last executing test programs:

4.216612368s ago: executing program 2 (id=2966):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB='D\x00', @ANYBLOB], 0x44}}, 0x0)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="310401080000030000001600000018000180140002006e657464657673696d30000000000000050003000100000005000400010000000500"], 0x44}}, 0x0)

3.41169489s ago: executing program 2 (id=2970):
bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="1b00"/13], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f0000"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
recvmmsg(r0, &(0x7f0000000480)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, 0x0)
syz_io_uring_setup(0x73d3, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800"], 0x48)
iopl(0x7f)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000340)='kfree\x00', r3, 0x0, 0x4092}, 0x18)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r4)
sendmsg$NL80211_CMD_GET_WIPHY(r4, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000380)=ANY=[@ANYBLOB="30008897e54e83262e799bd08b766fc5a530e9aba2d7471afcf02afa145a01af837bf0efdc22d1a9a121c7e59c0c63121783cacf4bdd8f7fbafa2467bc3ddbaa95", @ANYRES16=r5, @ANYBLOB="0103000000000000000001000000080001001400000008000300", @ANYRES32=0x0, @ANYBLOB="0c0099000200000004000000"], 0x30}}, 0x44)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x4, &(0x7f00000002c0)={[{@bsdgroups}, {@i_version}]}, 0x6, 0x5fd, &(0x7f0000000c00)="$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")

3.370460571s ago: executing program 4 (id=2971):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x3, &(0x7f0000000280)=[{0x8, 0xa8, 0x8c, 0x7}, {0x6, 0xa, 0xc, 0x4}, {0x0, 0x9, 0xf7, 0x7}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b7040000000000008500000058"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000040)=0x81, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095", @ANYRES32=r0, @ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=r1], 0x0, 0x78, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x5, 0x0, 0x0, 0x286ca06bbee933dc, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x15)

3.123918625s ago: executing program 4 (id=2979):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, &(0x7f0000000000)=0x2)
ioctl$PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f0000000140)={0x1, &(0x7f0000000080)=[{0x48, 0x0, 0x38, 0x4}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, &(0x7f0000000000)=@req3={0xfffff800, 0xb1, 0xf, 0x0, 0x6, 0x800, 0x1af1}, 0x1c)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000001080)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fdffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
write$cgroup_devices(r5, &(0x7f00000002c0)=ANY=[@ANYBLOB="0700a3fcf070d1ff"], 0xffdd)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x4, 0x0, 0x7ffc0005}]})
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000001600)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000006000000180100006020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000035000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r6}, 0x10)
kexec_load(0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r7)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r8, @ANYBLOB='ya\x00?\b\x00\x00\x00\x00\x00~'], 0x1c}}, 0x4000054)

2.855076718s ago: executing program 2 (id=2981):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0xea, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000000480), 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, 0x0)
syz_io_uring_setup(0x73d3, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
iopl(0x7f)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r1}, &(0x7f0000000000), &(0x7f00000005c0)}, 0x20)

2.73118006s ago: executing program 2 (id=2982):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB='D\x00', @ANYBLOB], 0x44}}, 0x0)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYBLOB="310401080000030000001600000018000180140002006e657464657673696d3000000000000005000300010000000500040001000000050002"], 0x44}}, 0x0)

2.73079761s ago: executing program 2 (id=2983):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x8}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x9, 0xffffffff}, 0x50)

2.664770741s ago: executing program 2 (id=2984):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x3, &(0x7f0000000280)=[{0x8, 0xa8, 0x8c, 0x7}, {0x6, 0xa, 0xc, 0x4}, {0x0, 0x9, 0xf7, 0x7}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b7040000000000008500000058"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000040)=0x81, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095", @ANYRES32=r0, @ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=r1], 0x0, 0x78, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
set_mempolicy_home_node(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x0)

2.0546974s ago: executing program 3 (id=2990):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x3, &(0x7f0000000280)=[{0x8, 0xa8, 0x8c, 0x7}, {0x6, 0xa, 0xc, 0x4}, {0x0, 0x9, 0xf7, 0x7}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b7040000000000008500000058"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000040)=0x81, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095", @ANYRES32=r0, @ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=r1], 0x0, 0x78, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x5, 0x0, 0x0, 0x286ca06bbee933dc, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x15)

2.017619391s ago: executing program 4 (id=2991):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
socket$nl_route(0x10, 0x3, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x1007, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10006, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x1, 0x1, 0x8, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c000000020681010000000000000000000000000500050002000000050001000700000005000400030000000900020073797a310000000011000300686173683a6e65742c6e6574"], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x800)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010101}}]}]}, 0x48}, 0x1, 0x0, 0x0, 0xd24f4d5778621d46}, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write(r3, &(0x7f0000004200)='t', 0x1)
socket$nl_route(0x10, 0x3, 0x0)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7ffff000)

1.801994864s ago: executing program 3 (id=2992):
prctl$PR_SET_NAME(0xf, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
open(0x0, 0x1, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.net/cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r0, &(0x7f00000002c0), 0x12)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB="00ee4c251409cd27b600"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/25], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r1}, &(0x7f0000000200), &(0x7f0000000400)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0x200000000000000e, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='xen_mc_flush\x00'}, 0xffffffffffffffc6)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x7b93eb716f56e203)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
readv(0xffffffffffffffff, &(0x7f0000000400)=[{0x0}], 0x1)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x20000023896)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'macvlan1\x00', <r5=>0x0})
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'ipvlan0\x00', <r7=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x500, &(0x7f0000001140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="400000001000030500000000fddbdf0000000000", @ANYRES32=0x0, @ANYBLOB="02880100373004002000128008000100687372001400028008000100", @ANYRES32=r5, @ANYBLOB="08000200", @ANYRES32=r7], 0x40}}, 0x4)

1.653228866s ago: executing program 4 (id=2993):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0xa2d, @empty, 0x4}, 0x1c)
listen(0xffffffffffffffff, 0xfffffffc)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$EBT_SO_GET_INIT_ENTRIES(0xffffffffffffffff, 0x0, 0x83, 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x30, 0x0, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x6}]}]}, 0x30}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sched_setaffinity(0x0, 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x28, r4, 0x1, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1a}]}]}, 0x28}}, 0x0)

1.126224783s ago: executing program 1 (id=2997):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x3, &(0x7f0000000280)=[{0x8, 0xa8, 0x8c, 0x7}, {0x6, 0xa, 0xc, 0x4}, {0x0, 0x9, 0xf7, 0x7}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b7040000000000008500000058"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000040)=0x81, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095", @ANYRES32=r0, @ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=r1], 0x0, 0x78, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x5, 0x0, 0x0, 0x286ca06bbee933dc, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x15)

896.367137ms ago: executing program 1 (id=2998):
prctl$PR_SET_NAME(0xf, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
open(0x0, 0x1, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.net/cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r0, &(0x7f00000002c0), 0x12)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="00ee4c251409cd27b600"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/25], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r1}, &(0x7f0000000200), &(0x7f0000000400)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0x200000000000000e, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='xen_mc_flush\x00'}, 0xffffffffffffffc6)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x7b93eb716f56e203)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
readv(0xffffffffffffffff, &(0x7f0000000400), 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x20000023896)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'macvlan1\x00', <r5=>0x0})
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'ipvlan0\x00', <r7=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x500, &(0x7f0000001140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="400000001000030500000000fddbdf0000000000", @ANYRES32=0x0, @ANYBLOB="02880100373004002000128008000100687372001400028008000100", @ANYRES32=r5, @ANYBLOB="08000200", @ANYRES32=r7], 0x40}}, 0x4)

803.432798ms ago: executing program 0 (id=3000):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x65, 0x7f, 0x5, 0x0, 0x0, 0x7, 0x89008, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc46, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x8, 0x7ffffefc, 0x3, 0xfffffffffffffffe, 0x0, 0x4000, 0x0, 0xfc, 0x0, 0x1}, 0x0, 0x6, 0xffffffffffffffff, 0x9)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000400)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0x0}, 0x50)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x8, 0x6}, 0x0, 0x9, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xbd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120)
write$UHID_DESTROY(r0, &(0x7f0000000080), 0x4)

756.209349ms ago: executing program 4 (id=3001):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x3, &(0x7f0000000280)=[{0x8, 0xa8, 0x8c, 0x7}, {0x6, 0xa, 0xc, 0x4}, {0x0, 0x9, 0xf7, 0x7}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b7040000000000008500000058"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0})
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000040)=0x81, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095", @ANYRES32=r0, @ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=r1], 0x0, 0x78, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x5, 0x0, 0x0, 0x286ca06bbee933dc, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x15)

535.033453ms ago: executing program 0 (id=3002):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket(0x2b, 0x1, 0x1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2, 0x0, 0x2}, 0x18)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e1f, 0x2, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000000)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x34000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0xc8, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
close(0xffffffffffffffff)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd6317ce22000000"], 0xfdef)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000400)='kmem_cache_free\x00', r3}, 0x10)
open_tree(0xffffffffffffffff, &(0x7f00000009c0)='./file0/file0\x00', 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$kcm(0x29, 0x4, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x2a, &(0x7f0000000240)={&(0x7f0000000000)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x2}, 0x2000400c)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$inet6(0xa, 0x3, 0x3c)

520.330183ms ago: executing program 4 (id=3003):
socket$packet(0x11, 0x3, 0x300)
socket$netlink(0x10, 0x3, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f00000004c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x0, 0x0})
r2 = inotify_init()
r3 = inotify_add_watch(r2, 0x0, 0x82000714)
inotify_rm_watch(r2, r3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = gettid()
timer_create(0x8, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
readv(r5, &(0x7f00000000c0)=[{&(0x7f0000000240)=""/40, 0x54}], 0x1)

488.240073ms ago: executing program 0 (id=3004):
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000001e00007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)=ANY=[@ANYBLOB="540100001800010000000000000000001d010000150003000000000000000000dd5f392602cc30570500000008000500f8080000"], 0x154}}, 0x0)

461.114464ms ago: executing program 1 (id=3005):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000080))
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
fchdir(0xffffffffffffffff)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
openat$autofs(0xffffffffffffff9c, 0x0, 0x40100, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x18)
mount$9p_tcp(0x0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080), 0x800000, &(0x7f0000000140)=ANY=[@ANYBLOB='trans='])
socket$netlink(0x10, 0x3, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f0000000340)='net/fib_trie\x00')
lseek(r2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmsg$inet(r3, &(0x7f0000000780)={&(0x7f0000000280)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000000300)=[{&(0x7f00000004c0)="9b15e40602a491d9b223a06b7c7515a244cc9806b767233ba0588fd93f4be1e1175c39c9e17215b7b6a25b93f41d915fa2f15fcf0873a75c39b920cc28a97cfd6b91b43e86012ae453864dde625865ca3c7f6fec3ee0f5c8231b7b477d2d9cf711e218c868a4d8cda76350ea49d9d8c3a3a0e37cb93d74f326ad40b6dd4f0d16cde475545518c9729c56b0256c236af8518dbb78a9943092d9a5f8d3d871734c18d6fd0d80bc687a8f4ff7bec8ddcadf", 0xb0}, {&(0x7f0000000580)="ed781345800e05198afe028fc3a815010f2488df79ca7d84f947dbb046fee1e898c54eb87bf33ec5f8ab04121cf5202bebbf43ab9823815ac860dc2fe310b1f8b1c981fa4fbc1393963d93e5f5afdbca30976c150bbead8d78b4652bd36e03ac6ab5bfceceb6fedb505b1219879a8cdf6b9c8d8917bf69544ee1bcb8c931e26bd3f00f9923d335", 0x87}, {&(0x7f0000000680)="7df73583eb856014cca763c38f69264143e8e86a828d729515ad1f19192ea14b1fd4d0ca9b3cfb609224c7a5764287b7e947c4557ac1dc15a1c94532cc1a9b09cd07000bb18a4e2a8c5da3992a46e2706bcf33ccf6f1815ea19224daf9ebc126aec33a22f42e407b36e6d5f2c835851e2dc4bee7e0a6b5b6f41ef8", 0x7b}], 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"/432], 0x1b0}, 0x0)
r4 = syz_io_uring_setup(0x237, &(0x7f0000000240)={0x0, 0xebcc, 0x1, 0x2, 0x24e}, &(0x7f00000000c0)=<r5=>0x0, &(0x7f0000000380)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x40, 0x0, 0x80, 0x3, 0x0, 0x9276, 0x0, 0x0, {0x1}})
io_uring_enter(r4, 0x3b3d, 0x75d1, 0x40, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vxcan0\x00', <r7=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="00400000c31a0100240012800b000100627269646765000014000280060009000100000000002d000100000008000500", @ANYRES32=r7, @ANYBLOB="08002e000400"/24], 0x64}, 0x1, 0x0, 0x0, 0x800}, 0x0)

460.524603ms ago: executing program 3 (id=3006):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x10, 0x4, 0x8, 0x8}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x9, 0xffffffff}, 0x50)

440.486474ms ago: executing program 3 (id=3007):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x3, &(0x7f0000000280)=[{0x8, 0xa8, 0x8c, 0x7}, {0x6, 0xa, 0xc, 0x4}, {0x0, 0x9, 0xf7, 0x7}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b7040000000000008500000058"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000040)=0x81, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095", @ANYRES32=r0, @ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=r1], 0x0, 0x78, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x5, 0x0, 0x0, 0x286ca06bbee933dc, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x15)

440.157234ms ago: executing program 0 (id=3008):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020001000900010073797a300000000008000240000000032c000000030a01030000e6ff00000027020000000900010073797a3000000000090003007379"], 0x7c}}, 0x2040084)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x40, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @queue={{0xa}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_QUEUE_NUM={0x6, 0x1, 0x1, 0x0, 0x5}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x68}}, 0x0)

400.536064ms ago: executing program 0 (id=3009):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="180200000100000000000000000000008500000087000000180100000001692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007b00000095"], &(0x7f0000000040)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x9)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0xfd, 0x0, 0x7ffc0002}]})
ftruncate(0xffffffffffffffff, 0xf09)
iopl(0x0)

353.494635ms ago: executing program 0 (id=3010):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="180200000100000000000000000000008500000087000000180100000001692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007b00000095"], &(0x7f0000000040)='syzkaller\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="0000000000000000000051229dc9", 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000780)=@newlink={0x50, 0x10, 0xf11, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x104, 0x780}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x20, 0xa0}}}}}}, @IFLA_MASTER={0x8}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x800040, &(0x7f0000000340), 0x1, 0x597, &(0x7f0000000b80)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r1, &(0x7f0000000140)='Q', 0x1, 0x200980)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
sendfile(r2, r2, 0x0, 0xe0000000)

219.899327ms ago: executing program 1 (id=3011):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x3, &(0x7f0000000280)=[{0x8, 0xa8, 0x8c, 0x7}, {0x6, 0xa, 0xc, 0x4}, {0x0, 0x9, 0xf7, 0x7}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b7040000000000008500000058"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000040)=0x81, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00"/11], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095", @ANYRES32=r0, @ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=r1], 0x0, 0x78, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
set_mempolicy_home_node(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x0)

213.224657ms ago: executing program 3 (id=3012):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x65, 0x7f, 0x5, 0x0, 0x0, 0x7, 0x89008, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc46, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x8, 0x7ffffefc, 0x3, 0xfffffffffffffffe, 0x0, 0x4000, 0x0, 0xfc, 0x0, 0x1}, 0x0, 0x6, 0xffffffffffffffff, 0x9)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000400)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x3, '\x00', 0x0, 0x0}, 0x50)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x64, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_config_ext={0x8, 0x6}, 0x0, 0x9, 0x800000, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xbd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f0000002a00)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120)
write$UHID_DESTROY(r0, &(0x7f0000000080), 0x4)

130.309048ms ago: executing program 1 (id=3013):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket(0x2b, 0x1, 0x1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2, 0x0, 0x2}, 0x18)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e1f, 0x2, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c)
perf_event_open(&(0x7f0000000800)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
perf_event_open$cgroup(&(0x7f0000000000)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x34000, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0xc8, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
close(0xffffffffffffffff)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd6317ce22000000"], 0xfdef)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000400)='kmem_cache_free\x00', r3}, 0x10)
open_tree(0xffffffffffffffff, &(0x7f00000009c0)='./file0/file0\x00', 0x1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$kcm(0x29, 0x4, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x2a, &(0x7f0000000240)={&(0x7f0000000000)=@newqdisc={0x3c, 0x24, 0x3fe3aa0262d8c583, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}, {0x6}}, [@qdisc_kind_options=@q_fq_pie={{0xb}, {0xc, 0x8002}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x2}, 0x2000400c)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r5}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$inet6(0xa, 0x3, 0x3c)

623.14µs ago: executing program 3 (id=3014):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
socket$nl_route(0x10, 0x3, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x1007, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10006, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x1, 0x1, 0x8, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c000000020681010000000000000000000000000500050002000000050001000700000005000400030000000900020073797a310000000011000300686173683a6e65742c6e6574"], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x800)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {0x3}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010101}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0xd24f4d5778621d46}, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write(r3, &(0x7f0000004200)='t', 0x1)
socket$nl_route(0x10, 0x3, 0x0)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7ffff000)

0s ago: executing program 1 (id=3015):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
socket$nl_route(0x10, 0x3, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x1007, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10006, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x1, 0x1, 0x8, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c000000020681010000000000000000000000000500050002000000050001000700000005000400030000000900020073797a310000000011000300686173683a6e65742c6e6574"], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x800)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x44, 0x9, 0x6, 0x201, 0x0, 0x0, {0x3}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010101}}]}]}, 0x44}, 0x1, 0x0, 0x0, 0xd24f4d5778621d46}, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write(r3, &(0x7f0000004200)='t', 0x1)
socket$nl_route(0x10, 0x3, 0x0)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7ffff000)

kernel console output (not intermixed with test programs):

e loop1): ext4_acquire_dquot:6933: comm syz.1.2507: Failed to acquire dquot type 0
[  205.188131][T11729] EXT4-fs error (device loop1): ext4_free_blocks:6587: comm syz.1.2507: Freeing blocks not in datazone - block = 0, count = 4096
[  205.202515][T11729] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.2507: Invalid inode bitmap blk 0 in block_group 0
[  205.216315][T11729] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[  205.315494][T11729] EXT4-fs (loop1): 1 orphan inode deleted
[  205.426170][T11744] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2510'.
[  205.435407][T11744] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2510'.
[  205.762360][T11746] loop0: detected capacity change from 0 to 512
[  205.791638][T11746] EXT4-fs (loop0): 1 orphan inode deleted
[  205.832126][T11746] ext4 filesystem being mounted at /516/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  206.174748][ T4054] __quota_error: 108 callbacks suppressed
[  206.174764][ T4054] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-8
[  206.189608][ T4054] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:13: Failed to release dquot type 0
[  206.215412][ T4054] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  206.225287][ T4054] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:13: Failed to release dquot type 1
[  206.262712][T11754] loop4: detected capacity change from 0 to 1024
[  206.281679][T11746] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  206.296756][T11758] loop3: detected capacity change from 0 to 1024
[  206.306240][T11754] EXT4-fs: Ignoring removed orlov option
[  206.325311][T11758] EXT4-fs: Ignoring removed orlov option
[  206.774726][T11774] loop2: detected capacity change from 0 to 1024
[  206.813998][T11774] EXT4-fs: Ignoring removed orlov option
[  206.889125][   T29] audit: type=1326 audit(1752184932.892:23292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11775 comm="syz.1.2523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dee50e929 code=0x7ffc0000
[  206.916552][   T29] audit: type=1326 audit(1752184932.922:23293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11775 comm="syz.1.2523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dee50e929 code=0x7ffc0000
[  206.920443][T11778] netlink: 'syz.1.2523': attribute type 1 has an invalid length.
[  206.940967][   T29] audit: type=1326 audit(1752184932.922:23294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11775 comm="syz.1.2523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f5dee50e929 code=0x7ffc0000
[  206.971493][   T29] audit: type=1326 audit(1752184932.922:23295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11775 comm="syz.1.2523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dee50e929 code=0x7ffc0000
[  206.995080][   T29] audit: type=1326 audit(1752184932.922:23296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11775 comm="syz.1.2523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5dee50e929 code=0x7ffc0000
[  207.018582][   T29] audit: type=1326 audit(1752184932.922:23297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11775 comm="syz.1.2523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dee50e929 code=0x7ffc0000
[  207.042199][   T29] audit: type=1326 audit(1752184932.922:23298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11775 comm="syz.1.2523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5dee50e929 code=0x7ffc0000
[  207.064136][T11780] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2523'.
[  207.065739][   T29] audit: type=1326 audit(1752184932.922:23299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11775 comm="syz.1.2523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dee50e929 code=0x7ffc0000
[  207.159743][T11780] veth5: entered promiscuous mode
[  207.180938][T11780] bond1: (slave veth5): Enslaving as a backup interface with a down link
[  207.192097][T11782] loop0: detected capacity change from 0 to 1024
[  207.210963][T11782] EXT4-fs: Ignoring removed i_version option
[  207.239521][T11782] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  207.257352][T11782] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.2521: Invalid block bitmap block 0 in block_group 0
[  207.279236][T11782] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.2521: Failed to acquire dquot type 0
[  207.290752][T11785] loop3: detected capacity change from 0 to 512
[  207.298469][T11782] EXT4-fs error (device loop0): ext4_free_blocks:6587: comm syz.0.2521: Freeing blocks not in datazone - block = 0, count = 4096
[  207.331623][T11785] EXT4-fs (loop3): 1 orphan inode deleted
[  207.342411][T11782] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.2521: Invalid inode bitmap blk 0 in block_group 0
[  207.355350][T11785] ext4 filesystem being mounted at /509/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  207.366021][ T4073] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:31: Failed to release dquot type 1
[  207.378726][T11782] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[  207.387522][ T4073] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:31: Failed to release dquot type 0
[  207.401590][T11785] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  207.410106][T11782] EXT4-fs (loop0): 1 orphan inode deleted
[  207.461904][T11780] loop1: detected capacity change from 0 to 1024
[  207.492590][T11798] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2526'.
[  207.501626][T11798] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2526'.
[  207.535495][T11780] ext4 filesystem being mounted at /518/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  207.673470][T11807] macvlan1: entered promiscuous mode
[  207.680029][T11807] ipvlan0: entered promiscuous mode
[  207.687094][T11807] ipvlan0: left promiscuous mode
[  207.693036][T11807] macvlan1: left promiscuous mode
[  208.351631][T11814] loop0: detected capacity change from 0 to 1024
[  208.376154][T11814] EXT4-fs: Ignoring removed orlov option
[  208.918576][T11821] loop0: detected capacity change from 0 to 512
[  208.962681][T11821] EXT4-fs (loop0): 1 orphan inode deleted
[  208.979536][ T4066] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:24: Failed to release dquot type 1
[  209.010816][T11821] ext4 filesystem being mounted at /522/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  209.061110][T11821] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  209.314548][T11832] loop2: detected capacity change from 0 to 1024
[  209.321302][T11832] EXT4-fs: Ignoring removed orlov option
[  209.476892][T11817] lo speed is unknown, defaulting to 1000
[  209.492513][ T1103] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  209.501884][ T1103] hid-generic 0000:0000:0000.0012: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  209.509641][T11817] lo speed is unknown, defaulting to 1000
[  209.683342][T11849] netlink: 'syz.2.2540': attribute type 10 has an invalid length.
[  209.691228][T11849] netlink: 156 bytes leftover after parsing attributes in process `syz.2.2540'.
[  209.780347][T11855] SELinux: syz.0.2544 (11855) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  209.820748][T11860] loop0: detected capacity change from 0 to 256
[  209.956122][T11872] loop2: detected capacity change from 0 to 1024
[  209.962964][T11872] EXT4-fs: Ignoring removed orlov option
[  210.662704][T11885] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2555'.
[  210.786472][T11894] macvlan1: entered promiscuous mode
[  210.801180][T11896] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2559'.
[  210.812214][T11894] ipvlan0: entered promiscuous mode
[  210.818104][T11894] ipvlan0: left promiscuous mode
[  210.824960][T11897] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2560'.
[  210.835166][T11894] macvlan1: left promiscuous mode
[  210.901331][T11902] netlink: 6048 bytes leftover after parsing attributes in process `syz.3.2559'.
[  211.235212][   T29] kauditd_printk_skb: 2633 callbacks suppressed
[  211.235233][   T29] audit: type=1326 audit(1752184937.242:25928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11918 comm="syz.1.2567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dee50e929 code=0x7ffc0000
[  211.289583][   T29] audit: type=1326 audit(1752184937.282:25929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11918 comm="syz.1.2567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dee50e929 code=0x7ffc0000
[  211.324836][T11924] loop1: detected capacity change from 0 to 512
[  211.336510][T11926] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  211.341672][T11924] ext4 filesystem being mounted at /528/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  211.348766][T11926] SELinux: failed to load policy
[  211.368425][   T29] audit: type=1400 audit(1752184937.372:25930): avc:  denied  { watch } for  pid=11922 comm="syz.1.2568" path="/528/bus" dev="loop1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  211.397421][T11924] EXT4-fs error (device loop1): ext4_lookup:1787: inode #12: comm syz.1.2568: iget: bad i_size value: 2533274857506816
[  211.548123][T11939] loop1: detected capacity change from 0 to 1024
[  211.555026][T11939] EXT4-fs: Ignoring removed i_version option
[  211.562439][T11939] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  211.575040][T11939] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.2575: Invalid block bitmap block 0 in block_group 0
[  211.589075][T11939] Quota error (device loop1): write_blk: dquota write failed
[  211.596567][T11939] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  211.606800][T11939] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.2575: Failed to acquire dquot type 0
[  211.618881][T11939] EXT4-fs error (device loop1): ext4_free_blocks:6587: comm syz.1.2575: Freeing blocks not in datazone - block = 0, count = 4096
[  211.632853][T11939] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.2575: Invalid inode bitmap blk 0 in block_group 0
[  211.648055][T11939] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[  211.656742][ T4072] Quota error (device loop1): do_check_range: Getting block 0 out of range 1-8
[  211.665833][ T4072] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:30: Failed to release dquot type 0
[  211.681355][T11946] netlink: 'syz.0.2574': attribute type 1 has an invalid length.
[  211.691614][T11939] EXT4-fs (loop1): 1 orphan inode deleted
[  211.707104][T11946] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=11946 comm=syz.0.2574
[  211.782815][T11948] loop4: detected capacity change from 0 to 256
[  211.906757][   T29] audit: type=1326 audit(1752184937.912:25931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11949 comm="syz.2.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6414e929 code=0x7ffc0000
[  211.930506][   T29] audit: type=1326 audit(1752184937.912:25932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11949 comm="syz.2.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6414e929 code=0x7ffc0000
[  211.975970][T11954] netlink: 'syz.4.2580': attribute type 1 has an invalid length.
[  212.014220][   T29] audit: type=1326 audit(1752184937.962:25933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11949 comm="syz.2.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7fab6414e929 code=0x7ffc0000
[  212.037975][   T29] audit: type=1326 audit(1752184937.962:25934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11949 comm="syz.2.2579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6414e929 code=0x7ffc0000
[  212.080171][T11962] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  212.090356][T11962] SELinux: failed to load policy
[  212.105135][T11964] loop1: detected capacity change from 0 to 512
[  212.116625][T11954] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2580'.
[  212.129134][T11964] EXT4-fs (loop1): 1 orphan inode deleted
[  212.136361][T11964] ext4 filesystem being mounted at /532/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  212.147054][T11967] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2583'.
[  212.147186][ T4066] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:24: Failed to release dquot type 1
[  212.173159][T11954] loop4: detected capacity change from 0 to 1024
[  212.182430][T11964] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  212.192598][T11967] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2583'.
[  212.220985][T11954] ext4 filesystem being mounted at /494/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  212.922185][T11984] loop2: detected capacity change from 0 to 1024
[  212.924556][ T4054] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm kworker/u8:13: bg 0: block 393: padding at end of block bitmap is not set
[  212.928899][T11984] EXT4-fs: Ignoring removed orlov option
[  212.944725][ T4054] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  212.961559][ T4054] EXT4-fs (loop4): This should not happen!! Data will be lost
[  212.961559][ T4054] 
[  213.028925][T11989] loop4: detected capacity change from 0 to 1024
[  213.037690][T11989] EXT4-fs: Ignoring removed i_version option
[  213.044565][T11989] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  213.071887][T11989] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.2588: Invalid block bitmap block 0 in block_group 0
[  213.089861][T11989] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.2588: Failed to acquire dquot type 0
[  213.107415][T11995] loop2: detected capacity change from 0 to 512
[  213.116962][T11989] EXT4-fs error (device loop4): ext4_free_blocks:6587: comm syz.4.2588: Freeing blocks not in datazone - block = 0, count = 4096
[  213.132180][T11989] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.2588: Invalid inode bitmap blk 0 in block_group 0
[  213.147348][T11995] EXT4-fs (loop2): 1 orphan inode deleted
[  213.154040][ T4073] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:31: Failed to release dquot type 0
[  213.166468][T11995] ext4 filesystem being mounted at /505/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  213.178422][ T4073] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:31: Failed to release dquot type 1
[  213.178507][T11993] loop3: detected capacity change from 0 to 512
[  213.183076][T11989] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  213.208282][T11999] loop1: detected capacity change from 0 to 512
[  213.264206][T11999] ext4: Bad value for 'debug_want_extra_isize'
[  213.291396][T11989] EXT4-fs (loop4): 1 orphan inode deleted
[  213.305689][T11995] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  213.317899][T11993] ext4 filesystem being mounted at /520/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  213.559052][T12011] loop0: detected capacity change from 0 to 512
[  213.573269][T12011] EXT4-fs (loop0): 1 orphan inode deleted
[  213.580581][T12011] ext4 filesystem being mounted at /537/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  213.592285][ T4069] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:27: Failed to release dquot type 1
[  213.610988][T12011] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  214.132100][T12019] FAULT_INJECTION: forcing a failure.
[  214.132100][T12019] name failslab, interval 1, probability 0, space 0, times 0
[  214.144831][T12019] CPU: 0 UID: 0 PID: 12019 Comm: syz.3.2595 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) 
[  214.144857][T12019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  214.144869][T12019] Call Trace:
[  214.144876][T12019]  <TASK>
[  214.144884][T12019]  __dump_stack+0x1d/0x30
[  214.144904][T12019]  dump_stack_lvl+0xe8/0x140
[  214.144980][T12019]  dump_stack+0x15/0x1b
[  214.144994][T12019]  should_fail_ex+0x265/0x280
[  214.145019][T12019]  should_failslab+0x8c/0xb0
[  214.145115][T12019]  kmem_cache_alloc_node_noprof+0x57/0x320
[  214.145160][T12019]  ? __alloc_skb+0x101/0x320
[  214.145190][T12019]  __alloc_skb+0x101/0x320
[  214.145220][T12019]  netlink_alloc_large_skb+0xba/0xf0
[  214.145269][T12019]  netlink_sendmsg+0x3cf/0x6b0
[  214.145290][T12019]  ? __pfx_netlink_sendmsg+0x10/0x10
[  214.145369][T12019]  __sock_sendmsg+0x142/0x180
[  214.145391][T12019]  ____sys_sendmsg+0x31e/0x4e0
[  214.145424][T12019]  ___sys_sendmsg+0x17b/0x1d0
[  214.145541][T12019]  __x64_sys_sendmsg+0xd4/0x160
[  214.145634][T12019]  x64_sys_call+0x2999/0x2fb0
[  214.145726][T12019]  do_syscall_64+0xd2/0x200
[  214.145742][T12019]  ? irqentry_exit_to_user_mode+0x7e/0xa0
[  214.145773][T12019]  ? clear_bhb_loop+0x40/0x90
[  214.145795][T12019]  ? clear_bhb_loop+0x40/0x90
[  214.145871][T12019]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.145892][T12019] RIP: 0033:0x7f216d57e929
[  214.145908][T12019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  214.145927][T12019] RSP: 002b:00007f216bbe7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  214.145946][T12019] RAX: ffffffffffffffda RBX: 00007f216d7a5fa0 RCX: 00007f216d57e929
[  214.146027][T12019] RDX: 0000000000008000 RSI: 00002000000000c0 RDI: 000000000000000f
[  214.146038][T12019] RBP: 00007f216bbe7090 R08: 0000000000000000 R09: 0000000000000000
[  214.146048][T12019] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  214.146059][T12019] R13: 0000000000000000 R14: 00007f216d7a5fa0 R15: 00007ffde0cc3038
[  214.146075][T12019]  </TASK>
[  214.398183][T12021] loop0: detected capacity change from 0 to 1024
[  214.407769][T12021] EXT4-fs: Ignoring removed orlov option
[  214.558193][T12028] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2599'.
[  214.567335][T12028] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2599'.
[  214.581033][T12029] loop1: detected capacity change from 0 to 512
[  214.632867][T12029] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.2600: bg 0: block 248: padding at end of block bitmap is not set
[  214.648521][T12029] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.2600: Failed to acquire dquot type 1
[  214.661472][T12029] EXT4-fs (loop1): 1 truncate cleaned up
[  214.667628][T12029] ext4 filesystem being mounted at /534/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  214.871576][T12021] Set syz1 is full, maxelem 65536 reached
[  215.033593][T12045] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  215.069652][T12045] SELinux: failed to load policy
[  215.151511][T12055] loop4: detected capacity change from 0 to 1024
[  215.158000][T12048] loop0: detected capacity change from 0 to 1024
[  215.159309][T12055] EXT4-fs: Ignoring removed orlov option
[  215.173391][T12048] EXT4-fs: Ignoring removed i_version option
[  215.176080][T12058] loop3: detected capacity change from 0 to 256
[  215.186578][T12048] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  215.199718][T12048] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.2606: Invalid block bitmap block 0 in block_group 0
[  215.228477][T12048] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.2606: Failed to acquire dquot type 0
[  215.309642][T12048] EXT4-fs error (device loop0): ext4_free_blocks:6587: comm syz.0.2606: Freeing blocks not in datazone - block = 0, count = 4096
[  215.329177][T12048] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.2606: Invalid inode bitmap blk 0 in block_group 0
[  215.342038][ T4069] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:27: Failed to release dquot type 0
[  215.342538][T12048] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[  215.363407][T12048] EXT4-fs (loop0): 1 orphan inode deleted
[  215.435422][T12065] loop3: detected capacity change from 0 to 512
[  215.442209][T12065] ext4: Bad value for 'debug_want_extra_isize'
[  215.632332][T12068] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2613'.
[  215.641465][T12068] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2613'.
[  216.115653][T12075] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  216.137275][T12075] SELinux: failed to load policy
[  216.359300][T12084] netlink: 596 bytes leftover after parsing attributes in process `+}[@'.
[  216.439181][T12096] loop2: detected capacity change from 0 to 1024
[  216.452922][T12099] macvlan1: entered promiscuous mode
[  216.463391][T12096] EXT4-fs: Ignoring removed orlov option
[  216.475519][T12099] ipvlan0: entered promiscuous mode
[  216.497658][T12099] ipvlan0: left promiscuous mode
[  216.608602][T12099] macvlan1: left promiscuous mode
[  216.788064][   T23] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  216.797464][   T23] hid-generic 0000:0000:0000.0013: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  216.843970][   T29] kauditd_printk_skb: 417 callbacks suppressed
[  216.843984][   T29] audit: type=1326 audit(1752184942.852:26341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12113 comm="syz.3.2625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  216.880989][   T29] audit: type=1326 audit(1752184942.852:26342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12113 comm="syz.3.2625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  216.904638][   T29] audit: type=1326 audit(1752184942.852:26343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12113 comm="syz.3.2625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  216.928315][   T29] audit: type=1326 audit(1752184942.852:26344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12113 comm="syz.3.2625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  216.952071][   T29] audit: type=1326 audit(1752184942.852:26345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12113 comm="syz.3.2625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  216.975735][   T29] audit: type=1326 audit(1752184942.852:26346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12113 comm="syz.3.2625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  216.999318][   T29] audit: type=1326 audit(1752184942.852:26347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12113 comm="syz.3.2625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  217.022924][   T29] audit: type=1326 audit(1752184942.852:26348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12113 comm="syz.3.2625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  217.046533][   T29] audit: type=1326 audit(1752184942.852:26349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12113 comm="syz.3.2625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  217.070216][   T29] audit: type=1326 audit(1752184942.852:26350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12113 comm="syz.3.2625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  217.087046][T12119] loop1: detected capacity change from 0 to 1024
[  217.113207][T12119] EXT4-fs: Ignoring removed orlov option
[  217.223735][T12122] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2627'.
[  217.232782][T12122] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2627'.
[  217.590821][T12147] loop0: detected capacity change from 0 to 1024
[  217.597974][T12147] EXT4-fs: Ignoring removed i_version option
[  217.606082][T12147] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  217.646844][T12148] loop2: detected capacity change from 0 to 512
[  217.653874][T12148] ext4: Bad value for 'debug_want_extra_isize'
[  217.741660][T12147] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.2637: Invalid block bitmap block 0 in block_group 0
[  217.770600][T12147] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.2637: Failed to acquire dquot type 0
[  217.782953][T12147] EXT4-fs error (device loop0): ext4_free_blocks:6587: comm syz.0.2637: Freeing blocks not in datazone - block = 0, count = 4096
[  217.797596][T12147] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.2637: Invalid inode bitmap blk 0 in block_group 0
[  217.811484][ T4073] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:31: Failed to release dquot type 0
[  217.824390][T12147] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem
[  217.834855][T12147] EXT4-fs (loop0): 1 orphan inode deleted
[  218.597478][T12168] FAULT_INJECTION: forcing a failure.
[  218.597478][T12168] name fail_futex, interval 1, probability 0, space 0, times 1
[  218.610435][T12168] CPU: 0 UID: 0 PID: 12168 Comm: syz.1.2646 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) 
[  218.610466][T12168] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  218.610480][T12168] Call Trace:
[  218.610488][T12168]  <TASK>
[  218.610497][T12168]  __dump_stack+0x1d/0x30
[  218.610575][T12168]  dump_stack_lvl+0xe8/0x140
[  218.610596][T12168]  dump_stack+0x15/0x1b
[  218.610611][T12168]  should_fail_ex+0x265/0x280
[  218.610717][T12168]  should_fail+0xb/0x20
[  218.610744][T12168]  get_futex_key+0x130/0xbf0
[  218.610771][T12168]  futex_wait_requeue_pi+0x15c/0x5d0
[  218.610798][T12168]  ? __pfx_futex_wake_mark+0x10/0x10
[  218.610893][T12168]  do_futex+0x136/0x380
[  218.610916][T12168]  __se_sys_futex+0x2ed/0x360
[  218.610938][T12168]  __x64_sys_futex+0x78/0x90
[  218.611021][T12168]  x64_sys_call+0x1331/0x2fb0
[  218.611039][T12168]  do_syscall_64+0xd2/0x200
[  218.611118][T12168]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  218.611146][T12168]  ? clear_bhb_loop+0x40/0x90
[  218.611166][T12168]  ? clear_bhb_loop+0x40/0x90
[  218.611214][T12168]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  218.611265][T12168] RIP: 0033:0x7f5dee50e929
[  218.611358][T12168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  218.611374][T12168] RSP: 002b:00007f5decb77038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  218.611396][T12168] RAX: ffffffffffffffda RBX: 00007f5dee735fa0 RCX: 00007f5dee50e929
[  218.611409][T12168] RDX: 0000000000000000 RSI: 000080000000000b RDI: 000020000000cffc
[  218.611449][T12168] RBP: 00007f5decb77090 R08: 0000200000048000 R09: 0000000000000000
[  218.611460][T12168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  218.611471][T12168] R13: 0000000000000000 R14: 00007f5dee735fa0 R15: 00007ffeda2ebeb8
[  218.611486][T12168]  </TASK>
[  218.909849][T12170] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2638'.
[  218.962958][T12173] loop3: detected capacity change from 0 to 512
[  218.984632][T12173] EXT4-fs (loop3): 1 orphan inode deleted
[  218.991725][T12173] EXT4-fs mount: 75 callbacks suppressed
[  218.991748][T12173] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  219.010222][ T4073] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:31: Failed to release dquot type 1
[  219.040394][T12175] loop0: detected capacity change from 0 to 1024
[  219.047189][T12175] EXT4-fs: Ignoring removed orlov option
[  219.058154][T12173] ext4 filesystem being mounted at /533/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  219.059805][T12175] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  219.075561][T12187] loop2: detected capacity change from 0 to 1024
[  219.110429][T12173] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  219.123901][T12187] EXT4-fs: Ignoring removed orlov option
[  219.133655][T12187] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  219.261131][T12189] netlink: 'syz.4.2652': attribute type 1 has an invalid length.
[  219.341543][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.404003][T12192] loop4: detected capacity change from 0 to 1024
[  219.449717][T12189] veth9: entered promiscuous mode
[  219.475945][T12192] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  219.512069][T12192] ext4 filesystem being mounted at /502/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  219.561590][T12201] netlink: 'syz.0.2655': attribute type 1 has an invalid length.
[  219.602211][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.664491][T12202] veth5: entered promiscuous mode
[  219.682721][T12205] loop0: detected capacity change from 0 to 1024
[  219.726870][T12205] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  219.763271][T12205] ext4 filesystem being mounted at /547/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  219.801502][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.833503][T12210] netlink: 596 bytes leftover after parsing attributes in process `+}[@'.
[  219.901077][T12211] macvlan1: entered promiscuous mode
[  219.906971][T12211] ipvlan0: entered promiscuous mode
[  219.913585][T12211] ipvlan0: left promiscuous mode
[  219.927535][T12211] macvlan1: left promiscuous mode
[  219.959693][ T4054] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm kworker/u8:13: bg 0: block 393: padding at end of block bitmap is not set
[  219.983010][ T4054] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  219.995965][ T4054] EXT4-fs (loop4): This should not happen!! Data will be lost
[  219.995965][ T4054] 
[  220.028464][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.141989][T12223] loop2: detected capacity change from 0 to 512
[  220.150881][T12224] loop4: detected capacity change from 0 to 2048
[  220.171780][T12224] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  220.185186][T12223] EXT4-fs (loop2): 1 orphan inode deleted
[  220.192550][T12223] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  220.205222][ T4072] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:30: Failed to release dquot type 1
[  220.219992][T12224] EXT4-fs error (device loop4): ext4_find_extent:939: inode #2: comm syz.4.2660: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  220.237510][T12223] ext4 filesystem being mounted at /523/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  220.248732][T12224] EXT4-fs (loop4): Remounting filesystem read-only
[  220.260297][T12223] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  220.271434][T12224] netlink: 100 bytes leftover after parsing attributes in process `syz.4.2660'.
[  220.387372][ T4069] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm kworker/u8:27: bg 0: block 393: padding at end of block bitmap is not set
[  220.402856][ T4069] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  220.405605][T12224] SELinux: failed to load policy
[  220.415694][ T4069] EXT4-fs (loop0): This should not happen!! Data will be lost
[  220.415694][ T4069] 
[  220.432599][T12236] loop3: detected capacity change from 0 to 512
[  220.444524][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.462894][T12236] EXT4-fs (loop3): 1 orphan inode deleted
[  220.468999][T12236] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  220.483359][ T4054] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:13: Failed to release dquot type 1
[  220.485006][T12240] loop0: detected capacity change from 0 to 1024
[  220.501890][T12236] ext4 filesystem being mounted at /535/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  220.517599][T12240] EXT4-fs: Ignoring removed orlov option
[  220.523531][T12235] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  220.525645][T12240] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  220.556459][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.577603][T12243] loop0: detected capacity change from 0 to 1024
[  220.591531][T12243] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  220.611533][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.619084][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.626725][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.634240][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.641801][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.649302][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.656878][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.664403][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.672008][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.679538][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.687088][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.694571][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.702112][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.709742][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.717222][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.724738][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.732302][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.739921][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.747390][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.754932][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.762443][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.769977][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.777521][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.785028][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.792524][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.800055][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.807526][   T10] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  220.815278][   T10] hid-generic 0000:0000:0000.0014: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  220.858057][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.879653][T12248] loop0: detected capacity change from 0 to 512
[  220.891283][T12248] EXT4-fs (loop0): 1 orphan inode deleted
[  220.897394][T12248] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  220.910302][ T4054] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:13: Failed to release dquot type 1
[  220.935412][T12248] ext4 filesystem being mounted at /550/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  220.946343][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.951760][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.971955][T12248] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  220.981512][T12255] loop1: detected capacity change from 0 to 512
[  220.997616][T12259] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2670'.
[  221.009890][T12255] EXT4-fs (loop1): 1 orphan inode deleted
[  221.009968][T12259] loop2: detected capacity change from 0 to 512
[  221.016165][T12255] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  221.035229][T12255] ext4 filesystem being mounted at /551/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  221.035715][ T4067] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:25: Failed to release dquot type 1
[  221.059522][T12259] EXT4-fs (loop2): 1 orphan inode deleted
[  221.065527][T12259] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  221.078074][ T4069] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:27: Failed to release dquot type 1
[  221.078206][T12259] ext4 filesystem being mounted at /525/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  221.094159][T12252] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  221.109288][T12259] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  221.213752][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.240734][T12269] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2672'.
[  221.304857][T12270] netlink: 6048 bytes leftover after parsing attributes in process `syz.3.2672'.
[  221.375543][T12272] loop3: detected capacity change from 0 to 1024
[  221.382330][T12272] EXT4-fs: Ignoring removed orlov option
[  221.390040][T12272] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  221.580904][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.612078][T12278] loop3: detected capacity change from 0 to 1024
[  221.618806][T12278] EXT4-fs: Ignoring removed orlov option
[  221.626405][T12278] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  221.649700][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.667218][T12281] loop3: detected capacity change from 0 to 1024
[  221.673946][T12281] EXT4-fs: Ignoring removed orlov option
[  221.681462][T12281] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  221.720710][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.768412][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.800684][T12288] macvlan1: entered promiscuous mode
[  221.806979][T12288] ipvlan0: entered promiscuous mode
[  221.847642][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.863998][T12288] ipvlan0: left promiscuous mode
[  221.872066][T12288] macvlan1: left promiscuous mode
[  221.885799][T12295] loop1: detected capacity change from 0 to 512
[  221.933355][T12299] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2681'.
[  221.942638][T12299] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2681'.
[  221.953767][T12295] EXT4-fs (loop1): 1 orphan inode deleted
[  221.961654][T12295] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  221.980693][T12295] ext4 filesystem being mounted at /553/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  221.989629][ T4067] __quota_error: 130 callbacks suppressed
[  221.989658][ T4067] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  222.007090][ T4067] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:25: Failed to release dquot type 1
[  222.032047][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.044400][   T29] audit: type=1326 audit(1752184948.052:26472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12291 comm="syz.4.2680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23d149e929 code=0x7ffc0000
[  222.068507][   T29] audit: type=1326 audit(1752184948.052:26473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12291 comm="syz.4.2680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=439 compat=0 ip=0x7f23d149e929 code=0x7ffc0000
[  222.092586][   T29] audit: type=1326 audit(1752184948.052:26474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12291 comm="syz.4.2680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23d149e929 code=0x7ffc0000
[  222.116383][   T29] audit: type=1326 audit(1752184948.052:26475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12291 comm="syz.4.2680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23d149e929 code=0x7ffc0000
[  222.140819][T12295] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  222.174828][T12307] loop3: detected capacity change from 0 to 256
[  222.216335][T12311] netlink: 48 bytes leftover after parsing attributes in process `syz.3.2685'.
[  222.480967][T12317] loop2: detected capacity change from 0 to 512
[  222.523012][T12324] lo speed is unknown, defaulting to 1000
[  222.702548][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.731576][T12317] EXT4-fs (loop2): 1 orphan inode deleted
[  222.741567][T12317] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.754508][   T29] audit: type=1326 audit(1752184948.752:26476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12327 comm="syz.0.2693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f346681e929 code=0x7ffc0000
[  222.778960][   T29] audit: type=1326 audit(1752184948.752:26477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12327 comm="syz.0.2693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f346681e929 code=0x7ffc0000
[  222.795406][T12324] lo speed is unknown, defaulting to 1000
[  222.803175][   T29] audit: type=1326 audit(1752184948.752:26478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12327 comm="syz.0.2693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f346681e929 code=0x7ffc0000
[  222.803262][   T29] audit: type=1326 audit(1752184948.752:26479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12327 comm="syz.0.2693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f346681e929 code=0x7ffc0000
[  222.803289][   T29] audit: type=1326 audit(1752184948.752:26480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12327 comm="syz.0.2693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f346681e929 code=0x7ffc0000
[  222.803550][ T4073] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:31: Failed to release dquot type 1
[  222.841321][T12317] ext4 filesystem being mounted at /528/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  222.875014][T12332] loop1: detected capacity change from 0 to 1024
[  222.942872][T12317] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  222.964886][T12332] EXT4-fs: Ignoring removed orlov option
[  222.979699][T12332] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  223.138653][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.237640][T12359] netlink: 'syz.0.2695': attribute type 1 has an invalid length.
[  223.245754][T12359] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12359 comm=syz.0.2695
[  223.555411][T12363] loop2: detected capacity change from 0 to 512
[  223.572580][T12363] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2704: bg 0: block 248: padding at end of block bitmap is not set
[  223.587446][T12363] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.2704: Failed to acquire dquot type 1
[  223.599454][T12363] EXT4-fs (loop2): 1 truncate cleaned up
[  223.605406][T12363] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  223.618005][T12363] ext4 filesystem being mounted at /532/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  223.641437][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.651654][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.187947][T12380] loop4: detected capacity change from 0 to 512
[  224.824016][T12382] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2709'.
[  224.945472][T12380] EXT4-fs (loop4): 1 orphan inode deleted
[  224.961557][ T4067] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:25: Failed to release dquot type 1
[  224.964036][T12380] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.003724][T12396] loop1: detected capacity change from 0 to 1024
[  225.012590][T12380] ext4 filesystem being mounted at /513/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  225.026270][T12396] EXT4-fs: Ignoring removed orlov option
[  225.036213][T12396] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.051555][T12380] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  225.061693][T12404] loop2: detected capacity change from 0 to 1024
[  225.068484][T12404] EXT4-fs: Ignoring removed orlov option
[  225.087711][T12404] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.105348][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.118853][T12407] loop0: detected capacity change from 0 to 256
[  225.220471][T12411] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  225.230682][T12411] SELinux: failed to load policy
[  225.345536][T12418] netlink: 'syz.1.2718': attribute type 1 has an invalid length.
[  225.353836][T12418] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12418 comm=syz.1.2718
[  225.368256][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.428593][T12422] FAULT_INJECTION: forcing a failure.
[  225.428593][T12422] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  225.441794][T12422] CPU: 1 UID: 0 PID: 12422 Comm: syz.0.2724 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) 
[  225.441909][T12422] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  225.441922][T12422] Call Trace:
[  225.441929][T12422]  <TASK>
[  225.441938][T12422]  __dump_stack+0x1d/0x30
[  225.442032][T12422]  dump_stack_lvl+0xe8/0x140
[  225.442048][T12422]  dump_stack+0x15/0x1b
[  225.442063][T12422]  should_fail_ex+0x265/0x280
[  225.442111][T12422]  should_fail+0xb/0x20
[  225.442187][T12422]  should_fail_usercopy+0x1a/0x20
[  225.442217][T12422]  _copy_to_user+0x20/0xa0
[  225.442284][T12422]  simple_read_from_buffer+0xb5/0x130
[  225.442376][T12422]  proc_fail_nth_read+0x100/0x140
[  225.442404][T12422]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  225.442511][T12422]  vfs_read+0x1a0/0x6f0
[  225.442535][T12422]  ? __rcu_read_unlock+0x4f/0x70
[  225.442554][T12422]  ? __rcu_read_unlock+0x4f/0x70
[  225.442589][T12422]  ? __fget_files+0x184/0x1c0
[  225.442611][T12422]  ksys_read+0xda/0x1a0
[  225.442642][T12422]  __x64_sys_read+0x40/0x50
[  225.442695][T12422]  x64_sys_call+0x2d77/0x2fb0
[  225.442775][T12422]  do_syscall_64+0xd2/0x200
[  225.442794][T12422]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  225.442892][T12422]  ? clear_bhb_loop+0x40/0x90
[  225.442910][T12422]  ? clear_bhb_loop+0x40/0x90
[  225.442930][T12422]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  225.443006][T12422] RIP: 0033:0x7f346681d33c
[  225.443019][T12422] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  225.443040][T12422] RSP: 002b:00007f3464e87030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  225.443061][T12422] RAX: ffffffffffffffda RBX: 00007f3466a45fa0 RCX: 00007f346681d33c
[  225.443074][T12422] RDX: 000000000000000f RSI: 00007f3464e870a0 RDI: 0000000000000005
[  225.443088][T12422] RBP: 00007f3464e87090 R08: 0000000000000000 R09: 0000000000000000
[  225.443132][T12422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  225.443143][T12422] R13: 0000000000000000 R14: 00007f3466a45fa0 R15: 00007ffd8b0d5f48
[  225.443162][T12422]  </TASK>
[  225.676688][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.704617][T12424] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2725'.
[  225.883294][T12442] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  225.893173][T12442] SELinux: failed to load policy
[  225.961353][T12444] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  225.991826][T12444] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2728'.
[  226.132518][T12447] loop3: detected capacity change from 0 to 512
[  226.154892][T12447] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  226.164856][T12447] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities
[  226.191316][T12448] loop1: detected capacity change from 0 to 512
[  226.290581][T12448] EXT4-fs (loop1): 1 orphan inode deleted
[  226.296783][T12448] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  226.309792][ T4067] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:25: Failed to release dquot type 1
[  226.311027][T12448] ext4 filesystem being mounted at /558/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  226.336988][T12446] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  226.745747][T12463] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2737'.
[  226.785866][T12465] veth7: entered promiscuous mode
[  226.808773][T12465] loop2: detected capacity change from 0 to 1024
[  226.836677][T12465] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  226.862484][T12472] netlink: 'syz.0.2739': attribute type 1 has an invalid length.
[  226.896035][T12465] ext4 filesystem being mounted at /538/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  226.932165][T12472] veth7: entered promiscuous mode
[  226.948454][ T3304] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.047321][T12479] loop0: detected capacity change from 0 to 1024
[  227.121873][   T29] kauditd_printk_skb: 184 callbacks suppressed
[  227.121888][   T29] audit: type=1326 audit(1752184953.132:26660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12468 comm="syz.0.2739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f346681e929 code=0x7ffc0000
[  227.211791][T12483] loop3: detected capacity change from 0 to 512
[  227.218456][T12483] ext4: Bad value for 'debug_want_extra_isize'
[  227.382459][T12479] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  227.409470][   T29] audit: type=1326 audit(1752184953.142:26661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12460 comm="syz.2.2736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7fab6414e929 code=0x7ffc0000
[  227.433061][   T29] audit: type=1326 audit(1752184953.142:26662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12460 comm="syz.2.2736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6414e929 code=0x7ffc0000
[  227.443360][T12479] ext4 filesystem being mounted at /569/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  227.456641][   T29] audit: type=1326 audit(1752184953.142:26663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12460 comm="syz.2.2736" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6414e929 code=0x7ffc0000
[  227.456672][   T29] audit: type=1326 audit(1752184953.162:26664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12468 comm="syz.0.2739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f346681e929 code=0x7ffc0000
[  227.543565][ T4054] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm kworker/u8:13: bg 0: block 393: padding at end of block bitmap is not set
[  227.552563][   T29] audit: type=1326 audit(1752184953.552:26665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12468 comm="syz.0.2739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f346681e929 code=0x7ffc0000
[  227.570187][ T4054] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 117
[  227.594430][ T4054] EXT4-fs (loop2): This should not happen!! Data will be lost
[  227.594430][ T4054] 
[  227.608776][   T29] audit: type=1326 audit(1752184953.612:26666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12468 comm="syz.0.2739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f346681e929 code=0x7ffc0000
[  227.622483][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.632469][   T29] audit: type=1326 audit(1752184953.612:26667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12468 comm="syz.0.2739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f346681e929 code=0x7ffc0000
[  227.666781][   T29] audit: type=1326 audit(1752184953.672:26668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12468 comm="syz.0.2739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7f346681e929 code=0x7ffc0000
[  227.670509][T12487] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2743'.
[  227.690366][   T29] audit: type=1326 audit(1752184953.672:26669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12468 comm="syz.0.2739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f346681e929 code=0x7ffc0000
[  227.742501][T12491] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2744'.
[  227.807127][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.827803][T12491] netlink: 6048 bytes leftover after parsing attributes in process `syz.2.2744'.
[  227.852489][T12496] loop0: detected capacity change from 0 to 1024
[  227.864735][T12497] macvlan1: entered promiscuous mode
[  227.872101][T12497] ipvlan0: entered promiscuous mode
[  227.878151][T12497] ipvlan0: left promiscuous mode
[  227.884281][T12497] macvlan1: left promiscuous mode
[  227.892375][T12496] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  227.964137][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  227.971638][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  227.980013][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  227.987435][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  227.994904][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.002393][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.009814][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.017328][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.024748][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.032189][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.039657][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.047049][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.060298][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.067737][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.075212][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.082651][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.090130][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.097533][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.104966][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.112441][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.119881][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.127280][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.134703][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.142187][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.149621][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.157059][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.164528][ T3380] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  228.170797][T12509] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2749'.
[  228.172369][ T3380] hid-generic 0000:0000:0000.0015: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  228.241161][T12515] loop2: detected capacity change from 0 to 1024
[  228.248089][T12515] EXT4-fs: Ignoring removed orlov option
[  228.259834][T12515] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  228.273043][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.459965][T12523] veth9: entered promiscuous mode
[  228.480644][ T3306] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.505260][T12523] loop0: detected capacity change from 0 to 1024
[  228.532101][T12523] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  228.544361][T12523] ext4 filesystem being mounted at /571/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  228.550848][T12527] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2756'.
[  228.848507][T12545] macvlan1: entered promiscuous mode
[  228.857956][T12545] ipvlan0: entered promiscuous mode
[  228.869256][T12545] ipvlan0: left promiscuous mode
[  228.879544][T12545] macvlan1: left promiscuous mode
[  229.330207][T12552] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  229.344151][T12552] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2760'.
[  229.409689][ T4054] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm kworker/u8:13: bg 0: block 393: padding at end of block bitmap is not set
[  229.429804][ T4054] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  229.442617][ T4054] EXT4-fs (loop0): This should not happen!! Data will be lost
[  229.442617][ T4054] 
[  229.469191][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.626822][T12554] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2765'.
[  229.695264][T12561] netlink: 6048 bytes leftover after parsing attributes in process `syz.0.2765'.
[  229.767721][T12569] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2769'.
[  229.896296][T12580] macvlan1: entered promiscuous mode
[  229.902465][T12580] ipvlan0: entered promiscuous mode
[  229.908268][T12580] ipvlan0: left promiscuous mode
[  229.913593][T12580] macvlan1: left promiscuous mode
[  230.593440][T12596] loop3: detected capacity change from 0 to 1024
[  230.602698][T12596] EXT4-fs: Ignoring removed orlov option
[  230.608940][T12597] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  230.610983][T12596] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  230.886220][T12608] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  230.939605][T12608] SELinux: failed to load policy
[  231.104811][T12619] loop0: detected capacity change from 0 to 1024
[  231.122113][T12619] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  231.136583][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.162533][T12630] loop3: detected capacity change from 0 to 512
[  231.196140][T12630] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2791: bg 0: block 248: padding at end of block bitmap is not set
[  231.211383][T12630] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.2791: Failed to acquire dquot type 1
[  231.240454][T12630] EXT4-fs (loop3): 1 truncate cleaned up
[  231.255216][ T3310] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.259822][T12630] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  231.276808][T12630] ext4 filesystem being mounted at /561/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  231.307964][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.740631][T12652] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  231.781108][T12652] SELinux: failed to load policy
[  231.906488][T12654] loop2: detected capacity change from 0 to 512
[  231.911857][T12656] loop1: detected capacity change from 0 to 2048
[  231.932278][T12654] EXT4-fs (loop2): 1 orphan inode deleted
[  231.941855][T12654] ext4 filesystem being mounted at /555/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  231.954886][ T4069] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:27: Failed to release dquot type 1
[  231.975159][T12662] syz_tun: left allmulticast mode
[  231.980275][T12662] syz_tun: left promiscuous mode
[  231.985454][T12662] bridge0: port 2(syz_tun) entered disabled state
[  231.992920][T12662] bridge0: port 1(team0) entered disabled state
[  232.012630][T12654] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  232.204791][T12670] loop4: detected capacity change from 0 to 1024
[  233.255198][   T29] kauditd_printk_skb: 222 callbacks suppressed
[  233.255215][   T29] audit: type=1326 audit(1752184959.262:26889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12700 comm="syz.3.2816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  233.266803][T12709] __nla_validate_parse: 6 callbacks suppressed
[  233.266821][T12709] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2819'.
[  233.291645][   T29] audit: type=1326 audit(1752184959.302:26890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12700 comm="syz.3.2816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=439 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  233.324118][   T29] audit: type=1326 audit(1752184959.302:26891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12700 comm="syz.3.2816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  233.347947][   T29] audit: type=1326 audit(1752184959.302:26892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12700 comm="syz.3.2816" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  233.388153][T12714] netlink: 6048 bytes leftover after parsing attributes in process `syz.4.2819'.
[  233.443059][   T29] audit: type=1326 audit(1752184959.452:26893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12721 comm="syz.3.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  233.466767][   T29] audit: type=1326 audit(1752184959.452:26894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12721 comm="syz.3.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  233.474768][T12724] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2826'.
[  233.490311][   T29] audit: type=1326 audit(1752184959.452:26895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12721 comm="syz.3.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  233.523059][   T29] audit: type=1326 audit(1752184959.452:26896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12721 comm="syz.3.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  233.546745][   T29] audit: type=1326 audit(1752184959.452:26897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12721 comm="syz.3.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  233.560583][T12726] loop4: detected capacity change from 0 to 512
[  233.570353][   T29] audit: type=1326 audit(1752184959.452:26898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12721 comm="syz.3.2825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  233.671243][T12726] EXT4-fs (loop4): 1 orphan inode deleted
[  233.677952][T12726] ext4 filesystem being mounted at /532/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  233.690628][T12732] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2827'.
[  233.710518][ T4072] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:30: Failed to release dquot type 1
[  233.732733][T12739] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  233.742722][T12739] SELinux: failed to load policy
[  233.751585][T12724] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  233.905789][T12753] loop1: detected capacity change from 0 to 256
[  233.975621][T12759] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  233.990447][T12758] loop2: detected capacity change from 0 to 1024
[  234.127318][T12770] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2840'.
[  234.129187][T12767] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2841'.
[  234.141218][T12759] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2832'.
[  234.154418][T12770] loop2: detected capacity change from 0 to 512
[  234.202861][T12770] EXT4-fs (loop2): 1 orphan inode deleted
[  234.209132][T12770] ext4 filesystem being mounted at /561/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  234.220911][ T4069] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:27: Failed to release dquot type 1
[  234.250591][T12770] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  234.372191][T12781] loop3: detected capacity change from 0 to 512
[  234.393170][T12784] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2846'.
[  234.413557][T12781] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2844: bg 0: block 248: padding at end of block bitmap is not set
[  234.442586][T12784] loop1: detected capacity change from 0 to 512
[  234.450310][T12781] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.2844: Failed to acquire dquot type 1
[  234.463297][T12790] loop4: detected capacity change from 0 to 256
[  234.471600][T12784] EXT4-fs (loop1): 1 orphan inode deleted
[  234.477495][T12781] EXT4-fs (loop3): 1 truncate cleaned up
[  234.484463][T12784] ext4 filesystem being mounted at /586/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  234.495093][ T4072] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:30: Failed to release dquot type 1
[  234.517399][T12781] ext4 filesystem being mounted at /569/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  234.541932][T12784] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  234.685858][T12802] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2851'.
[  234.717057][T12804] loop3: detected capacity change from 0 to 1024
[  234.724914][T12804] EXT4-fs: Ignoring removed orlov option
[  234.746051][T12804] Set syz1 is full, maxelem 65536 reached
[  234.822736][T12807] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2853'.
[  234.867111][T12814] macvlan1: entered promiscuous mode
[  234.874695][T12814] ipvlan0: entered promiscuous mode
[  234.882712][T12814] ipvlan0: left promiscuous mode
[  234.888337][T12814] macvlan1: left promiscuous mode
[  235.012736][T12816] loop2: detected capacity change from 0 to 512
[  235.031462][T12816] EXT4-fs (loop2): 1 orphan inode deleted
[  235.037797][T12816] ext4 filesystem being mounted at /562/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  235.049251][ T4073] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:31: Failed to release dquot type 1
[  235.061529][T12816] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  235.248989][T12826] loop1: detected capacity change from 0 to 512
[  235.261957][T12826] EXT4-fs (loop1): 1 orphan inode deleted
[  235.268574][T12826] ext4 filesystem being mounted at /588/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  235.280712][ T4069] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:27: Failed to release dquot type 1
[  235.293472][T12826] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  235.656225][T12831] loop0: detected capacity change from 0 to 512
[  235.670967][T12831] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2860: bg 0: block 248: padding at end of block bitmap is not set
[  235.685651][T12831] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.2860: Failed to acquire dquot type 1
[  235.697918][T12831] EXT4-fs (loop0): 1 truncate cleaned up
[  235.704197][T12831] ext4 filesystem being mounted at /594/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  235.984755][T12863] loop3: detected capacity change from 0 to 512
[  236.005331][T12863] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2872: bg 0: block 248: padding at end of block bitmap is not set
[  236.025741][T12866] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  236.027397][T12867] macvlan1: entered promiscuous mode
[  236.046785][T12863] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.2872: Failed to acquire dquot type 1
[  236.065165][T12867] ipvlan0: entered promiscuous mode
[  236.072426][T12863] EXT4-fs (loop3): 1 truncate cleaned up
[  236.074380][T12867] ipvlan0: left promiscuous mode
[  236.079129][T12863] ext4 filesystem being mounted at /575/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  236.106789][T12867] macvlan1: left promiscuous mode
[  236.180840][T12871] loop1: detected capacity change from 0 to 1024
[  236.188576][T12871] EXT4-fs: Ignoring removed i_version option
[  236.195618][T12871] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  236.300734][T12871] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.2874: Invalid block bitmap block 0 in block_group 0
[  236.324209][T12871] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.2874: Failed to acquire dquot type 0
[  236.352761][T12871] EXT4-fs error (device loop1): ext4_free_blocks:6587: comm syz.1.2874: Freeing blocks not in datazone - block = 0, count = 4096
[  236.399204][T12881] netlink: 'syz.3.2875': attribute type 1 has an invalid length.
[  236.407650][T12881] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12881 comm=syz.3.2875
[  236.524895][T12871] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.2874: Invalid inode bitmap blk 0 in block_group 0
[  236.539890][T12871] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[  236.550068][ T4072] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:30: Failed to release dquot type 0
[  236.562620][T12871] EXT4-fs (loop1): 1 orphan inode deleted
[  237.000092][T12890] loop2: detected capacity change from 0 to 1024
[  237.028044][T12890] EXT4-fs: Ignoring removed orlov option
[  237.225643][T12902] loop3: detected capacity change from 0 to 512
[  237.256219][T12902] EXT4-fs (loop3): 1 orphan inode deleted
[  237.262726][T12902] ext4 filesystem being mounted at /579/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  237.273563][ T4069] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:27: Failed to release dquot type 1
[  237.295797][T12902] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  237.318366][T12907] loop2: detected capacity change from 0 to 1024
[  237.328498][T12907] EXT4-fs: Ignoring removed orlov option
[  237.443172][ T3816] bridge0: port 3(syz_tun) entered disabled state
[  237.454341][ T3816] syz_tun (unregistering): left allmulticast mode
[  237.460859][ T3816] syz_tun (unregistering): left promiscuous mode
[  237.467269][ T3816] bridge0: port 3(syz_tun) entered disabled state
[  237.700944][T12928] netlink: 'syz.2.2890': attribute type 1 has an invalid length.
[  237.709025][T12928] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12928 comm=syz.2.2890
[  238.061253][T12916] lo speed is unknown, defaulting to 1000
[  238.100428][T12916] lo speed is unknown, defaulting to 1000
[  238.148010][ T4072] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.205037][T12916] chnl_net:caif_netlink_parms(): no params data found
[  238.238596][ T4072] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.266434][   T29] kauditd_printk_skb: 728 callbacks suppressed
[  238.266450][   T29] audit: type=1326 audit(1752184964.272:27612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12943 comm="syz.4.2895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f23d14958e7 code=0x7ffc0000
[  238.296872][   T29] audit: type=1326 audit(1752184964.272:27613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12943 comm="syz.4.2895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f23d143ab19 code=0x7ffc0000
[  238.306780][T12952] __nla_validate_parse: 13 callbacks suppressed
[  238.306795][T12952] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2896'.
[  238.320380][   T29] audit: type=1326 audit(1752184964.272:27614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12943 comm="syz.4.2895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f23d149e929 code=0x7ffc0000
[  238.320410][   T29] audit: type=1326 audit(1752184964.282:27615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12943 comm="syz.4.2895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f23d14958e7 code=0x7ffc0000
[  238.326656][T12952] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2896'.
[  238.335609][   T29] audit: type=1326 audit(1752184964.282:27616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12943 comm="syz.4.2895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f23d143ab19 code=0x7ffc0000
[  238.415205][   T29] audit: type=1326 audit(1752184964.282:27617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12943 comm="syz.4.2895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f23d149e929 code=0x7ffc0000
[  238.438819][   T29] audit: type=1326 audit(1752184964.282:27618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12943 comm="syz.4.2895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f23d14958e7 code=0x7ffc0000
[  238.462406][   T29] audit: type=1326 audit(1752184964.282:27619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12943 comm="syz.4.2895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f23d143ab19 code=0x7ffc0000
[  238.485986][   T29] audit: type=1326 audit(1752184964.282:27620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12943 comm="syz.4.2895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f23d149e929 code=0x7ffc0000
[  238.509661][   T29] audit: type=1326 audit(1752184964.312:27621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12943 comm="syz.4.2895" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f23d14958e7 code=0x7ffc0000
[  238.600692][T12957] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2899'.
[  238.609640][T12957] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2899'.
[  238.640570][T12916] bridge0: port 1(bridge_slave_0) entered blocking state
[  238.647668][T12916] bridge0: port 1(bridge_slave_0) entered disabled state
[  238.658120][T12961] loop2: detected capacity change from 0 to 512
[  238.667303][T12916] bridge_slave_0: entered allmulticast mode
[  238.673554][T12960] loop1: detected capacity change from 0 to 1024
[  238.674545][T12916] bridge_slave_0: entered promiscuous mode
[  238.683704][T12961] EXT4-fs (loop2): 1 orphan inode deleted
[  238.692890][T12961] ext4 filesystem being mounted at /573/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  238.704082][ T4069] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:27: Failed to release dquot type 1
[  238.717787][ T4072] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.729355][T12957] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  238.740411][T12916] bridge0: port 2(bridge_slave_1) entered blocking state
[  238.747578][T12916] bridge0: port 2(bridge_slave_1) entered disabled state
[  238.756357][T12967] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2901'.
[  238.765677][T12916] bridge_slave_1: entered allmulticast mode
[  238.773600][T12916] bridge_slave_1: entered promiscuous mode
[  238.785871][T12969] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2902'.
[  238.820181][ T4072] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.832924][T12916] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  238.842375][T12970] loop3: detected capacity change from 0 to 512
[  238.850339][T12916] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  238.873677][T12916] team0: Port device team_slave_0 added
[  238.881000][T12916] team0: Port device team_slave_1 added
[  238.891941][T12970] EXT4-fs (loop3): 1 orphan inode deleted
[  238.903152][T12970] ext4 filesystem being mounted at /583/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  238.915294][ T4054] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:13: Failed to release dquot type 1
[  238.933108][T12916] batman_adv: batadv0: Adding interface: batadv_slave_0
[  238.940180][T12916] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  238.959932][T12967] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  238.966235][T12916] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  238.989952][T12916] batman_adv: batadv0: Adding interface: batadv_slave_1
[  238.997004][T12916] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  239.022976][T12916] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  239.033883][ T4072] bridge_slave_1: left allmulticast mode
[  239.039574][ T4072] bridge_slave_1: left promiscuous mode
[  239.045274][ T4072] bridge0: port 2(bridge_slave_1) entered disabled state
[  239.055093][ T4072] bridge_slave_0: left allmulticast mode
[  239.060806][ T4072] bridge_slave_0: left promiscuous mode
[  239.066449][ T4072] bridge0: port 1(bridge_slave_0) entered disabled state
[  239.250285][ T4072] $Hÿ (unregistering): (slave bond_slave_0): Releasing backup interface
[  239.269740][ T4072] bond_slave_0: left promiscuous mode
[  239.290807][ T4072] $Hÿ (unregistering): (slave bond_slave_1): Releasing backup interface
[  239.309806][ T4072] bond_slave_1: left promiscuous mode
[  239.316376][ T4072] $Hÿ (unregistering): Released all slaves
[  239.326229][ T4072] bond0 (unregistering): (slave veth3): Releasing backup interface
[  239.340856][ T4072] bond0 (unregistering): Released all slaves
[  239.350947][ T4072] bond1 (unregistering): Released all slaves
[  239.360727][ T4072] bond2 (unregistering): Released all slaves
[  239.374231][T12981] macvlan1: entered promiscuous mode
[  239.381900][T12981] ipvlan0: entered promiscuous mode
[  239.387646][T12981] ipvlan0: left promiscuous mode
[  239.393016][T12981] macvlan1: left promiscuous mode
[  239.503674][ T4072] hsr_slave_0: left promiscuous mode
[  239.510310][ T4072] hsr_slave_1: left promiscuous mode
[  239.516230][ T4072] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  239.523796][ T4072] batman_adv: batadv0: Removing interface: batadv_slave_0
[  239.551691][ T4072] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  239.559253][ T4072] batman_adv: batadv0: Removing interface: batadv_slave_1
[  239.589581][ T4072] veth1_to_batadv: left promiscuous mode
[  239.597864][ T4072] veth1_macvtap: left promiscuous mode
[  239.611303][ T4072] veth0_macvtap: left promiscuous mode
[  239.623769][ T4072] veth1_vlan: left promiscuous mode
[  239.786593][ T4072] team0 (unregistering): Port device team_slave_1 removed
[  239.797481][ T4072] team0 (unregistering): Port device team_slave_0 removed
[  239.815905][T12989] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12989 comm=syz.1.2908
[  239.848811][ T4069] smc: removing ib device syz0
[  239.861813][T12916] hsr_slave_0: entered promiscuous mode
[  239.880249][T12916] hsr_slave_1: entered promiscuous mode
[  239.886457][T12916] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  239.911152][T12916] Cannot create hsr debugfs directory
[  239.918424][ T1103] lo speed is unknown, defaulting to 1000
[  239.924428][ T1103] syz0: Port: 1 Link DOWN
[  239.987870][T12996] loop2: detected capacity change from 0 to 512
[  240.059235][T12996] EXT4-fs (loop2): 1 orphan inode deleted
[  240.069719][T12996] ext4 filesystem being mounted at /575/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  240.082981][ T4054] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:13: Failed to release dquot type 1
[  240.100607][T12994] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  240.105114][T13007] loop4: detected capacity change from 0 to 1024
[  240.123539][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.131021][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.138469][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.145905][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.153447][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.160836][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.168213][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.175629][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.183063][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.190530][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.197986][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.205378][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.214568][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.222048][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.229535][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.236986][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.244408][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.251870][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.259283][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.266690][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.274091][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.281481][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.288852][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.296311][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.303834][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.311229][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.318601][ T1103] hid-generic 0000:0000:0000.0016: unknown main item tag 0x0
[  240.326453][ T1103] hid-generic 0000:0000:0000.0016: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  240.436491][T13014] loop3: detected capacity change from 0 to 512
[  240.450905][T13014] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2915: bg 0: block 248: padding at end of block bitmap is not set
[  240.466554][T13014] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.2915: Failed to acquire dquot type 1
[  240.478679][T13014] EXT4-fs (loop3): 1 truncate cleaned up
[  240.484964][T13014] ext4 filesystem being mounted at /585/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  240.524916][T12916] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  240.535921][T12916] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  240.546733][T12916] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  240.556353][T12916] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  240.565632][T13018] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2916'.
[  240.607047][T12916] 8021q: adding VLAN 0 to HW filter on device bond0
[  240.619229][T12916] 8021q: adding VLAN 0 to HW filter on device team0
[  240.628386][ T4066] bridge0: port 1(bridge_slave_0) entered blocking state
[  240.635496][ T4066] bridge0: port 1(bridge_slave_0) entered forwarding state
[  240.647841][ T4069] bridge0: port 2(bridge_slave_1) entered blocking state
[  240.654975][ T4069] bridge0: port 2(bridge_slave_1) entered forwarding state
[  240.669923][T13028] loop3: detected capacity change from 0 to 1024
[  240.676811][T13028] EXT4-fs: Ignoring removed i_version option
[  240.684782][T13028] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  240.697570][T13028] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.2917: Invalid block bitmap block 0 in block_group 0
[  240.712642][T13028] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.2917: Failed to acquire dquot type 0
[  240.725293][T13028] EXT4-fs error (device loop3): ext4_free_blocks:6587: comm syz.3.2917: Freeing blocks not in datazone - block = 0, count = 4096
[  240.739958][T13028] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.2917: Invalid inode bitmap blk 0 in block_group 0
[  240.741443][T12916] 8021q: adding VLAN 0 to HW filter on device batadv0
[  240.760297][ T4069] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:27: Failed to release dquot type 0
[  240.774491][T13028] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  240.784971][T13028] EXT4-fs (loop3): 1 orphan inode deleted
[  240.843412][T12916] veth0_vlan: entered promiscuous mode
[  240.853261][T12916] veth1_vlan: entered promiscuous mode
[  240.871969][T12916] veth0_macvtap: entered promiscuous mode
[  240.879937][T12916] veth1_macvtap: entered promiscuous mode
[  240.892986][T12916] batman_adv: batadv0: Interface activated: batadv_slave_0
[  240.905616][T12916] batman_adv: batadv0: Interface activated: batadv_slave_1
[  240.916805][T12916] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  240.925815][T12916] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  240.934937][T12916] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  240.943769][T12916] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  241.088366][T13048] loop0: detected capacity change from 0 to 256
[  241.152731][T13049] netlink: 'syz.1.2919': attribute type 1 has an invalid length.
[  241.161177][T13049] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13049 comm=syz.1.2919
[  241.375822][T13052] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  241.392878][T13052] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2921'.
[  241.561738][T13057] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2925'.
[  241.589047][T13055] loop4: detected capacity change from 0 to 1024
[  241.659158][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.666705][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.683683][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.691649][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.699032][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.706513][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.713980][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.721437][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.728836][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.736306][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.743810][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.751240][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.759064][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.766552][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.774023][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.781425][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.788802][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.796233][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.803804][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.805957][T13068] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2926'.
[  241.811215][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.811246][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.811309][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.811334][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.811360][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.811382][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.811405][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.855721][T13069] macvlan1: entered promiscuous mode
[  241.857171][   T23] hid-generic 0000:0000:0000.0017: unknown main item tag 0x0
[  241.864872][   T23] hid-generic 0000:0000:0000.0017: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  241.898995][T13069] ipvlan0: entered promiscuous mode
[  241.905789][T13069] ipvlan0: left promiscuous mode
[  241.926156][T13069] macvlan1: left promiscuous mode
[  241.996344][ T3304] bridge0: port 3(syz_tun) entered disabled state
[  242.007192][ T3304] syz_tun (unregistering): left allmulticast mode
[  242.014019][ T3304] syz_tun (unregistering): left promiscuous mode
[  242.014050][ T1103] hid-generic 0000:0000:0000.0018: unknown main item tag 0x0
[  242.020591][ T3304] bridge0: port 3(syz_tun) entered disabled state
[  242.130666][ T1103] hid-generic 0000:0000:0000.0018: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  242.182300][T13075] lo speed is unknown, defaulting to 1000
[  242.195009][ T4069] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  242.265830][T13096] loop4: detected capacity change from 0 to 512
[  242.272621][T13096] ext4: Bad value for 'debug_want_extra_isize'
[  242.294550][ T4069] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  242.357189][ T4069] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  242.518499][ T4069] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  243.421211][T13108] netlink: 'syz.2.2937': attribute type 1 has an invalid length.
[  243.457153][T13075] chnl_net:caif_netlink_parms(): no params data found
[  243.474314][T13113] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13113 comm=syz.2.2937
[  243.657382][   T29] kauditd_printk_skb: 569 callbacks suppressed
[  243.657395][   T29] audit: type=1326 audit(1752184969.662:28183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13111 comm="syz.3.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  243.687219][   T29] audit: type=1326 audit(1752184969.662:28184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13111 comm="syz.3.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=439 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  243.710886][   T29] audit: type=1326 audit(1752184969.662:28185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13111 comm="syz.3.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  243.734487][   T29] audit: type=1326 audit(1752184969.662:28186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13111 comm="syz.3.2939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f216d57e929 code=0x7ffc0000
[  243.776757][T13110] __nla_validate_parse: 1 callbacks suppressed
[  243.776772][T13110] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2938'.
[  243.822746][ T4069] bridge_slave_1: left allmulticast mode
[  243.828437][ T4069] bridge_slave_1: left promiscuous mode
[  243.834323][ T4069] bridge0: port 2(bridge_slave_1) entered disabled state
[  243.843614][ T4069] bridge_slave_0: left allmulticast mode
[  243.849525][ T4069] bridge_slave_0: left promiscuous mode
[  243.855353][ T4069] bridge0: port 1(bridge_slave_0) entered disabled state
[  243.878924][T13128] loop4: detected capacity change from 0 to 1024
[  243.885629][T13128] EXT4-fs: Ignoring removed i_version option
[  243.893138][T13128] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  243.905193][T13128] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.2943: Invalid block bitmap block 0 in block_group 0
[  243.922670][T13128] Quota error (device loop4): write_blk: dquota write failed
[  243.930265][T13128] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  243.961517][T13128] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.2943: Failed to acquire dquot type 0
[  243.976540][T13128] EXT4-fs error (device loop4): ext4_free_blocks:6587: comm syz.4.2943: Freeing blocks not in datazone - block = 0, count = 4096
[  243.992619][T13128] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.2943: Invalid inode bitmap blk 0 in block_group 0
[  243.993276][T13137] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2946'.
[  244.006619][T13128] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  244.024501][ T4073] Quota error (device loop4): do_check_range: Getting block 0 out of range 1-8
[  244.033576][ T4073] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:31: Failed to release dquot type 0
[  244.033708][T13128] EXT4-fs (loop4): 1 orphan inode deleted
[  244.117083][T13141] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2948'.
[  244.128242][ T4069] $Hÿ (unregistering): (slave bond_slave_0): Releasing backup interface
[  244.137762][ T4069] bond_slave_0: left promiscuous mode
[  244.144585][ T4069] $Hÿ (unregistering): (slave bond_slave_1): Releasing backup interface
[  244.153828][ T4069] bond_slave_1: left promiscuous mode
[  244.160828][ T4069] $Hÿ (unregistering): (slave dummy0): Releasing backup interface
[  244.169705][ T4069] dummy0: left promiscuous mode
[  244.174872][T13142] loop2: detected capacity change from 0 to 512
[  244.175711][ T4069] $Hÿ (unregistering): Released all slaves
[  244.190641][ T4069] bond0 (unregistering): (slave veth3): Releasing backup interface
[  244.191354][T13142] EXT4-fs (loop2): 1 orphan inode deleted
[  244.205368][T13142] ext4 filesystem being mounted at /589/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  244.218112][ T4072] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  244.227972][ T4072] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:30: Failed to release dquot type 1
[  244.240379][ T4069] bond0 (unregistering): Released all slaves
[  244.242841][T13142] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  244.255059][ T4069] bond1 (unregistering): (slave veth5): Releasing backup interface
[  244.264180][ T4069] bond1 (unregistering): Released all slaves
[  244.274497][T13133] netlink: 296 bytes leftover after parsing attributes in process `syz.0.2944'.
[  244.301547][T13075] bridge0: port 1(bridge_slave_0) entered blocking state
[  244.308653][T13075] bridge0: port 1(bridge_slave_0) entered disabled state
[  244.316414][T13075] bridge_slave_0: entered allmulticast mode
[  244.327779][T13075] bridge_slave_0: entered promiscuous mode
[  244.338383][T13075] bridge0: port 2(bridge_slave_1) entered blocking state
[  244.345566][T13075] bridge0: port 2(bridge_slave_1) entered disabled state
[  244.354920][T13075] bridge_slave_1: entered allmulticast mode
[  244.362639][T13075] bridge_slave_1: entered promiscuous mode
[  244.376872][T13148] loop0: detected capacity change from 0 to 512
[  244.383658][T13148] ext4: Bad value for 'debug_want_extra_isize'
[  244.394097][ T4069] hsr_slave_0: left promiscuous mode
[  244.401260][ T4069] hsr_slave_1: left promiscuous mode
[  244.407184][ T4069] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  244.414781][ T4069] batman_adv: batadv0: Removing interface: batadv_slave_0
[  244.423849][ T4069] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  244.431520][ T4069] batman_adv: batadv0: Removing interface: batadv_slave_1
[  244.443066][ T4069] veth1_macvtap: left promiscuous mode
[  244.448712][ T4069] veth0_macvtap: left promiscuous mode
[  244.538632][ T4069] team0 (unregistering): Port device team_slave_1 removed
[  244.551227][ T4069] team0 (unregistering): Port device team_slave_0 removed
[  244.626887][T13075] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  244.641553][T13075] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  244.678445][T13075] team0: Port device team_slave_0 added
[  244.685608][T13075] team0: Port device team_slave_1 added
[  244.707299][T13075] batman_adv: batadv0: Adding interface: batadv_slave_0
[  244.714329][T13075] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  244.740323][T13075] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  244.753587][T13075] batman_adv: batadv0: Adding interface: batadv_slave_1
[  244.760614][T13075] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  244.786646][T13075] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  244.838237][T13075] hsr_slave_0: entered promiscuous mode
[  244.845967][T13075] hsr_slave_1: entered promiscuous mode
[  244.880365][   T36] hid-generic 0000:0000:0000.0019: unknown main item tag 0x0
[  244.890307][   T36] hid-generic 0000:0000:0000.0019: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  245.155149][T13075] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  245.165050][T13075] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  245.174176][T13075] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  245.184238][T13075] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  245.220173][T13075] 8021q: adding VLAN 0 to HW filter on device bond0
[  245.236303][T13075] 8021q: adding VLAN 0 to HW filter on device team0
[  245.246846][ T4072] bridge0: port 1(bridge_slave_0) entered blocking state
[  245.253947][ T4072] bridge0: port 1(bridge_slave_0) entered forwarding state
[  245.286197][T13075] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  245.296737][T13075] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  245.317760][   T29] audit: type=1326 audit(1752184971.322:28187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13159 comm="syz.4.2950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23d149e929 code=0x7ffc0000
[  245.341477][   T29] audit: type=1326 audit(1752184971.322:28188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13159 comm="syz.4.2950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f23d149e929 code=0x7ffc0000
[  245.375265][ T4072] bridge0: port 2(bridge_slave_1) entered blocking state
[  245.382377][ T4072] bridge0: port 2(bridge_slave_1) entered forwarding state
[  245.438531][T13075] 8021q: adding VLAN 0 to HW filter on device batadv0
[  245.515412][T13075] veth0_vlan: entered promiscuous mode
[  245.525354][T13075] veth1_vlan: entered promiscuous mode
[  245.544829][T13075] veth0_macvtap: entered promiscuous mode
[  245.553014][T13075] veth1_macvtap: entered promiscuous mode
[  245.565347][T13075] batman_adv: batadv0: Interface activated: batadv_slave_0
[  245.579311][T13075] batman_adv: batadv0: Interface activated: batadv_slave_1
[  245.589146][T13075] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  245.598105][T13075] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  245.606912][T13075] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  245.615672][T13075] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  245.734137][T13184] loop1: detected capacity change from 0 to 512
[  245.750979][T13185] loop3: detected capacity change from 0 to 1024
[  245.757738][T13185] EXT4-fs: Ignoring removed i_version option
[  245.767836][T13185] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  245.782901][T13185] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.2954: Invalid block bitmap block 0 in block_group 0
[  245.797159][T13185] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.2954: Failed to acquire dquot type 0
[  245.808935][T13185] EXT4-fs error (device loop3): ext4_free_blocks:6587: comm syz.3.2954: Freeing blocks not in datazone - block = 0, count = 4096
[  245.811453][T13184] EXT4-fs (loop1): 1 orphan inode deleted
[  245.822552][ T4072] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:30: Failed to release dquot type 1
[  245.829271][T13185] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.2954: Invalid inode bitmap blk 0 in block_group 0
[  245.840305][T13184] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  245.855285][T13185] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  245.872778][T13185] EXT4-fs (loop3): 1 orphan inode deleted
[  246.255051][T13197] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2957'.
[  246.264069][T13197] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2957'.
[  246.282326][T13197] loop2: detected capacity change from 0 to 512
[  246.314419][T13197] EXT4-fs (loop2): 1 orphan inode deleted
[  246.324464][T13197] ext4 filesystem being mounted at /593/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  246.440141][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.447628][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.459172][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.466876][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.474335][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.481812][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.489279][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.496683][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.504095][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.511502][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.518996][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.526419][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.697174][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.704642][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.712071][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.719509][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.726901][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.734396][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.741874][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.749247][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.756650][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.764038][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.771453][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.772504][ T4072] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:30: Failed to release dquot type 0
[  246.778903][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.791415][ T4072] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:30: Failed to release dquot type 1
[  246.797791][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.816709][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.824192][   T23] hid-generic 0000:0000:0000.001A: unknown main item tag 0x0
[  246.829181][T13207] loop0: detected capacity change from 0 to 1024
[  246.832724][   T23] hid-generic 0000:0000:0000.001A: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  246.838826][T13207] EXT4-fs: Ignoring removed orlov option
[  246.853860][T13181] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  246.854633][T13197] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  246.952878][T13217] loop1: detected capacity change from 0 to 512
[  246.959564][T13217] ext4: Bad value for 'debug_want_extra_isize'
[  247.888750][T13234] loop0: detected capacity change from 0 to 256
[  247.984994][T13240] loop2: detected capacity change from 0 to 1024
[  248.009772][T13240] EXT4-fs: Ignoring removed i_version option
[  248.024751][T13252] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2975'.
[  248.037826][T13240] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  248.048483][T13251] loop3: detected capacity change from 0 to 1024
[  248.060820][T13240] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.2970: Invalid block bitmap block 0 in block_group 0
[  248.091282][T13240] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.2970: Failed to acquire dquot type 0
[  248.152416][T13240] EXT4-fs error (device loop2): ext4_free_blocks:6587: comm syz.2.2970: Freeing blocks not in datazone - block = 0, count = 4096
[  248.170187][T13258] ip6t_rpfilter: unknown options
[  248.213789][T13264] loop1: detected capacity change from 0 to 1024
[  248.228773][T13240] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.2970: Invalid inode bitmap blk 0 in block_group 0
[  248.246650][ T4072] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:30: Failed to release dquot type 0
[  248.261197][T13251] ext4 filesystem being mounted at /597/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  248.280312][T13240] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  248.297517][T13269] macvlan1: entered promiscuous mode
[  248.320706][T13269] ipvlan0: entered promiscuous mode
[  248.326375][T13240] EXT4-fs (loop2): 1 orphan inode deleted
[  248.347377][T13269] ipvlan0: left promiscuous mode
[  248.366864][T13269] macvlan1: left promiscuous mode
[  248.378594][T13264] ext4 filesystem being mounted at /4/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  248.397563][T13271] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  248.411520][T13271] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2979'.
[  248.693101][   T29] kauditd_printk_skb: 405 callbacks suppressed
[  248.693149][   T29] audit: type=1326 audit(1752184974.702:28586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13279 comm="syz.2.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6414e929 code=0x7ffc0000
[  248.722962][   T29] audit: type=1326 audit(1752184974.702:28587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13279 comm="syz.2.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6414e929 code=0x7ffc0000
[  248.786452][   T29] audit: type=1326 audit(1752184974.792:28588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13279 comm="syz.2.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=450 compat=0 ip=0x7fab6414e929 code=0x7ffc0000
[  248.825431][   T29] audit: type=1326 audit(1752184974.822:28589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13279 comm="syz.2.2984" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab6414e929 code=0x7ffc0000
[  248.932992][ T4069] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:27: bg 0: block 393: padding at end of block bitmap is not set
[  248.948948][ T4069] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  248.961725][ T4069] EXT4-fs (loop3): This should not happen!! Data will be lost
[  248.961725][ T4069] 
[  248.974110][ T3306] syz_tun (unregistering): left promiscuous mode
[  248.997898][ T4069] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:27: bg 0: block 393: padding at end of block bitmap is not set
[  249.018105][ T4069] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  249.026393][T13289] netlink: 288 bytes leftover after parsing attributes in process `syz.3.2986'.
[  249.030838][ T4069] EXT4-fs (loop1): This should not happen!! Data will be lost
[  249.030838][ T4069] 
[  249.050779][T13075] EXT4-fs unmount: 65 callbacks suppressed
[  249.050863][T13075] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.079033][   T29] audit: type=1326 audit(1752184975.082:28590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13291 comm="syz.1.2987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1f75e929 code=0x7ffc0000
[  249.102751][   T29] audit: type=1326 audit(1752184975.082:28591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13291 comm="syz.1.2987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1f75e929 code=0x7ffc0000
[  249.140567][   T29] audit: type=1326 audit(1752184975.082:28592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13291 comm="syz.1.2987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7ffa1f75e929 code=0x7ffc0000
[  249.164222][   T29] audit: type=1326 audit(1752184975.082:28593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13291 comm="syz.1.2987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1f75e929 code=0x7ffc0000
[  249.182129][T13283] lo speed is unknown, defaulting to 1000
[  249.188023][   T29] audit: type=1326 audit(1752184975.082:28594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13291 comm="syz.1.2987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa1f75e929 code=0x7ffc0000
[  249.217291][   T29] audit: type=1326 audit(1752184975.092:28595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13291 comm="syz.1.2987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffa1f75e929 code=0x7ffc0000
[  249.222233][T13295] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2988'.
[  249.294276][ T4067] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.330726][T13303] loop4: detected capacity change from 0 to 1024
[  249.342954][ T3358] hid-generic 0000:0000:0000.001B: unknown main item tag 0x0
[  249.347004][T13303] EXT4-fs: Ignoring removed orlov option
[  249.351152][ T3358] hid-generic 0000:0000:0000.001B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  249.369645][T13303] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  249.370146][ T4067] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.448478][T13283] chnl_net:caif_netlink_parms(): no params data found
[  249.476928][ T4067] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.546317][ T4067] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  249.578259][T13283] bridge0: port 1(bridge_slave_0) entered blocking state
[  249.585615][T13283] bridge0: port 1(bridge_slave_0) entered disabled state
[  249.593044][T13283] bridge_slave_0: entered allmulticast mode
[  249.599817][T13283] bridge_slave_0: entered promiscuous mode
[  249.609297][T13316] macvlan1: entered promiscuous mode
[  249.615294][T13316] ipvlan0: entered promiscuous mode
[  249.621288][T13316] ipvlan0: left promiscuous mode
[  249.626503][T13316] macvlan1: left promiscuous mode
[  249.634903][T13283] bridge0: port 2(bridge_slave_1) entered blocking state
[  249.642139][T13283] bridge0: port 2(bridge_slave_1) entered disabled state
[  249.649339][T13283] bridge_slave_1: entered allmulticast mode
[  249.655620][T13283] bridge_slave_1: entered promiscuous mode
[  249.675230][ T3313] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.686876][T13283] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  249.697495][T13283] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  249.727546][T13283] team0: Port device team_slave_0 added
[  249.733507][ T4067] bridge_slave_1: left allmulticast mode
[  249.739223][ T4067] bridge_slave_1: left promiscuous mode
[  249.745006][ T4067] bridge0: port 2(bridge_slave_1) entered disabled state
[  249.752820][ T4067] bridge_slave_0: left allmulticast mode
[  249.758492][ T4067] bridge_slave_0: left promiscuous mode
[  249.764217][ T4067] bridge0: port 1(bridge_slave_0) entered disabled state
[  249.831912][ T4067] $Hÿ (unregistering): (slave bond_slave_0): Releasing backup interface
[  249.841584][ T4067] bond_slave_0: left promiscuous mode
[  249.848026][ T4067] $Hÿ (unregistering): (slave bond_slave_1): Releasing backup interface
[  249.857330][ T4067] bond_slave_1: left promiscuous mode
[  249.863771][ T4067] $Hÿ (unregistering): Released all slaves
[  249.872032][ T4067] bond0 (unregistering): Released all slaves
[  249.880676][ T4067] bond1 (unregistering): (slave veth3): Releasing backup interface
[  249.889625][ T4067] bond1 (unregistering): Released all slaves
[  249.898065][ T4067] bond2 (unregistering): (slave veth5): Releasing backup interface
[  249.906988][ T4067] bond2 (unregistering): Released all slaves
[  249.916031][T13283] team0: Port device team_slave_1 added
[  249.937812][T13283] batman_adv: batadv0: Adding interface: batadv_slave_0
[  249.945060][T13283] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  249.971157][T13283] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  249.985529][T13283] batman_adv: batadv0: Adding interface: batadv_slave_1
[  249.992631][T13283] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  250.018912][T13283] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  250.026308][T13324] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2995'.
[  250.038490][ T4067] batadv_slave_0: left promiscuous mode
[  250.047248][ T4067] hsr_slave_0: left promiscuous mode
[  250.060180][ T4067] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  250.067729][ T4067] batman_adv: batadv0: Removing interface: batadv_slave_0
[  250.083539][ T4067] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  250.091164][ T4067] batman_adv: batadv0: Removing interface: batadv_slave_1
[  250.102303][ T4067] veth1_macvtap: left promiscuous mode
[  250.108580][ T4067] veth0_macvtap: left promiscuous mode
[  250.116477][ T4067] veth1_vlan: left promiscuous mode
[  250.124249][ T4067] veth0_vlan: left promiscuous mode
[  250.187737][ T4067] pim6reg9 (unregistering): left allmulticast mode
[  250.252984][ T4067] team0 (unregistering): Port device team_slave_1 removed
[  250.274998][ T4067] team0 (unregistering): Port device team_slave_0 removed
[  250.387179][T13283] hsr_slave_0: entered promiscuous mode
[  250.396960][T13283] hsr_slave_1: entered promiscuous mode
[  250.405042][T13283] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  250.420316][T13283] Cannot create hsr debugfs directory
[  250.499072][T13335] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2999'.
[  250.515176][T13336] macvlan1: entered promiscuous mode
[  250.521562][T13336] ipvlan0: entered promiscuous mode
[  250.527767][T13336] ipvlan0: left promiscuous mode
[  250.533238][T13336] macvlan1: left promiscuous mode
[  250.535022][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.546049][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.553575][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.561247][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.569054][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.576634][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.584406][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.592017][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.599565][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.607122][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.614723][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.622267][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.630146][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.637702][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.645286][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.652853][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.660478][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.668091][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.675715][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.683335][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.690895][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.698469][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.706008][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.713580][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.721247][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.728927][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.736475][   T10] hid-generic 0000:0000:0000.001C: unknown main item tag 0x0
[  250.749591][   T10] hid-generic 0000:0000:0000.001C: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  250.814656][T13343] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3002'.
[  250.853658][T13347] netlink: 288 bytes leftover after parsing attributes in process `syz.0.3004'.
[  250.908300][T13283] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  250.927573][T13283] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  250.939267][T13283] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  250.950647][T13283] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  251.027741][T13283] 8021q: adding VLAN 0 to HW filter on device bond0
[  251.045124][T13283] 8021q: adding VLAN 0 to HW filter on device team0
[  251.056747][T13372] loop0: detected capacity change from 0 to 1024
[  251.062438][ T4070] bridge0: port 1(bridge_slave_0) entered blocking state
[  251.070229][ T4070] bridge0: port 1(bridge_slave_0) entered forwarding state
[  251.091939][T13283] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  251.102321][T13283] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  251.132969][ T4070] bridge0: port 2(bridge_slave_1) entered blocking state
[  251.140141][ T4070] bridge0: port 2(bridge_slave_1) entered forwarding state
[  251.160142][T13372] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  251.263593][T13384] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3013'.
[  251.269590][T13372] ext4 filesystem being mounted at /23/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  251.288165][T13283] 8021q: adding VLAN 0 to HW filter on device batadv0
[  251.348314][T13391] loop3: detected capacity change from 0 to 1024
[  251.371263][T13396] loop1: detected capacity change from 0 to 1024
[  251.372321][T13283] veth0_vlan: entered promiscuous mode
[  251.387998][T13283] veth1_vlan: entered promiscuous mode
[  251.394595][T13396] EXT4-fs: Ignoring removed orlov option
[  251.400754][T13391] EXT4-fs: Ignoring removed orlov option
[  251.404333][T13283] veth0_macvtap: entered promiscuous mode
[  251.420874][T13391] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  251.436249][T13396] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  251.448540][T13283] veth1_macvtap: entered promiscuous mode
[  251.527317][T13400] ==================================================================
[  251.535437][T13400] BUG: KCSAN: data-race in __mark_inode_dirty / writeback_single_inode
[  251.543695][T13400] 
[  251.546023][T13400] write to 0xffff888100608ea8 of 4 bytes by task 13391 on cpu 0:
[  251.553731][T13400]  writeback_single_inode+0x14a/0x3e0
[  251.559113][T13400]  sync_inode_metadata+0x5b/0x90
[  251.564056][T13400]  generic_buffers_fsync_noflush+0xd9/0x120
[  251.569964][T13400]  ext4_sync_file+0x1ab/0x690
[  251.574814][T13400]  vfs_fsync_range+0x10d/0x130
[  251.579598][T13400]  ext4_buffered_write_iter+0x34f/0x3c0
[  251.585147][T13400]  ext4_file_write_iter+0x383/0xf00
[  251.590353][T13400]  iter_file_splice_write+0x5f2/0x970
[  251.595741][T13400]  direct_splice_actor+0x153/0x2a0
[  251.600867][T13400]  splice_direct_to_actor+0x30f/0x680
[  251.606248][T13400]  do_splice_direct+0xda/0x150
[  251.611018][T13400]  do_sendfile+0x380/0x650
[  251.615434][T13400]  __x64_sys_sendfile64+0x105/0x150
[  251.620638][T13400]  x64_sys_call+0xb39/0x2fb0
[  251.625247][T13400]  do_syscall_64+0xd2/0x200
[  251.629752][T13400]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.635650][T13400] 
[  251.637975][T13400] read to 0xffff888100608ea8 of 4 bytes by task 13400 on cpu 1:
[  251.645608][T13400]  __mark_inode_dirty+0x18e/0x760
[  251.650642][T13400]  ext4_write_inline_data_end+0x3e5/0x5f0
[  251.656365][T13400]  ext4_write_end+0x4cd/0x730
[  251.661049][T13400]  generic_perform_write+0x30f/0x490
[  251.666335][T13400]  ext4_buffered_write_iter+0x1ee/0x3c0
[  251.671888][T13400]  ext4_file_write_iter+0x383/0xf00
[  251.677087][T13400]  iter_file_splice_write+0x5f2/0x970
[  251.682473][T13400]  direct_splice_actor+0x153/0x2a0
[  251.687602][T13400]  splice_direct_to_actor+0x30f/0x680
[  251.692984][T13400]  do_splice_direct+0xda/0x150
[  251.697756][T13400]  do_sendfile+0x380/0x650
[  251.702172][T13400]  __x64_sys_sendfile64+0x105/0x150
[  251.707367][T13400]  x64_sys_call+0xb39/0x2fb0
[  251.711960][T13400]  do_syscall_64+0xd2/0x200
[  251.716467][T13400]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.722363][T13400] 
[  251.724677][T13400] value changed: 0x00000038 -> 0x00000002
[  251.730386][T13400] 
[  251.732705][T13400] Reported by Kernel Concurrency Sanitizer on:
[  251.738867][T13400] CPU: 1 UID: 0 PID: 13400 Comm: syz.3.3014 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) 
[  251.751373][T13400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  251.761433][T13400] ==================================================================
[  251.774220][T13283] batman_adv: batadv0: Interface activated: batadv_slave_0
[  251.783354][T13283] batman_adv: batadv0: Interface activated: batadv_slave_1
[  251.816531][T13283] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  251.825422][T13283] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  251.834188][T13283] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  251.843045][T13283] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  251.863914][ T4068] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm kworker/u8:26: bg 0: block 393: padding at end of block bitmap is not set
[  251.885344][ T4068] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  251.898031][ T4068] EXT4-fs (loop0): This should not happen!! Data will be lost
[  251.898031][ T4068] 
[  251.932986][T12916] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.012151][ T3314] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.098776][T13075] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.