last executing test programs:

10m37.921355766s ago: executing program 4 (id=2726):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = syz_usb_connect$cdc_ecm(0x4, 0x0, 0x0, &(0x7f0000000540)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x240, 0x1, 0xeb, 0x25, 0xff, 0x7}, 0x167, 0x0, 0x3, [{0x4, &(0x7f0000000400)=@lang_id={0x4, 0x3, 0x421}}, {0x4, &(0x7f0000000840)=@lang_id={0x4, 0x3, 0x40b}}, {0x4, &(0x7f0000000440)=@lang_id={0x4, 0x3, 0x445}}]})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000180), 0x4)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f0000000140), 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r2}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r3, &(0x7f0000000040)=[{&(0x7f0000000200)="580000001400192340834b80040d8c560a0677bc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1)
syz_usb_control_io(r0, &(0x7f0000000a80)={0x88, &(0x7f0000000c80)=ANY=[@ANYBLOB="4006021a0000021128f9138df53d1d683a3b42dde7b29d8450a750ec2a8ac6cfd507556fafa70ea19cce13e604f62754c5c08748573443cf68897ea0959f52e472d2a7f1cce40960de10538078689fb88a6497138f79499a609f0657d9aa892e130a7b66746ca94e00be7d0a9c927499b081367b8adaf4ba2f7c1828714ce18e26032796fc653418a7100592b52ce12c36e883696e2fdc027d8d17b76764942b8b2b5204946e079cd06fe62a56bcdb9101bbf000"], &(0x7f0000000940)=ANY=[@ANYBLOB="000380000000989c0000"], &(0x7f0000000280)={0x0, 0xf, 0x20, {0x5, 0xf, 0x20, 0x2, [@wireless={0xb, 0x10, 0x1, 0x8, 0x100, 0x7, 0x8, 0x9, 0x1a}, @ssp_cap={0x10, 0x10, 0xa, 0x1, 0x1, 0x100, 0x0, 0x5, [0x0]}]}}, 0x0, &(0x7f0000000a40)={0x20, 0x2a, 0xc, {0xc, 0x2a, 0x72, 0x4, 0x6, 0x8, 0x8, 0x4, 0x8}}}, &(0x7f00000011c0)={0x84, 0x0, &(0x7f0000000ac0)={0x0, 0xa, 0x1, 0x4}, &(0x7f0000000b00)={0x0, 0x8, 0x1, 0x3}, &(0x7f0000000b40)={0x20, 0x0, 0x4, {0x2, 0x3}}, &(0x7f0000000ec0)=ANY=[@ANYBLOB="200008000000e0000100100f0000"], &(0x7f0000000000)={0x40, 0x7, 0x2, 0x1}, &(0x7f0000000f40)={0x40, 0x9, 0x1, 0xa1}, &(0x7f0000000f80)={0x40, 0xb, 0x2, "d196"}, &(0x7f0000000fc0)={0x40, 0xf, 0x2, 0xa}, &(0x7f0000001000)={0x40, 0x13, 0x0, @multicast}, &(0x7f0000001040)={0x40, 0x17, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3d}}, &(0x7f0000001080)={0x40, 0x19, 0x2, 'jA'}, &(0x7f00000010c0)={0x40, 0x1a, 0x2, 0x6}, 0x0, &(0x7f0000001140)={0x40, 0x1e, 0x1, 0x8}, &(0x7f0000001180)={0x40, 0x21, 0x1, 0x60}})
syz_usb_disconnect(r0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x1e, 0x4, 0x0)
socket(0x2, 0x3, 0x100000001)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x9)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
socket(0x1e, 0x4, 0x0)
socket$key(0xf, 0x3, 0x2)
socket$inet6(0xa, 0x2, 0x3a)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r5, 0x107, 0x14, &(0x7f0000000080)=0xfff, 0x4)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000680))
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000))
sendmmsg(r5, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)

10m36.748385014s ago: executing program 4 (id=2748):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r2, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6)
io_setup(0x8, &(0x7f00000002c0)=<r3=>0x0)
io_submit(r3, 0x8, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, 0xffffffffffffffff, &(0x7f0000000040)="0300ffff0000", 0x6}])

10m36.656030943s ago: executing program 4 (id=2751):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000200), 0xfc, 0x56d, &(0x7f00000013c0)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0)
pwritev2(r1, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)
write$cgroup_freezer_state(r1, &(0x7f00000000c0)='FROZEN\x00', 0x7)
r2 = openat(0xffffffffffffff9c, 0x0, 0x105042, 0x1db)
pwritev2(r2, &(0x7f0000000100)=[{&(0x7f0000000d00)=')', 0x1}], 0x1, 0x7, 0x9, 0x19)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000079100000000000006300e0ff0000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="1801000000001f00000000000000ea1f850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r3, 0x0, 0xbe0}, 0x18)
lchown(&(0x7f0000000000)='./file0\x00', 0xee00, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{}, &(0x7f0000000800), &(0x7f0000000840)=r0}, 0x20)
bind$can_j1939(0xffffffffffffffff, &(0x7f0000000040)={0x1d, 0x0, 0x3}, 0x18)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000280), 0xffffffffffffffff)

10m36.499445713s ago: executing program 4 (id=2756):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r2=>r0}, './file0/file0\x00'})
sendmsg$nl_route_sched(r2, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000400)=@getqdisc={0x34, 0x26, 0x2, 0x70bd2c, 0x25dfdbf8, {0x0, 0x0, 0x0, 0x0, {0x1, 0x7}, {0x6, 0x6}, {0xa}}, [{0x4}, {0x4}, {0x4}, {0x4}]}, 0x34}, 0x1, 0x0, 0x0, 0x40000}, 0x200480d1)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
ioperm(0x0, 0x1, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000100)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000005000000005e002200850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10)
setregid(0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000b80)={[{@nombcache}, {@abort}, {@dioread_lock}, {@norecovery}, {@discard}, {@lazytime}, {@noload}, {@usrquota}, {@noauto_da_alloc}]}, 0xfe, 0x558, &(0x7f0000000c00)="$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")
mbind(&(0x7f0000564000/0x2000)=nil, 0x2000, 0x3, &(0x7f0000000000)=0xffff, 0xc, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="05000000010000000a0000000800000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000300"/28], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r4}, &(0x7f0000000200), &(0x7f0000000240)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
arch_prctl$ARCH_GET_XCOMP_SUPP(0x1021, 0xfffffffffffffffe)
r6 = syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
move_pages(r6, 0xfffffed0, 0x0, &(0x7f0000000180), 0x0, 0x6)

10m36.428140783s ago: executing program 4 (id=2758):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSBRKP(r1, 0x5425, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
sendfile(r2, 0xffffffffffffffff, 0x0, 0x20000023896)
ioctl$TCSETSW2(r2, 0x402c542c, &(0x7f0000000140)={0x6, 0x7ffd, 0xffffbf8b, 0x3, 0x9, "635d509d2718c014df1a4569ec44cf1dd88567", 0x7, 0xed})

10m36.166789202s ago: executing program 4 (id=2762):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb85"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
syz_emit_ethernet(0x5e, &(0x7f00000004c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @empty, @val={@val={0x88a8, 0x7, 0x1}, {0x8100, 0x2, 0x1, 0x4}}, {@canfd={0xd, {{0x0, 0x0, 0x1}, 0x28, 0x0, 0x0, 0x0, "da38c353b32f1d1f8f5dc8b64348a94154ff1160ce53cd82262629af5282fe30a39c6e4c001d0e5022607320eacd77931cfa935271234ca25e168be0e612dfca"}}}}, &(0x7f0000000080)={0x1, 0x1, [0xdee, 0x102, 0x589, 0x2ab]})
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0x7, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000006c0)='kmem_cache_free\x00', r1}, 0x18)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000200)=0x9, 0x8, 0x0)
mmap(&(0x7f0000543000/0x1000)=nil, 0x1000, 0x0, 0x2031, 0xffffffffffffffff, 0xcc4c6000)
r2 = syz_open_procfs(0x0, 0x0)
preadv2(r2, &(0x7f0000000380)=[{&(0x7f0000000180)=""/142, 0x8e}], 0x1, 0x9e2, 0x0, 0x0)
recvfrom$unix(r2, 0x0, 0x0, 0x0, &(0x7f00000008c0)=@file={0x1, './file0\x00'}, 0x6e)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x2000, 0x0)
sendmsg$key(0xffffffffffffffff, 0x0, 0xcc804)

10m36.165330732s ago: executing program 32 (id=2762):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb85"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10)
syz_emit_ethernet(0x5e, &(0x7f00000004c0)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @empty, @val={@val={0x88a8, 0x7, 0x1}, {0x8100, 0x2, 0x1, 0x4}}, {@canfd={0xd, {{0x0, 0x0, 0x1}, 0x28, 0x0, 0x0, 0x0, "da38c353b32f1d1f8f5dc8b64348a94154ff1160ce53cd82262629af5282fe30a39c6e4c001d0e5022607320eacd77931cfa935271234ca25e168be0e612dfca"}}}}, &(0x7f0000000080)={0x1, 0x1, [0xdee, 0x102, 0x589, 0x2ab]})
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0x7, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000006c0)='kmem_cache_free\x00', r1}, 0x18)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000200)=0x9, 0x8, 0x0)
mmap(&(0x7f0000543000/0x1000)=nil, 0x1000, 0x0, 0x2031, 0xffffffffffffffff, 0xcc4c6000)
r2 = syz_open_procfs(0x0, 0x0)
preadv2(r2, &(0x7f0000000380)=[{&(0x7f0000000180)=""/142, 0x8e}], 0x1, 0x9e2, 0x0, 0x0)
recvfrom$unix(r2, 0x0, 0x0, 0x0, &(0x7f00000008c0)=@file={0x1, './file0\x00'}, 0x6e)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x2000, 0x0)
sendmsg$key(0xffffffffffffffff, 0x0, 0xcc804)

3m58.230350223s ago: executing program 0 (id=10298):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/kexec_crash_size', 0x40002, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
write$nbd(r0, &(0x7f0000002480)=ANY=[], 0x26)

3m58.068917182s ago: executing program 0 (id=10301):
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)=ANY=[@ANYRES32, @ANYRES32, @ANYBLOB="0e"], 0x10)

3m58.016243722s ago: executing program 0 (id=10302):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6}]})
chdir(0x0)
r1 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c0000005e0021768238324ee0d5b18eabeda10c06e6143315"], 0x1c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

3m57.19622241s ago: executing program 0 (id=10335):
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x20, 0x0, 0x2, 0x0, @rand_addr=0xe0, @multicast1=0xe0000300}, @address_request}}}}, 0x0)

3m57.19584788s ago: executing program 0 (id=10336):
r0 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r0, 0x3)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r1, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg(r2, &(0x7f0000001500), 0x588, 0x3000000)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

3m56.344287248s ago: executing program 0 (id=10393):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000140), 0x2, 0x0)
r2 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f00000000c0), 0x12)
write$cgroup_freezer_state(r1, &(0x7f0000000200)='THAWED\x00', 0x7)

3m41.202964055s ago: executing program 33 (id=10393):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000140), 0x2, 0x0)
r2 = openat$cgroup_procs(r0, &(0x7f0000000100)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r2, &(0x7f00000000c0), 0x12)
write$cgroup_freezer_state(r1, &(0x7f0000000200)='THAWED\x00', 0x7)

2.540833266s ago: executing program 2 (id=13993):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x6}]})
rseq(&(0x7f0000000400), 0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r0, r0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000d40)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000d00)={&(0x7f0000000d80)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWSET={0x1dc, 0x9, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x2}, @NFTA_SET_EXPRESSIONS={0x18c, 0x12, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @objref={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_OBJREF_SET_NAME={0x9, 0x4, 'syz2\x00'}, @NFTA_OBJREF_SET_NAME={0x9, 0x4, 'syz2\x00'}]}}}, {0x14, 0x1, 0x0, 0x1, @connlimit={{0xe}, @void}}, {0xc, 0x1, 0x0, 0x1, @log={{0x8}, @void}}, {0x13c, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x12c, 0x2, 0x0, 0x1, [@NFTA_MATCH_INFO={0xe1, 0x3, "bc4e0b8d6fea2dab4fce38e47cb1bee5f084003b54c92700acc7d805abb92473a29eaf559d9bb74365f1636c1faeafba5256860a594694ea4a6bc0421b67f3005f8eada8b7513e36c0495a2224c783c23834e6b967012a4fadbf5f407626b3b160b191eead85b254bd57dd315b0d2109332d110528031a5efd0609b41f05aced82fdef9a76ef5a4a966c5ea5904e2f3b6567ed93c26b02ffed676fd5bfd19625b3af8d899127f3a824c8297416742838eb6fa7cb00c78e86c2898503108c7d833421fa3023d3f4e69cb59c215890cf58fbf02d4725e0d1f118a5fd0ee7"}, @NFTA_MATCH_INFO={0x43, 0x3, "baea4ada6e475ffe5b1edd4fdd39a72c2cef19020c6cd582693633dadc14566d9884dc329f25ce28ce8bae275cbaf0ea645da96e3edb8a7972f3c80dea4a45"}]}}}]}, @NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x3}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_POLICY={0x8, 0x8, 0x1, 0x0, 0x1}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x20, 0x16, 0xa, 0x301, 0x0, 0x0, {0x7, 0x0, 0x8}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELOBJ={0x100, 0x14, 0xa, 0x3, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_OBJ_USERDATA={0x25, 0x8, "2ac3c2a6415b6112588520962bc86512140c3381d34ec470b75184aaa811015e32"}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_OBJ_USERDATA={0x99, 0x8, "bf91e21d739503a8daa5cf124eddccf64f38b8e00bc60725002a03e529b724591562a3bdf195a09b897667bf166b02bdc042de5ff7f9e47728738d094073a546b430666ccb23b2fc1307371a2ebe07e7fe1571ee93bff1d6f58b7f751b0ed564a2d9a510fbe973191401ea61c194dea21066619cf0eb374c571c168f4a5850d80850dd57a47c30644256462545ed5e97c8b0d41839"}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x4}]}, @NFT_MSG_DELSETELEM={0x20, 0xe, 0xa, 0x301, 0x0, 0x0, {0x3, 0x0, 0xa}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}]}, @NFT_MSG_DELTABLE={0x98, 0x2, 0xa, 0x201, 0x0, 0x0, {0x9}, [@NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_USERDATA={0x63, 0x6, "2a65312db5207d71acc1b241b84abc5deef17f3cbb17944d7a74201496b9c66fa4b9f48068e39884e6d8b93594fd6e9e2401c83e636ffd154905de1cd39aba51234816e62e001387ddfca0ff3622d2b39205d5d9399c965f21f1584b0b0988"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x4}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}]}], {0x14}}, 0x3dc}, 0x1, 0x0, 0x0, 0x20000004}, 0x894)
socket$kcm(0x2, 0x200000000000001, 0x106)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r3, 0x0, 0x178}, 0x18)
syz_emit_ethernet(0xfed7, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0)
perf_event_open(&(0x7f00000007c0)={0x2, 0x80, 0x66, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xded, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x9, 0x0, 0x6, 0x5, 0x0, 0xfe00}, 0x0, 0xffffffbfffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000500)=ANY=[@ANYBLOB="180000007b7bee9d7e5090a6ebe97c1cba46f5000000000000cd21480007000000001808338bddd99a63e4cea88fd66d18924ca8c4951c14176193af79c1257020017b7d3ec44793ab00c8fdaee581782e2b513692bc08c04b9283f380c776026e6824d20beb06a16026a912bf5478078b112cdf55cb533deac29e", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600707, 0x8)
r5 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r5, &(0x7f000001a240)=""/102400, 0x19000, 0x100008)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/zoneinfo\x00', 0x0, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000080)=@generic={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x18)

2.404328155s ago: executing program 5 (id=13998):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f0000000080))
r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000400)='net\x00')
ioctl$sock_inet_tcp_SIOCINQ(r2, 0x541b, 0x0)
ioctl$PPPIOCSACTIVE(r1, 0x40107446, &(0x7f0000000200)={0x1, &(0x7f0000000180)=[{0xa3, 0x2, 0x81, 0x8001}]})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0a00000004000000080000000100000000000000", @ANYRES32, @ANYBLOB="000000000000040000000000000000000000000057aeabca12ec0024fc4cf19e15a20b65f87e690f0d7861d3589701bee4c57cfdbb6ac4c05d648956ac3085fc2a468c7b1b2e5d53abcefb48271b5b422716322d472b2abf1aada46ac33c50ffe045f7e4e49e1f4088599473ffd75e6a159b5efc99d309559c4fce0e536f6fa9c2", @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000e7ffa451e16600", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xcc0984f9ead32b32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
socket$kcm(0x10, 0x2, 0x10)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = dup(r5)
ioctl$TIOCL_SETSEL(r6, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x13d, 0x0, 0xd6e, 0x100}})

2.322607676s ago: executing program 5 (id=14001):
bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
openat$sysfs(0xffffff9c, &(0x7f0000000080)='/sys/power/pm_test', 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x5, 0x6, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000500)='page_pool_state_release\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="180200"/13], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000080)={r2, 0xffffffffffffffff, 0x5, 0x2})
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000080), 0xfffffebe}], 0x1)

2.059675954s ago: executing program 5 (id=14006):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x6}]})
rseq(&(0x7f0000000400), 0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r0, r0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1600000000000000040000000104000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/25], 0x50)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000d40)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000d00)={&(0x7f0000000d80)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWSET={0x1e4, 0x9, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x2}, @NFTA_SET_EXPRESSIONS={0x194, 0x12, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @objref={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_OBJREF_SET_NAME={0x9, 0x4, 'syz2\x00'}, @NFTA_OBJREF_SET_SREG={0x8, 0x3, 0x1, 0x0, 0x17}, @NFTA_OBJREF_SET_NAME={0x9, 0x4, 'syz2\x00'}]}}}, {0x14, 0x1, 0x0, 0x1, @connlimit={{0xe}, @void}}, {0xc, 0x1, 0x0, 0x1, @log={{0x8}, @void}}, {0x13c, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x12c, 0x2, 0x0, 0x1, [@NFTA_MATCH_INFO={0xe1, 0x3, "bc4e0b8d6fea2dab4fce38e47cb1bee5f084003b54c92700acc7d805abb92473a29eaf559d9bb74365f1636c1faeafba5256860a594694ea4a6bc0421b67f3005f8eada8b7513e36c0495a2224c783c23834e6b967012a4fadbf5f407626b3b160b191eead85b254bd57dd315b0d2109332d110528031a5efd0609b41f05aced82fdef9a76ef5a4a966c5ea5904e2f3b6567ed93c26b02ffed676fd5bfd19625b3af8d899127f3a824c8297416742838eb6fa7cb00c78e86c2898503108c7d833421fa3023d3f4e69cb59c215890cf58fbf02d4725e0d1f118a5fd0ee7"}, @NFTA_MATCH_INFO={0x43, 0x3, "baea4ada6e475ffe5b1edd4fdd39a72c2cef19020c6cd582693633dadc14566d9884dc329f25ce28ce8bae275cbaf0ea645da96e3edb8a7972f3c80dea4a45"}]}}}]}, @NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x3}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_POLICY={0x8, 0x8, 0x1, 0x0, 0x1}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x20, 0x16, 0xa, 0x301, 0x0, 0x0, {0x7, 0x0, 0x8}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELOBJ={0x100, 0x14, 0xa, 0x3, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_OBJ_USERDATA={0x25, 0x8, "2ac3c2a6415b6112588520962bc86512140c3381d34ec470b75184aaa811015e32"}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_OBJ_USERDATA={0x99, 0x8, "bf91e21d739503a8daa5cf124eddccf64f38b8e00bc60725002a03e529b724591562a3bdf195a09b897667bf166b02bdc042de5ff7f9e47728738d094073a546b430666ccb23b2fc1307371a2ebe07e7fe1571ee93bff1d6f58b7f751b0ed564a2d9a510fbe973191401ea61c194dea21066619cf0eb374c571c168f4a5850d80850dd57a47c30644256462545ed5e97c8b0d41839"}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x4}]}, @NFT_MSG_DELSETELEM={0x20, 0xe, 0xa, 0x301, 0x0, 0x0, {0x3, 0x0, 0xa}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}]}, @NFT_MSG_DELTABLE={0x98, 0x2, 0xa, 0x201, 0x0, 0x0, {0x9}, [@NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_USERDATA={0x63, 0x6, "2a65312db5207d71acc1b241b84abc5deef17f3cbb17944d7a74201496b9c66fa4b9f48068e39884e6d8b93594fd6e9e2401c83e636ffd154905de1cd39aba51234816e62e001387ddfca0ff3622d2b39205d5d9399c965f21f1584b0b0988"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x4}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}]}], {0x14}}, 0x3e4}, 0x1, 0x0, 0x0, 0x20000004}, 0x894)
socket$kcm(0x2, 0x200000000000001, 0x106)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r3, 0x0, 0x178}, 0x18)
syz_emit_ethernet(0xfed7, &(0x7f00000002c0)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd6002adf7003800"], 0x0)
perf_event_open(&(0x7f00000007c0)={0x2, 0x80, 0x66, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xded, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x9, 0x0, 0x6, 0x5, 0x0, 0xfe00}, 0x0, 0xffffffbfffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000500)=ANY=[@ANYBLOB="180000007b7bee9d7e5090a6ebe97c1cba46f5000000000000cd21480007000000001808338bddd99a63e4cea88fd66d18924ca8c4951c14176193af79c1257020017b7d3ec44793ab00c8fdaee581782e2b513692bc08c04b9283f380c776026e6824d20beb06a16026a912bf5478078b112cdf55cb533deac29e", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600707, 0x8)
r5 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r5, &(0x7f000001a240)=""/102400, 0x19000, 0x100008)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/zoneinfo\x00', 0x0, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000080)=@generic={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x18)

1.805431104s ago: executing program 6 (id=14011):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000100)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
memfd_secret(0x80000)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000050b6850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
readv(r3, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0x940}], 0x1)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0)

1.724692374s ago: executing program 6 (id=14014):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x6}]})
rseq(&(0x7f0000000400), 0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r0, r0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="1600000000000000040000000104000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/25], 0x50)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000d40)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000d00)={&(0x7f0000000d80)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWSET={0x1e4, 0x9, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x2}, @NFTA_SET_EXPRESSIONS={0x194, 0x12, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @objref={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_OBJREF_SET_NAME={0x9, 0x4, 'syz2\x00'}, @NFTA_OBJREF_SET_SREG={0x8, 0x3, 0x1, 0x0, 0x17}, @NFTA_OBJREF_SET_NAME={0x9, 0x4, 'syz2\x00'}]}}}, {0x14, 0x1, 0x0, 0x1, @connlimit={{0xe}, @void}}, {0xc, 0x1, 0x0, 0x1, @log={{0x8}, @void}}, {0x13c, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x12c, 0x2, 0x0, 0x1, [@NFTA_MATCH_INFO={0xe1, 0x3, "bc4e0b8d6fea2dab4fce38e47cb1bee5f084003b54c92700acc7d805abb92473a29eaf559d9bb74365f1636c1faeafba5256860a594694ea4a6bc0421b67f3005f8eada8b7513e36c0495a2224c783c23834e6b967012a4fadbf5f407626b3b160b191eead85b254bd57dd315b0d2109332d110528031a5efd0609b41f05aced82fdef9a76ef5a4a966c5ea5904e2f3b6567ed93c26b02ffed676fd5bfd19625b3af8d899127f3a824c8297416742838eb6fa7cb00c78e86c2898503108c7d833421fa3023d3f4e69cb59c215890cf58fbf02d4725e0d1f118a5fd0ee7"}, @NFTA_MATCH_INFO={0x43, 0x3, "baea4ada6e475ffe5b1edd4fdd39a72c2cef19020c6cd582693633dadc14566d9884dc329f25ce28ce8bae275cbaf0ea645da96e3edb8a7972f3c80dea4a45"}]}}}]}, @NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x3}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_POLICY={0x8, 0x8, 0x1, 0x0, 0x1}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x20, 0x16, 0xa, 0x301, 0x0, 0x0, {0x7, 0x0, 0x8}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELOBJ={0x100, 0x14, 0xa, 0x3, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_OBJ_USERDATA={0x25, 0x8, "2ac3c2a6415b6112588520962bc86512140c3381d34ec470b75184aaa811015e32"}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_OBJ_USERDATA={0x99, 0x8, "bf91e21d739503a8daa5cf124eddccf64f38b8e00bc60725002a03e529b724591562a3bdf195a09b897667bf166b02bdc042de5ff7f9e47728738d094073a546b430666ccb23b2fc1307371a2ebe07e7fe1571ee93bff1d6f58b7f751b0ed564a2d9a510fbe973191401ea61c194dea21066619cf0eb374c571c168f4a5850d80850dd57a47c30644256462545ed5e97c8b0d41839"}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x4}]}, @NFT_MSG_DELSETELEM={0x20, 0xe, 0xa, 0x301, 0x0, 0x0, {0x3, 0x0, 0xa}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}]}, @NFT_MSG_DELTABLE={0x98, 0x2, 0xa, 0x201, 0x0, 0x0, {0x9}, [@NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_USERDATA={0x63, 0x6, "2a65312db5207d71acc1b241b84abc5deef17f3cbb17944d7a74201496b9c66fa4b9f48068e39884e6d8b93594fd6e9e2401c83e636ffd154905de1cd39aba51234816e62e001387ddfca0ff3622d2b39205d5d9399c965f21f1584b0b0988"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x4}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}]}], {0x14}}, 0x3e4}, 0x1, 0x0, 0x0, 0x20000004}, 0x894)
socket$kcm(0x2, 0x200000000000001, 0x106)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r3, 0x0, 0x178}, 0x18)
syz_emit_ethernet(0xfed7, &(0x7f00000002c0)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaaaa86dd6002adf7003800"], 0x0)
perf_event_open(&(0x7f00000007c0)={0x2, 0x80, 0x66, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xded, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x9, 0x0, 0x6, 0x5, 0x0, 0xfe00}, 0x0, 0xffffffbfffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000500)=ANY=[@ANYBLOB="180000007b7bee9d7e5090a6ebe97c1cba46f5000000000000cd21480007000000001808338bddd99a63e4cea88fd66d18924ca8c4951c14176193af79c1257020017b7d3ec44793ab00c8fdaee581782e2b513692bc08c04b9283f380c776026e6824d20beb06a16026a912bf5478078b112cdf55cb533deac29e", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085"], 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600707, 0x8)
r5 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r5, &(0x7f000001a240)=""/102400, 0x19000, 0x100008)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/zoneinfo\x00', 0x0, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000080)=@generic={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x18)

1.679707564s ago: executing program 2 (id=14016):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="19000000040000000800000003"], 0x48)
close(0x3)
mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4000, 0x2, &(0x7f0000ffc000/0x4000)=nil)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000340)={0x3, 0x4, 0x4, 0xa, 0x0, r0, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x0, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000400)={'syztnl2\x00', 0x0, 0x29, 0x0, 0x6, 0x1, 0x78, @mcast2, @loopback, 0x80, 0x8, 0x4, 0xffffffff}})
r1 = io_uring_setup(0x60f7, &(0x7f0000000a40)={0x0, 0x0, 0x2, 0xfffffffe, 0x3bd})
close_range(r1, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
syz_open_dev$vcsn(&(0x7f0000000480), 0x0, 0x142)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001070000940001000000fc11c60000000f00000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r4}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_route(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="5c00000010000104000000000000000000002000", @ANYRES32=0x0, @ANYBLOB="03000000000000002c0012800c0001006d6163766c616e001c000280080001000800000006ef0200010000001ffe02000000000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0xc010)

1.658648264s ago: executing program 2 (id=14017):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000e40)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r1}, &(0x7f0000000000), &(0x7f0000000200)}, 0x20)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000002c0)=0x1)
capset(&(0x7f0000000c00)={0x20080522}, &(0x7f0000000140)={0x0, 0x3, 0x7, 0x0, 0x101, 0x8a})
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140)=0x2)

1.597497044s ago: executing program 2 (id=14019):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x6}]})
rseq(&(0x7f0000000400), 0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r0, r0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000d40)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000d00)={&(0x7f0000000d80)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWSET={0x1dc, 0x9, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0x1}, [@NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_OBJ_TYPE={0x8, 0xf, 0x1, 0x0, 0x2}, @NFTA_SET_EXPRESSIONS={0x18c, 0x12, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @objref={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_OBJREF_SET_NAME={0x9, 0x4, 'syz2\x00'}, @NFTA_OBJREF_SET_NAME={0x9, 0x4, 'syz2\x00'}]}}}, {0x14, 0x1, 0x0, 0x1, @connlimit={{0xe}, @void}}, {0xc, 0x1, 0x0, 0x1, @log={{0x8}, @void}}, {0x13c, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x12c, 0x2, 0x0, 0x1, [@NFTA_MATCH_INFO={0xe1, 0x3, "bc4e0b8d6fea2dab4fce38e47cb1bee5f084003b54c92700acc7d805abb92473a29eaf559d9bb74365f1636c1faeafba5256860a594694ea4a6bc0421b67f3005f8eada8b7513e36c0495a2224c783c23834e6b967012a4fadbf5f407626b3b160b191eead85b254bd57dd315b0d2109332d110528031a5efd0609b41f05aced82fdef9a76ef5a4a966c5ea5904e2f3b6567ed93c26b02ffed676fd5bfd19625b3af8d899127f3a824c8297416742838eb6fa7cb00c78e86c2898503108c7d833421fa3023d3f4e69cb59c215890cf58fbf02d4725e0d1f118a5fd0ee7"}, @NFTA_MATCH_INFO={0x43, 0x3, "baea4ada6e475ffe5b1edd4fdd39a72c2cef19020c6cd582693633dadc14566d9884dc329f25ce28ce8bae275cbaf0ea645da96e3edb8a7972f3c80dea4a45"}]}}}]}, @NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x3}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_POLICY={0x8, 0x8, 0x1, 0x0, 0x1}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x20, 0x16, 0xa, 0x301, 0x0, 0x0, {0x7, 0x0, 0x8}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELOBJ={0x100, 0x14, 0xa, 0x3, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_OBJ_USERDATA={0x25, 0x8, "2ac3c2a6415b6112588520962bc86512140c3381d34ec470b75184aaa811015e32"}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_OBJ_USERDATA={0x99, 0x8, "bf91e21d739503a8daa5cf124eddccf64f38b8e00bc60725002a03e529b724591562a3bdf195a09b897667bf166b02bdc042de5ff7f9e47728738d094073a546b430666ccb23b2fc1307371a2ebe07e7fe1571ee93bff1d6f58b7f751b0ed564a2d9a510fbe973191401ea61c194dea21066619cf0eb374c571c168f4a5850d80850dd57a47c30644256462545ed5e97c8b0d41839"}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x4}]}, @NFT_MSG_DELSETELEM={0x20, 0xe, 0xa, 0x301, 0x0, 0x0, {0x3, 0x0, 0xa}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz0\x00'}]}, @NFT_MSG_DELTABLE={0x98, 0x2, 0xa, 0x201, 0x0, 0x0, {0x9}, [@NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_USERDATA={0x63, 0x6, "2a65312db5207d71acc1b241b84abc5deef17f3cbb17944d7a74201496b9c66fa4b9f48068e39884e6d8b93594fd6e9e2401c83e636ffd154905de1cd39aba51234816e62e001387ddfca0ff3622d2b39205d5d9399c965f21f1584b0b0988"}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x4}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}]}], {0x14}}, 0x3dc}, 0x1, 0x0, 0x0, 0x20000004}, 0x894)
socket$kcm(0x2, 0x200000000000001, 0x106)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x2, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r3, 0x0, 0x178}, 0x18)
syz_emit_ethernet(0xfed7, &(0x7f00000002c0)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa"], 0x0)
perf_event_open(&(0x7f00000007c0)={0x2, 0x80, 0x66, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xded, 0x1, @perf_bp={0x0, 0x4}, 0x0, 0x9, 0x0, 0x6, 0x5, 0x0, 0xfe00}, 0x0, 0xffffffbfffffffff, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000500)=ANY=[@ANYBLOB="180000007b7bee9d7e5090a6ebe97c1cba46f5000000000000cd21480007000000001808338bddd99a63e4cea88fd66d18924ca8c4951c14176193af79c1257020017b7d3ec44793ab00c8fdaee581782e2b513692bc08c04b9283f380c776026e6824d20beb06a16026a912bf5478078b112cdf55cb533deac29e", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
msync(&(0x7f0000952000/0x2000)=nil, 0x87abbe8d1cc6ad9, 0x6)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600707, 0x8)
r5 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00')
pread64(r5, &(0x7f000001a240)=""/102400, 0x19000, 0x100008)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/zoneinfo\x00', 0x0, 0x0)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000080)=@generic={&(0x7f0000000000)='./file0\x00', 0x0, 0x10}, 0x18)

1.204963743s ago: executing program 1 (id=14027):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]})
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
socket$nl_sock_diag(0x10, 0x3, 0x4)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="481bf1c82aec2fcb2805f4f3bdc1203a852729f5ffcbaba4e1c5e6cf6329c342db75f23015a71df83d5c90badd085429d2514beaf0e4cb926131a8667ce0475e2bae37880de8c6c1f577d00dc3c18ca12a85f476376fe3ace0b1d0d56b07d3992e72629650362c519db314fcb9f3cb906623ba7dcf73a496370bd6f9a5f096ade9eaa399c321eaf2c4ec4092c52f33b3baed3917fdb8d988f55d1e15500dae9890b77be4bd6f87e04bb999c53c975d4ba52191998d152d1e2eae8c1e13be7bbd", @ANYRES8=r1, @ANYRESDEC=r0, @ANYRES64=r2, @ANYRES64=r3, @ANYRES16=r0, @ANYRES32=r1, @ANYRESHEX=r4, @ANYRES32=r5, @ANYRES16], 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r6}, 0x18)
r7 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r7, 0x107, 0x14, &(0x7f0000000080)=0xfff, 0x4)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c000000"], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], &(0x7f0000000000)='GPL\x00', 0xfffffffd, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='jbd2_lock_buffer_stall\x00', r8}, 0x18)
r9 = socket$kcm(0x10, 0x2, 0x0)
r10 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r10, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000001c40)="d80000001c0081064e81f782db44b9040a1d08041100000000000aa1180002000600142603600e1208000f0000810401a8001605200001400200000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f", 0x8e}, {&(0x7f0000001040)="814c513628f5687eaf48d66b92c2467bb91573ead1abaf4a2896e5ea7b00bb9504d73538f90700f30957a21480f70691d2f8657e51b87046139216d203f6ce5c97f38123545a8879a15b19e3030917", 0x4f}], 0x2, 0x0, 0x0, 0x7400}, 0x0)
sendmsg$kcm(r9, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008188040f80ec59acbc0413a1f848110000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
socketpair(0x27, 0x100000005, 0x0, &(0x7f0000000000)={<r11=>0xffffffffffffffff})
getpeername$packet(r11, 0x0, 0x0)
openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000200), 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="00800000000400000000004e001a314041680f", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00'], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4e, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

1.203993613s ago: executing program 5 (id=14028):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="19000000040000000800000003"], 0x48)
close(0x3)
mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4000, 0x2, &(0x7f0000ffc000/0x4000)=nil)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000340)={0x3, 0x4, 0x4, 0xa, 0x0, r0, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x0, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000400)={'syztnl2\x00', 0x0, 0x29, 0x0, 0x6, 0x1, 0x78, @mcast2, @loopback, 0x80, 0x8, 0x4, 0xffffffff}})
io_uring_setup(0x60f7, &(0x7f0000000a40)={0x0, 0x0, 0x2, 0xfffffffe, 0x3bd})
pipe(&(0x7f0000000200))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
syz_open_dev$vcsn(&(0x7f0000000480), 0x0, 0x142)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001070000940001000000fc11c60000000f00000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="5c00000010000104000000000000000000002000", @ANYRES32=0x0, @ANYBLOB="03000000000000002c0012800c0001006d6163766c616e001c000280080001000800000006ef0200010000001ffe02000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0xc010)

1.050483242s ago: executing program 1 (id=14031):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x104007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000640)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
rseq(0x0, 0x0, 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000080)=[{0x28}, {0x80000006, 0x0, 0x19, 0x2}]}, 0x10)
chroot(&(0x7f0000000180)='./file0\x00')
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='leases_conflict\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
fsetxattr$trusted_overlay_redirect(r2, &(0x7f0000000040), 0x0, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000480)={'team0\x00', <r3=>0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000980)={0x18, 0xd, &(0x7f00000011c0)=ANY=[@ANYBLOB="180000000200b5785334e6d05700000018000000263800000000000006000000180100002020702500000000002020207b1af8ff00000000bfa1e9c500000000000007010000f8ffffffb702000008000000b70300000020000085000000060000009500000000000000e97cdd91e915dfcee730ecec89ca7783db194efb2329b1daa125feea92df245bedf2c8da999a789ef8c5e0a2ad20376b85d443f068ec9321f27354f300e67075f6279cc844de05b415624bd04bcf8a53317369ea2f7112b2113ab479b6f7478db4b7b9333369b310809ba4f7e348655778aca725023edbf4525509666b346b7c77a59e6d97f2a838d7"], &(0x7f0000000440)='syzkaller\x00', 0x8, 0xb2, &(0x7f0000000580)=""/178, 0x41000, 0x1, '\x00', r3, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000840)={0x6, 0x5}, 0x8, 0x10, &(0x7f0000000880)={0x4, 0x6, 0xffffffff, 0x6e7}, 0x10, 0x0, 0x0, 0x7, &(0x7f00000008c0)=[0xffffffffffffffff], &(0x7f0000000900)=[{0x1, 0x1, 0x10, 0x7}, {0x2, 0x5, 0x9, 0xc}, {0x0, 0x4, 0x9, 0xd}, {0x3, 0x1, 0x1, 0x2}, {0x4, 0x4, 0x10, 0xa}, {0x5, 0x3, 0xe, 0xc}, {0x2, 0x5, 0x7, 0x5}], 0x10, 0x6, @void, @value}, 0x94)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x20001400)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000003c0)='./file0\x00', 0x808d, &(0x7f00000000c0), 0xfe, 0x50d, &(0x7f00000012c0)="$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")
mount(0x0, 0x0, &(0x7f0000002000)='devtmpfs\x00', 0x0, 0x0)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1}, &(0x7f0000001fee)='R\x10rust\xe3c*sgrVdn:Dd', 0x0)
syz_io_uring_setup(0x33f9, &(0x7f0000001140)={0x0, 0x4e23, 0x80, 0x2, 0x3c3, 0x0, r2}, &(0x7f0000000380), &(0x7f00000006c0))
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd630080fc00082c00db5b6861589bcfe8875a060300000023000000000000000000000000ac1414aa33"], 0xfdef)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x5, 0x47, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x80040000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

1.033360503s ago: executing program 5 (id=14032):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000580)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)=ANY=[@ANYBLOB="600000fbffffffffffffff00fbdbdf250a003800", @ANYRES32=0x0, @ANYBLOB="ff7f000014000100fc00000000000000000000000000000014000100fe8000000000000000000000000000aa14000100fc0200000000000000000000000000000800020007000000"], 0x60}, 0x1, 0x0, 0x0, 0x4008001}, 0x20000080)
r0 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r5}, 0x10)
r6 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r6, 0x0, 0xca, &(0x7f00000002c0)={0x1, 0x4, 0x0, 0x0, @vifc_lcl_addr=@initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
setsockopt$MRT_FLUSH(r6, 0x0, 0xd4, &(0x7f0000000200)=0x41c16f48c89e823a, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x45, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x10)
r8 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x105040, 0x0)
ioctl$SNAPSHOT_PREF_IMAGE_SIZE(r8, 0x3312, 0x400)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0xb1)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r0, 0x8983, &(0x7f0000000000)={0x0, 'ip6erspan0\x00', {0x4}, 0x9})
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000003800)=@newtaction={0xe98, 0x30, 0x871a15abc695fa3d, 0x0, 0x2, {}, [{0xe84, 0x1, [@m_pedit={0xe80, 0x1, 0x0, 0x0, {{0xa}, {0xe54, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe50, 0x2, {{{}, 0x97, 0x0, [{0x0, 0x0, 0x42}, {0x0, 0x6}]}, [{0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {}, {0x2}, {}, {0x448eade7}, {0x0, 0x0, 0x80000000}, {0x0, 0x0, 0x10}, {}, {0x0, 0x0, 0x0, 0x2}, {0x0, 0x1000000}, {}, {0x0, 0x0, 0x3}, {0x0, 0x3}, {}, {0x0, 0x0, 0x1}, {}, {}, {0x0, 0xfffffffc}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, {}, {}, {0x2, 0x4, 0x0, 0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {0xfffffffc}, {0xfffffffa, 0xe}, {}, {0x0, 0x0, 0x0, 0x3}, {0x0, 0x4, 0x0, 0x0, 0x4}, {}, {}, {0x0, 0x2, 0x0, 0xfffffffc}, {}, {0x4}, {}, {}, {0x0, 0xffffffff}, {}, {}, {}, {0xfffffffe, 0x0, 0x80000000}, {0x0, 0x0, 0x0, 0x9, 0x4, 0x1000000}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x100000}, {0x0, 0x10}, {}, {0x0, 0x0, 0x0, 0x100}, {0x2, 0x0, 0x0, 0x0, 0xfffffffd, 0x6}, {0x0, 0xffffffff, 0x0, 0x0, 0x200}, {0x0, 0x0, 0x0, 0xfa8}, {0x0, 0x0, 0x0, 0x0, 0x9}, {}, {0x0, 0x0, 0xfffffffd}, {}, {}, {}, {0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0x3}, {0x0, 0x6}, {0x5, 0x0, 0x5}, {0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x100000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, {0x0, 0x0, 0x0, 0x40000000, 0x6}, {0x0, 0x7}, {}, {0xc0000, 0xfffffffd, 0x0, 0x0, 0xfffffffc, 0x8}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, {}, {0x0, 0x0, 0x5, 0x0, 0x0, 0x4}, {0x0, 0x1}, {}, {0x0, 0x0, 0x0, 0x0, 0xe10}, {}, {0x0, 0x0, 0xeb3f}, {0x0, 0x0, 0x0, 0x4}, {0x401}, {}, {}, {0xffffffff, 0x8}, {0x4, 0x3, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x10000}, {0x0, 0x0, 0x6}, {}, {0x0, 0x0, 0xffffffff, 0xefa6}, {}, {}, {0x0, 0x0, 0x0, 0x6}, {0x0, 0x0, 0x4}, {}, {0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x7}, {0x0, 0x0, 0x0, 0x0, 0x400}, {}, {0x0, 0x0, 0x100}, {0x0, 0x0, 0xe, 0x0, 0x0, 0xb}, {0x0, 0x0, 0x0, 0x0, 0x7}], [{}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {0x0, 0x1}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x4}, {0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {0x4}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x4}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x3}, {}, {}, {0x5}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe98}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

1.005596693s ago: executing program 1 (id=14033):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000100)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0x66e, &(0x7f0000000240)={0x0, 0x0, 0x10100}, &(0x7f0000000380), &(0x7f0000000200))
io_uring_enter(r2, 0x567, 0x0, 0x0, 0x0, 0x0)

941.646772ms ago: executing program 3 (id=14035):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000020001801000020646c2100000000002020007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f0000000080))
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000400)='net\x00')
ioctl$sock_inet_tcp_SIOCINQ(r3, 0x541b, 0x0)
ioctl$PPPIOCSACTIVE(r2, 0x40107446, &(0x7f0000000200)={0x1, &(0x7f0000000180)=[{0xa3, 0x2, 0x81, 0x8001}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0a00000004000000080000000100000000000000", @ANYRES32, @ANYBLOB="000000000000040000000000000000000000000057aeabca12ec0024fc4cf19e15a20b65f87e690f0d7861d3589701bee4c57cfdbb6ac4c05d648956ac3085fc2a468c7b1b2e5d53abcefb48271b5b422716322d472b2abf1aada46ac33c50ffe0", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000e7ffa451e16600", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xcc0984f9ead32b32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
socket$kcm(0x10, 0x2, 0x10)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r7 = dup(r6)
ioctl$TIOCL_SETSEL(r7, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x13d, 0x0, 0xd6e, 0x100}})

941.260052ms ago: executing program 1 (id=14036):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[], 0x50)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mq_open(&(0x7f0000000080)='&\x00', 0x40, 0x40, &(0x7f00000000c0)={0x1, 0x698b, 0x9, 0x1})
openat$random(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='br_fdb_external_learn_add\x00', r0, 0x0, 0xce8}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
rseq(&(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x208f3d63}}, 0x20, 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f00000001c0)='GPL\x00')

903.021622ms ago: executing program 3 (id=14037):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x10001, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x10, 0x1c, &(0x7f0000000000)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1b}}, {}, [@snprintf={{}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x5}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5, 0x1, 0xb, 0x8, 0xa, 0x4}, {0x7, 0x0, 0x0, 0x8}, {}, {0x7, 0x0, 0x0, 0x0}, {}, {0x18, 0x2, 0x2, 0x0, r0}, {}, {0x46, 0x0, 0x0, 0x76}}], {{}, {0x6, 0x0, 0xb, 0x8}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000002c0)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

694.680142ms ago: executing program 3 (id=14038):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0, r1}, 0x18)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

672.646272ms ago: executing program 6 (id=14039):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000340)='kfree\x00', r1}, 0x18)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0x2)
readv(r2, &(0x7f0000000000)=[{&(0x7f0000001300)=""/244, 0x940}], 0x1)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x0)

592.162502ms ago: executing program 2 (id=14040):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000004c0)={0x38, 0x1403, 0x1, 0x70bd2d, 0x0, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'lo\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x854}, 0x0)

556.852692ms ago: executing program 2 (id=14041):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000"], 0x48)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0)
ioctl$MON_IOCX_GET(r2, 0x40189206, &(0x7f0000000680)={&(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000640)=""/31, 0x1f})
faccessat(r2, &(0x7f00000003c0)='./file0\x00', 0x5)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000300)={{r1}, &(0x7f0000000280), &(0x7f0000000380)}, 0x20)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x1, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000dc0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r5, &(0x7f0000000240), &(0x7f0000000000)=""/10, 0x2}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r6, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
close(r6)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r7}, 0x10)
r8 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000000180)=@newtaction={0x18, 0x31, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}, 0x1, 0x1000000}, 0x0)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0xcd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xc}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r9 = socket(0xf, 0x800, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x5, 0x0, &(0x7f0000000080)=0x1)
write(r9, &(0x7f0000000000)="1b0000001a005f0400f9f407000904018000200000000000000000", 0x1b)

534.941811ms ago: executing program 6 (id=14042):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="19000000040000000800000003"], 0x48)
close(0x3)
mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4000, 0x2, &(0x7f0000ffc000/0x4000)=nil)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000340)={0x3, 0x4, 0x4, 0xa, 0x0, r0, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x0, 0x4, 0x0, @void, @value, @void, @value}, 0x50)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000180)={'ip6_vti0\x00', &(0x7f0000000400)={'syztnl2\x00', 0x0, 0x29, 0x0, 0x6, 0x1, 0x78, @mcast2, @loopback, 0x80, 0x8, 0x4, 0xffffffff}})
io_uring_setup(0x60f7, &(0x7f0000000a40)={0x0, 0x0, 0x2, 0xfffffffe, 0x3bd})
pipe(&(0x7f0000000200))
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
syz_open_dev$vcsn(&(0x7f0000000480), 0x0, 0x142)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001070000940001000000fc11c60000000f00000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r3}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="5c00000010000104000000000000000000002000", @ANYRES32=0x0, @ANYBLOB="03000000000000002c0012800c0001006d6163766c616e001c000280080001000800000006ef0200010000001ffe02000000000008000500", @ANYRES32=r5, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0xc010)

492.190791ms ago: executing program 3 (id=14043):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)=[{0x0}], 0x1}, 0x20000000)
syz_io_uring_setup(0x7b, &(0x7f0000001800)={0x0, 0x0, 0x10100, 0x0, 0x313}, &(0x7f00000005c0)=<r2=>0x0, &(0x7f0000000100)=<r3=>0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000001400000000000000ff000000850000000e000000850000000700000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r6}, 0x10)
bind$inet6(r5, &(0x7f0000000100)={0xa, 0x4e22, 0x0, @rand_addr, 0x800}, 0x1c)
listen(r5, 0x3)
syz_emit_ethernet(0x36, &(0x7f0000000900)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x94}}}}}}, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000600)=@IORING_OP_MSG_RING={0x28, 0x40, 0x0, r4, 0x1, 0x0})
bind$l2tp(r4, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000000)=ANY=[], 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x6, 0xf, &(0x7f0000000380)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x3}, {{0x18, 0x1, 0x1, 0x0, 0x1}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}}}, &(0x7f0000000300)='GPL\x00', 0x8, 0x1000, &(0x7f0000001bc0)=""/4096, 0x41100, 0x24, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x65d, @void, @value}, 0x94)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r7 = socket$kcm(0x15, 0x5, 0x0)
setsockopt$sock_attach_bpf(r7, 0x114, 0x4, 0x0, 0xe2a0a06200000010)
r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/ip_tables_names\x00')

459.903671ms ago: executing program 3 (id=14044):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a500850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10)
inotify_init() (fail_nth: 13)

364.216661ms ago: executing program 1 (id=14045):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x8010, &(0x7f0000000680)=ANY=[@ANYBLOB='iocharset=utf8,shortname=winnt\x00\b\x00\x00\x00\x00\x00\x00uni_xlate=1,showexec,flush,shortname=win95,nonumtail=0,rodir,utf8=0,shortname/mixed,umask=000000\x00\x00\x00\x00\x00\x00\x00\x00\x00'], 0x5, 0x2a1, &(0x7f0000000a00)="$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")
mkdirat(0xffffffffffffff9c, 0x0, 0x3a1)

176.03301ms ago: executing program 1 (id=14046):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000300)='kfree\x00', r0}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r6}, 0x10)
r7 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r7, 0x0, 0xca, &(0x7f00000002c0)={0x1, 0x4, 0x0, 0x0, @vifc_lcl_addr=@initdev={0xac, 0x1e, 0x0, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
setsockopt$MRT_FLUSH(r7, 0x0, 0xd4, &(0x7f0000000200)=0x41c16f48c89e823a, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x45, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r8}, 0x10)
r9 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x105040, 0x0)
ioctl$SNAPSHOT_PREF_IMAGE_SIZE(r9, 0x3312, 0x400)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0xb1)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000000)={0x0, 'ip6erspan0\x00', {0x4}, 0x9})
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000003800)=@newtaction={0xe98, 0x30, 0x871a15abc695fa3d, 0x0, 0x2, {}, [{0xe84, 0x1, [@m_pedit={0xe80, 0x1, 0x0, 0x0, {{0xa}, {0xe54, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe50, 0x2, {{{}, 0x97, 0x0, [{0x0, 0x0, 0x42}, {0x0, 0x6}]}, [{0x3, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {}, {0x2}, {}, {0x448eade7}, {0x0, 0x0, 0x80000000}, {0x0, 0x0, 0x10}, {}, {0x0, 0x0, 0x0, 0x2}, {0x0, 0x1000000}, {}, {0x0, 0x0, 0x3}, {0x0, 0x3}, {}, {0x0, 0x0, 0x1}, {}, {}, {0x0, 0xfffffffc}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, {}, {}, {0x2, 0x4, 0x0, 0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {0xfffffffc}, {0xfffffffa, 0xe}, {}, {0x0, 0x0, 0x0, 0x3}, {0x0, 0x4, 0x0, 0x0, 0x4}, {}, {}, {0x0, 0x2, 0x0, 0xfffffffc}, {}, {0x4}, {}, {}, {0x0, 0xffffffff}, {}, {}, {}, {0xfffffffe, 0x0, 0x80000000}, {0x0, 0x0, 0x0, 0x9, 0x4, 0x1000000}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x100000}, {0x0, 0x10}, {}, {0x0, 0x0, 0x0, 0x100}, {0x2, 0x0, 0x0, 0x0, 0xfffffffd, 0x6}, {0x0, 0xffffffff, 0x0, 0x0, 0x200}, {0x0, 0x0, 0x0, 0xfa8}, {0x0, 0x0, 0x0, 0x0, 0x9}, {}, {0x0, 0x0, 0xfffffffd}, {}, {}, {}, {0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0x3}, {0x0, 0x6}, {0x5, 0x0, 0x5}, {0x0, 0x0, 0x0, 0x3}, {}, {0x0, 0x0, 0x100000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, {0x0, 0x0, 0x0, 0x40000000, 0x6}, {0x0, 0x7}, {}, {0xc0000, 0xfffffffd, 0x0, 0x0, 0xfffffffc, 0x8}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, {}, {0x0, 0x0, 0x5, 0x0, 0x0, 0x4}, {0x0, 0x1}, {}, {0x0, 0x0, 0x0, 0x0, 0xe10}, {}, {0x0, 0x0, 0xeb3f}, {0x0, 0x0, 0x0, 0x4}, {0x401}, {}, {}, {0xffffffff, 0x8}, {0x4, 0x3, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x10000}, {0x0, 0x0, 0x6}, {}, {0x0, 0x0, 0xffffffff, 0xefa6}, {}, {}, {0x0, 0x0, 0x0, 0x6}, {0x0, 0x0, 0x4}, {}, {0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0x7}, {0x0, 0x0, 0x0, 0x0, 0x400}, {}, {0x0, 0x0, 0x100}, {0x0, 0x0, 0xe, 0x0, 0x0, 0xb}, {0x0, 0x0, 0x0, 0x0, 0x7}], [{}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {0x0, 0x1}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x4}, {0x1}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {0x4}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x4}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x3}, {}, {}, {0x5}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe98}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

158.56717ms ago: executing program 3 (id=14047):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000020001801000020646c2100000000002020007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f0000000080))
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000400)='net\x00')
ioctl$sock_inet_tcp_SIOCINQ(r3, 0x541b, 0x0)
ioctl$PPPIOCSACTIVE(r2, 0x40107446, &(0x7f0000000200)={0x1, &(0x7f0000000180)=[{0xa3, 0x2, 0x81, 0x8001}]})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0a00000004000000080000000100000000000000", @ANYRES32, @ANYBLOB="000000000000040000000000000000000000000057aeabca12ec0024fc4cf19e15a20b65f87e690f0d7861d3589701bee4c57cfdbb6ac4c05d648956ac3085fc2a468c7b1b2e5d53abcefb48271b5b422716322d472b2abf1aada46ac33c50ffe0", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000e7ffa451e16600", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xcc0984f9ead32b32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r5, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
socket$kcm(0x10, 0x2, 0x10)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r7 = dup(r6)
ioctl$TIOCL_SETSEL(r7, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x13d, 0x0, 0xd6e, 0x100}})

145.64027ms ago: executing program 5 (id=14048):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f00000005c0)={0x0, {'syz0\x00', 'syz0\x00', 'syz0\x00', &(0x7f00000000c0)=""/43, 0x2b, 0x0, 0x3}}, 0x120)
write$UHID_DESTROY(r0, &(0x7f0000000080), 0x4)

137.21176ms ago: executing program 6 (id=14049):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)

0s ago: executing program 6 (id=14050):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xd, 0x0, &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x8010, &(0x7f0000000680)=ANY=[@ANYBLOB='iocharset=utf8,shortname=winnt\x00\b\x00\x00\x00\x00\x00\x00uni_xlate=1,showexec,flush,shortname=win95,nonumtail=0,rodir,utf8=0,shortname/mixed,umask=000000\x00\x00\x00\x00\x00\x00\x00\x00\x00'], 0x5, 0x2a1, &(0x7f0000000a00)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000001dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x3a1)

kernel console output (not intermixed with test programs):

T10639] EXT4-fs (loop6): Total free blocks count 0
[  747.691113][T10639] EXT4-fs (loop6): Free/Dirty block details
[  747.697102][T10639] EXT4-fs (loop6): free_blocks=0
[  747.864910][T10321] Falling back ldisc for ttyS3.
[  748.067738][T10329] xt_hashlimit: max too large, truncated to 1048576
[  748.075160][T10329] Cannot find set identified by id 0 to match
[  748.131260][T10329] siw: device registration error -23
[  748.437182][T10342] netlink: 36 bytes leftover after parsing attributes in process `syz.2.13351'.
[  748.446340][T10342] netlink: 36 bytes leftover after parsing attributes in process `syz.2.13351'.
[  748.456701][T10342] netlink: 36 bytes leftover after parsing attributes in process `syz.2.13351'.
[  748.478372][T10342] netlink: 36 bytes leftover after parsing attributes in process `syz.2.13351'.
[  748.487548][T10342] netlink: 36 bytes leftover after parsing attributes in process `syz.2.13351'.
[  748.496694][T10342] netlink: 36 bytes leftover after parsing attributes in process `syz.2.13351'.
[  748.528353][T10342] netlink: 36 bytes leftover after parsing attributes in process `syz.2.13351'.
[  748.537490][T10342] netlink: 36 bytes leftover after parsing attributes in process `syz.2.13351'.
[  748.547256][T10353] loop5: detected capacity change from 0 to 512
[  748.548231][T10342] netlink: 36 bytes leftover after parsing attributes in process `syz.2.13351'.
[  748.566657][T10353] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  748.575729][T10353] EXT4-fs (loop5): orphan cleanup on readonly fs
[  748.582506][T10353] EXT4-fs warning (device loop5): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  748.598344][T10353] EXT4-fs (loop5): Cannot turn on quotas: error -22
[  748.603907][T10357] loop2: detected capacity change from 0 to 1024
[  748.605398][T10353] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.13354: bg 0: block 40: padding at end of block bitmap is not set
[  748.611910][T10357] EXT4-fs: Ignoring removed nobh option
[  748.626212][T10353] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6550: Corrupt filesystem
[  748.631318][T10357] EXT4-fs: Ignoring removed bh option
[  748.641286][T10353] EXT4-fs (loop5): 1 truncate cleaned up
[  748.651873][T10353] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  748.667915][T10359] loop3: detected capacity change from 0 to 256
[  748.674537][T10359] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  748.690107][T10357] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  748.726851][T10353] EXT4-fs error (device loop5): ext4_xattr_block_get:596: inode #16: comm syz.5.13354: corrupted xattr block 31: invalid header
[  748.740430][T10353] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=16
[  748.749455][T10353] EXT4-fs error (device loop5): ext4_xattr_block_get:596: inode #16: comm syz.5.13354: corrupted xattr block 31: invalid header
[  748.764311][T10353] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop5 ino=16
[  748.773375][T10353] EXT4-fs error (device loop5): ext4_get_link:106: inode #16: comm syz.5.13354: bad symlink.
[  748.786150][ T6731] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  748.851806][ T4786] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  748.884763][T10377] gretap0: entered promiscuous mode
[  748.892027][T10377] gretap0: left promiscuous mode
[  748.926441][T10385] xt_hashlimit: max too large, truncated to 1048576
[  748.933887][T10385] Cannot find set identified by id 0 to match
[  748.947673][T10385] siw: device registration error -23
[  748.954222][T10385] syzkaller0: entered allmulticast mode
[  748.984307][T10390] xt_hashlimit: max too large, truncated to 1048576
[  748.991939][T10390] Cannot find set identified by id 0 to match
[  749.115011][T10397] Falling back ldisc for ttyS3.
[  749.161279][T10403] loop6: detected capacity change from 0 to 2048
[  749.177857][T10403] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  749.190192][T10403] ext4 filesystem being mounted at /533/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  749.200704][T10410] loop2: detected capacity change from 0 to 2048
[  749.219452][ T2764] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  749.229339][T10410] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  749.241752][T10410] ext4 filesystem being mounted at /246/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  749.339255][T10414] pimreg: entered allmulticast mode
[  749.345226][T10414] pimreg: left allmulticast mode
[  749.479284][T10422] serio: Serial port ptm0
[  749.546711][T10428] syz.6.13382[10428] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  749.546812][T10428] syz.6.13382[10428] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  749.558524][T10428] syz.6.13382[10428] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  749.573902][T10428] netlink: 'syz.6.13382': attribute type 1 has an invalid length.
[  749.596976][T10432] serio: Serial port ptm0
[  749.682202][T10436] loop6: detected capacity change from 0 to 256
[  749.767587][T10445] syz.3.13389[10445] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  749.767735][T10445] syz.3.13389[10445] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  749.779612][T10445] syz.3.13389[10445] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  749.803035][T10445] netlink: 'syz.3.13389': attribute type 1 has an invalid length.
[  749.834878][T10450] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  749.864005][   T29] kauditd_printk_skb: 249 callbacks suppressed
[  749.864019][   T29] audit: type=1326 audit(1871108466.916:86735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10454 comm="syz.5.13393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  749.867861][T10455] serio: Serial port ptm0
[  749.870329][   T29] audit: type=1326 audit(1871108466.916:86736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10454 comm="syz.5.13393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  749.922128][   T29] audit: type=1326 audit(1871108466.916:86737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10454 comm="syz.5.13393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  749.945806][   T29] audit: type=1326 audit(1871108466.916:86738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10454 comm="syz.5.13393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  749.969649][   T29] audit: type=1326 audit(1871108466.916:86739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10454 comm="syz.5.13393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  749.993508][   T29] audit: type=1326 audit(1871108466.916:86740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10454 comm="syz.5.13393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  750.017263][   T29] audit: type=1326 audit(1871108466.916:86741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10454 comm="syz.5.13393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  750.040983][   T29] audit: type=1326 audit(1871108466.916:86742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10454 comm="syz.5.13393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  750.064756][   T29] audit: type=1326 audit(1871108466.916:86743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10454 comm="syz.5.13393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  750.088490][   T29] audit: type=1326 audit(1871108466.916:86744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10454 comm="syz.5.13393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  750.114702][ T6731] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  750.196897][T10472] loop3: detected capacity change from 0 to 512
[  750.197212][T10464] Falling back ldisc for ttyS3.
[  750.203471][T10472] ext4: Unknown parameter 'appraise_type'
[  750.285709][T10475] xt_hashlimit: max too large, truncated to 1048576
[  750.293221][T10475] Cannot find set identified by id 0 to match
[  750.308323][T10475] siw: device registration error -23
[  750.316629][T10475] syzkaller0: entered allmulticast mode
[  750.322671][T10476] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  750.331230][T10476] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  750.534296][T10481] loop5: detected capacity change from 0 to 128
[  750.545263][T10482] xt_hashlimit: max too large, truncated to 1048576
[  750.552447][T10482] Cannot find set identified by id 0 to match
[  750.573892][T10482] siw: device registration error -23
[  750.603514][T10484] loop5: detected capacity change from 0 to 512
[  750.807861][T10491] syz.1.13406[10491] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  750.807914][T10491] syz.1.13406[10491] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  750.821095][T10491] syz.1.13406[10491] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  750.838133][T10491] netlink: 'syz.1.13406': attribute type 1 has an invalid length.
[  750.873233][T10495] loop5: detected capacity change from 0 to 1024
[  750.885620][T10495] EXT4-fs: Ignoring removed nobh option
[  750.891234][T10495] EXT4-fs: Ignoring removed bh option
[  750.928445][T10495] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  750.965084][T10503] pimreg: entered allmulticast mode
[  750.971249][T10503] pimreg: left allmulticast mode
[  750.998814][ T4786] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  751.091870][T10509] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  751.146959][T10515] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  751.374797][T10511] Falling back ldisc for ttyS3.
[  751.604780][T10529] Falling back ldisc for ttyS3.
[  751.636798][T10541] pimreg: entered allmulticast mode
[  751.640517][T10539] loop1: detected capacity change from 0 to 2048
[  751.649226][T10541] pimreg: left allmulticast mode
[  751.666050][T10539] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  751.678251][T10539] ext4 filesystem being mounted at /195/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  751.784986][T10547] Falling back ldisc for ttyS3.
[  751.845728][T10548] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.13423: bg 0: block 345: padding at end of block bitmap is not set
[  751.876622][T10548] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[  751.886980][T10560] loop5: detected capacity change from 0 to 1024
[  751.889145][T10548] EXT4-fs (loop1): This should not happen!! Data will be lost
[  751.889145][T10548] 
[  751.897631][T10560] EXT4-fs: Ignoring removed nobh option
[  751.911397][T10560] EXT4-fs: Ignoring removed bh option
[  751.929598][T29639] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 117
[  751.942428][T29639] EXT4-fs (loop1): This should not happen!! Data will be lost
[  751.942428][T29639] 
[  751.973472][T29639] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2081 with max blocks 2024 with error 28
[  751.978355][T10560] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  751.986355][T29639] EXT4-fs (loop1): This should not happen!! Data will be lost
[  751.986355][T29639] 
[  752.008524][T29639] EXT4-fs (loop1): Total free blocks count 0
[  752.014522][T29639] EXT4-fs (loop1): Free/Dirty block details
[  752.020482][T29639] EXT4-fs (loop1): free_blocks=0
[  752.037062][ T4786] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  752.056200][T10569] siw: device registration error -23
[  752.066918][T10571] pimreg: entered allmulticast mode
[  752.073078][T10571] pimreg: left allmulticast mode
[  752.100547][T10574] loop1: detected capacity change from 0 to 2048
[  752.128496][T10574] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  752.141149][T10574] ext4 filesystem being mounted at /196/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  752.154865][T10558] Falling back ldisc for ttyS3.
[  752.205706][T10581] loop5: detected capacity change from 0 to 512
[  752.212302][T10581] ext4: Unknown parameter 'appraise_type'
[  752.335204][T10586] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  752.336547][T10585] serio: Serial port ptm0
[  752.343857][T10586] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  752.402040][T10588] pimreg: entered allmulticast mode
[  752.409363][T10588] pimreg: left allmulticast mode
[  752.624935][T10594] Falling back ldisc for ttyS3.
[  752.946629][ T7602] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  752.987077][T10605] serio: Serial port ptm0
[  753.113096][T10612] serio: Serial port ptm0
[  753.175859][T10618] loop2: detected capacity change from 0 to 1024
[  753.186360][T10618] EXT4-fs: Ignoring removed nobh option
[  753.191977][T10618] EXT4-fs: Ignoring removed bh option
[  753.233496][T10625] loop6: detected capacity change from 0 to 1024
[  753.240771][T10625] EXT4-fs: Ignoring removed nobh option
[  753.246372][T10625] EXT4-fs: Ignoring removed bh option
[  753.253257][T10618] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  753.267979][T10630] xt_hashlimit: max too large, truncated to 1048576
[  753.277169][T10630] Cannot find set identified by id 0 to match
[  753.286105][T10630] siw: device registration error -23
[  753.299371][T10631] siw: device registration error -23
[  753.306439][T10625] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  753.344374][ T2764] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  753.367640][T10646] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  753.993642][ T6731] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  754.048971][T10652] serio: Serial port ptm0
[  754.086010][T10656] serio: Serial port ptm1
[  754.189560][T10666] loop2: detected capacity change from 0 to 256
[  754.196331][T10666] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  754.229125][T10662] pimreg: entered allmulticast mode
[  754.235050][T10662] pimreg: left allmulticast mode
[  754.253493][T10670] loop3: detected capacity change from 0 to 2048
[  754.281289][T10670] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  754.294310][T10670] ext4 filesystem being mounted at /310/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  754.374858][T10672] Falling back ldisc for ttyS3.
[  754.430678][T10682] xt_hashlimit: max too large, truncated to 1048576
[  754.434833][T10684] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.13467: bg 0: block 345: padding at end of block bitmap is not set
[  754.453041][T10682] siw: device registration error -23
[  754.467205][T10684] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[  754.479807][T10684] EXT4-fs (loop3): This should not happen!! Data will be lost
[  754.479807][T10684] 
[  754.517183][T10691] serio: Serial port ptm0
[  754.539057][T10635] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 117
[  754.551880][T10635] EXT4-fs (loop3): This should not happen!! Data will be lost
[  754.551880][T10635] 
[  754.587323][T29639] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 2081 with max blocks 2024 with error 28
[  754.600255][T29639] EXT4-fs (loop3): This should not happen!! Data will be lost
[  754.600255][T29639] 
[  754.610025][T29639] EXT4-fs (loop3): Total free blocks count 0
[  754.616094][T29639] EXT4-fs (loop3): Free/Dirty block details
[  754.622005][T29639] EXT4-fs (loop3): free_blocks=0
[  754.630078][T10702] loop2: detected capacity change from 0 to 256
[  754.632138][T10697] Falling back ldisc for ttyS3.
[  754.639514][T10702] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  754.668773][T10702] __nla_validate_parse: 22 callbacks suppressed
[  754.668858][T10702] netlink: 16 bytes leftover after parsing attributes in process `syz.2.13480'.
[  754.722309][T10706] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  754.779690][T10713] loop2: detected capacity change from 0 to 1024
[  754.786650][T10713] EXT4-fs: Ignoring removed nobh option
[  754.792220][T10713] EXT4-fs: Ignoring removed bh option
[  754.806676][T10713] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  754.840075][ T6731] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  754.876701][T10727] syz.2.13489[10727] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  754.876750][T10727] syz.2.13489[10727] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  754.888512][T10727] syz.2.13489[10727] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  754.903030][T10727] netlink: 'syz.2.13489': attribute type 1 has an invalid length.
[  754.944203][T10735] netlink: 36 bytes leftover after parsing attributes in process `syz.5.13492'.
[  754.953392][T10735] netlink: 36 bytes leftover after parsing attributes in process `syz.5.13492'.
[  754.962598][T10735] netlink: 36 bytes leftover after parsing attributes in process `syz.5.13492'.
[  754.974773][T10708] Falling back ldisc for ttyS3.
[  754.988306][T10735] netlink: 36 bytes leftover after parsing attributes in process `syz.5.13492'.
[  754.997569][T10735] netlink: 36 bytes leftover after parsing attributes in process `syz.5.13492'.
[  755.006784][T10735] netlink: 36 bytes leftover after parsing attributes in process `syz.5.13492'.
[  755.020382][   T29] kauditd_printk_skb: 495 callbacks suppressed
[  755.020397][   T29] audit: type=1326 audit(1871108472.076:87240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10737 comm="syz.3.13493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56b7695d29 code=0x7ffc0000
[  755.053422][   T29] audit: type=1326 audit(1871108472.076:87241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10737 comm="syz.3.13493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f56b7695d29 code=0x7ffc0000
[  755.077409][   T29] audit: type=1326 audit(1871108472.076:87242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10737 comm="syz.3.13493" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56b7695d29 code=0x7ffc0000
[  755.113188][T10742] loop2: detected capacity change from 0 to 256
[  755.113887][T10735] netlink: 36 bytes leftover after parsing attributes in process `syz.5.13492'.
[  755.120688][T10742] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  755.128862][T10735] netlink: 36 bytes leftover after parsing attributes in process `syz.5.13492'.
[  755.141357][T10735] netlink: 36 bytes leftover after parsing attributes in process `syz.5.13492'.
[  755.184495][T10747] loop6: detected capacity change from 0 to 1024
[  755.203764][T10747] EXT4-fs: Ignoring removed nobh option
[  755.209503][T10747] EXT4-fs: Ignoring removed bh option
[  755.250084][T10747] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  755.275409][   T29] audit: type=1326 audit(1871108472.326:87243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10746 comm="syz.6.13497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d47fa5d29 code=0x7ffc0000
[  755.299267][   T29] audit: type=1326 audit(1871108472.326:87244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10746 comm="syz.6.13497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f3d47fa5d29 code=0x7ffc0000
[  755.323014][   T29] audit: type=1326 audit(1871108472.326:87245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10746 comm="syz.6.13497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d47fa5d29 code=0x7ffc0000
[  755.346824][   T29] audit: type=1326 audit(1871108472.326:87246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10746 comm="syz.6.13497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3d47fa5d29 code=0x7ffc0000
[  755.370740][   T29] audit: type=1326 audit(1871108472.326:87247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10746 comm="syz.6.13497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d47fa5d29 code=0x7ffc0000
[  755.394428][   T29] audit: type=1326 audit(1871108472.326:87248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10746 comm="syz.6.13497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f3d47fa5d29 code=0x7ffc0000
[  755.418049][   T29] audit: type=1326 audit(1871108472.326:87249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10746 comm="syz.6.13497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d47fa5d29 code=0x7ffc0000
[  755.433509][T10765] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  755.451486][T10765] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  755.467007][T10766] loop3: detected capacity change from 0 to 512
[  755.473563][T10766] EXT4-fs: Ignoring removed i_version option
[  755.479607][T10766] EXT4-fs: Ignoring removed mblk_io_submit option
[  755.486450][T10766] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  755.507125][ T2764] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  755.507137][T10766] EXT4-fs (loop3): 1 truncate cleaned up
[  755.507534][T10766] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  755.547264][T10766] SELinux:  Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped).
[  755.620962][T10778] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  755.652963][T10772] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  755.680807][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  755.810453][T10782] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  755.819396][T10782] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  755.828338][T10782] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  755.837184][T10782] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  755.847869][T10782] geneve2: entered allmulticast mode
[  755.873228][T10800] Unsupported ieee802154 address type: 0
[  755.884765][T10792] Falling back ldisc for ttyS3.
[  755.890447][T10800] loop1: detected capacity change from 0 to 512
[  755.911846][T10800] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  755.924489][T10800] EXT4-fs (loop1): 1 truncate cleaned up
[  755.930587][T10800] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  755.963844][ T7602] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  755.987256][T10808] loop1: detected capacity change from 0 to 1024
[  755.994159][T10808] EXT4-fs: Ignoring removed nobh option
[  756.001117][T10808] EXT4-fs: Ignoring removed bh option
[  756.027833][T10808] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  756.082895][ T7602] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  756.329444][T10821] loop1: detected capacity change from 0 to 512
[  756.337086][T10821] EXT4-fs: Ignoring removed i_version option
[  756.343120][T10821] EXT4-fs: Ignoring removed mblk_io_submit option
[  756.351852][T10821] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  756.364358][T10821] EXT4-fs (loop1): 1 truncate cleaned up
[  756.370454][T10821] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  756.405052][ T7602] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  756.423510][T10824] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  756.658450][T10836] serio: Serial port ptm0
[  756.744886][T10838] Falling back ldisc for ttyS3.
[  756.768630][T10844] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  756.774081][T10845] loop6: detected capacity change from 0 to 1024
[  756.775215][T10844] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  756.782036][T10845] EXT4-fs: Ignoring removed nobh option
[  756.789113][T10844] vhci_hcd vhci_hcd.0: Device attached
[  756.794573][T10845] EXT4-fs: Ignoring removed bh option
[  756.816673][T10845] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  756.818458][T10846] vhci_hcd: connection closed
[  756.830726][T10637] vhci_hcd: stop threads
[  756.839722][T10637] vhci_hcd: release socket
[  756.844154][T10637] vhci_hcd: disconnect device
[  756.867948][ T2764] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  756.951399][T10853] loop6: detected capacity change from 0 to 256
[  756.994782][T10857] Falling back ldisc for ttyS3.
[  757.049743][T10864] serio: Serial port ptm0
[  757.057927][T10866] loop5: detected capacity change from 0 to 256
[  757.065117][T10866] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  757.136761][T10875] pimreg: entered allmulticast mode
[  757.143689][T10875] pimreg: left allmulticast mode
[  757.167419][T10876] xt_hashlimit: max too large, truncated to 1048576
[  757.175145][T10876] Cannot find set identified by id 0 to match
[  757.312911][T10883] loop2: detected capacity change from 0 to 512
[  757.319536][T10883] ext4: Unknown parameter 'appraise_type'
[  757.327650][T10883] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  757.336180][T10883] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  757.395215][T10885] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  757.427635][T10891] loop3: detected capacity change from 0 to 512
[  757.434570][T10891] EXT4-fs: Ignoring removed i_version option
[  757.440666][T10891] EXT4-fs: Ignoring removed mblk_io_submit option
[  757.448086][T10891] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  757.460372][T10893] loop1: detected capacity change from 0 to 512
[  757.467315][T10893] ext4: Unknown parameter 'appraise_type'
[  757.478218][T10893] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  757.486746][T10893] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  757.527609][T10891] EXT4-fs (loop3): 1 truncate cleaned up
[  757.533596][T10891] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  757.550853][T10891] FAULT_INJECTION: forcing a failure.
[  757.550853][T10891] name failslab, interval 1, probability 0, space 0, times 0
[  757.563554][T10891] CPU: 1 UID: 0 PID: 10891 Comm: syz.3.13547 Not tainted 6.13.0-rc7-syzkaller-00039-gc3812b15000c #0
[  757.574410][T10891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  757.584468][T10891] Call Trace:
[  757.587747][T10891]  <TASK>
[  757.590685][T10891]  dump_stack_lvl+0xf2/0x150
[  757.595366][T10891]  dump_stack+0x15/0x1a
[  757.599529][T10891]  should_fail_ex+0x223/0x230
[  757.604233][T10891]  should_failslab+0x8f/0xb0
[  757.608833][T10891]  kmem_cache_alloc_noprof+0x52/0x320
[  757.614249][T10891]  ? getname_flags+0x81/0x3b0
[  757.618925][T10891]  getname_flags+0x81/0x3b0
[  757.623424][T10891]  __x64_sys_renameat2+0x6e/0xa0
[  757.628448][T10891]  x64_sys_call+0x1bf1/0x2dc0
[  757.633179][T10891]  do_syscall_64+0xc9/0x1c0
[  757.637727][T10891]  ? clear_bhb_loop+0x55/0xb0
[  757.642407][T10891]  ? clear_bhb_loop+0x55/0xb0
[  757.647094][T10891]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  757.653029][T10891] RIP: 0033:0x7f56b7695d29
[  757.657498][T10891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  757.677165][T10891] RSP: 002b:00007f56b5d07038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c
[  757.685591][T10891] RAX: ffffffffffffffda RBX: 00007f56b7885fa0 RCX: 00007f56b7695d29
[  757.693601][T10891] RDX: ffffffffffffff9c RSI: 0000000020000580 RDI: ffffffffffffff9c
[  757.701638][T10891] RBP: 00007f56b5d07090 R08: 0000000000000004 R09: 0000000000000000
[  757.709611][T10891] R10: 00000000200005c0 R11: 0000000000000246 R12: 0000000000000001
[  757.717590][T10891] R13: 0000000000000000 R14: 00007f56b7885fa0 R15: 00007ffef4181b68
[  757.725625][T10891]  </TASK>
[  757.761214][T10902] loop6: detected capacity change from 0 to 512
[  757.773475][T10902] ext4: Unknown parameter 'appraise_type'
[  757.780356][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  757.790469][T10902] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  757.806065][T10902] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  757.921232][T10910] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  758.025327][T10914] loop5: detected capacity change from 0 to 256
[  758.039513][T10914] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  758.155371][T10916] Falling back ldisc for ttyS3.
[  758.246456][T10921] loop3: detected capacity change from 0 to 256
[  758.263258][T10921] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  758.454807][T10925] Falling back ldisc for ttyS3.
[  758.822617][T10933] syz.3.13563[10933] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  758.822678][T10933] syz.3.13563[10933] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  758.854789][T10933] syz.3.13563[10933] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  758.891923][T10933] netlink: 'syz.3.13563': attribute type 1 has an invalid length.
[  759.052248][T10937] loop5: detected capacity change from 0 to 1024
[  759.059017][T10937] EXT4-fs: Ignoring removed nobh option
[  759.064793][T10937] EXT4-fs: Ignoring removed bh option
[  759.125301][T10937] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  759.209492][ T4786] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  759.241123][T10945] gretap0: entered promiscuous mode
[  759.349081][T10948] 9pnet: Could not find request transport: f
[  759.367159][T10948] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  759.376616][T10951] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  759.383265][T10951] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  759.390777][T10951] vhci_hcd vhci_hcd.0: Device attached
[  759.414683][T10952] vhci_hcd: connection closed
[  759.424719][T29639] vhci_hcd: stop threads
[  759.433725][T29639] vhci_hcd: release socket
[  759.438216][T29639] vhci_hcd: disconnect device
[  759.744747][T10962] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  760.028390][T10976] xt_hashlimit: max too large, truncated to 1048576
[  760.035979][T10976] Cannot find set identified by id 0 to match
[  760.053131][T10977] siw: device registration error -23
[  760.058548][T10976] siw: device registration error -23
[  760.090911][T10979] pimreg: entered allmulticast mode
[  760.113657][T10979] pimreg: left allmulticast mode
[  760.132689][T10982] __nla_validate_parse: 37 callbacks suppressed
[  760.132705][T10982] netlink: 16 bytes leftover after parsing attributes in process `syz.6.13578'.
[  760.153107][T10982] gretap0: entered promiscuous mode
[  760.434854][T10987] Falling back ldisc for ttyS3.
[  760.571850][T10994] loop6: detected capacity change from 0 to 2048
[  760.598374][T10994] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  760.610460][T10994] ext4 filesystem being mounted at /567/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  760.676577][T10998] pimreg: entered allmulticast mode
[  760.687113][T10998] pimreg: left allmulticast mode
[  760.828067][T10999] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.13582: bg 0: block 345: padding at end of block bitmap is not set
[  760.853186][T10999] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[  760.865951][T10999] EXT4-fs (loop6): This should not happen!! Data will be lost
[  760.865951][T10999] 
[  760.921692][T29639] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 117
[  760.934411][T29639] EXT4-fs (loop6): This should not happen!! Data will be lost
[  760.934411][T29639] 
[  760.990754][T29639] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 2081 with max blocks 2024 with error 28
[  761.003565][T29639] EXT4-fs (loop6): This should not happen!! Data will be lost
[  761.003565][T29639] 
[  761.013264][T29639] EXT4-fs (loop6): Total free blocks count 0
[  761.019272][T29639] EXT4-fs (loop6): Free/Dirty block details
[  761.025349][T29639] EXT4-fs (loop6): free_blocks=0
[  761.097127][   T29] kauditd_printk_skb: 362 callbacks suppressed
[  761.097144][   T29] audit: type=1326 audit(1871108478.146:87612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11010 comm="syz.1.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44075e5d29 code=0x7ffc0000
[  761.127101][   T29] audit: type=1326 audit(1871108478.146:87613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11010 comm="syz.1.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44075e5d29 code=0x7ffc0000
[  761.150774][   T29] audit: type=1326 audit(1871108478.156:87614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11010 comm="syz.1.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44075e5d29 code=0x7ffc0000
[  761.174502][   T29] audit: type=1326 audit(1871108478.156:87615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11010 comm="syz.1.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44075e5d29 code=0x7ffc0000
[  761.198418][   T29] audit: type=1326 audit(1871108478.156:87616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11010 comm="syz.1.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44075e5d29 code=0x7ffc0000
[  761.233885][T11013] netlink: 16 bytes leftover after parsing attributes in process `syz.3.13590'.
[  761.234967][   T29] audit: type=1326 audit(1871108478.156:87617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11010 comm="syz.1.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44075e5d29 code=0x7ffc0000
[  761.266769][   T29] audit: type=1326 audit(1871108478.156:87618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11010 comm="syz.1.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44075e5d29 code=0x7ffc0000
[  761.291028][   T29] audit: type=1326 audit(1871108478.156:87619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11010 comm="syz.1.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44075e5d29 code=0x7ffc0000
[  761.314836][   T29] audit: type=1326 audit(1871108478.236:87620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11010 comm="syz.1.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44075e5d29 code=0x7ffc0000
[  761.338539][   T29] audit: type=1326 audit(1871108478.236:87621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11010 comm="syz.1.13587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44075e5d29 code=0x7ffc0000
[  761.375659][T11013] gretap0: entered promiscuous mode
[  761.416405][T11019] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(3)
[  761.417849][T11022] loop3: detected capacity change from 0 to 1024
[  761.422941][T11019] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  761.429848][T11022] EXT4-fs: Ignoring removed nobh option
[  761.436855][T11019] vhci_hcd vhci_hcd.0: Device attached
[  761.442330][T11022] EXT4-fs: Ignoring removed bh option
[  761.456975][T11020] vhci_hcd: connection closed
[  761.457298][T10635] vhci_hcd: stop threads
[  761.466368][T10635] vhci_hcd: release socket
[  761.470776][T10635] vhci_hcd: disconnect device
[  761.491391][T11025] serio: Serial port ptm0
[  761.507909][T11022] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  761.672889][T11035] serio: Serial port ptm0
[  761.739627][T11042] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  761.807654][T11046] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13599'.
[  761.817698][T11046] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  761.825273][T11046] batman_adv: batadv0: Removing interface: batadv_slave_0
[  761.832935][T11046] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  761.840504][T11046] batman_adv: batadv0: Removing interface: batadv_slave_1
[  761.881693][T11052] loop5: detected capacity change from 0 to 1024
[  761.888638][T11052] EXT4-fs: Ignoring removed nobh option
[  761.894426][T11052] EXT4-fs: Ignoring removed bh option
[  761.906317][T11052] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  761.952825][T11056] loop2: detected capacity change from 0 to 256
[  761.960412][T11056] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  761.960598][ T4786] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  761.985803][T11056] netlink: 16 bytes leftover after parsing attributes in process `syz.2.13601'.
[  762.284619][T11072] loop5: detected capacity change from 0 to 1024
[  762.309871][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  762.334383][T11072] EXT4-fs: Ignoring removed nobh option
[  762.340075][T11072] EXT4-fs: Ignoring removed bh option
[  762.459147][T11072] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  762.552700][ T4786] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  762.601436][T11082] loop5: detected capacity change from 0 to 256
[  762.608266][T11082] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  762.621454][T11080] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  762.637266][T11082] netlink: 16 bytes leftover after parsing attributes in process `syz.5.13608'.
[  762.651049][T11084] loop1: detected capacity change from 0 to 512
[  762.683556][T11086] loop5: detected capacity change from 0 to 2048
[  762.691676][T11084] ext4: Unknown parameter 'appraise_type'
[  762.701445][T11084] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  762.709993][T11084] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  762.712077][T11086] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  762.730339][T11086] ext4 filesystem being mounted at /379/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  762.747230][T11091] xt_hashlimit: max too large, truncated to 1048576
[  762.775375][T11091] Cannot find set identified by id 0 to match
[  762.840595][T11091] siw: device registration error -23
[  762.977320][T11094] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.13611: bg 0: block 345: padding at end of block bitmap is not set
[  763.001813][T11094] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[  763.014308][T11094] EXT4-fs (loop5): This should not happen!! Data will be lost
[  763.014308][T11094] 
[  763.075037][T10637] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 117
[  763.087814][T10637] EXT4-fs (loop5): This should not happen!! Data will be lost
[  763.087814][T10637] 
[  763.140780][T10637] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 2081 with max blocks 2024 with error 28
[  763.153597][T10637] EXT4-fs (loop5): This should not happen!! Data will be lost
[  763.153597][T10637] 
[  763.163263][T10637] EXT4-fs (loop5): Total free blocks count 0
[  763.169298][T10637] EXT4-fs (loop5): Free/Dirty block details
[  763.175221][T10637] EXT4-fs (loop5): free_blocks=0
[  763.293189][T11108] syz.5.13618[11108] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  763.293300][T11108] syz.5.13618[11108] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  763.305147][T11108] syz.5.13618[11108] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  763.324127][T11108] netlink: 'syz.5.13618': attribute type 1 has an invalid length.
[  763.550807][T11125] loop3: detected capacity change from 0 to 2048
[  763.576277][T11125] ext4 filesystem being mounted at /342/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  763.672950][T11130] pimreg: entered allmulticast mode
[  763.716694][T11130] pimreg: left allmulticast mode
[  763.785982][T11129] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.13625: bg 0: block 345: padding at end of block bitmap is not set
[  763.813323][T11133] loop6: detected capacity change from 0 to 1024
[  763.832163][T11133] EXT4-fs: Ignoring removed nobh option
[  763.837792][T11133] EXT4-fs: Ignoring removed bh option
[  763.848043][T11129] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[  763.860733][T11129] EXT4-fs (loop3): This should not happen!! Data will be lost
[  763.860733][T11129] 
[  763.898393][T10635] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 117
[  763.911277][T10635] EXT4-fs (loop3): This should not happen!! Data will be lost
[  763.911277][T10635] 
[  764.069551][T10635] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 2081 with max blocks 2024 with error 28
[  764.082479][T10635] EXT4-fs (loop3): This should not happen!! Data will be lost
[  764.082479][T10635] 
[  764.092650][T10635] EXT4-fs (loop3): Total free blocks count 0
[  764.098731][T10635] EXT4-fs (loop3): Free/Dirty block details
[  764.104672][T10635] EXT4-fs (loop3): free_blocks=0
[  764.109627][T10635] EXT4-fs (loop3): dirty_blocks=2032
[  764.234956][T11143] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13627'.
[  764.243962][T11143] netlink: 16 bytes leftover after parsing attributes in process `syz.3.13627'.
[  764.273463][T11145] loop5: detected capacity change from 0 to 2048
[  764.308338][T11147] loop6: detected capacity change from 0 to 512
[  764.317200][T11145] ext4 filesystem being mounted at /384/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  764.328955][T11147] ext4: Unknown parameter 'appraise_type'
[  764.336479][T11151] syz.3.13633[11151] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  764.336570][T11151] syz.3.13633[11151] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  764.367584][T11151] syz.3.13633[11151] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  764.388625][T11151] netlink: 'syz.3.13633': attribute type 1 has an invalid length.
[  764.467244][T11156] loop2: detected capacity change from 0 to 2048
[  764.496840][T11154] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.13631: bg 0: block 345: padding at end of block bitmap is not set
[  764.501291][T11156] ext4 filesystem being mounted at /302/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  764.534566][T11160] serio: Serial port ptm0
[  764.535686][T11147] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  764.548237][T11154] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[  764.560797][T11154] EXT4-fs (loop5): This should not happen!! Data will be lost
[  764.560797][T11154] 
[  764.584654][T11147] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  764.677973][T11168] netlink: 60 bytes leftover after parsing attributes in process `syz.3.13638'.
[  764.683346][T10642] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 117
[  764.702916][T10642] EXT4-fs (loop5): This should not happen!! Data will be lost
[  764.702916][T10642] 
[  764.704748][T11165] netlink: 60 bytes leftover after parsing attributes in process `syz.3.13638'.
[  764.737266][T11168] loop3: detected capacity change from 0 to 256
[  764.754003][T10642] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 2081 with max blocks 2024 with error 28
[  764.769193][T10642] EXT4-fs (loop5): This should not happen!! Data will be lost
[  764.769193][T10642] 
[  764.780525][T10642] EXT4-fs (loop5): Total free blocks count 0
[  764.787274][T10642] EXT4-fs (loop5): Free/Dirty block details
[  764.793180][T10642] EXT4-fs (loop5): free_blocks=0
[  764.798265][T10642] EXT4-fs (loop5): dirty_blocks=2032
[  764.884374][T11169] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.13635: bg 0: block 345: padding at end of block bitmap is not set
[  764.901396][T11169] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[  764.914003][T11169] EXT4-fs (loop2): This should not happen!! Data will be lost
[  764.914003][T11169] 
[  764.924753][T11167] Falling back ldisc for ttyS3.
[  764.939074][T11177] xt_hashlimit: max too large, truncated to 1048576
[  764.947655][T11177] Cannot find set identified by id 0 to match
[  764.971082][T11179] loop1: detected capacity change from 0 to 256
[  764.972462][T10635] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 117
[  764.977795][T11179] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  764.989976][T10635] EXT4-fs (loop2): This should not happen!! Data will be lost
[  764.989976][T10635] 
[  765.013756][T10637] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2081 with max blocks 2024 with error 28
[  765.026575][T10637] EXT4-fs (loop2): This should not happen!! Data will be lost
[  765.026575][T10637] 
[  765.036485][T10637] EXT4-fs (loop2): Total free blocks count 0
[  765.042462][T10637] EXT4-fs (loop2): Free/Dirty block details
[  765.048400][T10637] EXT4-fs (loop2): free_blocks=0
[  765.053405][T10637] EXT4-fs (loop2): dirty_blocks=2032
[  765.123334][T11185] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[  765.158382][T11189] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13644'.
[  765.167458][T11189] netlink: 16 bytes leftover after parsing attributes in process `syz.2.13644'.
[  765.180424][T11189] gretap0: entered promiscuous mode
[  765.194706][T11190] xt_hashlimit: max too large, truncated to 1048576
[  765.204211][T11190] Cannot find set identified by id 0 to match
[  765.230209][T11190] siw: device registration error -23
[  765.482615][T11199] loop3: detected capacity change from 0 to 512
[  765.489226][T11199] ext4: Unknown parameter 'appraise_type'
[  765.497770][T11199] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  765.518118][T11199] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  765.657992][T11207] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  765.738134][T11209] syz.5.13652: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  765.752783][T11209] CPU: 1 UID: 0 PID: 11209 Comm: syz.5.13652 Not tainted 6.13.0-rc7-syzkaller-00039-gc3812b15000c #0
[  765.763628][T11209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  765.773688][T11209] Call Trace:
[  765.776958][T11209]  <TASK>
[  765.779886][T11209]  dump_stack_lvl+0xf2/0x150
[  765.784493][T11209]  dump_stack+0x15/0x1a
[  765.788691][T11209]  warn_alloc+0x145/0x1b0
[  765.793107][T11209]  ? __vmalloc_node_range_noprof+0x88/0xe80
[  765.799022][T11209]  __vmalloc_node_range_noprof+0xaa/0xe80
[  765.804886][T11209]  ? xskq_create+0x36/0xd0
[  765.809312][T11209]  ? perf_trace_kmalloc+0xe2/0x110
[  765.814499][T11209]  ? xskq_create+0x36/0xd0
[  765.818980][T11209]  vmalloc_user_noprof+0x59/0x70
[  765.823942][T11209]  ? xskq_create+0x79/0xd0
[  765.828474][T11209]  xskq_create+0x79/0xd0
[  765.832766][T11209]  xsk_init_queue+0x82/0xd0
[  765.837276][T11209]  xsk_setsockopt+0x388/0x520
[  765.841950][T11209]  ? __pfx_xsk_setsockopt+0x10/0x10
[  765.847167][T11209]  __sys_setsockopt+0x187/0x200
[  765.852187][T11209]  __x64_sys_setsockopt+0x66/0x80
[  765.857286][T11209]  x64_sys_call+0x282e/0x2dc0
[  765.861955][T11209]  do_syscall_64+0xc9/0x1c0
[  765.866540][T11209]  ? clear_bhb_loop+0x55/0xb0
[  765.871240][T11209]  ? clear_bhb_loop+0x55/0xb0
[  765.875976][T11209]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  765.881976][T11209] RIP: 0033:0x7fd1d40d5d29
[  765.886397][T11209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  765.906049][T11209] RSP: 002b:00007fd1d2747038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  765.914552][T11209] RAX: ffffffffffffffda RBX: 00007fd1d42c5fa0 RCX: 00007fd1d40d5d29
[  765.922689][T11209] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000006
[  765.931472][T11209] RBP: 00007fd1d4151b08 R08: 0000000000000004 R09: 0000000000000000
[  765.939445][T11209] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[  765.947444][T11209] R13: 0000000000000000 R14: 00007fd1d42c5fa0 R15: 00007fff6bfa7758
[  765.955501][T11209]  </TASK>
[  765.958671][T11209] Mem-Info:
[  765.961863][T11209] active_anon:8425 inactive_anon:48 isolated_anon:0
[  765.961863][T11209]  active_file:21960 inactive_file:2779 isolated_file:0
[  765.961863][T11209]  unevictable:0 dirty:517 writeback:0
[  765.961863][T11209]  slab_reclaimable:3172 slab_unreclaimable:19590
[  765.961863][T11209]  mapped:35049 shmem:372 pagetables:837
[  765.961863][T11209]  sec_pagetables:0 bounce:0
[  765.961863][T11209]  kernel_misc_reclaimable:0
[  765.961863][T11209]  free:1859171 free_pcp:12615 free_cma:0
[  766.006865][T11209] Node 0 active_anon:34396kB inactive_anon:192kB active_file:87840kB inactive_file:11116kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:140196kB dirty:2068kB writeback:0kB shmem:1488kB writeback_tmp:0kB kernel_stack:3808kB pagetables:3348kB sec_pagetables:0kB all_unreclaimable? no
[  766.035079][T11209] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  766.061909][T11209] lowmem_reserve[]: 0 2866 7844 0
[  766.067072][T11209] Node 0 DMA32 free:2950276kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953908kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:3532kB free_cma:0kB
[  766.095768][T11209] lowmem_reserve[]: 0 0 4978 0
[  766.100596][T11209] Node 0 Normal free:4475080kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:35672kB inactive_anon:192kB active_file:87840kB inactive_file:11116kB unevictable:0kB writepending:2068kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:44896kB local_pcp:13640kB free_cma:0kB
[  766.131178][T11209] lowmem_reserve[]: 0 0 0 0
[  766.135788][T11209] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  766.148622][T11209] Node 0 DMA32: 3*4kB (M) 1*8kB (M) 3*16kB (M) 4*32kB (M) 3*64kB (M) 2*128kB (M) 2*256kB (M) 2*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950276kB
[  766.164868][T11209] Node 0 Normal: 238*4kB (M) 248*8kB (UME) 177*16kB (M) 122*32kB (UM) 90*64kB (UME) 191*128kB (UME) 125*256kB (UME) 60*512kB (UME) 100*1024kB (UME) 69*2048kB (UME) 1008*4096kB (UME) = 4475080kB
[  766.184241][T11209] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  766.193554][T11209] 25174 total pagecache pages
[  766.198267][T11209] 70 pages in swap cache
[  766.202510][T11209] Free swap  = 124280kB
[  766.206684][T11209] Total swap = 124996kB
[  766.210838][T11209] 2097051 pages RAM
[  766.214658][T11209] 0 pages HighMem/MovableOnly
[  766.219324][T11209] 80182 pages reserved
[  766.235521][   T29] kauditd_printk_skb: 329 callbacks suppressed
[  766.235535][   T29] audit: type=1326 audit(1871108483.296:87951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11215 comm="syz.1.13653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44075e5d29 code=0x7ffc0000
[  766.310228][   T29] audit: type=1326 audit(1871108483.326:87952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11215 comm="syz.1.13653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44075e5d29 code=0x7ffc0000
[  766.334018][   T29] audit: type=1326 audit(1871108483.326:87953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11215 comm="syz.1.13653" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7f44075e5d29 code=0x7ffc0000
[  766.491742][T11223] loop5: detected capacity change from 0 to 256
[  766.507161][T11223] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  766.594326][T11228] syz.5.13657[11228] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  766.594382][T11228] syz.5.13657[11228] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  766.606256][T11228] syz.5.13657[11228] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  766.637860][T11228] netlink: 'syz.5.13657': attribute type 1 has an invalid length.
[  766.770832][T11240] netlink: 48 bytes leftover after parsing attributes in process `syz.5.13661'.
[  766.780078][T11240] netlink: 48 bytes leftover after parsing attributes in process `syz.5.13661'.
[  766.792550][T11239] loop2: detected capacity change from 0 to 1024
[  766.799521][T11239] EXT4-fs: Ignoring removed nobh option
[  766.805301][T11239] EXT4-fs: Ignoring removed bh option
[  766.847066][   T29] audit: type=1326 audit(1871108483.896:87954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11235 comm="syz.2.13662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f595d305d29 code=0x7ffc0000
[  766.870854][   T29] audit: type=1326 audit(1871108483.896:87955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11235 comm="syz.2.13662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f595d305d29 code=0x7ffc0000
[  766.894692][   T29] audit: type=1326 audit(1871108483.896:87956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11235 comm="syz.2.13662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f595d305d29 code=0x7ffc0000
[  766.918464][   T29] audit: type=1326 audit(1871108483.896:87957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11235 comm="syz.2.13662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f595d305d29 code=0x7ffc0000
[  766.942111][   T29] audit: type=1326 audit(1871108483.896:87958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11235 comm="syz.2.13662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f595d305d29 code=0x7ffc0000
[  766.965895][   T29] audit: type=1326 audit(1871108483.896:87959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11235 comm="syz.2.13662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f595d305d29 code=0x7ffc0000
[  766.989472][   T29] audit: type=1326 audit(1871108483.896:87960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11235 comm="syz.2.13662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f595d305d29 code=0x7ffc0000
[  767.344750][T11254] Falling back ldisc for ttyS3.
[  767.366851][T11257] loop5: detected capacity change from 0 to 256
[  767.373384][T11257] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  767.403514][T11259] netlink: 36 bytes leftover after parsing attributes in process `syz.5.13668'.
[  767.412702][T11259] netlink: 36 bytes leftover after parsing attributes in process `syz.5.13668'.
[  767.421887][T11259] netlink: 36 bytes leftover after parsing attributes in process `syz.5.13668'.
[  767.440206][T11259] netlink: 36 bytes leftover after parsing attributes in process `syz.5.13668'.
[  767.449617][T11259] netlink: 36 bytes leftover after parsing attributes in process `syz.5.13668'.
[  767.461301][T11259] netlink: 36 bytes leftover after parsing attributes in process `syz.5.13668'.
[  767.545150][T11275] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(3)
[  767.551684][T11275] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  767.559223][T11275] vhci_hcd vhci_hcd.0: Device attached
[  767.564926][T11273] serio: Serial port ptm0
[  767.570435][T11276] vhci_hcd: connection closed
[  767.572905][T10639] vhci_hcd: stop threads
[  767.581934][T10639] vhci_hcd: release socket
[  767.586420][T10639] vhci_hcd: disconnect device
[  767.719699][T11289] xt_hashlimit: max too large, truncated to 1048576
[  767.751463][T11289] siw: device registration error -23
[  767.759675][T11291] loop1: detected capacity change from 0 to 256
[  767.767274][T11291] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  767.867729][T11301] serio: Serial port ptm0
[  768.097902][T11317] serio: Serial port ptm0
[  768.179518][T11323] loop6: detected capacity change from 0 to 256
[  768.547477][T11337] loop5: detected capacity change from 0 to 2048
[  768.577353][T11337] ext4 filesystem being mounted at /402/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  768.731634][T11341] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.13694: bg 0: block 345: padding at end of block bitmap is not set
[  768.761366][T11341] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[  768.773916][T11341] EXT4-fs (loop5): This should not happen!! Data will be lost
[  768.773916][T11341] 
[  768.811270][T10639] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 117
[  768.824049][T10639] EXT4-fs (loop5): This should not happen!! Data will be lost
[  768.824049][T10639] 
[  768.847448][T11345] syz.2.13696[11345] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  768.847545][T11345] syz.2.13696[11345] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  768.858465][T10639] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 2081 with max blocks 2024 with error 28
[  768.860702][T11345] syz.2.13696[11345] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  768.870510][T10639] EXT4-fs (loop5): This should not happen!! Data will be lost
[  768.870510][T10639] 
[  768.904355][T10639] EXT4-fs (loop5): Total free blocks count 0
[  768.910389][T10639] EXT4-fs (loop5): Free/Dirty block details
[  768.916487][T10639] EXT4-fs (loop5): free_blocks=0
[  768.921561][T10639] EXT4-fs (loop5): dirty_blocks=2032
[  768.930622][T11345] netlink: 'syz.2.13696': attribute type 1 has an invalid length.
[  769.159019][T11366] loop2: detected capacity change from 0 to 256
[  769.166543][T11366] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  769.215593][T11369] serio: Serial port ptm0
[  769.225576][T11371] pimreg: entered allmulticast mode
[  769.231403][T11371] pimreg: left allmulticast mode
[  769.427825][T11390] xt_hashlimit: max too large, truncated to 1048576
[  769.442942][T11390] Cannot find set identified by id 0 to match
[  769.519118][T11398] loop6: detected capacity change from 0 to 2048
[  769.529718][T11400] loop3: detected capacity change from 0 to 256
[  769.543118][T11400] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  769.557581][T11398] ext4 filesystem being mounted at /590/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  770.202919][T11415] loop5: detected capacity change from 0 to 1024
[  770.209840][T11415] EXT4-fs: Ignoring removed nobh option
[  770.215509][T11415] EXT4-fs: Ignoring removed bh option
[  770.266620][T11421] serio: Serial port ptm0
[  770.311693][T11431] __nla_validate_parse: 23 callbacks suppressed
[  770.311706][T11431] netlink: 48 bytes leftover after parsing attributes in process `syz.1.13727'.
[  770.327035][T11431] netlink: 48 bytes leftover after parsing attributes in process `syz.1.13727'.
[  770.336933][T11431] netlink: 48 bytes leftover after parsing attributes in process `syz.1.13727'.
[  770.350062][T11434] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  770.372912][T11436] netlink: 36 bytes leftover after parsing attributes in process `syz.6.13728'.
[  770.382054][T11436] netlink: 36 bytes leftover after parsing attributes in process `syz.6.13728'.
[  770.391343][T11439] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  770.400583][T11429] Falling back ldisc for ttyS3.
[  770.402969][T11436] netlink: 36 bytes leftover after parsing attributes in process `syz.6.13728'.
[  770.441550][T11436] netlink: 36 bytes leftover after parsing attributes in process `syz.6.13728'.
[  770.450655][T11436] netlink: 36 bytes leftover after parsing attributes in process `syz.6.13728'.
[  770.496941][T11453] syz.2.13735[11453] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  770.496987][T11453] syz.2.13735[11453] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  770.499652][T11436] netlink: 36 bytes leftover after parsing attributes in process `syz.6.13728'.
[  770.508724][T11453] syz.2.13735[11453] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  770.521303][T11448] loop5: detected capacity change from 0 to 1024
[  770.556891][T11453] netlink: 'syz.2.13735': attribute type 1 has an invalid length.
[  770.562824][T11448] EXT4-fs: Ignoring removed nobh option
[  770.570375][T11448] EXT4-fs: Ignoring removed bh option
[  770.599046][T11436] netlink: 36 bytes leftover after parsing attributes in process `syz.6.13728'.
[  770.778078][T11473] serio: Serial port ptm0
[  771.295270][T11492] serio: Serial port ptm0
[  771.304725][   T29] kauditd_printk_skb: 344 callbacks suppressed
[  771.304791][   T29] audit: type=1326 audit(1871108488.346:88305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11491 comm="syz.6.13749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d47fa5d29 code=0x7ffc0000
[  771.334640][   T29] audit: type=1326 audit(1871108488.346:88306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11491 comm="syz.6.13749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d47fa5d29 code=0x7ffc0000
[  771.358399][   T29] audit: type=1326 audit(1871108488.346:88307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11491 comm="syz.6.13749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3d47fa5d29 code=0x7ffc0000
[  771.382129][   T29] audit: type=1326 audit(1871108488.346:88308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11491 comm="syz.6.13749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d47fa5d29 code=0x7ffc0000
[  771.405898][   T29] audit: type=1326 audit(1871108488.346:88309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11491 comm="syz.6.13749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d47fa5d29 code=0x7ffc0000
[  771.429748][   T29] audit: type=1326 audit(1871108488.346:88310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11491 comm="syz.6.13749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7f3d47fa5d29 code=0x7ffc0000
[  771.453473][   T29] audit: type=1326 audit(1871108488.346:88311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11491 comm="syz.6.13749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d47fa5d29 code=0x7ffc0000
[  771.477419][   T29] audit: type=1326 audit(1871108488.346:88312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11491 comm="syz.6.13749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d47fa5d29 code=0x7ffc0000
[  771.501188][   T29] audit: type=1326 audit(1871108488.346:88313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11491 comm="syz.6.13749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3d47fa5d29 code=0x7ffc0000
[  771.525221][   T29] audit: type=1326 audit(1871108488.346:88314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11491 comm="syz.6.13749" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d47fa5d29 code=0x7ffc0000
[  771.571523][T11498] syz.5.13750[11498] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  771.571725][T11498] syz.5.13750[11498] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  771.583640][T11498] syz.5.13750[11498] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  771.636467][T11498] netlink: 'syz.5.13750': attribute type 1 has an invalid length.
[  771.719757][T11510] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  771.777445][T11517] loop6: detected capacity change from 0 to 1024
[  771.784232][T11517] EXT4-fs: Ignoring removed nobh option
[  771.789927][T11517] EXT4-fs: Ignoring removed bh option
[  771.918049][T11538] syz.2.13768[11538] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  771.918097][T11538] syz.2.13768[11538] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  771.931924][T11538] syz.2.13768[11538] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  771.948218][T11538] netlink: 'syz.2.13768': attribute type 1 has an invalid length.
[  771.987340][T11543] FAULT_INJECTION: forcing a failure.
[  771.987340][T11543] name failslab, interval 1, probability 0, space 0, times 0
[  771.995115][T11545] loop2: detected capacity change from 0 to 256
[  771.999987][T11543] CPU: 0 UID: 0 PID: 11543 Comm: syz.3.13769 Not tainted 6.13.0-rc7-syzkaller-00039-gc3812b15000c #0
[  772.007138][T11545] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  772.017202][T11543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  772.017218][T11543] Call Trace:
[  772.017224][T11543]  <TASK>
[  772.017247][T11543]  dump_stack_lvl+0xf2/0x150
[  772.017280][T11543]  dump_stack+0x15/0x1a
[  772.017306][T11543]  should_fail_ex+0x223/0x230
[  772.058740][T11543]  should_failslab+0x8f/0xb0
[  772.063347][T11543]  kmem_cache_alloc_noprof+0x52/0x320
[  772.068712][T11543]  ? getname_kernel+0x3d/0x1e0
[  772.073470][T11543]  getname_kernel+0x3d/0x1e0
[  772.078089][T11543]  kern_path+0x21/0x120
[  772.082243][T11543]  lookup_bdev+0x62/0x140
[  772.086567][T11543]  __se_sys_quotactl+0x1b3/0x660
[  772.091507][T11543]  __x64_sys_quotactl+0x55/0x70
[  772.096500][T11543]  x64_sys_call+0x826/0x2dc0
[  772.101099][T11543]  do_syscall_64+0xc9/0x1c0
[  772.105606][T11543]  ? clear_bhb_loop+0x55/0xb0
[  772.110287][T11543]  ? clear_bhb_loop+0x55/0xb0
[  772.114989][T11543]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  772.120955][T11543] RIP: 0033:0x7f56b7695d29
[  772.125360][T11543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  772.144962][T11543] RSP: 002b:00007f56b5d07038 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3
[  772.153394][T11543] RAX: ffffffffffffffda RBX: 00007f56b7885fa0 RCX: 00007f56b7695d29
[  772.161370][T11543] RDX: 0000000000000000 RSI: 00000000200003c0 RDI: ffffffff80000802
[  772.169422][T11543] RBP: 00007f56b5d07090 R08: 0000000000000000 R09: 0000000000000000
[  772.177382][T11543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  772.185434][T11543] R13: 0000000000000000 R14: 00007f56b7885fa0 R15: 00007ffef4181b68
[  772.193401][T11543]  </TASK>
[  772.229379][T11549] serio: Serial port ptm0
[  772.693362][ T2764] EXT4-fs unmount: 19 callbacks suppressed
[  772.693375][ T2764] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  772.714339][T11575] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  772.750262][T11577] loop6: detected capacity change from 0 to 1024
[  772.758520][T11577] EXT4-fs: Ignoring removed nobh option
[  772.764169][T11577] EXT4-fs: Ignoring removed bh option
[  772.805178][T11584] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  772.812652][T11584] batman_adv: batadv0: Removing interface: batadv_slave_0
[  772.821733][T11577] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  772.846138][T11584] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  772.853807][T11584] batman_adv: batadv0: Removing interface: batadv_slave_1
[  772.902928][ T2764] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  773.035329][T11596] loop1: detected capacity change from 0 to 2048
[  773.081339][T11599] loop5: detected capacity change from 0 to 256
[  773.088049][T11599] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  773.137986][T11596] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  773.166488][T11596] ext4 filesystem being mounted at /255/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  773.215404][T11609] serio: Serial port ptm0
[  773.220429][ T7602] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  773.234774][T10635] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  773.288718][T11597] lo speed is unknown, defaulting to 1000
[  773.305468][T10635] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  773.374876][T11617] Falling back ldisc for ttyS3.
[  773.404197][T11634] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  773.411760][T11634] batman_adv: batadv0: Removing interface: batadv_slave_0
[  773.419556][T11634] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  773.427190][T11634] batman_adv: batadv0: Removing interface: batadv_slave_1
[  773.441326][T10635] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  773.455292][T11597] chnl_net:caif_netlink_parms(): no params data found
[  773.474899][T11630] Falling back ldisc for ttyS3.
[  773.499673][T11643] loop3: detected capacity change from 0 to 256
[  773.506512][T11643] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  773.524784][T11597] bridge0: port 1(bridge_slave_0) entered blocking state
[  773.531921][T11597] bridge0: port 1(bridge_slave_0) entered disabled state
[  773.539160][T11597] bridge_slave_0: entered allmulticast mode
[  773.545736][T11597] bridge_slave_0: entered promiscuous mode
[  773.553480][T10635] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  773.574865][T11597] bridge0: port 2(bridge_slave_1) entered blocking state
[  773.581937][T11597] bridge0: port 2(bridge_slave_1) entered disabled state
[  773.589248][T11597] bridge_slave_1: entered allmulticast mode
[  773.596322][T11597] bridge_slave_1: entered promiscuous mode
[  773.608205][T11650] loop5: detected capacity change from 0 to 2048
[  773.624222][T11597] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  773.636881][T11597] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  773.647134][T11650] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  773.659485][T11650] ext4 filesystem being mounted at /428/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  773.688905][T11597] team0: Port device team_slave_0 added
[  773.702792][ T4786] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  773.707060][T11597] team0: Port device team_slave_1 added
[  773.722787][T10635] bridge_slave_1: left allmulticast mode
[  773.728571][T10635] bridge_slave_1: left promiscuous mode
[  773.734295][T10635] bridge0: port 2(bridge_slave_1) entered disabled state
[  773.742126][T10635] bridge_slave_0: left allmulticast mode
[  773.748042][T10635] bridge_slave_0: left promiscuous mode
[  773.753775][T10635] bridge0: port 1(bridge_slave_0) entered disabled state
[  773.795143][T10635] gretap0 (unregistering): left promiscuous mode
[  773.896405][T10635] $Hÿ (unregistering): (slave bond_slave_0): Releasing backup interface
[  773.905604][T10635] bond_slave_0: left promiscuous mode
[  773.912161][T10635] $Hÿ (unregistering): (slave bond_slave_1): Releasing backup interface
[  773.921030][T10635] bond_slave_1: left promiscuous mode
[  773.927673][T10635] $Hÿ (unregistering): Released all slaves
[  773.935862][T10635] bond1 (unregistering): Released all slaves
[  773.943810][T10635] bond2 (unregistering): Released all slaves
[  773.952231][T10635] bond3 (unregistering): Released all slaves
[  773.960628][T10635] bond0 (unregistering): Released all slaves
[  773.976620][T11597] batman_adv: batadv0: Adding interface: batadv_slave_0
[  773.983595][T11597] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  774.009585][T11597] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  774.020857][T11597] batman_adv: batadv0: Adding interface: batadv_slave_1
[  774.027863][T11597] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  774.053805][T11597] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  774.072950][T10635] hsr_slave_0: left promiscuous mode
[  774.073053][T11668] serio: Serial port ptm0
[  774.083185][T10635] hsr_slave_1: left promiscuous mode
[  774.089131][T10635] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  774.096644][T10635] batman_adv: batadv0: Removing interface: batadv_slave_0
[  774.104506][T10635] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  774.112057][T10635] batman_adv: batadv0: Removing interface: batadv_slave_1
[  774.122943][T10635] veth1_macvtap: left promiscuous mode
[  774.128570][T10635] veth0_macvtap: left promiscuous mode
[  774.134203][T10635] veth1_vlan: left promiscuous mode
[  774.139506][T10635] veth0_vlan: left promiscuous mode
[  774.158185][T11673] loop5: detected capacity change from 0 to 512
[  774.166034][T11673] ext4: Unknown parameter 'appraise_type'
[  774.207323][T11675] loop1: detected capacity change from 0 to 256
[  774.214081][T11675] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  774.273882][T10635] team0 (unregistering): Port device team_slave_1 removed
[  774.283852][T10635] team0 (unregistering): Port device team_slave_0 removed
[  774.324453][T11679] bridge0: entered promiscuous mode
[  774.332487][T11679] bridge0: left promiscuous mode
[  774.353898][T11597] hsr_slave_0: entered promiscuous mode
[  774.360119][T11597] hsr_slave_1: entered promiscuous mode
[  774.366036][T11597] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  774.373604][T11597] Cannot create hsr debugfs directory
[  774.394765][T11676] Falling back ldisc for ttyS3.
[  774.604826][T11696] Falling back ldisc for ttyS3.
[  774.633070][T11705] loop1: detected capacity change from 0 to 1024
[  774.640933][T11705] EXT4-fs: Ignoring removed nobh option
[  774.646657][T11705] EXT4-fs: Ignoring removed bh option
[  774.668758][T11705] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  774.707724][ T7602] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  774.815497][T11700] Falling back ldisc for ttyS3.
[  774.842738][T11597] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  774.860860][T11716] xt_hashlimit: max too large, truncated to 1048576
[  774.867723][T11597] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  774.877793][T11716] Cannot find set identified by id 0 to match
[  774.886545][T11597] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  774.901212][T11597] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  774.910936][T11716] siw: device registration error -23
[  774.950250][T11597] 8021q: adding VLAN 0 to HW filter on device bond0
[  774.963763][T11597] 8021q: adding VLAN 0 to HW filter on device team0
[  774.982957][T29639] bridge0: port 1(bridge_slave_0) entered blocking state
[  774.990047][T29639] bridge0: port 1(bridge_slave_0) entered forwarding state
[  775.008719][T11597] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  775.019183][T11597] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  775.043556][T29639] bridge0: port 2(bridge_slave_1) entered blocking state
[  775.050667][T29639] bridge0: port 2(bridge_slave_1) entered forwarding state
[  775.113197][T11723] xt_hashlimit: max too large, truncated to 1048576
[  775.125209][T11597] 8021q: adding VLAN 0 to HW filter on device batadv0
[  775.132837][T11723] Cannot find set identified by id 0 to match
[  775.148156][T11723] siw: device registration error -23
[  775.154395][T11723] syzkaller0: entered allmulticast mode
[  775.167602][T11727] xt_hashlimit: max too large, truncated to 1048576
[  775.175075][T11727] Cannot find set identified by id 0 to match
[  775.192194][T11727] siw: device registration error -23
[  775.290399][T11597] veth0_vlan: entered promiscuous mode
[  775.298871][T11597] veth1_vlan: entered promiscuous mode
[  775.313415][T11597] veth0_macvtap: entered promiscuous mode
[  775.321112][T11597] veth1_macvtap: entered promiscuous mode
[  775.333553][T11597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  775.344050][T11597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  775.353878][T11597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  775.364363][T11597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  775.374246][T11597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  775.384689][T11597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  775.396305][T11597] batman_adv: batadv0: Interface activated: batadv_slave_0
[  775.406636][T11597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  775.417216][T11597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  775.427077][T11597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  775.437614][T11597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  775.447498][T11597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  775.457916][T11597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  775.468660][T11597] batman_adv: batadv0: Interface activated: batadv_slave_1
[  775.477831][T11597] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  775.486634][T11597] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  775.495409][T11597] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  775.504169][T11597] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  775.540001][T11747] __nla_validate_parse: 25 callbacks suppressed
[  775.540018][T11747] netlink: 16 bytes leftover after parsing attributes in process `syz.6.13787'.
[  775.598964][T11751] netlink: 16 bytes leftover after parsing attributes in process `syz.2.13828'.
[  775.611338][T11751] bridge0: entered promiscuous mode
[  775.619126][T11751] bridge0: left promiscuous mode
[  775.647163][T11756] loop6: detected capacity change from 0 to 2048
[  775.656135][T11756] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  775.668246][T11756] ext4 filesystem being mounted at /3/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  775.702128][T11760] serio: Serial port ptm0
[  775.806610][T11761] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.13830: bg 0: block 345: padding at end of block bitmap is not set
[  775.822137][T11761] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117
[  775.834701][T11761] EXT4-fs (loop6): This should not happen!! Data will be lost
[  775.834701][T11761] 
[  775.883053][T10639] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 2048 with error 117
[  775.895816][T10639] EXT4-fs (loop6): This should not happen!! Data will be lost
[  775.895816][T10639] 
[  775.947651][T10642] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 2081 with max blocks 2024 with error 28
[  775.949480][T11772] netlink: 4 bytes leftover after parsing attributes in process `syz.3.13837'.
[  775.960703][T10642] EXT4-fs (loop6): This should not happen!! Data will be lost
[  775.960703][T10642] 
[  775.972843][T11772] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  775.979286][T10642] EXT4-fs (loop6): Total free blocks count 0
[  775.986720][T11772] batman_adv: batadv0: Removing interface: batadv_slave_0
[  775.992592][T10642] EXT4-fs (loop6): Free/Dirty block details
[  776.005741][T10642] EXT4-fs (loop6): free_blocks=0
[  776.038656][T11772] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  776.046248][T11772] batman_adv: batadv0: Removing interface: batadv_slave_1
[  776.085986][T11777] netlink: 16 bytes leftover after parsing attributes in process `syz.5.13838'.
[  776.147766][T11781] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  776.211756][T11787] netlink: 16 bytes leftover after parsing attributes in process `syz.1.13843'.
[  776.220944][T11787] netlink: 12 bytes leftover after parsing attributes in process `syz.1.13843'.
[  776.262332][T11794] syz.1.13845[11794] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  776.262455][T11794] syz.1.13845[11794] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  776.274212][T11794] syz.1.13845[11794] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  776.290713][T11794] netlink: 'syz.1.13845': attribute type 1 has an invalid length.
[  776.332862][T11797] xt_hashlimit: max too large, truncated to 1048576
[  776.340495][T11797] Cannot find set identified by id 0 to match
[  776.347339][   T29] kauditd_printk_skb: 265 callbacks suppressed
[  776.347364][   T29] audit: type=1326 audit(1871108493.396:88580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11795 comm="syz.5.13846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  776.377361][   T29] audit: type=1326 audit(1871108493.396:88581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11795 comm="syz.5.13846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  776.404115][   T29] audit: type=1326 audit(1871108493.436:88582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11795 comm="syz.5.13846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  776.430446][   T29] audit: type=1326 audit(1871108493.456:88583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11795 comm="syz.5.13846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  776.454226][   T29] audit: type=1326 audit(1871108493.456:88584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11795 comm="syz.5.13846" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  776.496043][T11797] siw: device registration error -23
[  776.502892][T11797] syzkaller0: entered allmulticast mode
[  776.521847][T11804] serio: Serial port ptm0
[  776.527244][   T29] audit: type=1326 audit(1871108493.576:88585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11803 comm="syz.5.13848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  776.551313][   T29] audit: type=1326 audit(1871108493.576:88586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11803 comm="syz.5.13848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  776.575092][   T29] audit: type=1326 audit(1871108493.576:88587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11803 comm="syz.5.13848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  776.598962][   T29] audit: type=1326 audit(1871108493.576:88588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11803 comm="syz.5.13848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  776.622951][   T29] audit: type=1326 audit(1871108493.576:88589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11803 comm="syz.5.13848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  776.627305][T11807] ieee802154 phy0 wpan0: encryption failed: -22
[  776.818349][T11813] pimreg: entered allmulticast mode
[  776.829456][T11813] pimreg: left allmulticast mode
[  777.026207][T11820] netlink: 16 bytes leftover after parsing attributes in process `syz.6.13853'.
[  777.181922][T11824] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  777.211041][T11826] loop2: detected capacity change from 0 to 2048
[  777.236562][T11826] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  777.251889][T11826] ext4 filesystem being mounted at /357/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  777.267990][T11828] netlink: 16 bytes leftover after parsing attributes in process `syz.6.13857'.
[  777.279416][ T6731] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  777.279895][T11828] team0: entered promiscuous mode
[  777.293456][T11828] team_slave_0: entered promiscuous mode
[  777.299208][T11828] team_slave_1: entered promiscuous mode
[  777.305953][T11828] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  777.319656][T11828] team0: left promiscuous mode
[  777.324552][T11828] team_slave_0: left promiscuous mode
[  777.330110][T11828] team_slave_1: left promiscuous mode
[  777.403210][T11836] loop1: detected capacity change from 0 to 2048
[  777.415672][T11834] Falling back ldisc for ttyS3.
[  777.422074][T11836] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  777.436144][T11836] ext4 filesystem being mounted at /269/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  777.484016][T11843] netlink: 16 bytes leftover after parsing attributes in process `syz.2.13861'.
[  777.493138][T11843] netlink: 16 bytes leftover after parsing attributes in process `syz.2.13861'.
[  777.590505][T11848] pimreg: entered allmulticast mode
[  777.597360][T11848] pimreg: left allmulticast mode
[  777.996481][T10639] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:43: bg 0: block 345: padding at end of block bitmap is not set
[  778.023546][T10639] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[  778.036241][T10639] EXT4-fs (loop1): This should not happen!! Data will be lost
[  778.036241][T10639] 
[  778.076448][T10639] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 2040 with error 28
[  778.089222][T10639] EXT4-fs (loop1): This should not happen!! Data will be lost
[  778.089222][T10639] 
[  778.089240][T10639] EXT4-fs (loop1): Total free blocks count 0
[  778.089294][T10639] EXT4-fs (loop1): Free/Dirty block details
[  778.089304][T10639] EXT4-fs (loop1): free_blocks=0
[  778.089316][T10639] EXT4-fs (loop1): dirty_blocks=2048
[  778.089329][T10639] EXT4-fs (loop1): Block reservation details
[  778.189129][T11862] serio: Serial port ptm0
[  778.238453][T11868] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  778.342068][T11885] siw: device registration error -23
[  778.349789][T11878] Falling back ldisc for ttyS3.
[  778.406048][T11882] Falling back ldisc for ttyS3.
[  778.855021][T11920] pimreg: entered allmulticast mode
[  778.861973][T11920] pimreg: left allmulticast mode
[  778.886439][T11922] loop3: detected capacity change from 0 to 256
[  778.893189][T11922] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  778.940199][T11918] Falling back ldisc for ttyS3.
[  779.163190][T11929] loop1: detected capacity change from 0 to 2048
[  779.184813][T11927] Falling back ldisc for ttyS3.
[  779.247784][T11929] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  779.264497][T11929] ext4 filesystem being mounted at /274/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  779.382269][T11944] loop5: detected capacity change from 0 to 1024
[  779.390111][T11944] EXT4-fs: Ignoring removed nobh option
[  779.395813][T11944] EXT4-fs: Ignoring removed bh option
[  779.417338][T11944] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  779.533701][ T4786] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  779.562938][T11951] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  779.605282][T10642] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:46: bg 0: block 345: padding at end of block bitmap is not set
[  779.620641][T10642] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[  779.633272][T10642] EXT4-fs (loop1): This should not happen!! Data will be lost
[  779.633272][T10642] 
[  779.670439][T10642] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 2040 with error 28
[  779.683366][T10642] EXT4-fs (loop1): This should not happen!! Data will be lost
[  779.683366][T10642] 
[  779.693214][T10642] EXT4-fs (loop1): Total free blocks count 0
[  779.699230][T10642] EXT4-fs (loop1): Free/Dirty block details
[  779.705204][T10642] EXT4-fs (loop1): free_blocks=0
[  779.710147][T10642] EXT4-fs (loop1): dirty_blocks=2048
[  779.715535][T10642] EXT4-fs (loop1): Block reservation details
[  779.745043][T11955] Falling back ldisc for ttyS3.
[  779.874043][T11964] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  779.896474][T11973] loop2: detected capacity change from 0 to 256
[  779.903221][T11973] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  779.969309][T11978] loop6: detected capacity change from 0 to 1024
[  779.994025][T11978] EXT4-fs: Ignoring removed nobh option
[  779.999760][T11978] EXT4-fs: Ignoring removed bh option
[  780.015919][T11984] loop2: detected capacity change from 0 to 256
[  780.022631][T11984] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  780.037570][T11978] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  780.100498][T11993] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  780.164596][T11997] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(4)
[  780.171162][T11997] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  780.178601][T11997] vhci_hcd vhci_hcd.0: Device attached
[  780.185140][T11999] vhci_hcd: connection closed
[  780.191832][T29639] vhci_hcd: stop threads
[  780.197489][T11597] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  780.200794][T29639] vhci_hcd: release socket
[  780.200803][T29639] vhci_hcd: disconnect device
[  780.259323][T12010] warn_alloc: 1 callbacks suppressed
[  780.259338][T12010] syz.1.13920: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0
[  780.279321][T12010] CPU: 1 UID: 0 PID: 12010 Comm: syz.1.13920 Not tainted 6.13.0-rc7-syzkaller-00039-gc3812b15000c #0
[  780.290258][T12010] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  780.300376][T12010] Call Trace:
[  780.303656][T12010]  <TASK>
[  780.306586][T12010]  dump_stack_lvl+0xf2/0x150
[  780.311270][T12010]  dump_stack+0x15/0x1a
[  780.315529][T12010]  warn_alloc+0x145/0x1b0
[  780.319855][T12010]  ? __vmalloc_node_range_noprof+0x88/0xe80
[  780.325754][T12010]  __vmalloc_node_range_noprof+0xaa/0xe80
[  780.331523][T12010]  ? xskq_create+0x36/0xd0
[  780.335932][T12010]  ? perf_trace_kmalloc+0xe2/0x110
[  780.341043][T12010]  ? xskq_create+0x36/0xd0
[  780.345573][T12010]  vmalloc_user_noprof+0x59/0x70
[  780.350665][T12010]  ? xskq_create+0x79/0xd0
[  780.355074][T12010]  xskq_create+0x79/0xd0
[  780.359310][T12010]  xsk_init_queue+0x82/0xd0
[  780.363817][T12010]  xsk_setsockopt+0x388/0x520
[  780.368486][T12010]  ? __pfx_xsk_setsockopt+0x10/0x10
[  780.373687][T12010]  __sys_setsockopt+0x187/0x200
[  780.378533][T12010]  __x64_sys_setsockopt+0x66/0x80
[  780.383551][T12010]  x64_sys_call+0x282e/0x2dc0
[  780.388230][T12010]  do_syscall_64+0xc9/0x1c0
[  780.392724][T12010]  ? clear_bhb_loop+0x55/0xb0
[  780.397393][T12010]  ? clear_bhb_loop+0x55/0xb0
[  780.402061][T12010]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  780.408097][T12010] RIP: 0033:0x7f44075e5d29
[  780.412504][T12010] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  780.432123][T12010] RSP: 002b:00007f4405c57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  780.440545][T12010] RAX: ffffffffffffffda RBX: 00007f44077d5fa0 RCX: 00007f44075e5d29
[  780.448507][T12010] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000006
[  780.456474][T12010] RBP: 00007f4407661b08 R08: 0000000000000004 R09: 0000000000000000
[  780.464458][T12010] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000
[  780.472426][T12010] R13: 0000000000000000 R14: 00007f44077d5fa0 R15: 00007ffcf90a27d8
[  780.480392][T12010]  </TASK>
[  780.483891][T12010] Mem-Info:
[  780.487213][T12010] active_anon:6991 inactive_anon:51 isolated_anon:0
[  780.487213][T12010]  active_file:23870 inactive_file:2804 isolated_file:0
[  780.487213][T12010]  unevictable:0 dirty:269 writeback:8
[  780.487213][T12010]  slab_reclaimable:3191 slab_unreclaimable:19325
[  780.487213][T12010]  mapped:37129 shmem:3366 pagetables:795
[  780.487213][T12010]  sec_pagetables:0 bounce:0
[  780.487213][T12010]  kernel_misc_reclaimable:0
[  780.487213][T12010]  free:1866202 free_pcp:7508 free_cma:0
[  780.532139][T12010] Node 0 active_anon:27964kB inactive_anon:204kB active_file:95480kB inactive_file:11216kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:148516kB dirty:1076kB writeback:32kB shmem:13464kB writeback_tmp:0kB kernel_stack:3664kB pagetables:3180kB sec_pagetables:0kB all_unreclaimable? no
[  780.560408][T12010] Node 0 DMA free:15360kB boost:0kB min:20kB low:32kB high:44kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  780.578582][T12014] __nla_validate_parse: 39 callbacks suppressed
[  780.578674][T12014] netlink: 20 bytes leftover after parsing attributes in process `syz.6.13916'.
[  780.587497][T12010] lowmem_reserve[]:
[  780.599772][T12011] xt_hashlimit: max too large, truncated to 1048576
[  780.602732][T12010]  0
[  780.607198][T12011] Cannot find set identified by id 0 to match
[  780.613094][T12010]  2866 7844 0
[  780.625211][T12010] Node 0 DMA32 free:2950276kB boost:0kB min:4136kB low:7068kB high:10000kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2953908kB mlocked:0kB bounce:0kB free_pcp:3632kB local_pcp:3532kB free_cma:0kB
[  780.625376][T12011] siw: device registration error -23
[  780.653947][T12010] lowmem_reserve[]: 0 0 4978 0
[  780.653999][T12010] Node 0 Normal free:4494724kB boost:0kB min:7184kB low:12280kB high:17376kB reserved_highatomic:0KB active_anon:27724kB inactive_anon:204kB active_file:95392kB inactive_file:11196kB unevictable:0kB writepending:1104kB present:5242880kB managed:5098208kB mlocked:0kB bounce:0kB free_pcp:26788kB local_pcp:21236kB free_cma:0kB
[  780.654059][T12010] lowmem_reserve[]: 0 0 0 0
[  780.665984][T12011] syzkaller0: entered allmulticast mode
[  780.694963][T12010] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  780.717873][T12010] Node 0 DMA32: 3*4kB (M) 1*8kB (M) 3*16kB (M) 4*32kB (M) 3*64kB (M) 2*128kB (M) 2*256kB (M) 2*512kB (M) 3*1024kB (M) 2*2048kB (M) 718*4096kB (M) = 2950276kB
[  780.734201][T12010] Node 0 Normal: 204*4kB (UE) 84*8kB (UME) 238*16kB (UME) 453*32kB (UME) 184*64kB (UME) 214*128kB (UME) 119*256kB (UME) 72*512kB (UME) 96*1024kB (UME) 69*2048kB (UME) 1008*4096kB (UME) = 4494672kB
[  780.753588][T12010] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB
[  780.762930][T12010] 29956 total pagecache pages
[  780.767604][T12010] 70 pages in swap cache
[  780.771818][T12010] Free swap  = 124368kB
[  780.775972][T12010] Total swap = 124996kB
[  780.780112][T12010] 2097051 pages RAM
[  780.783896][T12010] 0 pages HighMem/MovableOnly
[  780.788559][T12010] 80182 pages reserved
[  780.844437][T12020] serio: Serial port ptm0
[  780.944927][T12022] pimreg: entered allmulticast mode
[  780.951860][T12022] pimreg: left allmulticast mode
[  781.102890][T12028] FAULT_INJECTION: forcing a failure.
[  781.102890][T12028] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  781.116210][T12028] CPU: 0 UID: 0 PID: 12028 Comm: syz.5.13922 Not tainted 6.13.0-rc7-syzkaller-00039-gc3812b15000c #0
[  781.127067][T12028] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  781.137114][T12028] Call Trace:
[  781.140470][T12028]  <TASK>
[  781.143399][T12028]  dump_stack_lvl+0xf2/0x150
[  781.148080][T12028]  dump_stack+0x15/0x1a
[  781.152389][T12028]  should_fail_ex+0x223/0x230
[  781.157068][T12028]  should_fail+0xb/0x10
[  781.161221][T12028]  should_fail_usercopy+0x1a/0x20
[  781.166256][T12028]  _copy_from_user+0x1e/0xb0
[  781.170928][T12028]  do_ip6t_set_ctl+0x42c/0x8c0
[  781.175696][T12028]  ? __rcu_read_unlock+0x4e/0x70
[  781.180688][T12028]  nf_setsockopt+0x195/0x1b0
[  781.185380][T12028]  ipv6_setsockopt+0x10f/0x130
[  781.190213][T12028]  rawv6_setsockopt+0x21e/0x410
[  781.195136][T12028]  sock_common_setsockopt+0x64/0x80
[  781.200344][T12028]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  781.206254][T12028]  __sys_setsockopt+0x187/0x200
[  781.211101][T12028]  __x64_sys_setsockopt+0x66/0x80
[  781.216133][T12028]  x64_sys_call+0x282e/0x2dc0
[  781.220842][T12028]  do_syscall_64+0xc9/0x1c0
[  781.225417][T12028]  ? clear_bhb_loop+0x55/0xb0
[  781.230200][T12028]  ? clear_bhb_loop+0x55/0xb0
[  781.234876][T12028]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  781.240823][T12028] RIP: 0033:0x7fd1d40d5d29
[  781.245320][T12028] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  781.264934][T12028] RSP: 002b:00007fd1d26f4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  781.273371][T12028] RAX: ffffffffffffffda RBX: 00007fd1d42c6160 RCX: 00007fd1d40d5d29
[  781.281384][T12028] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 000000000000000a
[  781.289349][T12028] RBP: 00007fd1d26f4090 R08: 0000000000000488 R09: 0000000000000000
[  781.297315][T12028] R10: 0000000020000b00 R11: 0000000000000246 R12: 0000000000000001
[  781.305355][T12028] R13: 0000000000000000 R14: 00007fd1d42c6160 R15: 00007fff6bfa7758
[  781.313379][T12028]  </TASK>
[  781.430841][T12035] loop6: detected capacity change from 0 to 1024
[  781.437722][T12035] EXT4-fs: Ignoring removed nobh option
[  781.443415][T12035] EXT4-fs: Ignoring removed bh option
[  781.476516][T12035] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  781.478746][T12042] syz.2.13929[12042] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  781.489191][T12042] syz.2.13929[12042] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  781.502261][T12042] syz.2.13929[12042] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  781.537130][T11597] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  781.570748][T12042] netlink: 'syz.2.13929': attribute type 1 has an invalid length.
[  781.593983][T12045] loop1: detected capacity change from 0 to 2048
[  781.626449][T12045] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  781.657581][T12045] ext4 filesystem being mounted at /280/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  781.701350][T12052] netlink: 20 bytes leftover after parsing attributes in process `syz.2.13932'.
[  781.725724][T12051] netlink: 4 bytes leftover after parsing attributes in process `syz.3.13933'.
[  782.007161][T29639] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:0: bg 0: block 345: padding at end of block bitmap is not set
[  782.022685][T29639] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 117
[  782.035371][T29639] EXT4-fs (loop1): This should not happen!! Data will be lost
[  782.035371][T29639] 
[  782.049784][T12070] pimreg: entered allmulticast mode
[  782.056341][T12070] pimreg: left allmulticast mode
[  782.121563][T10636] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2065 with max blocks 2040 with error 28
[  782.134314][T10636] EXT4-fs (loop1): This should not happen!! Data will be lost
[  782.134314][T10636] 
[  782.144001][T10636] EXT4-fs (loop1): Total free blocks count 0
[  782.149989][T10636] EXT4-fs (loop1): Free/Dirty block details
[  782.155979][T10636] EXT4-fs (loop1): free_blocks=0
[  782.160922][T10636] EXT4-fs (loop1): dirty_blocks=2048
[  782.166218][T10636] EXT4-fs (loop1): Block reservation details
[  782.275053][T12066] Falling back ldisc for ttyS3.
[  782.381325][T12079] loop6: detected capacity change from 0 to 1024
[  782.388149][T12079] EXT4-fs: Ignoring removed nobh option
[  782.389798][T12081] x_tables: duplicate underflow at hook 3
[  782.393894][T12079] EXT4-fs: Ignoring removed bh option
[  782.408947][T12083] netlink: 16 bytes leftover after parsing attributes in process `syz.3.13943'.
[  782.418045][T12083] netlink: 16 bytes leftover after parsing attributes in process `syz.3.13943'.
[  782.441416][T12079] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  782.456246][T12089] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  782.492687][T12091] netlink: 4 bytes leftover after parsing attributes in process `syz.3.13945'.
[  782.509208][   T29] kauditd_printk_skb: 169 callbacks suppressed
[  782.509222][   T29] audit: type=1326 audit(1871108499.566:88759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12096 comm="syz.1.13947" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f44075e5d29 code=0x0
[  782.539852][T11597] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  782.616869][T12099] Falling back ldisc for ttyS3.
[  782.637134][   T29] audit: type=1326 audit(1871108499.696:88760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12096 comm="syz.1.13947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44075e5d29 code=0x7ffc0000
[  782.663098][T12104] netlink: 16 bytes leftover after parsing attributes in process `syz.5.13950'.
[  782.675412][   T29] audit: type=1326 audit(1871108499.696:88761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12096 comm="syz.1.13947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7f44075e5d29 code=0x7ffc0000
[  782.692828][T12104] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  782.756878][   T29] audit: type=1326 audit(1871108499.806:88762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12096 comm="syz.1.13947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44075e5d29 code=0x7ffc0000
[  782.780681][   T29] audit: type=1326 audit(1871108499.806:88763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12096 comm="syz.1.13947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44075e5d29 code=0x7ffc0000
[  782.832811][   T29] audit: type=1326 audit(1871108499.886:88764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12117 comm="syz.5.13954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1d40d5d29 code=0x7ffc0000
[  782.870499][   T29] audit: type=1326 audit(1871108499.886:88765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12112 comm="syz.2.13952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f595d305d29 code=0x7ffc0000
[  782.894352][   T29] audit: type=1326 audit(1871108499.886:88766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12112 comm="syz.2.13952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f595d305d29 code=0x7ffc0000
[  782.918098][   T29] audit: type=1326 audit(1871108499.886:88767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12112 comm="syz.2.13952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f595d305d29 code=0x7ffc0000
[  782.941752][   T29] audit: type=1326 audit(1871108499.886:88768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12112 comm="syz.2.13952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f595d305d29 code=0x7ffc0000
[  783.035657][T12125] serio: Serial port ptm0
[  783.041942][T12127] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  783.064316][T12129] syz.3.13959[12129] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  783.064403][T12129] syz.3.13959[12129] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  783.076173][T12129] syz.3.13959[12129] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  783.090804][T12129] netlink: 'syz.3.13959': attribute type 1 has an invalid length.
[  783.110202][T12132] loop2: detected capacity change from 0 to 256
[  783.110607][T12132] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  783.168791][T12134] netlink: 4 bytes leftover after parsing attributes in process `syz.3.13961'.
[  783.237561][T12144] netlink: 16 bytes leftover after parsing attributes in process `syz.5.13965'.
[  783.250755][T12144] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  783.475808][T12160] serio: Serial port ptm0
[  783.496781][T12162] netlink: 36 bytes leftover after parsing attributes in process `syz.1.13971'.
[  783.593327][T12171] loop1: detected capacity change from 0 to 256
[  783.604941][T12172] loop6: detected capacity change from 0 to 256
[  783.611531][T12172] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  783.624378][T12171] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  783.665571][T12174] loop1: detected capacity change from 0 to 256
[  783.680787][T12177] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(4)
[  783.687321][T12177] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  783.694849][T12177] vhci_hcd vhci_hcd.0: Device attached
[  783.701458][T12174] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  783.715742][T12179] vhci_hcd: connection closed
[  783.717001][T10639] vhci_hcd: stop threads
[  783.725985][T10639] vhci_hcd: release socket
[  783.730405][T10639] vhci_hcd: disconnect device
[  783.740163][T12180] team0: entered promiscuous mode
[  783.745285][T12180] team_slave_0: entered promiscuous mode
[  783.751114][T12180] team_slave_1: entered promiscuous mode
[  783.758885][T12180] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  783.767468][T12180] team0: left promiscuous mode
[  783.772341][T12180] team_slave_0: left promiscuous mode
[  783.777956][T12180] team_slave_1: left promiscuous mode
[  783.871148][T12189] loop3: detected capacity change from 0 to 2048
[  783.878673][T12189] EXT4-fs: Mount option(s) incompatible with ext2
[  783.895953][T12189] loop3: detected capacity change from 0 to 1024
[  783.902715][T12189] EXT4-fs: Ignoring removed nobh option
[  783.908446][T12189] EXT4-fs: Ignoring removed bh option
[  783.916001][T12189] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  783.936205][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x1
[  783.943646][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  783.951101][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  783.958705][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  783.966470][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x2
[  783.973878][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  783.981424][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  783.988822][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  783.996316][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.003693][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x4
[  784.011235][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.018728][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.026157][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x2
[  784.033574][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.041053][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.048457][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.055894][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.063258][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.070735][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.078148][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.085555][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.092946][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.100442][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.107903][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.115350][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.122715][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.130234][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.137638][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.145048][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.152423][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.159817][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.167257][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.174708][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.182122][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  784.189508][    T9] hid-generic 0000:0003:0000.0005: unknown main item tag 0x1
[  784.197399][    T9] hid-generic 0000:0003:0000.0005: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  784.216065][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  784.248864][T12201] serio: Serial port ptm0
[  784.263577][T12205] xt_hashlimit: max too large, truncated to 1048576
[  784.281628][T12205] Cannot find set identified by id 0 to match
[  784.346239][T12216] loop5: detected capacity change from 0 to 256
[  784.347358][T12218] loop6: detected capacity change from 0 to 512
[  784.360714][T12216] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  784.373078][T12218] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  784.382333][T12218] EXT4-fs (loop6): orphan cleanup on readonly fs
[  784.389197][T12218] EXT4-fs warning (device loop6): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  784.419367][T12218] EXT4-fs (loop6): Cannot turn on quotas: error -117
[  784.439215][T12218] EXT4-fs error (device loop6): ext4_orphan_get:1389: inode #16: comm syz.6.13990: casefold flag without casefold feature
[  784.478175][T12218] EXT4-fs error (device loop6): ext4_orphan_get:1394: comm syz.6.13990: couldn't read orphan inode 16 (err -117)
[  784.500306][T12218] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  784.530323][T11597] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  784.742065][T12248] loop1: detected capacity change from 0 to 256
[  784.748801][T12248] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  784.837517][T12252] pimreg: entered allmulticast mode
[  784.844471][T12252] pimreg: left allmulticast mode
[  784.963094][T12258] loop6: detected capacity change from 0 to 512
[  785.010437][T12258] EXT4-fs: Ignoring removed i_version option
[  785.016672][T12258] EXT4-fs: Ignoring removed mblk_io_submit option
[  785.075215][T12258] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  785.112817][T12258] EXT4-fs (loop6): 1 truncate cleaned up
[  785.128243][T12258] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  785.163441][T11597] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  785.246748][T12272] serio: Serial port ptm0
[  785.424804][T12291] Falling back ldisc for ttyS3.
[  785.486535][T12293] Falling back ldisc for ttyS3.
[  785.555044][T12300] Falling back ldisc for ttyS3.
[  785.842802][T12317] __nla_validate_parse: 24 callbacks suppressed
[  785.842841][T12317] netlink: 132 bytes leftover after parsing attributes in process `syz.1.14027'.
[  785.858751][T12317] netlink: 'syz.1.14027': attribute type 10 has an invalid length.
[  785.868085][T12319] netlink: 16 bytes leftover after parsing attributes in process `syz.5.14028'.
[  785.880349][T12319] dummy0: entered promiscuous mode
[  785.884220][T12322] xt_hashlimit: max too large, truncated to 1048576
[  785.892289][T12319] dummy0: left promiscuous mode
[  785.893334][T12322] Cannot find set identified by id 0 to match
[  785.909383][T12317] dummy0: entered promiscuous mode
[  785.910483][T12322] siw: device registration error -23
[  785.914880][T12317] $Hÿݱ_sÓ: (slave dummy0): Enslaving as an active interface with an up link
[  785.947641][T12324] serio: Serial port ptm0
[  785.953972][T12326] loop1: detected capacity change from 0 to 1024
[  785.960795][T12326] EXT4-fs: Ignoring removed nobh option
[  785.966552][T12326] EXT4-fs: Ignoring removed bh option
[  785.976366][T12326] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  786.024293][ T7602] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  786.189403][T12344] pimreg: entered allmulticast mode
[  786.196496][T12344] pimreg: left allmulticast mode
[  786.420166][T12352] siw: device registration error -23
[  786.443123][T12354] serio: Serial port ptm0
[  786.517880][T12359] netlink: 16 bytes leftover after parsing attributes in process `syz.6.14042'.
[  786.542122][T12359] dummy0: entered promiscuous mode
[  786.554444][T12359] dummy0: left promiscuous mode
[  786.587317][T12366] FAULT_INJECTION: forcing a failure.
[  786.587317][T12366] name failslab, interval 1, probability 0, space 0, times 0
[  786.600067][T12366] CPU: 1 UID: 0 PID: 12366 Comm: syz.3.14044 Not tainted 6.13.0-rc7-syzkaller-00039-gc3812b15000c #0
[  786.610990][T12366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  786.621052][T12366] Call Trace:
[  786.624335][T12366]  <TASK>
[  786.627300][T12366]  dump_stack_lvl+0xf2/0x150
[  786.632016][T12366]  dump_stack+0x15/0x1a
[  786.636197][T12366]  should_fail_ex+0x223/0x230
[  786.639802][T12368] loop1: detected capacity change from 0 to 256
[  786.640951][T12366]  should_failslab+0x8f/0xb0
[  786.640981][T12366]  kmem_cache_alloc_node_noprof+0x59/0x320
[  786.641002][T12366]  ? __alloc_skb+0x10b/0x310
[  786.641020][T12366]  __alloc_skb+0x10b/0x310
[  786.647838][T12368] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  786.651798][T12366]  ? audit_log_start+0x34c/0x6b0
[  786.683258][T12366]  audit_log_start+0x368/0x6b0
[  786.688054][T12366]  ? mod_objcg_state+0x2ea/0x4f0
[  786.693002][T12366]  audit_seccomp+0x4b/0x130
[  786.697636][T12366]  __seccomp_filter+0x6fa/0x1180
[  786.702623][T12366]  ? security_file_alloc+0x63/0x100
[  786.707861][T12366]  ? percpu_counter_add_batch+0xc6/0x140
[  786.713495][T12366]  ? errseq_sample+0x2f/0x40
[  786.718085][T12366]  ? file_init_path+0x255/0x290
[  786.723002][T12366]  __secure_computing+0x9f/0x1c0
[  786.727957][T12366]  syscall_trace_enter+0xd1/0x1f0
[  786.732987][T12366]  ? fpregs_assert_state_consistent+0x83/0xa0
[  786.739065][T12366]  do_syscall_64+0xaa/0x1c0
[  786.743625][T12366]  ? clear_bhb_loop+0x55/0xb0
[  786.748364][T12366]  ? clear_bhb_loop+0x55/0xb0
[  786.753066][T12366]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  786.759044][T12366] RIP: 0033:0x7f56b769473c
[  786.763446][T12366] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  786.783072][T12366] RSP: 002b:00007f56b5d07030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  786.791477][T12366] RAX: ffffffffffffffda RBX: 00007f56b7885fa0 RCX: 00007f56b769473c
[  786.799532][T12366] RDX: 000000000000000f RSI: 00007f56b5d070a0 RDI: 0000000000000005
[  786.807492][T12366] RBP: 00007f56b5d07090 R08: 0000000000000000 R09: 0000000000000000
[  786.815459][T12366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  786.823500][T12366] R13: 0000000000000000 R14: 00007f56b7885fa0 R15: 00007ffef4181b68
[  786.831521][T12366]  </TASK>
[  786.908274][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  786.915773][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  786.923213][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  786.930648][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  786.938120][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  786.945630][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  786.953051][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  786.960520][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  786.967945][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  786.975335][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  786.982734][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  786.990157][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  786.997656][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005162][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005187][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005212][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005236][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005260][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005286][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005311][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005396][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005418][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005443][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005469][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005494][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005517][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005540][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005628][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005651][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005677][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005700][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005724][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005758][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005779][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005799][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005898][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005927][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005947][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005966][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.005986][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.006005][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.006040][T12379] loop6: detected capacity change from 0 to 256
[  787.006147][ T3372] ==================================================================
[  787.006169][ T3372] BUG: KCSAN: data-race in data_alloc / prb_reserve
[  787.006190][ T3372] 
[  787.006195][ T3372] write to 0xffffffff86668b50 of 8 bytes by task 12379 on cpu 0:
[  787.006211][ T3372]  data_alloc+0x291/0x2c0
[  787.006229][ T3372]  prb_reserve+0x85e/0xb60
[  787.006245][ T3372]  vprintk_store+0x558/0x870
[  787.006267][ T3372]  vprintk_emit+0x15e/0x680
[  787.006289][ T3372]  vprintk_default+0x26/0x30
[  787.006310][ T3372]  vprintk+0x75/0x80
[  787.006323][ T3372]  _printk+0x7a/0xa0
[  787.006341][T12379] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  787.006339][ T3372]  set_capacity_and_notify+0xff/0x160
[  787.006369][ T3372]  loop_set_size+0x2e/0x70
[  787.006390][ T3372]  loop_configure+0x8a6/0xa30
[  787.006408][ T3372]  lo_ioctl+0x5f6/0x11c0
[  787.006424][ T3372]  blkdev_ioctl+0x359/0x450
[  787.006448][ T3372]  __se_sys_ioctl+0xc9/0x140
[  787.006470][ T3372]  __x64_sys_ioctl+0x43/0x50
[  787.006490][ T3372]  x64_sys_call+0x1690/0x2dc0
[  787.006506][ T3372]  do_syscall_64+0xc9/0x1c0
[  787.006525][ T3372]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  787.331980][ T3372] 
[  787.334293][ T3372] read to 0xffffffff86668b50 of 8 bytes by task 3372 on cpu 1:
[  787.341826][ T3372]  prb_reserve+0x235/0xb60
[  787.346245][ T3372]  vprintk_store+0x558/0x870
[  787.350843][ T3372]  vprintk_emit+0x15e/0x680
[  787.355343][ T3372]  dev_vprintk_emit+0x1df/0x210
[  787.360194][ T3372]  dev_printk_emit+0x82/0xb0
[  787.364777][ T3372]  __dev_printk+0xf6/0x110
[  787.369189][ T3372]  _dev_warn+0x99/0xc0
[  787.373258][ T3372]  hid_parser_main+0x622/0x680
[  787.378011][ T3372]  hid_open_report+0x541/0x7c0
[  787.382762][ T3372]  hid_generic_probe+0x33/0x70
[  787.387512][ T3372]  hid_device_probe+0x259/0x440
[  787.392358][ T3372]  really_probe+0x1cf/0x5d0
[  787.396852][ T3372]  __driver_probe_device+0x12d/0x200
[  787.402216][ T3372]  driver_probe_device+0x38/0x2f0
[  787.407316][ T3372]  __device_attach_driver+0x216/0x320
[  787.412680][ T3372]  bus_for_each_drv+0x1cd/0x240
[  787.417524][ T3372]  __device_attach+0x1c7/0x290
[  787.422278][ T3372]  device_initial_probe+0x1a/0x20
[  787.427290][ T3372]  bus_probe_device+0x141/0x1d0
[  787.432135][ T3372]  device_add+0x5e2/0x790
[  787.436462][ T3372]  hid_add_device+0x26e/0x2f0
[  787.441133][ T3372]  uhid_device_add_worker+0x2b/0xa0
[  787.446325][ T3372]  process_scheduled_works+0x483/0x9a0
[  787.451797][ T3372]  worker_thread+0x51d/0x6f0
[  787.456393][ T3372]  kthread+0x1d1/0x210
[  787.460450][ T3372]  ret_from_fork+0x4b/0x60
[  787.464860][ T3372]  ret_from_fork_asm+0x1a/0x30
[  787.469620][ T3372] 
[  787.471927][ T3372] value changed: 0x00000000001278a0 -> 0x00000000001dad78
[  787.479018][ T3372] 
[  787.481329][ T3372] Reported by Kernel Concurrency Sanitizer on:
[  787.487464][ T3372] CPU: 1 UID: 0 PID: 3372 Comm: kworker/1:3 Not tainted 6.13.0-rc7-syzkaller-00039-gc3812b15000c #0
[  787.498213][ T3372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  787.508259][ T3372] Workqueue: events uhid_device_add_worker
[  787.514056][ T3372] ==================================================================
[  787.006027][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.530013][ T3372] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  787.575464][ T3372] hid-generic 0000:0003:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  787.682764][T12382] pimreg: entered allmulticast mode
[  787.693679][T12382] pimreg: left allmulticast mode