ T8434] 
[ 1666.990614][T12718] loop2: detected capacity change from 0 to 512
[ 1667.008914][T12718] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1667.015428][T12718] EXT4-fs: Ignoring removed bh option
[ 1667.050092][T12718] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1667.103910][T12718] EXT4-fs (loop2): 1 truncate cleaned up
[ 1667.114181][T11038] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1667.138775][T12714] EXT4-fs (loop0): 1 truncate cleaned up
[ 1667.248300][T12718] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1667.324294][T12714] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1667.398876][T12728] sch_tbf: peakrate 2147483647 is lower than or equals to rate 2831599472947593698 !
[ 1667.438477][T12729] loop5: detected capacity change from 0 to 512
[ 1667.515511][T12729] EXT4-fs: Ignoring removed bh option
[ 1667.535012][T12729] EXT4-fs: Mount option(s) incompatible with ext3
[ 1667.703473][ T6805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1668.078921][T12744] SELinux:  policydb magic number 0x19 does not match expected magic number 0xf97cff8c
[ 1668.092414][T12744] SELinux: failed to load policy
[ 1668.195982][T12744] smc: net device bond0 applied user defined pnetid SYZ2
[ 1668.212440][T12744] smc: net device bond0 erased user defined pnetid SYZ2
[ 1668.229483][T10611] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1668.244919][   T29] kauditd_printk_skb: 10 callbacks suppressed
[ 1668.244934][   T29] audit: type=1400 audit(1750821942.306:52388): avc:  denied  { kexec_image_load } for  pid=12743 comm="syz.5.27443" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[ 1668.272860][T12755] 9pnet_fd: Insufficient options for proto=fd
[ 1668.575764][   T29] audit: type=1400 audit(1750821942.646:52389): avc:  denied  { execute_no_trans } for  pid=12766 comm="syz.5.27450" path="/96/file0" dev="tmpfs" ino=534 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[ 1668.600219][T12769] netlink: 'syz.5.27450': attribute type 10 has an invalid length.
[ 1668.614696][T12769] team0: entered promiscuous mode
[ 1668.619882][T12769] team_slave_0: entered promiscuous mode
[ 1668.625656][T12769] team_slave_1: entered promiscuous mode
[ 1668.632613][T12769] bridge0: port 3(team0) entered blocking state
[ 1668.639008][T12769] bridge0: port 3(team0) entered disabled state
[ 1668.646662][T12769] team0: entered allmulticast mode
[ 1668.651911][T12769] team_slave_0: entered allmulticast mode
[ 1668.658253][T12769] team_slave_1: entered allmulticast mode
[ 1668.667874][T12769] bridge0: port 3(team0) entered blocking state
[ 1668.674208][T12769] bridge0: port 3(team0) entered forwarding state
[ 1668.694086][T12773] loop1: detected capacity change from 0 to 1024
[ 1668.810244][T12773] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1668.822500][T12773] ext4 filesystem being mounted at /506/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1669.165485][T12789] __nla_validate_parse: 8 callbacks suppressed
[ 1669.165502][T12789] netlink: 48 bytes leftover after parsing attributes in process `syz.0.27456'.
[ 1669.183841][T12791] netlink: 48 bytes leftover after parsing attributes in process `syz.5.27457'.
[ 1669.243244][T12792] loop2: detected capacity change from 0 to 512
[ 1669.268118][T12792] EXT4-fs: Ignoring removed bh option
[ 1669.279103][T12792] EXT4-fs: Mount option(s) incompatible with ext3
[ 1669.304661][T12797] 9pnet_fd: Insufficient options for proto=fd
[ 1669.523286][ T8434] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:15: bg 0: block 393: padding at end of block bitmap is not set
[ 1669.542570][T12805] loop5: detected capacity change from 0 to 512
[ 1669.558386][ T8434] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[ 1669.570843][ T8434] EXT4-fs (loop1): This should not happen!! Data will be lost
[ 1669.570843][ T8434] 
[ 1669.581386][ T8442] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[ 1669.581632][T12805] EXT4-fs: Ignoring removed bh option
[ 1669.593862][ T8442] EXT4-fs (loop1): This should not happen!! Data will be lost
[ 1669.593862][ T8442] 
[ 1669.608996][ T8442] EXT4-fs (loop1): Total free blocks count 0
[ 1669.614990][ T8442] EXT4-fs (loop1): Free/Dirty block details
[ 1669.620963][ T8442] EXT4-fs (loop1): free_blocks=0
[ 1669.625938][ T8442] EXT4-fs (loop1): dirty_blocks=32
[ 1669.631169][ T8442] EXT4-fs (loop1): Block reservation details
[ 1669.641494][T12805] EXT4-fs: Mount option(s) incompatible with ext3
[ 1669.848448][T12815] loop0: detected capacity change from 0 to 1024
[ 1669.878513][T12815] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1669.890777][T12815] ext4 filesystem being mounted at /160/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1670.102795][T12824] netlink: 48 bytes leftover after parsing attributes in process `syz.2.27466'.
[ 1670.147075][ T8442] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm kworker/u8:23: bg 0: block 393: padding at end of block bitmap is not set
[ 1670.280929][ T8442] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[ 1670.293614][ T8442] EXT4-fs (loop0): This should not happen!! Data will be lost
[ 1670.293614][ T8442] 
[ 1670.314503][T10611] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1670.473850][T12833] loop2: detected capacity change from 0 to 512
[ 1670.510258][T12833] EXT4-fs: Ignoring removed bh option
[ 1670.516063][T12832] netlink: 4 bytes leftover after parsing attributes in process `syz.0.27467'.
[ 1670.516196][T12833] EXT4-fs: Mount option(s) incompatible with ext3
[ 1670.586679][T12837] 9pnet_fd: Insufficient options for proto=fd
[ 1670.610565][T12839] netlink: 48 bytes leftover after parsing attributes in process `syz.3.27471'.
[ 1670.749868][T12845] netlink: 48 bytes leftover after parsing attributes in process `syz.3.27473'.
[ 1671.007382][T12853] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.27475'.
[ 1671.039871][T12857] netlink: 48 bytes leftover after parsing attributes in process `syz.2.27477'.
[ 1671.378875][T12870] loop2: detected capacity change from 0 to 512
[ 1671.385680][T12870] EXT4-fs: Ignoring removed bh option
[ 1671.401227][T12874] netlink: 48 bytes leftover after parsing attributes in process `syz.0.27483'.
[ 1671.558456][T12876] netlink: 4 bytes leftover after parsing attributes in process `syz.1.27481'.
[ 1671.596004][T12870] EXT4-fs: Mount option(s) incompatible with ext3
[ 1671.701795][T12884] FAULT_INJECTION: forcing a failure.
[ 1671.701795][T12884] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1671.714998][T12884] CPU: 0 UID: 0 PID: 12884 Comm: syz.0.27484 Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(voluntary) 
[ 1671.715117][T12884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1671.715207][T12884] Call Trace:
[ 1671.715212][T12884]  <TASK>
[ 1671.715219][T12884]  __dump_stack+0x1d/0x30
[ 1671.715241][T12884]  dump_stack_lvl+0xe8/0x140
[ 1671.715263][T12884]  dump_stack+0x15/0x1b
[ 1671.715281][T12884]  should_fail_ex+0x265/0x280
[ 1671.715314][T12884]  should_fail+0xb/0x20
[ 1671.715356][T12884]  should_fail_usercopy+0x1a/0x20
[ 1671.715389][T12884]  _copy_from_user+0x1c/0xb0
[ 1671.715469][T12884]  __sys_bpf+0x178/0x790
[ 1671.715509][T12884]  __x64_sys_bpf+0x41/0x50
[ 1671.715535][T12884]  x64_sys_call+0x2478/0x2fb0
[ 1671.715616][T12884]  do_syscall_64+0xd2/0x200
[ 1671.715632][T12884]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[ 1671.715661][T12884]  ? clear_bhb_loop+0x40/0x90
[ 1671.715684][T12884]  ? clear_bhb_loop+0x40/0x90
[ 1671.715709][T12884]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1671.715727][T12884] RIP: 0033:0x7f1eb6e2e929
[ 1671.715784][T12884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1671.715799][T12884] RSP: 002b:00007f1eb5497038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 1671.715884][T12884] RAX: ffffffffffffffda RBX: 00007f1eb7055fa0 RCX: 00007f1eb6e2e929
[ 1671.715905][T12884] RDX: 0000000000000026 RSI: 0000200000000400 RDI: 000000000000000a
[ 1671.715948][T12884] RBP: 00007f1eb5497090 R08: 0000000000000000 R09: 0000000000000000
[ 1671.715961][T12884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1671.716039][T12884] R13: 0000000000000000 R14: 00007f1eb7055fa0 R15: 00007ffdfefe67d8
[ 1671.716055][T12884]  </TASK>
[ 1672.179801][T12897] loop0: detected capacity change from 0 to 512
[ 1672.188065][T12897] EXT4-fs: Ignoring removed bh option
[ 1672.193836][T12897] EXT4-fs: Mount option(s) incompatible with ext3
[ 1672.281332][T12900] loop1: detected capacity change from 0 to 512
[ 1672.307709][T12900] EXT4-fs: Ignoring removed bh option
[ 1672.324480][T12900] EXT4-fs: Mount option(s) incompatible with ext3
[ 1672.325518][T12903] loop2: detected capacity change from 0 to 1024
[ 1672.371280][T12903] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1672.468984][T12903] ext4 filesystem being mounted at /471/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1672.556487][T12907] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.27489: bg 0: block 393: padding at end of block bitmap is not set
[ 1672.581085][T12907] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 1520 with error 117
[ 1672.583568][   T29] audit: type=1400 audit(1750821946.646:52390): avc:  denied  { connect } for  pid=12909 comm="syz.0.27490" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1672.593801][T12907] EXT4-fs (loop2): This should not happen!! Data will be lost
[ 1672.593801][T12907] 
[ 1672.618715][T12911] loop5: detected capacity change from 0 to 1024
[ 1672.632082][ T8437] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[ 1672.644947][ T8437] EXT4-fs (loop2): This should not happen!! Data will be lost
[ 1672.644947][ T8437] 
[ 1672.654640][ T8437] EXT4-fs (loop2): Total free blocks count 0
[ 1672.660711][ T8437] EXT4-fs (loop2): Free/Dirty block details
[ 1672.666637][ T8437] EXT4-fs (loop2): free_blocks=0
[ 1672.669339][   T29] audit: type=1400 audit(1750821946.736:52391): avc:  denied  { read } for  pid=12909 comm="syz.0.27490" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[ 1672.671662][ T8437] EXT4-fs (loop2): dirty_blocks=32
[ 1672.691145][   T29] audit: type=1400 audit(1750821946.736:52392): avc:  denied  { setopt } for  pid=12909 comm="syz.0.27490" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 1672.696260][ T8437] EXT4-fs (loop2): Block reservation details
[ 1672.719010][T12911] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1672.737162][T12911] ext4 filesystem being mounted at /104/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1672.751516][T12912] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1672.818343][T12911] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.27491: bg 0: block 393: padding at end of block bitmap is not set
[ 1672.819119][T12912] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1672.833816][T12911] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[ 1672.855513][T12919] loop2: detected capacity change from 0 to 512
[ 1672.856241][T12911] EXT4-fs (loop5): This should not happen!! Data will be lost
[ 1672.856241][T12911] 
[ 1672.862766][T12919] EXT4-fs: Ignoring removed i_version option
[ 1672.895666][T12919] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1672.916438][T11038] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1672.926951][T11038] ==================================================================
[ 1672.927817][T12919] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1672.935032][T11038] BUG: KCSAN: data-race in find_get_block_common / has_bh_in_lru
[ 1672.948464][T12919] ext4 filesystem being mounted at /473/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1672.955079][T11038] 
[ 1672.955086][T11038] read-write to 0xffff888237d26f18 of 8 bytes by task 12919 on cpu 1:
[ 1672.975954][T11038]  find_get_block_common+0x50e/0x960
[ 1672.981273][T11038]  bdev_getblk+0x325/0x3d0
[ 1672.985709][T11038]  __ext4_get_inode_loc+0x303/0x930
[ 1672.990532][T12919] EXT4-fs error (device loop2): ext4_do_update_inode:5568: inode #2: comm syz.2.27493: corrupted inode contents
[ 1672.990901][T11038]  __ext4_iget+0x2ea/0x21c0
[ 1673.002911][T12919] EXT4-fs (loop2): Remounting filesystem read-only
[ 1673.007158][T11038]  ext4_fill_super+0x26ea/0x34e0
[ 1673.007184][T11038]  get_tree_bdev_flags+0x291/0x300
[ 1673.007212][T11038]  get_tree_bdev+0x1f/0x30
[ 1673.028157][T11038]  ext4_get_tree+0x1c/0x30
[ 1673.032575][T11038]  vfs_get_tree+0x54/0x1d0
[ 1673.036991][T11038]  do_new_mount+0x207/0x680
[ 1673.041756][T11038]  path_mount+0x4a4/0xb20
[ 1673.046087][T11038]  __se_sys_mount+0x28f/0x2e0
[ 1673.050753][T11038]  __x64_sys_mount+0x67/0x80
[ 1673.055332][T11038]  x64_sys_call+0xd36/0x2fb0
[ 1673.059919][T11038]  do_syscall_64+0xd2/0x200
[ 1673.064414][T11038]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1673.070301][T11038] 
[ 1673.072614][T11038] read to 0xffff888237d26f18 of 8 bytes by task 11038 on cpu 0:
[ 1673.080230][T11038]  has_bh_in_lru+0x54/0x1f0
[ 1673.084733][T11038]  smp_call_function_many_cond+0x389/0xbf0
[ 1673.090533][T11038]  on_each_cpu_cond_mask+0x3c/0x80
[ 1673.095632][T11038]  invalidate_bh_lrus+0x2a/0x30
[ 1673.100487][T11038]  blkdev_flush_mapping+0x9a/0x1a0
[ 1673.105594][T11038]  bdev_release+0x2bf/0x3d0
[ 1673.110092][T11038]  blkdev_release+0x15/0x20
[ 1673.114588][T11038]  __fput+0x29b/0x650
[ 1673.118569][T11038]  ____fput+0x1c/0x30
[ 1673.122545][T11038]  task_work_run+0x12e/0x1a0
[ 1673.127126][T11038]  exit_to_user_mode_loop+0xe4/0x100
[ 1673.132413][T11038]  do_syscall_64+0x1d6/0x200
[ 1673.137002][T11038]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1673.142897][T11038] 
[ 1673.145210][T11038] value changed: 0x0000000000000000 -> 0xffff88813a7273a8
[ 1673.152302][T11038] 
[ 1673.154611][T11038] Reported by Kernel Concurrency Sanitizer on:
[ 1673.160746][T11038] CPU: 0 UID: 0 PID: 11038 Comm: syz-executor Not tainted 6.16.0-rc3-syzkaller-00044-g7595b66ae9de #0 PREEMPT(voluntary) 
[ 1673.173407][T11038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1673.183450][T11038] ==================================================================
[ 1673.218508][T12912] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1673.229310][ T6805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1673.281404][T12912] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1673.330866][T12912] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1673.341804][T12912] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1673.352300][T12912] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1673.363321][T12912] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1681.526313][T31584] page_pool_release_retry() stalled pool shutdown: id 636, 1 inflight 60 sec