last executing test programs:

3.223491904s ago: executing program 2 (id=6281):
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00'})
bind$netlink(0xffffffffffffffff, &(0x7f0000000100)={0x10, 0x0, 0x25dfdbfd, 0x400}, 0xc)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
fstat(r0, &(0x7f0000000080))
stat(&(0x7f0000001c40)='./file0\x00', &(0x7f0000001c80)={0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0})
lchown(&(0x7f0000000000)='./file0\x00', 0x0, r1)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r3, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000057"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x25, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r8 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000480), 0x1a1040, 0x0)
ioctl$AUTOFS_IOC_FAIL(r8, 0x4c80, 0x7000000)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB='<\x00'/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800900010076657468000000000400028008000a00", @ANYRES32, @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

2.78122243s ago: executing program 1 (id=6286):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
sendmsg$IPVS_CMD_ZERO(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20048041}, 0x40000000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
ioctl$TUNGETIFF(0xffffffffffffffff, 0x800454d2, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000180), 0x0)
pipe(0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x200000000000000)

2.608591563s ago: executing program 4 (id=6293):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x9, 0xffffffff}, 0x50)

2.558753063s ago: executing program 4 (id=6294):
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYBLOB='\x00'/10], 0x1c}}, 0x0)
ioctl$sock_SIOCBRDELBR(r0, 0x89a2, &(0x7f0000000000)='bridge0\x00')
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_MTU={0x8, 0x4, 0x600}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)

2.558519234s ago: executing program 3 (id=6295):
prctl$PR_SET_NAME(0xf, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
open(0x0, 0x1, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.net/cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r0, &(0x7f00000002c0), 0x12)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f00000700000000000000", @ANYRES32, @ANYBLOB="00ee4c251409cd27b600"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/25], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000004c0)={{r1}, &(0x7f0000000200), &(0x7f0000000400)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0x200000000000000e, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='xen_mc_flush\x00'}, 0xffffffffffffffc6)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x7b93eb716f56e203)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
readv(0xffffffffffffffff, &(0x7f0000000400)=[{0x0}], 0x1)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r2, r3, 0x0, 0x20000023896)
recvmsg(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'macvlan1\x00', <r5=>0x0})
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'ipvlan0\x00', <r7=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x500, &(0x7f0000001140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="400000001000030500000000fddbdf0000000000", @ANYRES32=0x0, @ANYBLOB="02880100373004002000128008000100687372001400028008000100", @ANYRES32=r5, @ANYBLOB="08000200", @ANYRES32=r7], 0x40}}, 0x4)

2.558263523s ago: executing program 4 (id=6296):
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0xfffffffd, 0x0, @perf_config_ext={0x3fffffffc}, 0x0, 0x0, 0x0, 0x3, 0xfff, 0x8001, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x38, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x400448e1, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
close_range(r2, 0xffffffffffffffff, 0x0)

2.540805334s ago: executing program 4 (id=6297):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x4000000)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000001ec0)=ANY=[@ANYRES8=r0], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r2 = socket$caif_stream(0x25, 0x1, 0x0)
sendmmsg$inet(r2, &(0x7f0000000040)=[{{0x0, 0x0, &(0x7f0000000280)}, 0x1000000}], 0x1, 0x4004040)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000021000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f0000002a00), r6)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f00000002c0), 0x4)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000400)={0x1}, 0x8)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x40305829, 0x0)
socket$netlink(0x10, 0x3, 0x0)

2.384665676s ago: executing program 2 (id=6298):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x3, &(0x7f0000000280)=[{0x8, 0xa8, 0x8c, 0x7}, {0x6, 0xa, 0xc, 0x4}, {0x0, 0x9, 0xf7, 0x7}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000080000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b7040000000000008500000058"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000040)=0x81, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095", @ANYRES32=r0, @ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=r1], 0x0, 0x78, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x5, 0x0, 0x0, 0x286ca06bbee933dc, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x15)

2.14721326s ago: executing program 2 (id=6299):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0}, 0x94)
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000040)=0x81, 0x5, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
set_mempolicy_home_node(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0, 0x0)

2.0928689s ago: executing program 2 (id=6300):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x53b, &(0x7f0000000b80)="$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")
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x3, 0x9, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x77, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x88}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0], 0x0}, 0x94)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={{0x14, 0x10, 0x4}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x21}]}, @NFT_MSG_NEWSETELEM={0x54, 0xc, 0xa, 0x301, 0x0, 0x0, {0x7, 0x0, 0x8}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x28, 0x3, 0x0, 0x1, [{0x24, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x18, 0xb, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @limit={{0xa}, @val={0x4}}}]}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xb8}}, 0x0)
pwritev(0xffffffffffffffff, &(0x7f00000007c0)=[{&(0x7f0000000180)="ee66bc67b4444783eaf670627a9dc69134b6ca167d6aa32fd419febb5b1106e63348fcb542fab61f20203b9528bfd68677ee00e14ec3978c88fa", 0x3a}], 0x1, 0x4, 0xffffff00)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000001e00007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)=ANY=[@ANYBLOB="540100001800010000000000000000001d010000150003000000000000000000dd5f392602cc30570500000008000500f80800001e0106"], 0x154}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$int_in(r2, 0x5421, &(0x7f0000000100)=0x100000001)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="8c0000000906010200000000000000000200ffff08000940000000390900020073797a3100000000050001"], 0x8c}, 0x1, 0x0, 0x0, 0x10000182}, 0x4000080)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="38000000480001002dbd7000ffdbdf250a"], 0x38}}, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x1e, &(0x7f0000000180)=0x1, 0x4)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x4e24, @loopback}, 0x10)
close(r2)

1.924744843s ago: executing program 1 (id=6301):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00"/13], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000118110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014002000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r1}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

1.687897566s ago: executing program 1 (id=6303):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$selinux_load(r1, &(0x7f0000000000)=ANY=[], 0x2000)

1.686708816s ago: executing program 3 (id=6304):
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100000100000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000500)='./file0\x00', 0x8000, &(0x7f0000000740)=ANY=[], 0x1, 0x2b0, &(0x7f00000033c0)="$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")

1.243190983s ago: executing program 1 (id=6305):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x9, 0xffffffff}, 0x50)

1.211096103s ago: executing program 2 (id=6306):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020001000900010073797a300000000008000240000000032c000000030a01030000e6ff00000027020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x2040084)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWRULE={0x14, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}}], {0x14}}, 0x3c}}, 0x0)

1.176755753s ago: executing program 1 (id=6307):
syz_read_part_table(0x618, &(0x7f0000002200)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x84042, 0x1fb)
write$P9_RUNLINKAT(r0, &(0x7f0000000000)={0xfffffffffffffecb, 0x4d, 0x1}, 0xffffffd7) (fail_nth: 4)

1.176083204s ago: executing program 3 (id=6308):
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00'})
bind$netlink(0xffffffffffffffff, &(0x7f0000000100)={0x10, 0x0, 0x25dfdbfd, 0x400}, 0xc)
openat$autofs(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0)
fstat(r0, &(0x7f0000000080))
stat(&(0x7f0000001c40)='./file0\x00', &(0x7f0000001c80)={0x0, 0x0, 0x0, 0x0, 0x0, <r1=>0x0})
lchown(&(0x7f0000000000)='./file0\x00', 0x0, r1)
r2 = socket$netlink(0x10, 0x3, 0x0)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r3, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000570000"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x25, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
r8 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000480), 0x1a1040, 0x0)
ioctl$AUTOFS_IOC_FAIL(r8, 0x4c80, 0x7000000)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB='<\x00'/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800900010076657468000000000400028008000a00", @ANYRES32, @ANYBLOB], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

669.552701ms ago: executing program 4 (id=6310):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x3, &(0x7f0000000280)=[{0x8, 0xa8, 0x8c, 0x7}, {0x6, 0xa, 0xc, 0x4}, {0x0, 0x9, 0xf7, 0x7}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000080000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b7040000000000008500000058"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000040)=0x81, 0x5, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095", @ANYRES32=r0, @ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=r1], 0x0, 0x78, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x5, 0x0, 0x0, 0x286ca06bbee933dc, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x15)

576.320012ms ago: executing program 2 (id=6311):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
sendmsg$IPVS_CMD_ZERO(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20048041}, 0x40000000)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1)
ioctl$TUNGETIFF(0xffffffffffffffff, 0x800454d2, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=ANY=[], &(0x7f0000000180), 0x0)
pipe(0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x200000000000000)

449.806254ms ago: executing program 1 (id=6312):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000bc0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x14, 0x0, 0xa, 0x5, 0x0, 0x0, {0xa, 0x0, 0x3}}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x3c}}, 0x0)
timer_create(0x0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
socket$inet6(0xa, 0x2, 0x0)
r2 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
memfd_secret(0x0)
open_tree(0xffffffffffffff9c, 0x0, 0x801)
bpf$OBJ_GET_PROG(0x7, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
recvmmsg(r3, &(0x7f00000004c0), 0x300, 0x40034000, 0x0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r3, &(0x7f0000001600)={0x0, 0x0, &(0x7f0000000440)={0x0, 0x18}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000007c0)=ANY=[@ANYBLOB="0b00000073797a31000000dfff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a30000037b35f0a000089b4c45a10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000073797a3100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0x119)
syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x14a042)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0xe, 0x7fff0000}]})
close_range(r4, 0xffffffffffffffff, 0x0)

411.427834ms ago: executing program 0 (id=6313):
symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000500)='./file0\x00', 0x8000, &(0x7f0000000740)=ANY=[], 0x1, 0x2b0, &(0x7f00000033c0)="$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")

351.498875ms ago: executing program 0 (id=6314):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0xa2d, @empty, 0x4}, 0x1c)
listen(r1, 0xfffffffc)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
getsockopt$EBT_SO_GET_INIT_ENTRIES(0xffffffffffffffff, 0x0, 0x83, 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x30, r4, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x6}]}]}, 0x30}, 0x1, 0x0, 0x0, 0xaa34a4cfdf933201}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sched_setaffinity(0x0, 0x0, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000200)={0x28, r6, 0x1, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x1}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1a}]}]}, 0x28}}, 0x0)

350.522125ms ago: executing program 4 (id=6315):
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x0, 0x1, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000180)={@private2, 0x800, 0x0, 0x2, 0x1}, 0x20)
rt_sigsuspend(&(0x7f00000000c0)={[0xcf]}, 0x8)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000040)={@mcast2, 0x800, 0x0, 0x2, 0x0, 0x0, 0x8c}, 0x20)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x0, 0x1, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80a, &(0x7f0000000a80)={[{@barrier_val}, {@resuid}, {@noblock_validity}, {@errors_remount}]}, 0x1, 0x79b, &(0x7f0000000180)="$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")
r4 = open(&(0x7f0000000980)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_FIEMAP(r4, 0xc020660b, &(0x7f0000000b00)=ANY=[@ANYBLOB="0400000000000000040000000000000005"])
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a90000000030a0300000000000000000002e000000c00020000000000000000010900010073797a30"], 0xb8}}, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
r6 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r6, &(0x7f0000001240)=""/102400, 0x200000, 0x40000000)
syz_clone3(&(0x7f0000000880)={0x808c0080, 0x0, 0x0, 0x0, {0xe}, 0x0, 0x0, 0x0, &(0x7f0000000000)=[0x0], 0x1}, 0x58)
sendmsg$NFT_MSG_GETRULE(r6, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40040}, 0xc, &(0x7f00000000c0)={&(0x7f0000000b40)=ANY=[@ANYBLOB="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"], 0x148}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r5}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
mq_open(&(0x7f0000000180)='\r\x00elinu\xef\xe3elinux\x00\x96\xf6\x92\n#*\xac\x05\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]*\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8', 0x6e93ebbbcc0884f2, 0x22, &(0x7f0000000040)={0x0, 0x4, 0x4, 0x5})
creat(&(0x7f0000000140)='./file0\x00', 0x2)
socket(0x40000000015, 0x5, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r7, 0x0, 0xffff}, 0x18)
r8 = openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$selinux_load(r8, &(0x7f0000000680)={0xf97cff8c, 0x8}, 0x10)
socket$inet_tcp(0x2, 0x1, 0x0)

337.161125ms ago: executing program 3 (id=6316):
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = openat$selinux_load(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$selinux_load(r1, &(0x7f0000000000)=ANY=[], 0x2000)

305.348486ms ago: executing program 0 (id=6317):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x9, 0xffffffff}, 0x50)

261.514857ms ago: executing program 0 (id=6318):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000"], 0x48)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f00000001c0), 0x10000000000003e1, 0x9, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$netlink(0x10, 0x3, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x6)
bind$netlink(r2, 0x0, 0x0)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000fbdbdf25250000000e0001006e657464657673696d000000000002006e657464657673696d300000"], 0x34}, 0x1, 0x0, 0x0, 0x44041}, 0x40040)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x16, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="180a00000000000000ff0000030002008500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, @flow_dissector=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = signalfd4(0xffffffffffffffff, &(0x7f0000000500), 0x8, 0x0)
r5 = syz_io_uring_setup(0x2, &(0x7f0000000580)={0x0, 0x1276, 0x13500, 0xfffffffe, 0x304, 0x0, r4}, &(0x7f0000000240), &(0x7f0000001880))
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r5, 0x21, &(0x7f0000000440)=r4, 0x1)
r6 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000a40)=@newtaction={0x18, 0x30, 0x51b, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)
r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r7}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x4, &(0x7f0000002180)=ANY=[@ANYBLOB="180200000000000000000000cfffffff850000001700000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, r0}, 0x94)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000100)=0x3ff)
r8 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r8, 0x6, 0xd, &(0x7f0000000040)='cdg\x00', 0x4)
connect$inet(r8, &(0x7f0000000280)={0x2, 0x0, @dev}, 0x10)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffff"], 0x48)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x67, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r10, 0x0, 0x2}, 0x18)

261.136147ms ago: executing program 3 (id=6319):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00"/13], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000118110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014002000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r1}, 0x10)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

188.916418ms ago: executing program 3 (id=6320):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'veth0_to_bridge\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800c0001006d616376746170000400", @ANYBLOB='\b\x00'], 0x44}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={&(0x7f0000000b80)=ANY=[@ANYBLOB="9feb01a663350018000000000000003400000034000000050000400b000000000000110200000001000000030000000000000904000000ffffffff000000120100000009000000000000080200000000305f6100f3a862f5dbb04d4a19489b450d6f4acb2b5d6ec3d433e1a60f6054e466e4a643a838b73a7176c7b2202ac4e8e46b82183b282427b6fd094ba1763b89ba074749281c30b1024b853ba7bcca18dcc85501ffe7d49135c7c425d11f7f53e067ed3fad5b8f50a779a3522cb5c2cab2e4a671ab8a9304aff2fad31cc5c18c8316c76f"], &(0x7f0000000480)=""/162, 0x51, 0xa2, 0x0, 0xfffffffd, 0x10000}, 0x28)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'ipvlan0\x00', <r5=>0x0})
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB, @ANYRES32=r5], 0x3c}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000700000000000000000007020100f8ffffffb70300000801000080"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', r3, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={0x0, r7}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000600)={[{@grpid}]}, 0x1, 0x521, &(0x7f0000000640)="$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")
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00'}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$evdev(0x0, 0x0, 0x802)
r8 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r8}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r9 = timerfd_create(0x0, 0x0)
readv(r9, &(0x7f00000003c0)=[{&(0x7f0000000000)=""/33, 0x21}], 0x1)
symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6185}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r10}, 0x10)

188.536288ms ago: executing program 0 (id=6321):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x3, &(0x7f0000000280)=[{0x8, 0xa8, 0x8c, 0x7}, {0x6, 0xa, 0xc, 0x4}, {0x0, 0x9, 0xf7, 0x7}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000800000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b7040000000000008500000058"], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4005, &(0x7f0000000040)=0x81, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x17, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095", @ANYRES32=r0, @ANYBLOB="1800000000000000000000000000000018110000", @ANYRES64=r1], 0x0, 0x78, 0x0, 0x0, 0x41000, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x5, 0x0, 0x0, 0x286ca06bbee933dc, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x15)

0s ago: executing program 0 (id=6322):
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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")
socket$nl_route(0x10, 0x3, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x36, 0x1, 0x0, 0x0, 0x0, 0x1007, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10006, 0x1, @perf_bp={0x0, 0xd}, 0x0, 0x10000, 0x1, 0x1, 0x8, 0x20005, 0x2b, 0x0, 0x0, 0x0, 0xffffffffffffff7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c000000020681010000000000000000000000000500050002000000050001000700000005000400030000000900020073797a310000000011000300686173683a6e65742c6e6574"], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x800)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x14, 0x9, 0x6, 0x201, 0x0, 0x0, {0x3}}, 0x14}, 0x1, 0x0, 0x0, 0xd24f4d5778621d46}, 0x4)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write(r3, &(0x7f0000004200)='t', 0x1)
socket$nl_route(0x10, 0x3, 0x0)
sendfile(r3, r2, 0x0, 0x3ffff)
sendfile(r3, r2, 0x0, 0x7ffff000)

kernel console output (not intermixed with test programs):

r this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  429.456988][T21647] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  429.519819][T21647] batman_adv: batadv0: Adding interface: batadv_slave_1
[  429.526828][T21647] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  429.552994][T21647] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  429.613644][T21700] loop2: detected capacity change from 0 to 32768
[  429.620474][T21706] loop0: detected capacity change from 0 to 1024
[  429.628298][T21706] EXT4-fs: Ignoring removed orlov option
[  429.639263][T21706] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  429.661642][T21647] hsr_slave_0: entered promiscuous mode
[  429.668779][T21700]  loop2: p1 p2 p3 < p5 p6 >
[  429.673728][T21700] loop2: p1 size 242222080 extends beyond EOD, truncated
[  429.688248][T21647] hsr_slave_1: entered promiscuous mode
[  429.694061][T21700] loop2: p2 start 4294967295 is beyond EOD, truncated
[  429.701486][T21647] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  429.709472][T21647] Cannot create hsr debugfs directory
[  429.979840][T21717] loop2: detected capacity change from 0 to 512
[  430.097177][T21717] EXT4-fs (loop2): 1 orphan inode deleted
[  430.103638][T21717] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  430.116290][ T3654] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:26: Failed to release dquot type 1
[  430.126156][T21717] ext4 filesystem being mounted at /508/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  430.130302][T21647] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  430.149716][T21716] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  430.196898][T21647] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  430.234023][T21647] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  430.260256][T12343] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  430.271772][T21734] loop1: detected capacity change from 0 to 256
[  430.280767][T21647] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  430.356253][T21647] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  430.447277][T21647] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  430.467693][T21647] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  430.477288][T21647] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  430.527655][T21752] loop3: detected capacity change from 0 to 1024
[  430.536574][T21752] EXT4-fs: Ignoring removed i_version option
[  430.545898][T21752] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  430.548399][T21647] 8021q: adding VLAN 0 to HW filter on device bond0
[  430.565325][T21752] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.5789: Invalid block bitmap block 0 in block_group 0
[  430.584702][T21647] 8021q: adding VLAN 0 to HW filter on device team0
[  430.594323][ T3651] bridge0: port 1(bridge_slave_0) entered blocking state
[  430.601611][ T3651] bridge0: port 1(bridge_slave_0) entered forwarding state
[  430.605361][T21752] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.5789: Failed to acquire dquot type 0
[  430.621445][T21762] __nla_validate_parse: 7 callbacks suppressed
[  430.621458][T21762] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5790'.
[  430.627778][T21647] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  430.647412][T21647] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  430.659096][T21752] EXT4-fs error (device loop3): ext4_free_blocks:6587: comm syz.3.5789: Freeing blocks not in datazone - block = 0, count = 4096
[  430.660474][ T3651] bridge0: port 2(bridge_slave_1) entered blocking state
[  430.679915][ T3651] bridge0: port 2(bridge_slave_1) entered forwarding state
[  430.687315][T21763] loop1: detected capacity change from 0 to 512
[  430.694948][T21752] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.5789: Invalid inode bitmap blk 0 in block_group 0
[  430.708008][T21752] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  430.708825][T12867] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  430.717969][T21752] EXT4-fs (loop3): 1 orphan inode deleted
[  430.730207][ T3657] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:29: Failed to release dquot type 0
[  430.746070][T21752] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  430.747113][T21763] EXT4-fs (loop1): 1 orphan inode deleted
[  430.765052][ T3694] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:63: Failed to release dquot type 1
[  430.785317][T21763] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  430.805424][T21763] ext4 filesystem being mounted at /538/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  430.826267][T21647] 8021q: adding VLAN 0 to HW filter on device batadv0
[  430.856107][T21762] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  430.898425][T21780] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5792'.
[  430.907644][T21780] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5792'.
[  430.990526][T21647] veth0_vlan: entered promiscuous mode
[  430.999609][T21647] veth1_vlan: entered promiscuous mode
[  431.014597][T12133] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  431.027477][T21647] veth0_macvtap: entered promiscuous mode
[  431.034902][T21647] veth1_macvtap: entered promiscuous mode
[  431.059853][T21647] batman_adv: batadv0: Interface activated: batadv_slave_0
[  431.071629][T21647] batman_adv: batadv0: Interface activated: batadv_slave_1
[  431.082723][T21647] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  431.091545][T21647] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  431.100254][T21647] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  431.109045][T21647] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  431.144978][   T29] kauditd_printk_skb: 392 callbacks suppressed
[  431.144990][   T29] audit: type=1400 audit(1752184918.718:48135): avc:  denied  { mounton } for  pid=21647 comm="syz-executor" path="/root/syzkaller.kQ808q/syz-tmp" dev="sda1" ino=2057 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[  431.176202][   T29] audit: type=1400 audit(1752184918.718:48136): avc:  denied  { mount } for  pid=21647 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  431.198638][   T29] audit: type=1400 audit(1752184918.718:48137): avc:  denied  { mounton } for  pid=21647 comm="syz-executor" path="/root/syzkaller.kQ808q/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[  431.225589][   T29] audit: type=1400 audit(1752184918.718:48138): avc:  denied  { mounton } for  pid=21647 comm="syz-executor" path="/root/syzkaller.kQ808q/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=60995 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[  431.253675][   T29] audit: type=1400 audit(1752184918.761:48139): avc:  denied  { mounton } for  pid=21647 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=536 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  431.276821][   T29] audit: type=1400 audit(1752184918.761:48140): avc:  denied  { mount } for  pid=21647 comm="syz-executor" name="/" dev="gadgetfs" ino=4749 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  431.331665][T21805] loop4: detected capacity change from 0 to 1024
[  431.339210][T21805] EXT4-fs: Ignoring removed orlov option
[  431.344905][   T29] audit: type=1326 audit(1752184918.943:48141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21806 comm="syz.0.5799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  431.368691][   T29] audit: type=1326 audit(1752184918.943:48142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21806 comm="syz.0.5799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  431.392324][   T29] audit: type=1326 audit(1752184918.943:48143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21806 comm="syz.0.5799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  431.415951][   T29] audit: type=1326 audit(1752184918.943:48144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21806 comm="syz.0.5799" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  431.440583][T13039] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  431.454706][T21805] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  431.480945][T21647] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  431.568427][T21820] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5802'.
[  431.577666][T21820] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5802'.
[  431.614235][T21822] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5805'.
[  431.745207][T21835] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  431.792764][T21835] SELinux: failed to load policy
[  431.998963][T21852] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5819'.
[  432.083003][T21860] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5821'.
[  432.092106][T21860] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5821'.
[  432.582068][T21859] lo speed is unknown, defaulting to 1000
[  432.660620][T21878] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  432.683943][T21878] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5826'.
[  432.979363][T21859] lo speed is unknown, defaulting to 1000
[  433.089507][T21893] loop0: detected capacity change from 0 to 256
[  433.209980][T21901] bridge0: port 3(syz_tun) entered blocking state
[  433.216549][T21901] bridge0: port 3(syz_tun) entered disabled state
[  433.223271][T21901] syz_tun: entered allmulticast mode
[  433.232047][T21901] syz_tun: entered promiscuous mode
[  433.598885][T21927] loop4: detected capacity change from 0 to 256
[  433.670949][T21930] loop3: detected capacity change from 0 to 1024
[  433.848259][T21934] loop4: detected capacity change from 0 to 1024
[  433.859040][T21934] EXT4-fs: Ignoring removed i_version option
[  433.883179][T21934] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  433.932446][T21934] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.5847: Invalid block bitmap block 0 in block_group 0
[  434.035975][T21934] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.5847: Failed to acquire dquot type 0
[  434.050317][T21934] EXT4-fs error (device loop4): ext4_free_blocks:6587: comm syz.4.5847: Freeing blocks not in datazone - block = 0, count = 4096
[  434.065900][T21934] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.5847: Invalid inode bitmap blk 0 in block_group 0
[  434.078929][T21934] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  434.196824][T21943] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  434.299396][ T3686] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:55: Failed to release dquot type 0
[  434.373832][T21934] EXT4-fs (loop4): 1 orphan inode deleted
[  434.397392][T21934] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  434.658974][T21647] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  434.670795][T21956] loop0: detected capacity change from 0 to 1024
[  434.763180][T21956] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  434.798031][T21956] ext4 filesystem being mounted at /576/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  434.855706][T12343] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  434.872017][T21968] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  434.905365][T21969] loop4: detected capacity change from 0 to 256
[  434.911828][T21968] SELinux: failed to load policy
[  435.037341][T21985] loop1: detected capacity change from 0 to 1024
[  435.082375][T21985] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  435.097214][T21985] ext4 filesystem being mounted at /550/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  435.184722][T22003] netlink: 'syz.4.5868': attribute type 1 has an invalid length.
[  435.204986][T22000] 9pnet_fd: Insufficient options for proto=fd
[  435.249207][T22003] veth3: entered promiscuous mode
[  435.285183][T22008] netlink: 'syz.0.5871': attribute type 1 has an invalid length.
[  435.298360][ T3634] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:8: bg 0: block 393: padding at end of block bitmap is not set
[  435.324955][ T3634] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  435.337709][ T3634] EXT4-fs (loop1): This should not happen!! Data will be lost
[  435.337709][ T3634] 
[  435.349005][T22011] __nla_validate_parse: 9 callbacks suppressed
[  435.355292][T22011] netlink: 52 bytes leftover after parsing attributes in process `syz.0.5871'.
[  435.393959][T21980] loop3: detected capacity change from 0 to 32768
[  435.413066][T22013] loop2: detected capacity change from 0 to 256
[  435.453169][T13039] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  435.476794][T22015] loop4: detected capacity change from 0 to 1024
[  435.500626][T21980]  loop3: p1 p2 p3 < p5 p6 >
[  435.505311][T21980] loop3: p1 size 242222080 extends beyond EOD, truncated
[  435.524580][T22015] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  435.538233][T21980] loop3: p2 start 4294967295 is beyond EOD, truncated
[  435.574334][T22008] veth5: entered promiscuous mode
[  435.615259][T22022] loop0: detected capacity change from 0 to 1024
[  435.617655][T22008] bond2: (slave veth5): Enslaving as a backup interface with a down link
[  435.654163][T22015] ext4 filesystem being mounted at /19/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  435.735273][T22027] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5877'.
[  435.793184][T22033] loop2: detected capacity change from 0 to 512
[  435.839223][   T10] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[  435.847706][   T10] hid-generic 0000:0000:0000.000D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  435.859678][T22033] EXT4-fs (loop2): 1 orphan inode deleted
[  435.870873][T22022] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  435.931895][T22040] netlink: 'syz.1.5878': attribute type 1 has an invalid length.
[  435.939900][T22040] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=22040 comm=syz.1.5878
[  435.953461][T22033] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  435.987115][T22022] ext4 filesystem being mounted at /580/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  436.012906][T22033] ext4 filesystem being mounted at /529/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  436.094674][   T29] kauditd_printk_skb: 678 callbacks suppressed
[  436.094716][   T29] audit: type=1326 audit(1752184924.007:48820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22006 comm="syz.0.5871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  436.124603][   T29] audit: type=1326 audit(1752184924.007:48821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22006 comm="syz.0.5871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  436.148205][   T29] audit: type=1326 audit(1752184924.007:48822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22006 comm="syz.0.5871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  436.171873][   T29] audit: type=1326 audit(1752184924.007:48823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22006 comm="syz.0.5871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  436.195468][   T29] audit: type=1326 audit(1752184924.007:48824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22006 comm="syz.0.5871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  436.219121][   T29] audit: type=1326 audit(1752184924.007:48825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22006 comm="syz.0.5871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  436.242605][   T29] audit: type=1326 audit(1752184924.007:48826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22006 comm="syz.0.5871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  436.244421][ T3635] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  436.266231][   T29] audit: type=1326 audit(1752184924.007:48827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22006 comm="syz.0.5871" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  436.275981][ T3635] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:9: Failed to release dquot type 1
[  436.329983][T21647] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.333620][T22033] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  436.340296][T12343] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.366602][T22046] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5880'.
[  436.375625][T22046] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5880'.
[  436.391129][T22046] loop4: detected capacity change from 0 to 512
[  436.400737][T22048] ALSA: seq fatal error: cannot create timer (-19)
[  436.409606][T22046] EXT4-fs (loop4): 1 orphan inode deleted
[  436.416270][T22046] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  436.429051][ T3635] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  436.429317][T22046] ext4 filesystem being mounted at /20/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  436.439073][ T3635] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:9: Failed to release dquot type 1
[  436.461551][T22046] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  436.573714][T12867] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.591978][T22062] loop2: detected capacity change from 0 to 1024
[  436.598730][T22062] EXT4-fs: Ignoring removed orlov option
[  436.606473][T22062] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  436.637622][T22062] netlink: 40 bytes leftover after parsing attributes in process `syz.2.5885'.
[  436.873522][T12867] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.948922][T22084] netlink: 'syz.2.5890': attribute type 1 has an invalid length.
[  436.967508][T22080] lo speed is unknown, defaulting to 1000
[  436.990138][T22084] netlink: 52 bytes leftover after parsing attributes in process `syz.2.5890'.
[  437.011758][T22080] lo speed is unknown, defaulting to 1000
[  437.027242][T22084] veth3: entered promiscuous mode
[  437.034450][T22084] bond0: (slave veth3): Enslaving as a backup interface with a down link
[  437.125499][T22084] loop2: detected capacity change from 0 to 1024
[  437.172395][T21647] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  437.202836][T22089] ALSA: seq fatal error: cannot create timer (-19)
[  437.211418][T22084] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  437.235751][T22084] ext4 filesystem being mounted at /531/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  437.253199][T22097] loop1: detected capacity change from 0 to 1024
[  437.297275][T22101] loop3: detected capacity change from 0 to 512
[  437.307812][T22097] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  437.336769][T22101] EXT4-fs (loop3): 1 orphan inode deleted
[  437.342947][T22097] ext4 filesystem being mounted at /558/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  437.356228][T22101] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  437.369279][ T3686] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:55: Failed to release dquot type 1
[  437.384107][T22108] loop0: detected capacity change from 0 to 512
[  437.478434][T22101] ext4 filesystem being mounted at /597/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  437.499463][T13039] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  437.511142][T22108] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.5896: bg 0: block 248: padding at end of block bitmap is not set
[  437.569614][T22108] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.5896: Failed to acquire dquot type 1
[  437.583590][T22113] netlink: 'syz.4.5894': attribute type 1 has an invalid length.
[  437.591642][T22113] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=22113 comm=syz.4.5894
[  437.607467][T22101] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  437.680551][T22108] EXT4-fs (loop0): 1 truncate cleaned up
[  437.696348][T22108] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  437.721115][T22108] ext4 filesystem being mounted at /583/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  437.881315][T22121] loop1: detected capacity change from 0 to 256
[  437.904152][T22123] loop1: detected capacity change from 0 to 1024
[  437.906391][T22117] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5898'.
[  437.910919][T22123] EXT4-fs: Ignoring removed orlov option
[  437.922797][T22117] 9pnet_fd: Insufficient options for proto=fd
[  437.935104][T22123] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5900'.
[  438.098630][T22131] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5902'.
[  438.164433][T22134] netlink: 6048 bytes leftover after parsing attributes in process `syz.3.5902'.
[  438.173819][T22133] loop4: detected capacity change from 0 to 2048
[  438.192866][T22133] EXT4-fs (loop4): failed to initialize system zone (-117)
[  438.200269][T22133] EXT4-fs (loop4): mount failed
[  438.241082][T22140] ALSA: seq fatal error: cannot create timer (-19)
[  438.242079][ T3366] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  438.261602][ T3366] hid-generic 0000:0000:0000.000E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  438.327069][T22150] macvlan1: entered promiscuous mode
[  438.343771][T22150] ipvlan0: entered promiscuous mode
[  438.355463][T22150] ipvlan0: left promiscuous mode
[  438.362975][T22150] macvlan1: left promiscuous mode
[  438.377323][T12133] syz_tun (unregistering): left allmulticast mode
[  438.383785][T12133] syz_tun (unregistering): left promiscuous mode
[  438.390248][T12133] bridge0: port 3(syz_tun) entered disabled state
[  438.401967][T22154] netlink: 'syz.1.5909': attribute type 1 has an invalid length.
[  438.424231][T22154] veth5: entered promiscuous mode
[  438.431876][T22154] bond1: (slave veth5): Enslaving as a backup interface with a down link
[  438.491491][T22151] lo speed is unknown, defaulting to 1000
[  438.534001][T22151] lo speed is unknown, defaulting to 1000
[  438.638623][T22151] chnl_net:caif_netlink_parms(): no params data found
[  438.699118][ T3694] bridge_slave_1: left allmulticast mode
[  438.704927][ T3694] bridge_slave_1: left promiscuous mode
[  438.710770][ T3694] bridge0: port 2(bridge_slave_1) entered disabled state
[  438.720851][ T3694] bridge_slave_0: left allmulticast mode
[  438.726641][ T3694] bridge_slave_0: left promiscuous mode
[  438.732427][ T3694] bridge0: port 1(bridge_slave_0) entered disabled state
[  438.758734][T22173] loop2: detected capacity change from 0 to 512
[  438.805817][T22173] EXT4-fs (loop2): 1 orphan inode deleted
[  438.812826][T22173] ext4 filesystem being mounted at /534/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  438.823675][ T3686] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:55: Failed to release dquot type 1
[  438.847382][T22173] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  438.912749][ T3694] $Hÿ (unregistering): (slave bond_slave_0): Releasing backup interface
[  438.928479][ T3694] bond_slave_0: left promiscuous mode
[  438.947239][ T3694] $Hÿ (unregistering): (slave bond_slave_1): Releasing backup interface
[  438.974866][ T3694] bond_slave_1: left promiscuous mode
[  438.982053][ T3694] $Hÿ (unregistering): Released all slaves
[  438.991649][ T3694] bond1 (unregistering): Released all slaves
[  439.001468][ T3694] bond0 (unregistering): Released all slaves
[  439.032954][T22151] bridge0: port 1(bridge_slave_0) entered blocking state
[  439.040341][T22151] bridge0: port 1(bridge_slave_0) entered disabled state
[  439.050419][T22151] bridge_slave_0: entered allmulticast mode
[  439.057007][T22151] bridge_slave_0: entered promiscuous mode
[  439.065214][T22151] bridge0: port 2(bridge_slave_1) entered blocking state
[  439.072546][T22151] bridge0: port 2(bridge_slave_1) entered disabled state
[  439.081472][T22151] bridge_slave_1: entered allmulticast mode
[  439.088127][T22151] bridge_slave_1: entered promiscuous mode
[  439.126673][T22151] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  439.139746][ T3694] hsr_slave_0: left promiscuous mode
[  439.146315][T22183] loop1: detected capacity change from 0 to 1024
[  439.153943][T22183] EXT4-fs: Ignoring removed orlov option
[  439.166693][ T3694] hsr_slave_1: left promiscuous mode
[  439.178335][ T3694] batman_adv: batadv0: Removing interface: batadv_slave_0
[  439.192057][T22187] loop4: detected capacity change from 0 to 1024
[  439.199270][ T3694] batman_adv: batadv0: Removing interface: batadv_slave_1
[  439.220688][ T3694] pim6reg9 (unregistering): left allmulticast mode
[  439.229663][T22187] ext4 filesystem being mounted at /25/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  439.249764][T22192] loop0: detected capacity change from 0 to 256
[  439.317694][ T3694] team0 (unregistering): Port device team_slave_1 removed
[  439.332056][ T3694] team0 (unregistering): Port device team_slave_0 removed
[  439.335626][T22199] loop4: detected capacity change from 0 to 512
[  439.373523][T22151] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  439.393011][T22199] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.5920: bg 0: block 248: padding at end of block bitmap is not set
[  439.397617][T22201] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  439.420182][T22151] team0: Port device team_slave_0 added
[  439.420639][T22199] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.5920: Failed to acquire dquot type 1
[  439.428554][T22151] team0: Port device team_slave_1 added
[  439.449004][T22201] SELinux: failed to load policy
[  439.454275][T22199] EXT4-fs (loop4): 1 truncate cleaned up
[  439.460676][T22199] ext4 filesystem being mounted at /27/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  439.472164][T22151] batman_adv: batadv0: Adding interface: batadv_slave_0
[  439.479290][T22151] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  439.505338][T22151] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  439.527486][T22151] batman_adv: batadv0: Adding interface: batadv_slave_1
[  439.534522][T22151] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  439.560615][T22151] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  439.615018][T22151] hsr_slave_0: entered promiscuous mode
[  439.615705][T22213] netlink: 'syz.0.5922': attribute type 1 has an invalid length.
[  439.631913][T22214] loop1: detected capacity change from 0 to 256
[  439.638588][T22151] hsr_slave_1: entered promiscuous mode
[  439.644435][T22151] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  439.669882][T22151] Cannot create hsr debugfs directory
[  439.682372][T22220] macvlan1: entered promiscuous mode
[  439.688841][T22220] ipvlan0: entered promiscuous mode
[  439.696093][T22220] ipvlan0: left promiscuous mode
[  439.701237][T22220] macvlan1: left promiscuous mode
[  439.806692][T22230] loop2: detected capacity change from 0 to 2048
[  439.823294][T22227] veth7: entered promiscuous mode
[  439.830277][T22230] EXT4-fs (loop2): failed to initialize system zone (-117)
[  439.837903][T22230] EXT4-fs (loop2): mount failed
[  439.855362][T22227] bond3: (slave veth7): Enslaving as a backup interface with a down link
[  439.910079][T22238] loop2: detected capacity change from 0 to 512
[  439.936792][T22238] EXT4-fs (loop2): 1 orphan inode deleted
[  439.943151][T22238] ext4 filesystem being mounted at /539/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  439.972592][ T3657] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:29: Failed to release dquot type 1
[  439.986192][T22238] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  440.319250][T22151] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  440.331322][T22151] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  440.343990][T22151] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  440.348874][T22245] loop0: detected capacity change from 0 to 1024
[  440.357249][T22247] loop4: detected capacity change from 0 to 256
[  440.358816][T22245] EXT4-fs: Ignoring removed orlov option
[  440.371063][T22151] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  440.416740][T22259] __nla_validate_parse: 6 callbacks suppressed
[  440.416757][T22259] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5940'.
[  440.420472][T22151] 8021q: adding VLAN 0 to HW filter on device bond0
[  440.446851][T22151] 8021q: adding VLAN 0 to HW filter on device team0
[  440.459598][ T3686] bridge0: port 1(bridge_slave_0) entered blocking state
[  440.466769][ T3686] bridge0: port 1(bridge_slave_0) entered forwarding state
[  440.484831][ T3686] bridge0: port 2(bridge_slave_1) entered blocking state
[  440.491941][ T3686] bridge0: port 2(bridge_slave_1) entered forwarding state
[  440.512308][T22151] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  440.522748][T22151] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  440.538089][T22262] loop4: detected capacity change from 0 to 512
[  440.553476][T22262] EXT4-fs (loop4): 1 orphan inode deleted
[  440.569931][ T3634] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:8: Failed to release dquot type 1
[  440.581523][T22151] 8021q: adding VLAN 0 to HW filter on device batadv0
[  440.601551][T22262] ext4 filesystem being mounted at /33/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  440.614832][T22262] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  440.753372][T22282] macvlan1: entered promiscuous mode
[  440.759258][T22282] ipvlan0: entered promiscuous mode
[  440.765384][T22282] ipvlan0: left promiscuous mode
[  440.770485][T22282] macvlan1: left promiscuous mode
[  440.787312][T22266] lo speed is unknown, defaulting to 1000
[  440.857641][T22266] lo speed is unknown, defaulting to 1000
[  441.019968][T22151] veth0_vlan: entered promiscuous mode
[  441.056879][T22151] veth1_vlan: entered promiscuous mode
[  441.120263][T22151] veth0_macvtap: entered promiscuous mode
[  441.130027][T22151] veth1_macvtap: entered promiscuous mode
[  441.143787][T22151] batman_adv: batadv0: Interface activated: batadv_slave_0
[  441.172690][T22151] batman_adv: batadv0: Interface activated: batadv_slave_1
[  441.182622][T22151] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  441.191609][T22151] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  441.200506][T22151] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  441.209482][T22151] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  441.222231][   T29] kauditd_printk_skb: 234 callbacks suppressed
[  441.222245][   T29] audit: type=1326 audit(1752184929.543:49054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  441.253551][T22293] netlink: 'syz.0.5947': attribute type 1 has an invalid length.
[  441.266826][   T29] audit: type=1326 audit(1752184929.576:49055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  441.290472][   T29] audit: type=1326 audit(1752184929.576:49056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  441.314042][   T29] audit: type=1326 audit(1752184929.576:49057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  441.337566][   T29] audit: type=1326 audit(1752184929.576:49058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  441.361290][   T29] audit: type=1326 audit(1752184929.576:49059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  441.384846][   T29] audit: type=1326 audit(1752184929.576:49060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  441.390041][T22294] netlink: 52 bytes leftover after parsing attributes in process `syz.0.5947'.
[  441.408473][   T29] audit: type=1326 audit(1752184929.576:49061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  441.408520][   T29] audit: type=1326 audit(1752184929.576:49062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  441.408582][   T29] audit: type=1326 audit(1752184929.576:49063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22291 comm="syz.0.5947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4995bbe929 code=0x7ffc0000
[  441.539839][T22298] loop4: detected capacity change from 0 to 256
[  441.546447][T22296] veth9: entered promiscuous mode
[  441.581858][T22304] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5950'.
[  441.754838][T22317] loop3: detected capacity change from 0 to 2048
[  441.762241][T22313] ALSA: seq fatal error: cannot create timer (-19)
[  441.772465][T22317] EXT4-fs (loop3): failed to initialize system zone (-117)
[  441.779846][T22317] EXT4-fs (loop3): mount failed
[  441.849268][T22322] loop4: detected capacity change from 0 to 512
[  441.857890][T22327] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  441.867826][T22327] SELinux: failed to load policy
[  441.893002][T22322] EXT4-fs (loop4): 1 orphan inode deleted
[  441.899395][T22322] ext4 filesystem being mounted at /37/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  441.911571][ T3657] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:29: Failed to release dquot type 1
[  441.938187][T22322] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  441.974474][T22336] loop1: detected capacity change from 0 to 1024
[  441.981460][T22336] EXT4-fs: Ignoring removed orlov option
[  441.999225][T22337] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5959'.
[  442.008899][T22337] 9pnet_fd: Insufficient options for proto=fd
[  442.029044][T22342] macvlan1: entered promiscuous mode
[  442.035410][T22342] ipvlan0: entered promiscuous mode
[  442.041499][T22342] ipvlan0: left promiscuous mode
[  442.052685][T22344] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5965'.
[  442.079676][T22342] macvlan1: left promiscuous mode
[  442.169651][   T23] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0
[  442.217791][T22351] loop2: detected capacity change from 0 to 1024
[  442.281467][T22351] EXT4-fs: Ignoring removed orlov option
[  442.288103][   T23] hid-generic 0000:0000:0000.000F: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  442.394289][T22336] Set syz1 is full, maxelem 65536 reached
[  442.404669][T12343] syz_tun (unregistering): left promiscuous mode
[  442.465123][T22365] netlink: 36 bytes leftover after parsing attributes in process `syz.1.5969'.
[  442.497816][T22369] loop2: detected capacity change from 0 to 2048
[  442.509934][T22354] lo speed is unknown, defaulting to 1000
[  442.518374][T22369] EXT4-fs (loop2): failed to initialize system zone (-117)
[  442.527752][T22369] EXT4-fs (loop2): mount failed
[  442.532847][T22373] loop1: detected capacity change from 0 to 512
[  442.557358][T22373] EXT4-fs (loop1): 1 orphan inode deleted
[  442.562703][T22354] lo speed is unknown, defaulting to 1000
[  442.574501][ T3686] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:55: Failed to release dquot type 1
[  442.590217][T22373] ext4 filesystem being mounted at /578/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  442.612326][T22365] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  442.647192][T22381] netlink: 'syz.4.5972': attribute type 1 has an invalid length.
[  442.688143][T22383] netlink: 'syz.2.5973': attribute type 1 has an invalid length.
[  442.733525][T22354] chnl_net:caif_netlink_parms(): no params data found
[  442.751358][T22381] netlink: 52 bytes leftover after parsing attributes in process `syz.4.5972'.
[  442.760969][T22383] netlink: 52 bytes leftover after parsing attributes in process `syz.2.5973'.
[  442.817577][ T3694] bridge_slave_1: left allmulticast mode
[  442.823290][ T3694] bridge_slave_1: left promiscuous mode
[  442.829059][ T3694] bridge0: port 2(bridge_slave_1) entered disabled state
[  442.841930][T22389] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5974'.
[  442.871971][ T3694] bridge_slave_0: left promiscuous mode
[  442.877748][ T3694] bridge0: port 1(bridge_slave_0) entered disabled state
[  442.919150][T22395] loop4: detected capacity change from 0 to 1024
[  443.116603][ T3694] $Hÿ (unregistering): (slave bond_slave_0): Releasing backup interface
[  443.135427][ T3694] bond_slave_0: left promiscuous mode
[  443.143074][ T3694] $Hÿ (unregistering): (slave bond_slave_1): Releasing backup interface
[  443.152602][T22395] ext4 filesystem being mounted at /38/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  443.164746][ T3694] bond_slave_1: left promiscuous mode
[  443.172057][ T3694] $Hÿ (unregistering): (slave dummy0): Releasing backup interface
[  443.181470][ T3694] dummy0: left promiscuous mode
[  443.190248][ T3694] $Hÿ (unregistering): Released all slaves
[  443.243386][ T3694] bond1 (unregistering): Released all slaves
[  443.267157][ T3694] bond0 (unregistering): (slave veth3): Releasing backup interface
[  443.285336][ T3694] bond0 (unregistering): Released all slaves
[  443.302765][ T3694] bond2 (unregistering): (slave veth5): Releasing backup interface
[  443.321361][ T3694] bond2 (unregistering): Released all slaves
[  443.335586][ T3694] bond3 (unregistering): (slave veth7): Releasing backup interface
[  443.353710][ T3694] bond3 (unregistering): Released all slaves
[  443.369004][ T3694] bond4 (unregistering): Released all slaves
[  443.386781][T22385] veth3: entered promiscuous mode
[  443.396096][T22385] bond1: (slave veth3): Enslaving as a backup interface with a down link
[  443.411806][T22390] veth5: entered promiscuous mode
[  443.418321][T22390] bond2: (slave veth5): Enslaving as a backup interface with a down link
[  443.464399][T22410] loop4: detected capacity change from 0 to 1024
[  443.475924][T22410] EXT4-fs: Ignoring removed orlov option
[  443.482527][T22354] bridge0: port 1(bridge_slave_0) entered blocking state
[  443.489715][T22354] bridge0: port 1(bridge_slave_0) entered disabled state
[  443.499900][T22354] bridge_slave_0: entered allmulticast mode
[  443.514010][T22354] bridge_slave_0: entered promiscuous mode
[  443.521232][T22354] bridge0: port 2(bridge_slave_1) entered blocking state
[  443.528373][T22354] bridge0: port 2(bridge_slave_1) entered disabled state
[  443.535866][T22354] bridge_slave_1: entered allmulticast mode
[  443.543255][T22354] bridge_slave_1: entered promiscuous mode
[  443.557288][ T3694] batadv_slave_0: left promiscuous mode
[  443.580738][ T3694] hsr_slave_0: left promiscuous mode
[  443.588142][ T3694] hsr_slave_1: left promiscuous mode
[  443.593854][ T3694] batman_adv: batadv0: Removing interface: batadv_slave_0
[  443.593861][T22415] loop3: detected capacity change from 0 to 512
[  443.608733][ T3694] batman_adv: batadv0: Removing interface: batadv_slave_1
[  443.611637][T22415] EXT4-fs (loop3): 1 orphan inode deleted
[  443.622569][T22415] ext4 filesystem being mounted at /6/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  443.633185][ T3654] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:26: Failed to release dquot type 1
[  443.652602][T22415] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  443.685182][ T3694] team0 (unregistering): Port device team_slave_1 removed
[  443.696525][ T3694] team0 (unregistering): Port device team_slave_0 removed
[  443.746654][T22354] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  443.764560][T22354] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  443.779469][T22433] loop2: detected capacity change from 0 to 256
[  443.797601][T22354] team0: Port device team_slave_0 added
[  443.804615][T22354] team0: Port device team_slave_1 added
[  443.828108][T22354] batman_adv: batadv0: Adding interface: batadv_slave_0
[  443.835111][T22354] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  443.861128][T22354] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  443.874608][T22354] batman_adv: batadv0: Adding interface: batadv_slave_1
[  443.881713][T22354] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  443.907728][T22354] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  443.932709][T22354] hsr_slave_0: entered promiscuous mode
[  443.938642][T22354] hsr_slave_1: entered promiscuous mode
[  444.049288][T22448] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5988'.
[  444.173755][T22354] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  444.184083][T22354] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  444.193467][T22354] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  444.202353][T22354] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  444.237895][T22354] 8021q: adding VLAN 0 to HW filter on device bond0
[  444.254438][T22354] 8021q: adding VLAN 0 to HW filter on device team0
[  444.264805][ T3651] bridge0: port 1(bridge_slave_0) entered blocking state
[  444.271904][ T3651] bridge0: port 1(bridge_slave_0) entered forwarding state
[  444.308657][ T3651] bridge0: port 2(bridge_slave_1) entered blocking state
[  444.315777][ T3651] bridge0: port 2(bridge_slave_1) entered forwarding state
[  444.357185][T22461] netlink: 'syz.3.5990': attribute type 1 has an invalid length.
[  444.399536][T22461] veth3: entered promiscuous mode
[  444.404986][T22461] batman_adv: batadv0: Adding interface: veth3
[  444.411321][T22461] batman_adv: batadv0: The MTU of interface veth3 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  444.436602][T22461] batman_adv: batadv0: Not using interface veth3 (retrying later): interface not active
[  444.464915][T22451] lo speed is unknown, defaulting to 1000
[  444.510709][T22451] lo speed is unknown, defaulting to 1000
[  444.555462][T22354] 8021q: adding VLAN 0 to HW filter on device batadv0
[  444.637460][T22354] veth0_vlan: entered promiscuous mode
[  444.645426][T22354] veth1_vlan: entered promiscuous mode
[  444.666191][T22354] veth0_macvtap: entered promiscuous mode
[  444.739804][T22354] veth1_macvtap: entered promiscuous mode
[  444.751303][T22354] batman_adv: batadv0: Interface activated: batadv_slave_0
[  444.760076][T22354] batman_adv: batadv0: Interface activated: batadv_slave_1
[  444.768356][T22354] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  444.777109][T22354] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  444.785978][T22354] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  444.794766][T22354] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  444.875146][T22488] loop0: detected capacity change from 0 to 512
[  444.930687][T22489] netlink: 'syz.1.5993': attribute type 1 has an invalid length.
[  444.938747][T22489] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=22489 comm=syz.1.5993
[  445.249050][T22488] EXT4-fs (loop0): 1 orphan inode deleted
[  445.255297][T22488] ext4 filesystem being mounted at /0/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  445.266182][ T3657] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:29: Failed to release dquot type 1
[  445.278873][T22488] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  445.358138][T22501] loop3: detected capacity change from 0 to 512
[  445.380292][T22501] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.5998: bg 0: block 248: padding at end of block bitmap is not set
[  445.394915][T22501] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.5998: Failed to acquire dquot type 1
[  445.408517][T22501] EXT4-fs (loop3): 1 truncate cleaned up
[  445.414665][T22501] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  445.502052][T22510] loop3: detected capacity change from 0 to 512
[  445.520160][T22510] EXT4-fs (loop3): 1 orphan inode deleted
[  445.526895][T22510] ext4 filesystem being mounted at /12/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  445.542514][ T3414] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0
[  445.557049][ T3414] hid-generic 0000:0000:0000.0010: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  445.568454][ T3651] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:23: Failed to release dquot type 1
[  445.581111][T22505] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  445.594705][T22515] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  445.604466][T22515] SELinux: failed to load policy
[  445.634680][T22519] __nla_validate_parse: 2 callbacks suppressed
[  445.634765][T22519] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6004'.
[  445.690088][T22519] loop1: detected capacity change from 0 to 512
[  445.725983][T22519] EXT4-fs (loop1): 1 orphan inode deleted
[  445.738213][T22519] ext4 filesystem being mounted at /585/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  445.750393][ T3694] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:63: Failed to release dquot type 1
[  445.785376][T22519] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  445.824332][T22533] loop4: detected capacity change from 0 to 512
[  445.850573][T22524] lo speed is unknown, defaulting to 1000
[  445.866839][T22533] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.6009: bg 0: block 248: padding at end of block bitmap is not set
[  445.885112][T22533] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.6009: Failed to acquire dquot type 1
[  445.900621][T22533] EXT4-fs (loop4): 1 truncate cleaned up
[  445.906895][T22533] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  445.951232][T22539] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6010'.
[  445.970120][T22524] lo speed is unknown, defaulting to 1000
[  446.028623][T22542] loop4: detected capacity change from 0 to 1024
[  446.035470][T22542] EXT4-fs: Ignoring removed i_version option
[  446.043261][T22542] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  446.055773][T22542] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.6011: Invalid block bitmap block 0 in block_group 0
[  446.070076][T22542] __quota_error: 492 callbacks suppressed
[  446.070088][T22542] Quota error (device loop4): write_blk: dquota write failed
[  446.083371][T22542] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  446.093466][T22542] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.6011: Failed to acquire dquot type 0
[  446.107462][T22542] EXT4-fs error (device loop4): ext4_free_blocks:6587: comm syz.4.6011: Freeing blocks not in datazone - block = 0, count = 4096
[  446.150233][T22542] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.6011: Invalid inode bitmap blk 0 in block_group 0
[  446.163073][ T3654] Quota error (device loop4): do_check_range: Getting block 0 out of range 1-8
[  446.166964][T22556] loop2: detected capacity change from 0 to 256
[  446.172119][ T3654] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:26: Failed to release dquot type 0
[  446.190360][T22542] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  446.199165][T22542] EXT4-fs (loop4): 1 orphan inode deleted
[  446.225295][T22558] loop2: detected capacity change from 0 to 256
[  446.283242][   T29] audit: type=1326 audit(1752184934.972:49546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22564 comm="syz.3.6020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ee03e929 code=0x7ffc0000
[  446.292585][T22566] loop2: detected capacity change from 0 to 512
[  446.313881][   T29] audit: type=1326 audit(1752184934.994:49547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22564 comm="syz.3.6020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f79ee03e929 code=0x7ffc0000
[  446.337496][   T29] audit: type=1326 audit(1752184934.994:49548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22564 comm="syz.3.6020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ee03e929 code=0x7ffc0000
[  446.352182][T22566] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.6021: bg 0: block 248: padding at end of block bitmap is not set
[  446.361129][   T29] audit: type=1326 audit(1752184934.994:49549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22564 comm="syz.3.6020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ee03e929 code=0x7ffc0000
[  446.361203][   T29] audit: type=1326 audit(1752184934.994:49550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22564 comm="syz.3.6020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f79ee03e929 code=0x7ffc0000
[  446.384732][T22566] Quota error (device loop2): write_blk: dquota write failed
[  446.399025][   T29] audit: type=1326 audit(1752184934.994:49551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22564 comm="syz.3.6020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ee03e929 code=0x7ffc0000
[  446.423407][T22566] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.6021: Failed to acquire dquot type 1
[  446.467582][T22566] EXT4-fs (loop2): 1 truncate cleaned up
[  446.488652][T22573] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6023'.
[  446.490227][T22566] ext4 filesystem being mounted at /563/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  446.528677][T22574] netlink: 'syz.3.6022': attribute type 1 has an invalid length.
[  446.538078][T22574] netlink: 52 bytes leftover after parsing attributes in process `syz.3.6022'.
[  446.553182][T22575] netlink: 6048 bytes leftover after parsing attributes in process `syz.1.6023'.
[  446.571699][T22574] veth5: entered promiscuous mode
[  446.708363][T22574] loop3: detected capacity change from 0 to 1024
[  446.746959][T22588] loop2: detected capacity change from 0 to 256
[  446.769165][T22574] ext4 filesystem being mounted at /15/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  446.787223][T22586] loop1: detected capacity change from 0 to 512
[  446.815162][T22586] EXT4-fs (loop1): 1 orphan inode deleted
[  446.826992][T22586] ext4 filesystem being mounted at /591/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  446.854381][T22593] loop4: detected capacity change from 0 to 1024
[  446.862483][T22593] EXT4-fs: Ignoring removed i_version option
[  446.877482][ T3654] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:26: Failed to release dquot type 1
[  446.901073][T22593] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  446.918662][T22593] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.6030: Invalid block bitmap block 0 in block_group 0
[  446.924872][T22603] loop2: detected capacity change from 0 to 1024
[  446.933057][T22593] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.6030: Failed to acquire dquot type 0
[  446.953570][T22593] EXT4-fs error (device loop4): ext4_free_blocks:6587: comm syz.4.6030: Freeing blocks not in datazone - block = 0, count = 4096
[  446.960260][T22586] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  446.967481][T22603] EXT4-fs: Ignoring removed orlov option
[  446.981111][T22593] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.6030: Invalid inode bitmap blk 0 in block_group 0
[  446.996216][T22593] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  447.008308][ T3657] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:29: Failed to release dquot type 0
[  447.021733][T22606] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6034'.
[  447.034402][T22593] EXT4-fs (loop4): 1 orphan inode deleted
[  447.081827][T22611] Cannot find set identified by id 0 to match
[  447.088631][T22611] netlink: 6048 bytes leftover after parsing attributes in process `syz.0.6034'.
[  447.099126][T22606] $Hÿ: renamed from bond0 (while UP)
[  447.106541][T22606] $Hÿ: entered promiscuous mode
[  447.110799][T22612] netlink: 'syz.2.6035': attribute type 1 has an invalid length.
[  447.111578][T22606] bond_slave_0: entered promiscuous mode
[  447.111641][T22606] bond_slave_1: entered promiscuous mode
[  447.162886][T22613] netlink: 52 bytes leftover after parsing attributes in process `syz.2.6035'.
[  447.217737][T22620] loop0: detected capacity change from 0 to 1024
[  447.233330][T22620] EXT4-fs: Ignoring removed orlov option
[  447.434128][T22613] loop2: detected capacity change from 0 to 1024
[  447.462072][T22621] veth7: entered promiscuous mode
[  447.510685][T22621] bond3: (slave veth7): Enslaving as a backup interface with a down link
[  447.542168][T22629] loop3: detected capacity change from 0 to 2048
[  447.577148][T22629] EXT4-fs (loop3): failed to initialize system zone (-117)
[  447.590504][T22613] ext4 filesystem being mounted at /568/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  447.601270][T22629] EXT4-fs (loop3): mount failed
[  447.612682][T22638] loop1: detected capacity change from 0 to 256
[  447.784645][T22643] loop1: detected capacity change from 0 to 1024
[  447.791247][T22643] EXT4-fs: Ignoring removed orlov option
[  447.815954][T22649] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  447.880495][T22651] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  447.898631][T22651] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6044'.
[  447.944766][T22648] loop4: detected capacity change from 0 to 2048
[  447.982526][T22648] EXT4-fs (loop4): failed to initialize system zone (-117)
[  447.994091][T22649] SELinux: failed to load policy
[  448.106377][T22648] EXT4-fs (loop4): mount failed
[  448.244817][T22659] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6049'.
[  448.325232][T22664] loop2: detected capacity change from 0 to 2048
[  448.336681][T22662] loop3: detected capacity change from 0 to 512
[  448.337739][T22666] loop4: detected capacity change from 0 to 1024
[  448.350116][T22666] EXT4-fs: Ignoring removed orlov option
[  448.363768][T22664] EXT4-fs (loop2): failed to initialize system zone (-117)
[  448.371409][T22664] EXT4-fs (loop2): mount failed
[  448.378468][T22662] EXT4-fs (loop3): 1 orphan inode deleted
[  448.385119][T22662] ext4 filesystem being mounted at /21/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  448.395601][ T3657] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:29: Failed to release dquot type 1
[  448.416643][T22662] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  448.584403][T22683] netlink: 'syz.2.6055': attribute type 1 has an invalid length.
[  448.639946][T22686] loop0: detected capacity change from 0 to 1024
[  448.647728][T22686] EXT4-fs: Ignoring removed orlov option
[  448.654054][T22683] veth9: entered promiscuous mode
[  448.693606][T22689] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  448.712598][T22683] loop2: detected capacity change from 0 to 1024
[  448.719140][T22689] SELinux: failed to load policy
[  448.763126][T22683] ext4 filesystem being mounted at /570/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  448.818738][T22699] loop1: detected capacity change from 0 to 512
[  448.868039][T22699] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.6064: bg 0: block 248: padding at end of block bitmap is not set
[  448.885242][T22699] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.6064: Failed to acquire dquot type 1
[  448.899932][T22699] EXT4-fs (loop1): 1 truncate cleaned up
[  448.906135][T22699] ext4 filesystem being mounted at /598/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  448.991346][T22714] loop4: detected capacity change from 0 to 512
[  449.019965][T22714] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.6069: bg 0: block 248: padding at end of block bitmap is not set
[  449.035158][T22715] loop1: detected capacity change from 0 to 1024
[  449.048705][T22715] EXT4-fs: Ignoring removed i_version option
[  449.055441][T22715] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  449.067422][T22714] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.6069: Failed to acquire dquot type 1
[  449.109995][T22721] loop0: detected capacity change from 0 to 1024
[  449.120195][T22715] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.6066: Invalid block bitmap block 0 in block_group 0
[  449.140887][T22721] EXT4-fs: Ignoring removed orlov option
[  449.147708][T22723] loop3: detected capacity change from 0 to 1024
[  449.148314][T22715] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.6066: Failed to acquire dquot type 0
[  449.154400][T22723] EXT4-fs: Ignoring removed orlov option
[  449.166100][T22714] EXT4-fs (loop4): 1 truncate cleaned up
[  449.172099][T22715] EXT4-fs error (device loop1): ext4_free_blocks:6587: comm syz.1.6066: Freeing blocks not in datazone - block = 0, count = 4096
[  449.177427][T22714] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  449.236767][T22715] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.6066: Invalid inode bitmap blk 0 in block_group 0
[  449.258702][T22715] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[  449.271250][T22715] EXT4-fs (loop1): 1 orphan inode deleted
[  449.277421][ T3686] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:55: Failed to release dquot type 0
[  449.771404][T22748] bridge0: port 3(syz_tun) entered blocking state
[  449.778576][T22748] bridge0: port 3(syz_tun) entered disabled state
[  449.809400][T22748] syz_tun: entered allmulticast mode
[  449.816044][T22748] syz_tun: entered promiscuous mode
[  449.822625][T22748] bridge0: port 3(syz_tun) entered blocking state
[  449.829110][T22748] bridge0: port 3(syz_tun) entered forwarding state
[  449.848993][T22752] loop3: detected capacity change from 0 to 1024
[  449.856198][T22752] EXT4-fs: Ignoring removed i_version option
[  449.875210][T22752] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  449.899578][T22752] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.6083: Invalid block bitmap block 0 in block_group 0
[  449.913806][T14359] syz_tun (unregistering): left allmulticast mode
[  449.920538][T14359] syz_tun (unregistering): left promiscuous mode
[  449.923316][T22752] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.6083: Failed to acquire dquot type 0
[  449.926948][T14359] bridge0: port 3(syz_tun) entered disabled state
[  449.946907][T22752] EXT4-fs error (device loop3): ext4_free_blocks:6587: comm syz.3.6083: Freeing blocks not in datazone - block = 0, count = 4096
[  449.982126][T22763] netlink: 'syz.0.6084': attribute type 1 has an invalid length.
[  450.019208][T22752] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.6083: Invalid inode bitmap blk 0 in block_group 0
[  450.033294][ T3686] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:55: Failed to release dquot type 0
[  450.059486][T22768] Cannot find set identified by id 0 to match
[  450.069254][T22770] loop4: detected capacity change from 0 to 1024
[  450.086416][T22752] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  450.094919][T22770] EXT4-fs: Ignoring removed orlov option
[  450.109040][T22752] EXT4-fs (loop3): 1 orphan inode deleted
[  450.433330][T22760] lo speed is unknown, defaulting to 1000
[  450.483846][ T3686] bridge_slave_1: left allmulticast mode
[  450.489576][ T3686] bridge_slave_1: left promiscuous mode
[  450.495317][ T3686] bridge0: port 2(bridge_slave_1) entered disabled state
[  450.525307][ T3686] bridge_slave_0: left allmulticast mode
[  450.530985][ T3686] bridge_slave_0: left promiscuous mode
[  450.536715][ T3686] bridge0: port 1(bridge_slave_0) entered disabled state
[  450.631420][ T3686] $Hÿ (unregistering): (slave bond_slave_0): Releasing backup interface
[  450.645979][ T3686] bond_slave_0: left promiscuous mode
[  450.652630][ T3686] $Hÿ (unregistering): (slave bond_slave_1): Releasing backup interface
[  450.661649][ T3686] bond_slave_1: left promiscuous mode
[  450.667635][ T3686] $Hÿ (unregistering): Released all slaves
[  450.676693][ T3686] bond0 (unregistering): (slave veth3): Releasing backup interface
[  450.685458][ T3686] bond0 (unregistering): Released all slaves
[  450.694810][ T3686] bond1 (unregistering): (slave veth5): Releasing backup interface
[  450.703885][ T3686] bond1 (unregistering): Released all slaves
[  450.711911][T22760] lo speed is unknown, defaulting to 1000
[  450.712041][T22786] __nla_validate_parse: 11 callbacks suppressed
[  450.712065][T22786] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6090'.
[  450.759282][T22796] macvlan1: entered promiscuous mode
[  450.770038][T22796] ipvlan0: entered promiscuous mode
[  450.778547][T22796] ipvlan0: left promiscuous mode
[  450.784013][T22796] macvlan1: left promiscuous mode
[  450.794656][   T29] kauditd_printk_skb: 344 callbacks suppressed
[  450.794669][   T29] audit: type=1326 audit(1752184939.811:49880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22790 comm="syz.3.6088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ee03e929 code=0x7ffc0000
[  450.849430][   T29] audit: type=1326 audit(1752184939.811:49881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22790 comm="syz.3.6088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ee03e929 code=0x7ffc0000
[  450.874807][T22805] loop0: detected capacity change from 0 to 1024
[  450.884791][   T29] audit: type=1326 audit(1752184939.908:49882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22790 comm="syz.3.6088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f79ee03e929 code=0x7ffc0000
[  450.901547][T22805] EXT4-fs: Ignoring removed orlov option
[  450.914316][ T3686] hsr_slave_0: left promiscuous mode
[  450.920791][ T3686] hsr_slave_1: left promiscuous mode
[  450.927335][T22805] EXT4-fs mount: 83 callbacks suppressed
[  450.927349][T22805] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  450.945756][ T3686] batman_adv: batadv0: Removing interface: team0
[  450.955534][ T3686] batman_adv: batadv0: Removing interface: batadv_slave_0
[  450.965190][ T3686] batman_adv: batadv0: Removing interface: batadv_slave_1
[  451.060067][   T29] audit: type=1326 audit(1752184940.058:49883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22790 comm="syz.3.6088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ee03e929 code=0x7ffc0000
[  451.083944][   T29] audit: type=1326 audit(1752184940.058:49884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22790 comm="syz.3.6088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ee03e929 code=0x7ffc0000
[  451.112775][ T3686] team0 (unregistering): Port device team_slave_1 removed
[  451.151689][ T3686] team0 (unregistering): Port device team_slave_0 removed
[  451.180929][T22354] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  451.201237][T22806] macvlan1: entered promiscuous mode
[  451.203783][T22809] loop3: detected capacity change from 0 to 1024
[  451.208719][T22806] ipvlan0: entered promiscuous mode
[  451.214840][T22809] EXT4-fs: Ignoring removed i_version option
[  451.227626][T22806] ipvlan0: left promiscuous mode
[  451.232349][T22809] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  451.243067][T22806] macvlan1: left promiscuous mode
[  451.250366][T22809] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:483: comm syz.3.6097: Invalid block bitmap block 0 in block_group 0
[  451.264220][T22809] Quota error (device loop3): write_blk: dquota write failed
[  451.271882][T22809] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  451.282086][T22809] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.6097: Failed to acquire dquot type 0
[  451.294351][T22809] EXT4-fs error (device loop3): ext4_free_blocks:6587: comm syz.3.6097: Freeing blocks not in datazone - block = 0, count = 4096
[  451.311061][T22815] loop0: detected capacity change from 0 to 512
[  451.318074][T22809] EXT4-fs error (device loop3): ext4_read_inode_bitmap:139: comm syz.3.6097: Invalid inode bitmap blk 0 in block_group 0
[  451.331509][T22809] EXT4-fs error (device loop3) in ext4_free_inode:361: Corrupt filesystem
[  451.340236][ T3651] Quota error (device loop3): do_check_range: Getting block 0 out of range 1-8
[  451.342221][T22760] chnl_net:caif_netlink_parms(): no params data found
[  451.349389][ T3651] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:23: Failed to release dquot type 0
[  451.368448][T22809] EXT4-fs (loop3): 1 orphan inode deleted
[  451.374922][T22809] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  451.391199][T22815] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.6099: bg 0: block 248: padding at end of block bitmap is not set
[  451.405827][T22815] Quota error (device loop0): write_blk: dquota write failed
[  451.406349][T22760] bridge0: port 1(bridge_slave_0) entered blocking state
[  451.413400][T22815] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  451.420365][T22760] bridge0: port 1(bridge_slave_0) entered disabled state
[  451.437930][T22815] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.6099: Failed to acquire dquot type 1
[  451.442984][T22760] bridge_slave_0: entered allmulticast mode
[  451.450389][T22815] EXT4-fs (loop0): 1 truncate cleaned up
[  451.462276][T22815] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  451.475068][T22815] ext4 filesystem being mounted at /26/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  451.492700][T22760] bridge_slave_0: entered promiscuous mode
[  451.509140][T22760] bridge0: port 2(bridge_slave_1) entered blocking state
[  451.516433][T22760] bridge0: port 2(bridge_slave_1) entered disabled state
[  451.525305][T22151] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  451.525582][T22354] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  451.544238][T22760] bridge_slave_1: entered allmulticast mode
[  451.556710][T22827] loop3: detected capacity change from 0 to 1024
[  451.563773][T22760] bridge_slave_1: entered promiscuous mode
[  451.572979][T22829] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  451.583722][T22827] EXT4-fs: Ignoring removed orlov option
[  451.585268][T22829] SELinux: failed to load policy
[  451.597099][T22827] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  451.624932][T22760] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  451.634748][T22151] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  451.657346][T22760] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  451.666604][T22825] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6102'.
[  451.708117][T22839] loop2: detected capacity change from 0 to 256
[  451.715767][T22835] netlink: 'syz.0.6103': attribute type 1 has an invalid length.
[  451.748267][T22760] team0: Port device team_slave_0 added
[  451.769344][T22760] team0: Port device team_slave_1 added
[  451.797453][T22835] netlink: 52 bytes leftover after parsing attributes in process `syz.0.6103'.
[  451.810234][T22760] batman_adv: batadv0: Adding interface: batadv_slave_0
[  451.817193][T22760] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  451.843228][T22760] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  451.858079][T22845] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6107'.
[  451.868399][T22845] 9pnet_fd: Insufficient options for proto=fd
[  451.896865][T22847] macvlan1: entered promiscuous mode
[  451.904059][T22847] ipvlan0: entered promiscuous mode
[  451.909763][T22847] ipvlan0: left promiscuous mode
[  451.916643][T22847] macvlan1: left promiscuous mode
[  451.974675][T22835] loop0: detected capacity change from 0 to 1024
[  451.993891][T22835] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  452.008479][T22835] ext4 filesystem being mounted at /27/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  452.029103][T22849] veth3: entered promiscuous mode
[  452.037740][T22849] bond0: (slave veth3): Enslaving as a backup interface with a down link
[  452.047972][T22760] batman_adv: batadv0: Adding interface: batadv_slave_1
[  452.055112][T22760] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  452.081357][T22760] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  452.100465][T22853] macvlan1: entered promiscuous mode
[  452.106849][T22853] ipvlan0: entered promiscuous mode
[  452.114770][T22853] ipvlan0: left promiscuous mode
[  452.120615][T22853] macvlan1: left promiscuous mode
[  452.169901][T22760] hsr_slave_0: entered promiscuous mode
[  452.176460][T22760] hsr_slave_1: entered promiscuous mode
[  452.182817][T22760] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  452.204626][T22760] Cannot create hsr debugfs directory
[  452.244804][T22867] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  452.254663][T22867] SELinux: failed to load policy
[  452.262771][T22868] macvlan1: entered promiscuous mode
[  452.269178][T22868] ipvlan0: entered promiscuous mode
[  452.274741][T22868] ipvlan0: left promiscuous mode
[  452.281426][T22868] macvlan1: left promiscuous mode
[  452.401911][T22354] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  452.431846][T22877] loop2: detected capacity change from 0 to 256
[  452.440407][T22874] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6117'.
[  452.507393][ T3414] hid-generic 0000:0000:0000.0011: unknown main item tag 0x0
[  452.516227][ T3414] hid-generic 0000:0000:0000.0011: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  452.571304][T22760] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  452.580487][T22760] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  452.590862][T22760] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  452.603669][T22889] macvlan1: entered promiscuous mode
[  452.609724][T22889] ipvlan0: entered promiscuous mode
[  452.618128][T22889] ipvlan0: left promiscuous mode
[  452.624665][T22889] macvlan1: left promiscuous mode
[  452.632108][T22760] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  452.672655][T22760] 8021q: adding VLAN 0 to HW filter on device bond0
[  452.688670][T22898] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  452.698963][T22898] SELinux: failed to load policy
[  452.699522][T22760] 8021q: adding VLAN 0 to HW filter on device team0
[  452.716892][ T3635] bridge0: port 1(bridge_slave_0) entered blocking state
[  452.724125][ T3635] bridge0: port 1(bridge_slave_0) entered forwarding state
[  452.754316][ T3635] bridge0: port 2(bridge_slave_1) entered blocking state
[  452.761503][ T3635] bridge0: port 2(bridge_slave_1) entered forwarding state
[  452.786378][T22901] netlink: 24 bytes leftover after parsing attributes in process `syz.3.6126'.
[  452.795478][T22901] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6126'.
[  452.889749][T22760] 8021q: adding VLAN 0 to HW filter on device batadv0
[  452.990754][T22760] veth0_vlan: entered promiscuous mode
[  453.013766][T22760] veth1_vlan: entered promiscuous mode
[  453.039070][T22760] veth0_macvtap: entered promiscuous mode
[  453.046806][T22760] veth1_macvtap: entered promiscuous mode
[  453.056280][T22917] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6129'.
[  453.065858][T22917] 9pnet_fd: Insufficient options for proto=fd
[  453.090445][T22760] batman_adv: batadv0: Interface activated: batadv_slave_0
[  453.103500][T22760] batman_adv: batadv0: Interface activated: batadv_slave_1
[  453.128357][T22888] lo speed is unknown, defaulting to 1000
[  453.136393][T22760] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  453.145290][T22760] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  453.154254][T22760] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  453.163132][T22760] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  453.177799][T22923] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6130'.
[  453.198076][ T3686] IPVS: stop unused estimator thread 0...
[  453.249252][T22888] lo speed is unknown, defaulting to 1000
[  453.386491][T22936] loop2: detected capacity change from 0 to 512
[  453.407485][T22939] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6136'.
[  453.418719][T22936] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.6135: bg 0: block 248: padding at end of block bitmap is not set
[  453.468495][T22936] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.6135: Failed to acquire dquot type 1
[  453.485643][T22941] loop1: detected capacity change from 0 to 512
[  453.492433][T22941] ext4: Bad value for 'debug_want_extra_isize'
[  453.513685][T22936] EXT4-fs (loop2): 1 truncate cleaned up
[  453.522052][T22936] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  453.537211][T22936] ext4 filesystem being mounted at /589/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  453.563761][T22939] Cannot find set identified by id 0 to match
[  453.592965][T22939] $Hÿ: renamed from bond0 (while UP)
[  453.659417][T12867] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  453.671621][T22939] $Hÿ: entered promiscuous mode
[  453.676685][T22939] bond_slave_0: entered promiscuous mode
[  453.682369][T22939] bond_slave_1: entered promiscuous mode
[  453.705489][T22947] netlink: 'syz.0.6137': attribute type 1 has an invalid length.
[  453.792634][T22950] loop0: detected capacity change from 0 to 1024
[  453.955606][T22950] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  454.128764][T22950] ext4 filesystem being mounted at /32/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  454.140074][T22969] SELinux:  Context system_u:object_r:usr_t:s0 is not valid (left unmapped).
[  454.266320][T22974] macvlan1: entered promiscuous mode
[  454.276776][T22974] ipvlan0: entered promiscuous mode
[  454.291512][T22974] ipvlan0: left promiscuous mode
[  454.302411][T22974] macvlan1: left promiscuous mode
[  454.414614][T22977] loop3: detected capacity change from 0 to 256
[  454.441259][ T3686] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm kworker/u8:55: bg 0: block 393: padding at end of block bitmap is not set
[  454.469394][ T3686] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2035 with error 117
[  454.482327][ T3686] EXT4-fs (loop0): This should not happen!! Data will be lost
[  454.482327][ T3686] 
[  454.515598][T22979] loop3: detected capacity change from 0 to 512
[  454.551059][T22979] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.6149: bg 0: block 248: padding at end of block bitmap is not set
[  454.566244][T22354] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  454.595316][T22979] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.6149: Failed to acquire dquot type 1
[  454.613509][T22979] EXT4-fs (loop3): 1 truncate cleaned up
[  454.629388][T22979] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  454.659598][T22979] ext4 filesystem being mounted at /44/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  454.683548][T22987] loop0: detected capacity change from 0 to 256
[  454.720606][T22989] loop4: detected capacity change from 0 to 256
[  454.741261][T22151] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  454.802894][T23002] FAULT_INJECTION: forcing a failure.
[  454.802894][T23002] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  454.816165][T23002] CPU: 1 UID: 0 PID: 23002 Comm: syz.1.6153 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) 
[  454.816259][T23002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  454.816270][T23002] Call Trace:
[  454.816276][T23002]  <TASK>
[  454.816282][T23002]  __dump_stack+0x1d/0x30
[  454.816337][T23002]  dump_stack_lvl+0xe8/0x140
[  454.816354][T23002]  dump_stack+0x15/0x1b
[  454.816371][T23002]  should_fail_ex+0x265/0x280
[  454.816484][T23002]  should_fail_alloc_page+0xf2/0x100
[  454.816511][T23002]  __alloc_frozen_pages_noprof+0xff/0x360
[  454.816549][T23002]  alloc_pages_mpol+0xb3/0x250
[  454.816605][T23002]  vma_alloc_folio_noprof+0x1aa/0x300
[  454.816710][T23002]  handle_mm_fault+0xec2/0x2be0
[  454.816732][T23002]  ? mas_walk+0xf2/0x120
[  454.816820][T23002]  do_user_addr_fault+0x636/0x1090
[  454.816850][T23002]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  454.816948][T23002]  exc_page_fault+0x62/0xa0
[  454.816974][T23002]  asm_exc_page_fault+0x26/0x30
[  454.816992][T23002] RIP: 0033:0x7ff09f3bbf4b
[  454.817005][T23002] Code: c0 8b 87 c0 00 00 00 66 0f 6c c0 85 c0 0f 85 44 01 00 00 c7 87 c0 00 00 00 ff ff ff ff 48 8d 84 24 20 21 00 00 48 8d 7c 24 20 <0f> 29 44 24 40 49 89 e4 48 89 44 24 50 8b 43 74 48 89 9c 24 00 01
[  454.817027][T23002] RSP: 002b:00007ff09da53e10 EFLAGS: 00010246
[  454.817042][T23002] RAX: 00007ff09da55f30 RBX: 00007ff09f605620 RCX: 0000000000000000
[  454.817053][T23002] RDX: 00007ff09da55f78 RSI: 00007ff09f46dbf8 RDI: 00007ff09da53e30
[  454.817065][T23002] RBP: 0000000000000009 R08: 0000000000000000 R09: 0000000000000000
[  454.817079][T23002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  454.817092][T23002] R13: 0000000000000000 R14: 00007ff09f636080 R15: 00007ffe5da38228
[  454.817112][T23002]  </TASK>
[  454.817122][T23002] Huh VM_FAULT_OOM leaked out to the #PF handler. Retrying PF
[  454.915100][T23004] netlink: 'syz.0.6156': attribute type 1 has an invalid length.
[  455.087990][T23012] loop3: detected capacity change from 0 to 256
[  455.644109][T23026] loop3: detected capacity change from 0 to 512
[  455.683814][T23026] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.6165: bg 0: block 248: padding at end of block bitmap is not set
[  455.706171][T23032] loop2: detected capacity change from 0 to 1024
[  455.712746][T23032] EXT4-fs: Ignoring removed orlov option
[  455.715851][T23026] __quota_error: 198 callbacks suppressed
[  455.715865][T23026] Quota error (device loop3): write_blk: dquota write failed
[  455.731715][T23026] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  455.743221][T23026] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.6165: Failed to acquire dquot type 1
[  455.745596][T23032] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  455.779913][T23026] EXT4-fs (loop3): 1 truncate cleaned up
[  455.787978][T23026] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  455.822863][T12867] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  455.831930][T23026] ext4 filesystem being mounted at /49/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  455.869001][T23045] __nla_validate_parse: 5 callbacks suppressed
[  455.869017][T23045] netlink: 596 bytes leftover after parsing attributes in process `+}[@'.
[  455.883622][T23046] macvlan1: entered promiscuous mode
[  455.890392][T23046] ipvlan0: entered promiscuous mode
[  455.896087][T23046] ipvlan0: left promiscuous mode
[  455.903279][T23046] macvlan1: left promiscuous mode
[  455.925041][T22151] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  455.950634][T23049] loop1: detected capacity change from 0 to 1024
[  455.959225][   T29] audit: type=1326 audit(1752184945.347:50079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23050 comm="syz.3.6174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ee03e929 code=0x7ffc0000
[  455.960102][T23055] macvlan1: entered promiscuous mode
[  455.983454][T23049] EXT4-fs: Ignoring removed orlov option
[  455.994212][   T29] audit: type=1326 audit(1752184945.390:50080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23050 comm="syz.3.6174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ee03e929 code=0x7ffc0000
[  456.018017][   T29] audit: type=1326 audit(1752184945.390:50081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23050 comm="syz.3.6174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7f79ee03e929 code=0x7ffc0000
[  456.021032][T23049] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  456.041695][   T29] audit: type=1326 audit(1752184945.390:50082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23050 comm="syz.3.6174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ee03e929 code=0x7ffc0000
[  456.041726][   T29] audit: type=1326 audit(1752184945.390:50083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23050 comm="syz.3.6174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ee03e929 code=0x7ffc0000
[  456.041751][   T29] audit: type=1326 audit(1752184945.390:50084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23050 comm="syz.3.6174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7f79ee03e929 code=0x7ffc0000
[  456.084204][T23055] ipvlan0: entered promiscuous mode
[  456.101924][   T29] audit: type=1326 audit(1752184945.390:50085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23050 comm="syz.3.6174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ee03e929 code=0x7ffc0000
[  456.154695][   T29] audit: type=1326 audit(1752184945.390:50086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23050 comm="syz.3.6174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79ee03e929 code=0x7ffc0000
[  456.179321][T23055] ipvlan0: left promiscuous mode
[  456.186688][T23055] macvlan1: left promiscuous mode
[  456.337532][T23064] lo speed is unknown, defaulting to 1000
[  456.364343][T22760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  456.375992][T23064] lo speed is unknown, defaulting to 1000
[  456.444867][ T3635] bridge_slave_1: left allmulticast mode
[  456.450604][ T3635] bridge_slave_1: left promiscuous mode
[  456.456342][ T3635] bridge0: port 2(bridge_slave_1) entered disabled state
[  456.465971][ T3635] bridge_slave_0: left allmulticast mode
[  456.471649][ T3635] bridge_slave_0: left promiscuous mode
[  456.477289][ T3635] bridge0: port 1(bridge_slave_0) entered disabled state
[  456.484842][T23079] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6181'.
[  456.493868][T23079] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6181'.
[  456.686449][ T3635] $Hÿ (unregistering): (slave bond_slave_0): Releasing backup interface
[  456.698600][ T3635] bond_slave_0: left promiscuous mode
[  456.705377][ T3635] $Hÿ (unregistering): (slave bond_slave_1): Releasing backup interface
[  456.705623][T23086] loop0: detected capacity change from 0 to 1024
[  456.720729][T23086] EXT4-fs: Ignoring removed orlov option
[  456.720796][ T3635] bond_slave_1: left promiscuous mode
[  456.782620][T23091] netlink: 'syz.1.6182': attribute type 1 has an invalid length.
[  456.807890][T23088] loop4: detected capacity change from 0 to 1024
[  456.816595][T23088] EXT4-fs: Ignoring removed i_version option
[  456.823516][T23088] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  456.835778][T23092] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23092 comm=syz.1.6182
[  457.246502][ T3635] $Hÿ (unregistering): Released all slaves
[  457.257100][ T3635] bond1 (unregistering): Released all slaves
[  457.269867][ T3635] bond0 (unregistering): (slave veth3): Releasing backup interface
[  457.282003][T23088] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:483: comm syz.4.6185: Invalid block bitmap block 0 in block_group 0
[  457.301382][T23086] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  457.316365][ T3635] bond0 (unregistering): Released all slaves
[  457.494454][T23088] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.6185: Failed to acquire dquot type 0
[  457.506707][ T3635] bond2 (unregistering): (slave veth5): Releasing backup interface
[  457.507012][T23088] EXT4-fs error (device loop4): ext4_free_blocks:6587: comm syz.4.6185: Freeing blocks not in datazone - block = 0, count = 4096
[  457.528935][ T3635] bond2 (unregistering): Released all slaves
[  457.529172][T23088] EXT4-fs error (device loop4): ext4_read_inode_bitmap:139: comm syz.4.6185: Invalid inode bitmap blk 0 in block_group 0
[  457.548442][ T3694] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:63: Failed to release dquot type 0
[  457.560668][T23088] EXT4-fs error (device loop4) in ext4_free_inode:361: Corrupt filesystem
[  457.569442][ T3635] bond3 (unregistering): (slave veth7): Releasing backup interface
[  457.569556][T23088] EXT4-fs (loop4): 1 orphan inode deleted
[  457.584270][ T3635] bond3 (unregistering): Released all slaves
[  457.585273][T23088] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  457.657237][T23064] chnl_net:caif_netlink_parms(): no params data found
[  457.689186][T21647] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  457.716010][T23105] loop4: detected capacity change from 0 to 1024
[  457.724318][T23105] EXT4-fs: Ignoring removed orlov option
[  457.740638][T22354] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  457.759068][T23105] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  457.778195][ T3635] hsr_slave_0: left promiscuous mode
[  457.784457][ T3635] hsr_slave_1: left promiscuous mode
[  457.793568][T23112] loop0: detected capacity change from 0 to 512
[  457.800293][ T3635] batman_adv: batadv0: Removing interface: batadv_slave_0
[  457.813284][ T3635] batman_adv: batadv0: Removing interface: batadv_slave_1
[  457.826188][T23118] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6189'.
[  457.840611][T23118] netlink: 32 bytes leftover after parsing attributes in process `syz.1.6189'.
[  457.851332][T23119] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6191'.
[  457.860362][T23119] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6191'.
[  457.874798][T23112] EXT4-fs (loop0): 1 orphan inode deleted
[  457.889592][ T3654] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:26: Failed to release dquot type 1
[  457.904253][ T3635] team0 (unregistering): Port device team_slave_1 removed
[  457.916918][T23112] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  457.917325][ T3635] team0 (unregistering): Port device team_slave_0 removed
[  457.931085][T23112] ext4 filesystem being mounted at /41/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  457.967859][T23112] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  458.027032][ T3651] smc: removing ib device syz0
[  458.033327][T23064] bridge0: port 1(bridge_slave_0) entered blocking state
[  458.040501][T23064] bridge0: port 1(bridge_slave_0) entered disabled state
[  458.058859][T23064] bridge_slave_0: entered allmulticast mode
[  458.073472][T23064] bridge_slave_0: entered promiscuous mode
[  458.087175][T23064] bridge0: port 2(bridge_slave_1) entered blocking state
[  458.094321][T23064] bridge0: port 2(bridge_slave_1) entered disabled state
[  458.104474][T23064] bridge_slave_1: entered allmulticast mode
[  458.111984][T23064] bridge_slave_1: entered promiscuous mode
[  458.210713][T23064] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  458.232831][T23064] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  458.277304][T23064] team0: Port device team_slave_0 added
[  458.297069][T23064] team0: Port device team_slave_1 added
[  458.332232][T23064] batman_adv: batadv0: Adding interface: batadv_slave_0
[  458.339226][T23064] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  458.365181][T23064] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  458.377455][T23064] batman_adv: batadv0: Adding interface: batadv_slave_1
[  458.384433][T23064] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  458.410484][T23064] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  458.418989][T23137] loop3: detected capacity change from 0 to 1024
[  458.431728][T23137] EXT4-fs: Ignoring removed orlov option
[  458.431824][T21647] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  458.447508][T23137] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  458.472005][T23064] hsr_slave_0: entered promiscuous mode
[  458.476420][T23140] capability: warning: `syz.4.6197' uses 32-bit capabilities (legacy support in use)
[  458.478742][T23064] hsr_slave_1: entered promiscuous mode
[  458.488524][T23140] program syz.4.6197 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  458.502685][T23064] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  458.504176][T22151] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  458.510471][T23064] Cannot create hsr debugfs directory
[  458.538953][T23143] loop3: detected capacity change from 0 to 1024
[  458.545733][T23143] EXT4-fs: Ignoring removed orlov option
[  458.561107][T23145] loop4: detected capacity change from 0 to 512
[  458.570452][T23143] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  458.586448][T23145] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.6200: bg 0: block 248: padding at end of block bitmap is not set
[  458.588315][T22354] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  458.609912][T23145] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.6200: Failed to acquire dquot type 1
[  458.621992][T23145] EXT4-fs (loop4): 1 truncate cleaned up
[  458.628895][T23145] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  458.643744][T23145] ext4 filesystem being mounted at /85/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  458.708783][T23152] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6201'.
[  458.717829][T23152] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6201'.
[  458.771336][T21647] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  458.843262][T23156] loop0: detected capacity change from 0 to 512
[  458.852081][T23158] loop4: detected capacity change from 0 to 256
[  458.860988][T23156] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  458.870403][T23064] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  458.882632][T23156] ext4 filesystem being mounted at /43/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  458.894754][T23064] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  458.903426][T23064] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  458.917927][T23064] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  458.918256][T22151] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  458.947052][T23156] EXT4-fs error (device loop0): ext4_lookup:1787: inode #12: comm syz.0.6203: iget: bad i_size value: 2533274857506816
[  458.992270][T22354] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  459.030868][T23064] 8021q: adding VLAN 0 to HW filter on device bond0
[  459.054163][T23064] 8021q: adding VLAN 0 to HW filter on device team0
[  459.065749][ T3694] bridge0: port 1(bridge_slave_0) entered blocking state
[  459.072941][ T3694] bridge0: port 1(bridge_slave_0) entered forwarding state
[  459.094574][T23180] macvlan1: entered promiscuous mode
[  459.101068][T23180] ipvlan0: entered promiscuous mode
[  459.106763][T23180] ipvlan0: left promiscuous mode
[  459.115693][T23180] macvlan1: left promiscuous mode
[  459.122200][T23179] loop1: detected capacity change from 0 to 512
[  459.131966][T23064] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  459.142510][T23064] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  459.153587][T23179] EXT4-fs (loop1): orphan cleanup on readonly fs
[  459.156834][ T3694] bridge0: port 2(bridge_slave_1) entered blocking state
[  459.167207][ T3694] bridge0: port 2(bridge_slave_1) entered forwarding state
[  459.190329][T23179] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kfree: bg 0: block 248: padding at end of block bitmap is not set
[  459.224255][T23179] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm kfree: Failed to acquire dquot type 1
[  459.238456][T23064] 8021q: adding VLAN 0 to HW filter on device batadv0
[  459.247183][T23179] EXT4-fs (loop1): 1 truncate cleaned up
[  459.254961][T23179] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  459.293399][T23179] smc: net device bond0 applied user defined pnetid SYZ2
[  459.307427][T23179] smc: net device bond0 erased user defined pnetid SYZ2
[  459.344486][T22760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  459.370179][T23064] veth0_vlan: entered promiscuous mode
[  459.379999][T23064] veth1_vlan: entered promiscuous mode
[  459.402957][T23064] veth0_macvtap: entered promiscuous mode
[  459.410682][T23064] veth1_macvtap: entered promiscuous mode
[  459.422533][T23064] batman_adv: batadv0: Interface activated: batadv_slave_0
[  459.435590][T23064] batman_adv: batadv0: Interface activated: batadv_slave_1
[  459.445952][T23064] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  459.454800][T23064] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  459.463515][T23064] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  459.472308][T23064] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  459.472948][T23199] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6212'.
[  459.530740][T23204] loop0: detected capacity change from 0 to 1024
[  459.554177][T23204] EXT4-fs: Ignoring removed orlov option
[  459.584329][T23204] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  459.601286][T23208] netlink: 'syz.2.6179': attribute type 1 has an invalid length.
[  459.866267][T23211] loop1: detected capacity change from 0 to 256
[  459.951957][T22354] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  460.041234][T23221] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  460.052198][T23228] FAULT_INJECTION: forcing a failure.
[  460.052198][T23228] name failslab, interval 1, probability 0, space 0, times 0
[  460.058053][T23221] SELinux: failed to load policy
[  460.064840][T23228] CPU: 1 UID: 0 PID: 23228 Comm: syz.3.6222 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) 
[  460.064887][T23228] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  460.064900][T23228] Call Trace:
[  460.064906][T23228]  <TASK>
[  460.064914][T23228]  __dump_stack+0x1d/0x30
[  460.064935][T23228]  dump_stack_lvl+0xe8/0x140
[  460.064954][T23228]  dump_stack+0x15/0x1b
[  460.064970][T23228]  should_fail_ex+0x265/0x280
[  460.065022][T23228]  should_failslab+0x8c/0xb0
[  460.065049][T23228]  __kmalloc_node_track_caller_noprof+0xa4/0x410
[  460.065077][T23228]  ? sidtab_sid2str_get+0xa0/0x130
[  460.065147][T23228]  kmemdup_noprof+0x2b/0x70
[  460.065246][T23228]  sidtab_sid2str_get+0xa0/0x130
[  460.065348][T23228]  security_sid_to_context_core+0x1eb/0x2e0
[  460.065393][T23228]  security_sid_to_context+0x27/0x40
[  460.065489][T23228]  selinux_lsmprop_to_secctx+0x67/0xf0
[  460.065562][T23228]  security_lsmprop_to_secctx+0x43/0x80
[  460.065595][T23228]  audit_log_task_context+0x77/0x190
[  460.065636][T23228]  audit_log_task+0xf4/0x250
[  460.065664][T23228]  audit_seccomp+0x61/0x100
[  460.065766][T23228]  ? __seccomp_filter+0x68c/0x10d0
[  460.065795][T23228]  __seccomp_filter+0x69d/0x10d0
[  460.065820][T23228]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  460.065863][T23228]  ? vfs_write+0x75e/0x8e0
[  460.065896][T23228]  __secure_computing+0x82/0x150
[  460.065949][T23228]  syscall_trace_enter+0xcf/0x1e0
[  460.065974][T23228]  do_syscall_64+0xac/0x200
[  460.065992][T23228]  ? arch_exit_to_user_mode_prepare+0x27/0x60
[  460.066022][T23228]  ? clear_bhb_loop+0x40/0x90
[  460.066044][T23228]  ? clear_bhb_loop+0x40/0x90
[  460.066066][T23228]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  460.066087][T23228] RIP: 0033:0x7f79ee03e929
[  460.066146][T23228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  460.066164][T23228] RSP: 002b:00007f79ec6a7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000095
[  460.066182][T23228] RAX: ffffffffffffffda RBX: 00007f79ee265fa0 RCX: 00007f79ee03e929
[  460.066195][T23228] RDX: 0000000000000000 RSI: 0000000000800000 RDI: 0000200000000000
[  460.066207][T23228] RBP: 00007f79ec6a7090 R08: 0000000000000000 R09: 0000000000000000
[  460.066219][T23228] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  460.066232][T23228] R13: 0000000000000000 R14: 00007f79ee265fa0 R15: 00007ffc00e8a388
[  460.066283][T23228]  </TASK>
[  460.373110][T23241] loop1: detected capacity change from 0 to 512
[  460.384642][   T29] kauditd_printk_skb: 1028 callbacks suppressed
[  460.384724][   T29] audit: type=1326 audit(1752184950.100:51106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23212 comm="syz.4.6217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5b665f58e7 code=0x7ffc0000
[  460.417252][T23243] loop3: detected capacity change from 0 to 1024
[  460.424079][T23243] EXT4-fs: Ignoring removed orlov option
[  460.429977][   T29] audit: type=1326 audit(1752184950.132:51107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23212 comm="syz.4.6217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5b6659ab19 code=0x7ffc0000
[  460.453485][   T29] audit: type=1326 audit(1752184950.132:51108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23212 comm="syz.4.6217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5b665f58e7 code=0x7ffc0000
[  460.477148][   T29] audit: type=1326 audit(1752184950.132:51109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23212 comm="syz.4.6217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5b6659ab19 code=0x7ffc0000
[  460.500731][   T29] audit: type=1326 audit(1752184950.132:51110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23212 comm="syz.4.6217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7f5b665fe929 code=0x7ffc0000
[  460.524223][   T29] audit: type=1326 audit(1752184950.132:51111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23212 comm="syz.4.6217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5b665f58e7 code=0x7ffc0000
[  460.547706][   T29] audit: type=1326 audit(1752184950.132:51112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23212 comm="syz.4.6217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5b6659ab19 code=0x7ffc0000
[  460.571208][   T29] audit: type=1326 audit(1752184950.132:51113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23212 comm="syz.4.6217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7f5b665fe929 code=0x7ffc0000
[  460.572111][T23243] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  460.594784][   T29] audit: type=1326 audit(1752184950.143:51114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23212 comm="syz.4.6217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5b665f58e7 code=0x7ffc0000
[  460.624996][T23241] EXT4-fs (loop1): 1 orphan inode deleted
[  460.630746][   T29] audit: type=1326 audit(1752184950.143:51115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23212 comm="syz.4.6217" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f5b6659ab19 code=0x7ffc0000
[  460.637930][T23241] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  460.672659][ T3635] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:9: Failed to release dquot type 1
[  460.681797][T23250] macvlan1: entered promiscuous mode
[  460.688227][T23254] loop0: detected capacity change from 0 to 256
[  460.690869][T23250] ipvlan0: entered promiscuous mode
[  460.708923][T23250] ipvlan0: left promiscuous mode
[  460.714298][T23241] ext4 filesystem being mounted at /19/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  460.734193][T22151] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  460.745492][T23241] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  460.754010][T23250] macvlan1: left promiscuous mode
[  460.925688][T23265] netlink: 'syz.0.6231': attribute type 1 has an invalid length.
[  460.933643][T23265] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23265 comm=syz.0.6231
[  461.650532][T22760] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  461.665189][T23273] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23273 comm=syz.2.6235
[  461.684237][T23273] netlink: 'syz.2.6235': attribute type 1 has an invalid length.
[  461.762054][T23278] loop4: detected capacity change from 0 to 512
[  461.770071][T23278] EXT4-fs (loop4): fragment/cluster size (2048) != block size (4096)
[  461.830265][T23280] netlink: 'syz.1.6237': attribute type 1 has an invalid length.
[  462.062266][T23289] __nla_validate_parse: 2 callbacks suppressed
[  462.062289][T23289] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6240'.
[  462.105839][T23295] loop0: detected capacity change from 0 to 512
[  462.187640][T23295] EXT4-fs (loop0): 1 orphan inode deleted
[  462.208187][T23295] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  462.222037][ T3635] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:9: Failed to release dquot type 1
[  462.322169][T23295] ext4 filesystem being mounted at /56/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  462.403863][T23293] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  462.678842][T23312] netlink: 'syz.3.6245': attribute type 1 has an invalid length.
[  462.687168][T23312] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23312 comm=syz.3.6245
[  463.093622][T23318] macvlan1: entered promiscuous mode
[  463.100307][T23318] ipvlan0: entered promiscuous mode
[  463.107624][T23318] ipvlan0: left promiscuous mode
[  463.112864][T23318] macvlan1: left promiscuous mode
[  463.131416][T22354] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  463.466994][T23329] loop4: detected capacity change from 0 to 256
[  463.697954][T23336] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  463.727531][T23336] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6253'.
[  463.909509][T23338] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6254'.
[  464.064916][T23341] Cannot find set identified by id 0 to match
[  464.071196][T23344] netlink: 'syz.3.6256': attribute type 1 has an invalid length.
[  464.084634][T23338] netlink: 6048 bytes leftover after parsing attributes in process `syz.1.6254'.
[  464.106129][T23346] loop2: detected capacity change from 0 to 1024
[  464.122397][T23338] $Hÿ: renamed from bond0 (while UP)
[  464.133338][T23338] $Hÿ: entered promiscuous mode
[  464.138424][T23338] bond_slave_0: entered promiscuous mode
[  464.144171][T23338] bond_slave_1: entered promiscuous mode
[  464.152255][T23350] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6258'.
[  464.162677][T23346] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  464.185835][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.193310][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.193436][T23350] loop0: detected capacity change from 0 to 512
[  464.200761][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.200824][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.221811][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.229251][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.236649][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.244291][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.251710][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.254223][T23350] EXT4-fs (loop0): 1 orphan inode deleted
[  464.259284][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.265256][T23350] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  464.272243][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.285339][ T3686] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:55: Failed to release dquot type 1
[  464.292033][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.310093][T23350] ext4 filesystem being mounted at /58/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  464.334175][T23350] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  464.357499][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.364999][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.372391][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.379906][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.387372][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.395215][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.402963][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.410361][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.417829][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.425313][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.432788][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.440238][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.447689][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.455125][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.462568][ T3366] hid-generic 0000:0000:0000.0012: unknown main item tag 0x0
[  464.530646][ T3366] hid-generic 0000:0000:0000.0012: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  464.551762][T23364] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  464.562045][T23364] SELinux: failed to load policy
[  464.590306][T23366] loop4: detected capacity change from 0 to 512
[  464.644298][T23362] netlink: 'syz.1.6259': attribute type 1 has an invalid length.
[  464.652274][T23362] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23362 comm=syz.1.6259
[  464.722807][T23064] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  464.747163][T23366] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.6261: bg 0: block 248: padding at end of block bitmap is not set
[  464.766375][T23366] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.6261: Failed to acquire dquot type 1
[  464.788838][T23366] EXT4-fs (loop4): 1 truncate cleaned up
[  464.796243][T23366] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  464.809155][T23366] ext4 filesystem being mounted at /96/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  464.870880][T23372] loop3: detected capacity change from 0 to 1024
[  464.877523][T23372] EXT4-fs: Ignoring removed orlov option
[  464.883852][T21647] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  464.899318][T23372] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  464.930210][T22354] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  464.944414][T23383] netlink: 24 bytes leftover after parsing attributes in process `syz.4.6267'.
[  465.022635][T23390] loop4: detected capacity change from 0 to 512
[  465.074093][T23390] EXT4-fs (loop4): 1 orphan inode deleted
[  465.100786][ T3654] __quota_error: 534 callbacks suppressed
[  465.100801][ T3654] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  465.116301][ T3654] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:26: Failed to release dquot type 1
[  465.129848][T23390] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  465.146272][T23390] ext4 filesystem being mounted at /99/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  465.168028][T23390] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  465.252856][   T23] hid-generic 0000:0000:0000.0013: unknown main item tag 0x0
[  465.261926][   T23] hid-generic 0000:0000:0000.0013: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  465.333279][T22151] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  465.351171][T23413] loop3: detected capacity change from 0 to 256
[  465.403114][T23419] loop3: detected capacity change from 0 to 1024
[  465.410307][T23419] EXT4-fs: Ignoring removed orlov option
[  465.418828][T23419] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  465.435417][T23420] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  465.452629][   T29] audit: type=1326 audit(1752184955.529:51645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23407 comm="syz.1.6271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff09f40e929 code=0x7ffc0000
[  465.476399][   T29] audit: type=1326 audit(1752184955.540:51646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23407 comm="syz.1.6271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff09f40e929 code=0x7ffc0000
[  465.500033][   T29] audit: type=1326 audit(1752184955.540:51647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23407 comm="syz.1.6271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff09f40e929 code=0x7ffc0000
[  465.523632][   T29] audit: type=1326 audit(1752184955.551:51648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23407 comm="syz.1.6271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff09f40e929 code=0x7ffc0000
[  465.547590][   T29] audit: type=1326 audit(1752184955.636:51649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23407 comm="syz.1.6271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff09f40e929 code=0x7ffc0000
[  465.571379][   T29] audit: type=1326 audit(1752184955.647:51650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23407 comm="syz.1.6271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff09f40e929 code=0x7ffc0000
[  465.595452][   T29] audit: type=1326 audit(1752184955.658:51651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23407 comm="syz.1.6271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7ff09f40e929 code=0x7ffc0000
[  465.619521][   T29] audit: type=1326 audit(1752184955.658:51652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23407 comm="syz.1.6271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff09f40e929 code=0x7ffc0000
[  465.620316][T23420] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6271'.
[  465.643085][   T29] audit: type=1326 audit(1752184955.658:51653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23407 comm="syz.1.6271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff09f40e929 code=0x7ffc0000
[  465.834536][T21647] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  465.866187][T23424] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6276'.
[  465.944293][T23427] netlink: 6048 bytes leftover after parsing attributes in process `syz.0.6276'.
[  465.955141][T23428] netlink: 28 bytes leftover after parsing attributes in process `syz.4.6277'.
[  465.966806][T23428] loop4: detected capacity change from 0 to 512
[  466.011595][T23428] EXT4-fs (loop4): 1 orphan inode deleted
[  466.018705][T23428] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  466.027438][T23434] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  466.041288][T23434] SELinux: failed to load policy
[  466.041504][ T3654] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:26: Failed to release dquot type 1
[  466.072283][T23428] ext4 filesystem being mounted at /100/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  466.086188][T22151] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  466.184807][T23426] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  466.279305][T23445] netlink: 'syz.2.6281': attribute type 1 has an invalid length.
[  466.287541][T23445] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23445 comm=syz.2.6281
[  466.388836][T23448] loop1: detected capacity change from 0 to 256
[  466.629012][T23462] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  466.639164][T23462] SELinux: failed to load policy
[  466.650467][ T1037] hid-generic 0000:0000:0000.0014: unknown main item tag 0x0
[  466.659085][ T1037] hid-generic 0000:0000:0000.0014: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  466.684049][T21647] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  466.784535][T23476] macvlan1: entered promiscuous mode
[  466.793458][T23476] ipvlan0: entered promiscuous mode
[  466.800669][T23476] ipvlan0: left promiscuous mode
[  466.806068][T23476] macvlan1: left promiscuous mode
[  467.219752][T23485] loop2: detected capacity change from 0 to 512
[  467.320633][T23485] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.6300: bg 0: block 248: padding at end of block bitmap is not set
[  467.381843][T23485] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.6300: Failed to acquire dquot type 1
[  467.589820][T23485] EXT4-fs (loop2): 1 truncate cleaned up
[  467.606636][T23494] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  467.617042][T23485] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  468.017604][T23494] SELinux: failed to load policy
[  468.030458][T23485] ext4 filesystem being mounted at /16/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  468.060040][T23497] loop3: detected capacity change from 0 to 256
[  468.084327][T23064] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  468.318573][T23505] netlink: 'syz.3.6308': attribute type 1 has an invalid length.
[  468.327148][T23505] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=23505 comm=syz.3.6308
[  468.593126][T23501] loop1: detected capacity change from 0 to 2048
[  468.677050][T23513] __nla_validate_parse: 1 callbacks suppressed
[  468.677065][T23513] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6309'.
[  468.692310][T23513] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6309'.
[  468.712241][T23501]  loop1: p1 < > p4
[  468.723803][T23501] loop1: p4 size 8388608 extends beyond EOD, truncated
[  468.888824][T23518] loop0: detected capacity change from 0 to 256
[  468.962176][T23526] SELinux:  policydb magic number 0x80 does not match expected magic number 0xf97cff8c
[  468.989523][T23526] SELinux: failed to load policy
[  468.996291][ T3414] hid-generic 0000:0000:0000.0015: unknown main item tag 0x0
[  469.012303][ T3414] hid-generic 0000:0000:0000.0015: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  469.041416][T23532] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6318'.
[  469.051184][T23531] loop4: detected capacity change from 0 to 2048
[  469.066847][T23531] EXT4-fs error (device loop4): ext4_find_extent:939: inode #2: comm syz.4.6315: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  469.085756][T23538] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6320'.
[  469.095368][T23531] EXT4-fs (loop4): Remounting filesystem read-only
[  469.102038][T23538] loop3: detected capacity change from 0 to 512
[  469.111891][T23531] netlink: 100 bytes leftover after parsing attributes in process `syz.4.6315'.
[  469.128430][T23538] EXT4-fs (loop3): 1 orphan inode deleted
[  469.142659][T23538] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  469.167529][ T3686] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:55: Failed to release dquot type 1
[  469.193218][T23538] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  469.250358][T23531] SELinux: failed to load policy
[  469.311804][T23547] loop0: detected capacity change from 0 to 1024
[  469.318397][T23547] EXT4-fs: Ignoring removed orlov option
[  469.417387][T23549] ==================================================================
[  469.425498][T23549] BUG: KCSAN: data-race in generic_buffers_fsync_noflush / writeback_single_inode
[  469.434730][T23549] 
[  469.437054][T23549] write to 0xffff88811dd67a18 of 4 bytes by task 23547 on cpu 1:
[  469.444775][T23549]  writeback_single_inode+0x14a/0x3e0
[  469.450157][T23549]  sync_inode_metadata+0x5b/0x90
[  469.455097][T23549]  generic_buffers_fsync_noflush+0xd9/0x120
[  469.461001][T23549]  ext4_sync_file+0x1ab/0x690
[  469.465681][T23549]  vfs_fsync_range+0x10d/0x130
[  469.470461][T23549]  ext4_buffered_write_iter+0x34f/0x3c0
[  469.476010][T23549]  ext4_file_write_iter+0x383/0xf00
[  469.481213][T23549]  iter_file_splice_write+0x5f2/0x970
[  469.486574][T23549]  direct_splice_actor+0x153/0x2a0
[  469.491715][T23549]  splice_direct_to_actor+0x30f/0x680
[  469.497084][T23549]  do_splice_direct+0xda/0x150
[  469.501832][T23549]  do_sendfile+0x380/0x650
[  469.506232][T23549]  __x64_sys_sendfile64+0x105/0x150
[  469.511412][T23549]  x64_sys_call+0xb39/0x2fb0
[  469.515982][T23549]  do_syscall_64+0xd2/0x200
[  469.520467][T23549]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  469.526344][T23549] 
[  469.528647][T23549] read to 0xffff88811dd67a18 of 4 bytes by task 23549 on cpu 0:
[  469.536254][T23549]  generic_buffers_fsync_noflush+0x80/0x120
[  469.542144][T23549]  ext4_sync_file+0x1ab/0x690
[  469.546821][T23549]  vfs_fsync_range+0x10d/0x130
[  469.551573][T23549]  ext4_buffered_write_iter+0x34f/0x3c0
[  469.557105][T23549]  ext4_file_write_iter+0x383/0xf00
[  469.562286][T23549]  iter_file_splice_write+0x5f2/0x970
[  469.567645][T23549]  direct_splice_actor+0x153/0x2a0
[  469.572741][T23549]  splice_direct_to_actor+0x30f/0x680
[  469.578098][T23549]  do_splice_direct+0xda/0x150
[  469.582847][T23549]  do_sendfile+0x380/0x650
[  469.587247][T23549]  __x64_sys_sendfile64+0x105/0x150
[  469.592433][T23549]  x64_sys_call+0xb39/0x2fb0
[  469.597008][T23549]  do_syscall_64+0xd2/0x200
[  469.601490][T23549]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  469.607364][T23549] 
[  469.609666][T23549] value changed: 0x00000038 -> 0x00000002
[  469.615373][T23549] 
[  469.617720][T23549] Reported by Kernel Concurrency Sanitizer on:
[  469.623851][T23549] CPU: 0 UID: 0 PID: 23549 Comm: syz.0.6322 Not tainted 6.16.0-rc5-syzkaller-00121-gbc9ff192a6c9 #0 PREEMPT(voluntary) 
[  469.636328][T23549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  469.646367][T23549] ==================================================================